$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230332e38332e32382e302f32332d3234203d3e203538333738.roa File: 3230332e38332e32382e302f32332d3234203d3e203538333738.roa (raw, json) Hash identifier: PfMnHFIZGrnZM82g+rsBwK7aW3WScriYgqF0KRQ2e7o= Subject key identifier: 26:DB:D4:AD:AF:D3:BE:DF:23:BB:EC:31:9C:92:65:49:AC:6E:48:B5 Certificate issuer: /CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Certificate serial: 785241FEDDADDC400E8C097419DA37314785A24E Authority key identifier: 42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230332e38332e32382e302f32332d3234203d3e203538333738.roa Signing time: Sun 03 May 2026 03:15:27 +0000 ROA not before: Sun 03 May 2026 03:10:27 +0000 ROA not after: Sun 02 May 2027 03:15:27 +0000 asID: 58378 IP address blocks: 203.83.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:52:41:fe:dd:ad:dc:40:0e:8c:09:74:19:da:37:31:47:85:a2:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Validity Not Before: May 3 03:10:27 2026 GMT Not After : May 2 03:15:27 2027 GMT Subject: CN=26DBD4ADAFD3BEDF23BBEC319C926549AC6E48B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:27:3d:e5:90:39:2d:32:eb:dd:37:eb:31: a6:28:fd:9d:9a:fe:23:53:31:d3:6e:71:eb:71:08: 89:ff:da:c6:ca:7a:a9:2c:df:ec:ca:81:3f:59:05: f4:78:ae:14:4a:86:f4:c3:42:ea:ec:e8:97:a2:85: c0:91:e1:af:c8:60:8d:30:e6:d1:7d:f6:7e:cc:69: 8c:0e:72:cf:8a:6a:84:85:a9:30:40:01:90:c3:b1: 94:40:7b:33:52:28:8b:f4:9c:9a:e7:3d:12:67:60: 5a:1f:52:21:4b:d7:3a:05:05:4a:dd:3c:3f:4e:33: 05:34:f4:14:31:e8:5a:1e:5b:37:24:1f:44:93:21: 02:c2:70:fb:2d:49:f5:3b:f2:7e:ae:92:68:74:60: dc:73:9d:82:23:42:3e:13:b2:4f:5c:38:60:a4:c0: 62:57:e7:41:eb:d6:07:4f:ad:50:b1:af:d0:72:f9: 89:53:0b:42:88:7e:5b:ff:16:b8:89:92:00:1c:96: 70:87:21:bf:03:66:f7:80:df:4e:d0:c3:20:ff:0c: 38:62:46:c0:03:1c:ee:23:22:ba:79:a9:35:f3:ba: b3:89:00:9c:15:98:d7:b6:6b:fc:e6:f2:e1:1f:e0: 46:52:53:d3:fd:43:82:a7:4c:d6:46:e0:ca:5b:96: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DB:D4:AD:AF:D3:BE:DF:23:BB:EC:31:9C:92:65:49:AC:6E:48:B5 X509v3 Authority Key Identifier: keyid:42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230332e38332e32382e302f32332d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.83.28.0/23 Signature Algorithm: sha256WithRSAEncryption 26:87:a6:18:7b:e6:1e:e8:03:25:25:7b:0d:15:ad:2c:59:f9: 55:63:c7:16:b1:46:dd:75:45:61:ee:69:04:71:8d:7c:ba:04: d7:c4:ce:7a:1d:61:be:97:fa:03:67:e2:38:3d:ed:1a:6c:8b: 0a:ef:58:9c:14:44:24:c9:ee:91:df:42:9b:e0:b7:40:c9:d8: 7d:f2:1e:61:d4:d3:05:f2:32:a5:fe:14:5e:58:f2:e9:78:95: ed:b9:55:5a:4f:fb:f3:e4:c5:01:7f:bf:c8:75:80:ce:0a:c2: 5c:f9:5b:64:c4:59:1d:1c:d6:b6:5a:70:d3:fc:63:28:5f:aa: d9:7f:84:32:6a:59:05:b2:c5:d4:73:9d:d8:b3:a4:a5:d2:c5: 32:b1:17:75:6c:41:66:39:27:70:cb:24:f9:98:1b:5b:81:ba: 4a:7e:a1:f5:d4:2e:d3:96:af:af:3f:4e:00:aa:8b:e5:70:b1: 2f:10:22:34:2c:ea:89:8b:ad:62:c1:9c:45:8f:2d:57:69:8d: ce:98:0f:d4:ee:21:84:a1:60:03:42:b4:8f:b4:4c:52:3e:12: ce:d1:f2:e6:7f:78:24:95:f4:5d:4d:03:6a:e3:e6:26:29:4e: c5:d3:d0:05:43:30:ed:01:3e:9c:00:84:79:65:3b:81:64:de: 8c:82:93:28 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeFJB/t2t3EAOjAl0Gdo3MUeFok4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0MkJFRkFCN0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4 NEVFMTAyNDAeFw0yNjA1MDMwMzEwMjdaFw0yNzA1MDIwMzE1MjdaMDMxMTAvBgNV BAMTKDI2REJENEFEQUZEM0JFREYyM0JCRUMzMTlDOTI2NTQ5QUM2RTQ4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9yc95ZA5LTLr3TfrMaYo/Z2a /iNTMdNucetxCIn/2sbKeqks3+zKgT9ZBfR4rhRKhvTDQurs6JeihcCR4a/IYI0w 5tF99n7MaYwOcs+KaoSFqTBAAZDDsZRAezNSKIv0nJrnPRJnYFofUiFL1zoFBUrd PD9OMwU09BQx6FoeWzckH0STIQLCcPstSfU78n6ukmh0YNxznYIjQj4Tsk9cOGCk wGJX50Hr1gdPrVCxr9By+YlTC0KIflv/FriJkgAclnCHIb8DZveA307QwyD/DDhi RsADHO4jIrp5qTXzurOJAJwVmNe2a/zm8uEf4EZSU9P9Q4KnTNZG4MpblkavAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJtvUra/Tvt8ju+wxnJJlSaxuSLUwHwYDVR0j BBgwFoAUQkK++rf9nncvsWhHxUAzE4TuECQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJiZmU3NzYtMDBhMy00Nzc2LWJmM2YtNTIxMTk0NjEwMWMzLzAvNDI0MkJFRkFC N0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4NEVFMTAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjQyQkVGQUI3RkQ5RTc3MkZCMTY4NDdDNTQwMzMxMzg0RUUx MDI0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMzJlMzgzMzJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLUxwwDQYJKoZIhvcN AQELBQADggEBACaHphh75h7oAyUlew0VrSxZ+VVjxxaxRt11RWHuaQRxjXy6BNfE znodYb6X+gNn4jg97RpsiwrvWJwURCTJ7pHfQpvgt0DJ2H3yHmHU0wXyMqX+FF5Y 8ul4le25VVpP+/PkxQF/v8h1gM4Kwlz5W2TEWR0c1rZacNP8Yyhfqtl/hDJqWQWy xdRzndizpKXSxTKxF3VsQWY5J3DLJPmYG1uBukp+ofXULtOWr68/TgCqi+VwsS8Q IjQs6omLrWLBnEWPLVdpjc6YD9TuIYShYANCtI+0TFI+Es7R8uZ/eCSV9F1NA2rj 5iYpTsXT0AVDMO0BPpwAhHllO4Fk3oyCkyg= -----END CERTIFICATE-----Generated at Wed May 13 00:21:46 2026 by rpki-client