$ rpki-client -vvf rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa File: 3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa (raw, json) Hash identifier: 4ByDuJtt3A8/OMYgUMLRW5zT+7DYjf2+SVe78YDt8J8= Subject key identifier: C0:3F:5B:72:F3:95:AD:39:62:CA:94:A3:1F:47:4D:DC:4A:83:07:90 Certificate issuer: /CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Certificate serial: 23997A2FC6082B877B908345A282E2534706E6AE Authority key identifier: A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa Signing time: Sun 03 May 2026 03:15:59 +0000 ROA not before: Sun 03 May 2026 03:10:59 +0000 ROA not after: Sun 02 May 2027 03:15:59 +0000 asID: 23671 IP address blocks: 202.169.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:99:7a:2f:c6:08:2b:87:7b:90:83:45:a2:82:e2:53:47:06:e6:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Validity Not Before: May 3 03:10:59 2026 GMT Not After : May 2 03:15:59 2027 GMT Subject: CN=C03F5B72F395AD3962CA94A31F474DDC4A830790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:52:dd:07:91:d0:8a:75:cf:3e:31:b1:e3:3a: 3c:77:84:0b:d4:b3:61:3b:fc:b6:2f:91:30:cf:bc: 1b:bd:9c:a0:fa:cb:0d:61:42:99:1c:67:e1:b2:f4: 8b:25:59:d8:df:ef:cc:d6:1c:b5:f2:2d:9e:2f:18: d8:0b:b6:54:c8:79:77:c8:93:98:3f:80:c4:54:30: 1f:b0:c7:8b:6d:00:33:15:88:c4:09:8e:3b:34:a4: 5e:bf:23:8e:00:ab:4c:0b:2d:e7:32:a1:81:f2:c9: 6b:d2:66:99:2d:f6:f5:a9:2c:fe:93:af:ec:88:22: da:41:1f:fd:38:42:5a:88:2f:de:76:83:9c:44:fc: fd:94:7c:48:20:32:0e:58:0b:fc:f2:7f:29:08:57: 67:1b:56:55:b1:dd:41:d0:4b:a6:90:ab:ea:8b:33: ef:63:e2:9f:ed:41:18:87:0a:0d:e2:35:07:b2:6f: 7d:6b:89:af:32:f4:f2:13:64:7d:34:c3:06:c3:54: b5:0a:95:44:22:82:1d:14:85:96:35:79:63:0d:5e: 10:43:4e:b9:24:f8:90:31:20:9a:e1:8e:93:f0:b1: 3b:28:53:90:75:ca:8a:7b:40:39:7f:86:fe:01:c4: f5:aa:60:ef:1e:b5:38:d8:09:2b:b7:40:f7:87:92: 73:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3F:5B:72:F3:95:AD:39:62:CA:94:A3:1F:47:4D:DC:4A:83:07:90 X509v3 Authority Key Identifier: keyid:A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 26:35:64:85:bb:30:56:97:b3:7a:e9:24:45:a0:ed:12:bc:d6: e7:cd:fe:81:0d:b1:ca:fd:ab:c2:e8:96:b9:3c:2c:56:85:eb: 00:66:56:d6:7a:1c:5c:05:5b:04:6b:ad:97:b3:ec:04:5e:35: 12:d3:b2:ec:c2:c0:ab:c3:79:d2:5e:df:50:27:68:ee:b6:20: cc:97:a8:47:25:ff:cc:3a:40:5f:b1:8b:89:96:26:c3:dc:99: 1c:13:04:dc:2e:3d:fa:94:f0:c6:39:ac:e8:de:1a:89:36:2e: d4:a1:27:96:2f:79:0b:03:f3:82:db:46:25:d3:c2:76:05:dc: 04:b2:d3:46:a2:b9:b1:88:29:48:b6:0a:d9:78:f9:bb:d7:78: 8e:ac:8f:5a:08:6a:ce:e1:0e:cb:9f:3d:3d:23:c7:67:cf:67: 48:be:c0:ad:8b:5e:c2:97:e7:ff:0a:93:bc:6c:cf:ed:d1:3a: dc:32:2d:50:46:fb:cc:89:ab:d3:0a:3b:3c:03:a1:47:0f:9f: 4f:42:83:65:29:1f:66:6f:d9:da:56:2d:72:93:dc:ff:9c:08: 5a:ac:84:b7:3c:f6:87:6d:2c:aa:04:b7:44:70:38:0d:75:68: 9d:c8:c8:6b:6a:a6:7f:e0:ed:85:48:53:1d:a3:9f:61:9b:55: 26:3d:74:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI5l6L8YIK4d7kINFooLiU0cG5q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlCRkEzNDhBMDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYx MjQ3RkM2NDAeFw0yNjA1MDMwMzEwNTlaFw0yNzA1MDIwMzE1NTlaMDMxMTAvBgNV BAMTKEMwM0Y1QjcyRjM5NUFEMzk2MkNBOTRBMzFGNDc0RERDNEE4MzA3OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjUt0HkdCKdc8+MbHjOjx3hAvU s2E7/LYvkTDPvBu9nKD6yw1hQpkcZ+Gy9IslWdjf78zWHLXyLZ4vGNgLtlTIeXfI k5g/gMRUMB+wx4ttADMViMQJjjs0pF6/I44Aq0wLLecyoYHyyWvSZpkt9vWpLP6T r+yIItpBH/04QlqIL952g5xE/P2UfEggMg5YC/zyfykIV2cbVlWx3UHQS6aQq+qL M+9j4p/tQRiHCg3iNQeyb31ria8y9PITZH00wwbDVLUKlUQigh0UhZY1eWMNXhBD Trkk+JAxIJrhjpPwsTsoU5B1yop7QDl/hv4BxPWqYO8etTjYCSu3QPeHknPLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwD9bcvOVrTliypSjH0dN3EqDB5AwHwYDVR0j BBgwFoAUqb+jSKBQ5GSC9OAMYF/5lhJH/GQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWQ5YmE5NTMtODQ4OS00NTBlLWJiZGYtNzY0NTcxZmJhY2U3LzAvQTlCRkEzNDhB MDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYxMjQ3RkM2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOUJGQTM0OEEwNTBFNDY0ODJGNEUwMEM2MDVGRjk5NjEyNDdG QzY0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzAzMjJlMzEzNjM5MmUzMjMyMzQyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyqngMA0GCSqG SIb3DQEBCwUAA4IBAQAmNWSFuzBWl7N66SRFoO0SvNbnzf6BDbHK/avC6Ja5PCxW hesAZlbWehxcBVsEa62Xs+wEXjUS07LswsCrw3nSXt9QJ2jutiDMl6hHJf/MOkBf sYuJlibD3JkcEwTcLj36lPDGOazo3hqJNi7UoSeWL3kLA/OC20Yl08J2BdwEstNG ormxiClItgrZePm713iOrI9aCGrO4Q7Lnz09I8dnz2dIvsCti17Cl+f/CpO8bM/t 0TrcMi1QRvvMiavTCjs8A6FHD59PQoNlKR9mb9naVi1yk9z/nAharIS3PPaHbSyq BLdEcDgNdWidyMhraqZ/4O2FSFMdo59hm1UmPXQ8 -----END CERTIFICATE-----Generated at Wed May 13 03:59:54 2026 by rpki-client