$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: JbMCmfPPv1jeOf06miq9hZ8urzr+xYgZdMiX1OGgffw= Subject key identifier: DA:DD:36:3A:22:2E:F6:47:D1:02:1A:F3:26:8D:26:E3:87:47:FF:59 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 4712F6A49667CC567C07DEC2D7C23BA9721F34CC Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:14 +0000 ROA not before: Sun 03 May 2026 03:12:14 +0000 ROA not after: Sun 02 May 2027 03:17:14 +0000 asID: 38778 IP address blocks: 202.148.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:12:f6:a4:96:67:cc:56:7c:07:de:c2:d7:c2:3b:a9:72:1f:34:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:14 2026 GMT Not After : May 2 03:17:14 2027 GMT Subject: CN=DADD363A222EF647D1021AF3268D26E38747FF59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6a:d1:52:51:00:c6:c7:17:2d:74:3a:7e:85: 54:4c:7d:9a:2e:01:78:df:7a:68:b0:24:8b:42:ed: 1d:10:d0:b3:aa:43:70:ba:76:c2:28:44:82:d5:0d: 0d:08:c0:43:60:67:df:f4:e9:84:f3:96:07:25:9f: 1b:e6:34:1d:32:08:9d:0a:30:0b:61:ed:d9:b5:5a: 00:2b:e0:c1:2d:48:51:d1:16:0c:13:b1:ea:41:93: d8:fb:74:17:2d:1b:92:72:64:df:94:9c:4b:be:6c: 63:58:09:03:a6:51:29:11:6b:4c:a8:f4:48:a9:20: 47:16:53:d7:b7:31:32:ad:28:7b:62:81:73:ab:06: ba:37:52:6a:55:ae:19:95:c9:98:34:19:15:6d:87: 3f:30:b9:79:7b:fe:7b:02:70:3d:c0:d9:e4:57:71: 91:1d:84:1f:fe:ec:8e:cc:eb:98:d5:bf:19:ad:d2: a5:49:73:72:40:70:b6:02:58:f4:6e:bc:08:84:6c: 3b:5d:0b:61:d0:b9:78:91:33:6a:22:c7:fc:4d:48: ab:7e:70:d5:5c:3b:ae:0e:21:53:35:ce:58:55:d1: 8a:12:c9:3f:e3:49:3e:0c:9e:f1:16:6e:15:d8:d6: 09:d8:24:05:9e:0f:2c:00:cd:e2:3f:f1:c2:6f:59: 07:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DD:36:3A:22:2E:F6:47:D1:02:1A:F3:26:8D:26:E3:87:47:FF:59 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.10.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:4e:a1:4f:19:b4:67:75:6c:60:99:63:55:92:f8:ee:d4:2a: 1e:ef:39:d3:0a:02:8a:94:e7:b9:d5:52:d8:f0:d2:c2:a5:ec: 6e:f8:7a:ad:86:ff:db:67:46:ec:ba:33:02:94:3d:63:de:fc: f8:5f:ab:c6:60:77:e0:e1:36:c2:21:2a:75:11:da:54:19:03: 7e:ff:21:09:80:15:f5:a0:6e:e7:92:59:11:58:3c:56:b9:59: d7:a1:24:7f:c1:3e:b9:bd:b5:59:99:70:d6:24:32:ea:26:7f: 4a:2f:dc:25:a8:ea:aa:67:80:9b:d1:93:2c:3e:5d:4c:2d:ca: b0:91:c2:da:43:7e:71:81:f4:b9:09:81:0e:86:49:27:82:71: ea:74:a5:08:ac:69:49:2e:32:8e:4e:8a:97:7c:eb:06:3d:33: 84:4a:82:1b:85:76:3b:2f:a9:3d:0d:59:1b:db:17:02:08:70: bd:90:78:ab:10:e6:02:f9:67:76:20:83:3f:7a:05:e7:07:13: cf:d3:fc:f0:de:bc:62:ef:83:9a:85:e7:9f:be:84:65:e4:4f: b4:06:f0:93:16:2a:c3:03:bd:76:13:f0:db:2b:fe:89:df:bc: 13:c3:46:b0:20:c0:db:31:85:7c:77:45:10:1d:dc:5b:47:a9: 73:93:d1:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURxL2pJZnzFZ8B97C18I7qXIfNMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTRaFw0yNzA1MDIwMzE3MTRaMDMxMTAvBgNV BAMTKERBREQzNjNBMjIyRUY2NDdEMTAyMUFGMzI2OEQyNkUzODc0N0ZGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLatFSUQDGxxctdDp+hVRMfZou AXjfemiwJItC7R0Q0LOqQ3C6dsIoRILVDQ0IwENgZ9/06YTzlgclnxvmNB0yCJ0K MAth7dm1WgAr4MEtSFHRFgwTsepBk9j7dBctG5JyZN+UnEu+bGNYCQOmUSkRa0yo 9EipIEcWU9e3MTKtKHtigXOrBro3UmpVrhmVyZg0GRVthz8wuXl7/nsCcD3A2eRX cZEdhB/+7I7M65jVvxmt0qVJc3JAcLYCWPRuvAiEbDtdC2HQuXiRM2oix/xNSKt+ cNVcO64OIVM1zlhV0YoSyT/jST4MnvEWbhXY1gnYJAWeDywAzeI/8cJvWQdJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2t02OiIu9kfRAhrzJo0m44dH/1kwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUCjANBgkqhkiG 9w0BAQsFAAOCAQEATk6hTxm0Z3VsYJljVZL47tQqHu850woCipTnudVS2PDSwqXs bvh6rYb/22dG7LozApQ9Y978+F+rxmB34OE2wiEqdRHaVBkDfv8hCYAV9aBu55JZ EVg8VrlZ16Ekf8E+ub21WZlw1iQy6iZ/Si/cJajqqmeAm9GTLD5dTC3KsJHC2kN+ cYH0uQmBDoZJJ4Jx6nSlCKxpSS4yjk6Kl3zrBj0zhEqCG4V2Oy+pPQ1ZG9sXAghw vZB4qxDmAvlndiCDP3oF5wcTz9P88N68Yu+DmoXnn76EZeRPtAbwkxYqwwO9dhPw 2yv+id+8E8NGsCDA2zGFfHdFEB3cW0epc5PR+g== -----END CERTIFICATE-----Generated at Wed May 13 03:52:11 2026 by rpki-client