$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32302e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: wpl9lHoMhl3hCepReFRV365behhrjffvIKHdeCo6z8o= Subject key identifier: 2C:2F:0B:C7:30:2A:2A:DB:92:7F:55:08:98:BD:C9:A3:15:EC:F1:FD Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 6E6E2B7CE71554B9790F549829F6F4A0E1DAB85E Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:02 +0000 ROA not before: Sun 03 May 2026 03:12:02 +0000 ROA not after: Sun 02 May 2027 03:17:02 +0000 asID: 9794 IP address blocks: 202.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6e:2b:7c:e7:15:54:b9:79:0f:54:98:29:f6:f4:a0:e1:da:b8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:02 2026 GMT Not After : May 2 03:17:02 2027 GMT Subject: CN=2C2F0BC7302A2ADB927F550898BDC9A315ECF1FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:95:35:76:6c:10:a6:99:0d:30:f6:f5:3f:82: b7:c1:f3:cf:1c:b5:5e:4a:c2:e2:09:e7:8a:c9:70: 25:35:f7:d2:d4:71:61:46:06:d7:3c:b2:59:f0:24: 51:12:72:df:d9:b3:e9:fe:4b:96:be:71:c5:af:a6: 03:c3:60:b6:c3:f6:6b:7a:98:20:be:ea:3a:dc:e8: f7:88:84:fc:58:f5:b6:8d:af:c4:0c:40:da:21:3c: b2:95:1a:c0:dd:be:90:e5:ad:4b:a3:d6:73:46:ab: 00:5d:ad:00:b5:3c:c0:d2:99:8c:36:59:16:73:1f: 5c:72:97:1b:0c:bd:74:73:db:43:0d:fc:fe:2f:39: 57:c4:b9:24:66:84:36:ce:1e:56:ab:d4:37:9a:b8: 18:fc:73:39:dc:8d:27:47:e3:66:0c:51:41:1c:08: c1:26:34:d6:d5:7a:8f:95:dc:04:b0:ac:f4:8e:bb: 6f:6e:c0:5e:68:ee:b6:55:f3:a3:47:36:3a:f5:a1: 41:85:3a:0c:33:b5:25:4e:6b:aa:a2:b7:c1:50:34: 22:42:93:26:61:e6:1f:1a:3b:93:2c:fa:e8:9c:53: 5f:5f:45:5f:42:b9:b1:19:88:58:48:16:75:9c:8f: 12:51:79:78:ac:62:e7:4d:d8:f9:f4:65:ab:af:8c: e5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2F:0B:C7:30:2A:2A:DB:92:7F:55:08:98:BD:C9:A3:15:EC:F1:FD X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 73:6b:97:ae:78:37:a1:d0:b2:70:1a:0f:3b:28:68:ac:64:9a: 5d:7f:03:e1:20:1a:b5:f1:96:41:0e:e4:28:31:30:b2:45:f3: a2:13:38:e5:80:e7:35:8d:7e:1e:34:09:62:6d:f4:32:ef:aa: 30:a3:48:21:59:73:c0:76:b7:84:10:f2:0c:47:41:2a:47:f8: 03:24:3c:e2:b2:98:80:4f:b1:7e:cd:22:b4:57:4c:a6:ec:cc: c3:f4:f0:39:79:d2:84:ac:ab:5f:fb:06:e4:75:b5:97:38:88: 3f:77:3f:e6:2f:19:b2:be:da:93:1c:fd:61:10:f7:61:45:82: f2:a7:be:9e:3b:e8:43:95:39:aa:28:72:f4:e4:34:48:fa:11: ef:9b:f0:58:dc:67:8f:82:10:54:cc:53:40:3c:27:c3:28:de: a7:e3:1c:8b:87:07:08:1d:b0:3b:26:50:f0:c0:dd:e3:9d:82: 9d:54:b1:00:7d:d2:a2:97:5b:05:fc:66:3e:3f:e1:6e:b8:2f: 62:cb:be:90:c4:3f:7d:bf:56:13:d9:cc:22:80:80:15:4c:1d: ec:e9:5d:3f:4f:b9:ed:46:82:fb:30:12:0f:64:21:f6:b9:c5: 57:a9:c5:84:e5:ff:c7:50:1f:ee:40:3e:b0:05:09:1d:1d:dc: 74:52:59:b3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbm4rfOcVVLl5D1SYKfb0oOHauF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDJaFw0yNzA1MDIwMzE3MDJaMDMxMTAvBgNV BAMTKDJDMkYwQkM3MzAyQTJBREI5MjdGNTUwODk4QkRDOUEzMTVFQ0YxRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKlTV2bBCmmQ0w9vU/grfB888c tV5KwuIJ54rJcCU199LUcWFGBtc8slnwJFESct/Zs+n+S5a+ccWvpgPDYLbD9mt6 mCC+6jrc6PeIhPxY9baNr8QMQNohPLKVGsDdvpDlrUuj1nNGqwBdrQC1PMDSmYw2 WRZzH1xylxsMvXRz20MN/P4vOVfEuSRmhDbOHlar1DeauBj8czncjSdH42YMUUEc CMEmNNbVeo+V3ASwrPSOu29uwF5o7rZV86NHNjr1oUGFOgwztSVOa6qit8FQNCJC kyZh5h8aO5Ms+uicU19fRV9CubEZiFhIFnWcjxJReXisYudN2Pn0ZauvjOWRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULC8LxzAqKtuSf1UImL3JoxXs8f0wHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBQwDQYJKoZIhvcN AQELBQADggEBAHNrl654N6HQsnAaDzsoaKxkml1/A+EgGrXxlkEO5CgxMLJF86IT OOWA5zWNfh40CWJt9DLvqjCjSCFZc8B2t4QQ8gxHQSpH+AMkPOKymIBPsX7NIrRX TKbszMP08Dl50oSsq1/7BuR1tZc4iD93P+YvGbK+2pMc/WEQ92FFgvKnvp476EOV OaoocvTkNEj6Ee+b8FjcZ4+CEFTMU0A8J8Mo3qfjHIuHBwgdsDsmUPDA3eOdgp1U sQB90qKXWwX8Zj4/4W64L2LLvpDEP32/VhPZzCKAgBVMHezpXT9Pue1GgvswEg9k Ifa5xVepxYTl/8dQH+5APrAFCR0d3HRSWbM= -----END CERTIFICATE-----Generated at Wed May 13 02:59:34 2026 by rpki-client