$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: iz+F/oJwGdmLeKtK5UPOiVSZmPF8RcJtQ7wdQgfa9XM= Subject key identifier: 6D:83:6B:76:77:CE:59:91:90:E6:B2:08:DB:78:4E:FB:AF:ED:1F:9A Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 6CC4A8B972F63BA263CF340980A26556DC663D59 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:05 +0000 ROA not before: Sun 03 May 2026 03:12:05 +0000 ROA not after: Sun 02 May 2027 03:17:05 +0000 asID: 9794 IP address blocks: 202.148.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c4:a8:b9:72:f6:3b:a2:63:cf:34:09:80:a2:65:56:dc:66:3d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:05 2026 GMT Not After : May 2 03:17:05 2027 GMT Subject: CN=6D836B7677CE599190E6B208DB784EFBAFED1F9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:be:c7:2a:26:43:71:3e:21:fa:28:f4:49:f0: 18:7e:4a:33:d5:45:2a:d8:4b:ad:db:67:f3:f0:e0: b6:26:fd:dd:f5:cb:41:de:5d:da:6a:48:3b:78:ec: f1:22:7b:56:90:ff:21:cb:ad:92:ac:44:dc:35:14: a3:6b:97:14:5b:aa:7c:49:67:9f:fb:90:e6:32:79: 25:aa:d1:eb:a0:8a:24:14:b7:64:34:dc:2f:2e:ee: 93:c7:9b:a7:1d:01:24:b5:d1:42:3d:8a:c4:56:37: a0:af:c2:f9:5d:f0:25:a1:ce:51:2f:b5:44:fc:84: 00:22:ee:a1:6c:6d:8e:85:60:c6:5d:ad:46:12:7b: b4:3c:a7:1d:41:bd:cb:03:4c:20:fc:33:0d:c9:15: 09:e1:9b:b9:8a:95:dd:f5:d5:53:db:32:f3:07:c5: db:4d:6f:f0:37:ec:2a:66:73:d0:70:ad:6e:1a:8c: ca:19:b7:d1:8d:6a:e9:98:1e:dc:3c:3b:c3:c3:8e: 6c:fc:57:bf:45:41:84:6b:45:d3:85:e0:09:92:d9: d7:35:73:63:83:0a:ff:05:6c:b6:a8:88:56:f0:91: 1c:f3:59:de:70:c0:20:d9:74:ac:b1:25:45:03:88: 54:ac:64:fb:ae:f0:23:e5:90:b4:11:0a:e9:16:2e: 11:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:83:6B:76:77:CE:59:91:90:E6:B2:08:DB:78:4E:FB:AF:ED:1F:9A X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.22.0/24 Signature Algorithm: sha256WithRSAEncryption 44:cf:8d:42:12:9e:c9:48:6b:79:c3:07:43:98:47:3e:98:3f: 62:16:78:c7:11:2c:8d:53:69:b0:7b:54:16:1b:5a:b7:36:15: 1d:c0:ff:8a:a5:19:f4:61:c1:04:ad:8c:94:a3:35:d4:7a:fe: 2e:e5:21:f1:7b:37:b5:e3:f3:01:74:cf:de:02:8a:ed:68:44: 38:51:b3:37:eb:33:4d:16:4d:c0:a2:c0:33:f2:d9:73:e6:2e: d6:f0:1e:e2:a6:0c:02:80:7d:4a:fc:3f:ad:f9:78:f7:34:8c: 55:ba:56:2a:24:86:81:04:5f:76:2f:f0:bd:67:6c:60:85:60: e1:c1:00:67:ba:ad:70:d5:14:b2:83:3d:b3:68:c5:3e:f0:4e: 46:b6:b6:19:0b:8f:af:ce:fe:e8:94:b4:de:a9:89:e5:4a:a5: de:69:dc:6f:06:2f:70:ed:ae:53:07:3b:15:4a:89:af:cc:a8: ed:02:5a:dd:49:63:cc:2e:9e:10:f3:f9:33:cd:29:fa:48:93: f8:6e:68:36:27:f5:63:78:11:24:27:31:dc:f0:ba:fd:1e:46: 71:3f:08:ad:fe:f0:cb:f4:0f:fc:5f:5a:aa:7d:0a:3d:90:27: 8a:f0:65:98:43:1f:bd:ad:21:38:ca:d1:c5:20:07:d9:98:73: ec:61:94:74 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbMSouXL2O6JjzzQJgKJlVtxmPVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDVaFw0yNzA1MDIwMzE3MDVaMDMxMTAvBgNV BAMTKDZEODM2Qjc2NzdDRTU5OTE5MEU2QjIwOERCNzg0RUZCQUZFRDFGOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZvscqJkNxPiH6KPRJ8Bh+SjPV RSrYS63bZ/Pw4LYm/d31y0HeXdpqSDt47PEie1aQ/yHLrZKsRNw1FKNrlxRbqnxJ Z5/7kOYyeSWq0eugiiQUt2Q03C8u7pPHm6cdASS10UI9isRWN6Cvwvld8CWhzlEv tUT8hAAi7qFsbY6FYMZdrUYSe7Q8px1BvcsDTCD8Mw3JFQnhm7mKld311VPbMvMH xdtNb/A37Cpmc9BwrW4ajMoZt9GNaumYHtw8O8PDjmz8V79FQYRrRdOF4AmS2dc1 c2ODCv8FbLaoiFbwkRzzWd5wwCDZdKyxJUUDiFSsZPuu8CPlkLQRCukWLhHRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbYNrdnfOWZGQ5rII23hO+6/tH5owHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBYwDQYJKoZIhvcN AQELBQADggEBAETPjUISnslIa3nDB0OYRz6YP2IWeMcRLI1TabB7VBYbWrc2FR3A /4qlGfRhwQStjJSjNdR6/i7lIfF7N7Xj8wF0z94Ciu1oRDhRszfrM00WTcCiwDPy 2XPmLtbwHuKmDAKAfUr8P635ePc0jFW6ViokhoEEX3Yv8L1nbGCFYOHBAGe6rXDV FLKDPbNoxT7wTka2thkLj6/O/uiUtN6pieVKpd5p3G8GL3DtrlMHOxVKia/MqO0C Wt1JY8wunhDz+TPNKfpIk/huaDYn9WN4ESQnMdzwuv0eRnE/CK3+8Mv0D/xfWqp9 Cj2QJ4rwZZhDH72tITjK0cUgB9mYc+xhlHQ= -----END CERTIFICATE-----Generated at Wed May 13 04:19:22 2026 by rpki-client