$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 3bU4m7ln1z9la9v0k45chbaZvM1iCC6b7sGeMrjFsvg= Subject key identifier: 7A:31:BC:96:36:23:28:09:D4:D0:1C:EB:05:65:DF:00:08:E3:C7:C3 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 02DFD964D34918D58A2BF046AC2565203660A0F3 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:10 +0000 ROA not before: Sun 03 May 2026 03:12:10 +0000 ROA not after: Sun 02 May 2027 03:17:10 +0000 asID: 38778 IP address blocks: 202.148.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:df:d9:64:d3:49:18:d5:8a:2b:f0:46:ac:25:65:20:36:60:a0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:10 2026 GMT Not After : May 2 03:17:10 2027 GMT Subject: CN=7A31BC9636232809D4D01CEB0565DF0008E3C7C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:c2:af:b5:dd:ad:55:27:e4:78:68:63:e6: 28:49:6a:fd:23:8b:87:e6:b1:db:a3:fb:94:c1:55: da:77:16:93:4e:a0:8a:ba:43:c9:f5:51:c2:03:ff: f4:d4:41:51:47:83:c0:cf:7c:33:a9:17:9b:1f:e8: 32:c2:41:5c:be:1d:a7:c6:7e:47:02:db:74:06:77: 16:60:c7:d8:f9:85:85:15:1d:23:ab:47:a5:4d:b6: 13:fd:76:1f:f1:4c:ef:6e:86:6e:88:ef:be:07:5b: fa:b3:37:b0:85:a0:16:4b:99:55:2c:c0:3f:8c:af: fb:63:50:1e:86:2d:a0:a1:02:ea:09:b3:5d:5b:a5: 84:f2:38:15:92:bd:b7:6c:c7:f0:6f:09:ee:d7:40: a5:40:f1:b1:76:c4:01:5e:f5:f5:18:db:30:8c:bd: 3b:16:f9:1e:99:88:47:0f:6c:f3:48:c2:bd:f8:5b: a2:27:ac:23:5f:3c:e0:32:9e:37:39:25:8e:9a:fc: a3:4d:53:03:d3:0b:6d:98:0b:34:67:03:0b:92:cb: 0a:9e:21:46:e7:e3:5c:f8:dc:1d:5a:03:06:cc:0c: 38:24:5a:af:8f:cb:eb:0d:18:24:17:08:4a:bb:22: 49:bf:f3:d8:03:e9:31:e8:cc:4c:ea:15:70:ee:07: fa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:31:BC:96:36:23:28:09:D4:D0:1C:EB:05:65:DF:00:08:E3:C7:C3 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:96:f6:2a:d4:c6:93:52:09:91:41:3d:9d:6d:69:b8:1e:3a: 54:37:3e:72:84:e4:86:d6:65:b5:c7:ca:6b:3e:ab:71:4f:f4: ea:a2:08:20:54:88:29:76:02:ca:ad:9b:5b:fa:41:2b:b5:a6: 17:ae:da:41:5e:b2:f7:7d:9c:3d:b8:52:50:d5:8e:49:63:7c: cd:7b:35:be:b7:fa:f5:58:ac:9b:1b:f1:a3:cc:b3:96:a9:b2: 8c:20:70:76:5d:cf:52:da:0d:29:c8:b5:26:93:1d:45:f2:63: 8e:b5:12:57:62:ee:be:6c:9f:75:8e:8f:1d:ba:04:e6:47:a4: c0:2f:f2:af:e7:05:07:b4:03:d0:26:7c:2f:ed:77:c0:26:d5: 50:64:3c:55:bf:7f:e5:6f:d5:4e:c7:86:3b:f1:c9:89:05:15: 9f:3f:5c:2b:e6:36:02:74:97:2d:27:6b:b7:cf:eb:f2:aa:bb: a0:60:07:c5:0b:5b:15:60:7f:42:fa:a2:42:02:0f:15:f0:73: cc:93:cd:8c:3f:64:2d:84:8b:74:8d:ec:e3:59:90:97:d8:07: 60:3a:b0:b6:70:8b:34:f9:a9:6b:86:a3:02:00:06:4c:c6:18: 26:03:fa:f2:a7:6a:6d:af:29:a9:bb:4a:41:be:9b:23:85:82: 6d:4d:80:20 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAt/ZZNNJGNWKK/BGrCVlIDZgoPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTBaFw0yNzA1MDIwMzE3MTBaMDMxMTAvBgNV BAMTKDdBMzFCQzk2MzYyMzI4MDlENEQwMUNFQjA1NjVERjAwMDhFM0M3QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv3MKvtd2tVSfkeGhj5ihJav0j i4fmsduj+5TBVdp3FpNOoIq6Q8n1UcID//TUQVFHg8DPfDOpF5sf6DLCQVy+HafG fkcC23QGdxZgx9j5hYUVHSOrR6VNthP9dh/xTO9uhm6I774HW/qzN7CFoBZLmVUs wD+Mr/tjUB6GLaChAuoJs11bpYTyOBWSvbdsx/BvCe7XQKVA8bF2xAFe9fUY2zCM vTsW+R6ZiEcPbPNIwr34W6InrCNfPOAynjc5JY6a/KNNUwPTC22YCzRnAwuSywqe IUbn41z43B1aAwbMDDgkWq+Py+sNGCQXCEq7Ikm/89gD6THozEzqFXDuB/qZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUejG8ljYjKAnU0BzrBWXfAAjjx8MwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGDANBgkqhkiG 9w0BAQsFAAOCAQEAXJb2KtTGk1IJkUE9nW1puB46VDc+coTkhtZltcfKaz6rcU/0 6qIIIFSIKXYCyq2bW/pBK7WmF67aQV6y932cPbhSUNWOSWN8zXs1vrf69Vismxvx o8yzlqmyjCBwdl3PUtoNKci1JpMdRfJjjrUSV2LuvmyfdY6PHboE5kekwC/yr+cF B7QD0CZ8L+13wCbVUGQ8Vb9/5W/VTseGO/HJiQUVnz9cK+Y2AnSXLSdrt8/r8qq7 oGAHxQtbFWB/QvqiQgIPFfBzzJPNjD9kLYSLdI3s41mQl9gHYDqwtnCLNPmpa4aj AgAGTMYYJgP68qdqba8pqbtKQb6bI4WCbU2AIA== -----END CERTIFICATE-----Generated at Wed May 13 02:19:28 2026 by rpki-client