$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Ybw7UxAZjD/PtCVrF38eypBTptagJ2nSdZ1aedB7OF4= Subject key identifier: 21:D3:8F:10:64:A0:72:1C:3A:7E:BA:98:B0:61:1B:82:05:82:3D:D4 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 51C6EEF9BC5D143F8FA9839A77A4E1A39ACB1D2E Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:20 +0000 ROA not before: Sun 03 May 2026 03:12:20 +0000 ROA not after: Sun 02 May 2027 03:17:20 +0000 asID: 38778 IP address blocks: 202.148.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:c6:ee:f9:bc:5d:14:3f:8f:a9:83:9a:77:a4:e1:a3:9a:cb:1d:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:20 2026 GMT Not After : May 2 03:17:20 2027 GMT Subject: CN=21D38F1064A0721C3A7EBA98B0611B8205823DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:f9:6a:98:c7:1e:41:06:49:6b:30:35:00: 1e:14:16:cd:20:f0:07:ba:65:3c:81:fb:1f:6d:17: d6:81:81:f7:e6:e4:2f:59:72:03:8d:e2:94:80:95: 79:b3:d2:08:7b:d2:dd:44:29:52:cc:e9:47:e3:cf: a2:24:c2:c9:9a:92:dd:73:95:19:63:4f:74:bb:7c: 1f:00:a3:ca:4a:6d:e6:99:ef:ee:23:a0:b8:2b:7a: 53:d2:6c:95:03:8b:59:15:02:a3:21:b0:85:30:0f: 5c:e0:f0:cb:f1:f9:ec:38:19:8d:94:c9:c9:71:0c: 30:88:e1:7a:b7:1c:5a:7e:44:7e:c9:dd:7c:f2:b7: 21:c5:a7:eb:5e:5a:c7:c9:0c:a7:79:2e:65:ee:6a: d2:3a:8f:c4:24:30:b2:fd:d5:83:38:ca:6e:87:20: 3f:44:38:b3:d9:45:66:e3:45:17:9b:f5:8d:f4:76: 39:6c:ce:e4:9a:0b:c8:19:6d:d6:24:71:b7:88:80: 6a:db:ca:d6:19:33:22:59:b0:cc:f3:fb:f9:50:e9: 47:b6:f1:39:aa:94:e4:23:b2:3c:0c:19:45:f9:ec: 2d:a4:1e:17:25:7a:e6:5f:5f:cf:66:83:a5:e0:f1: 6e:b5:03:17:f0:73:f4:62:b1:72:9e:37:f5:42:6c: b5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D3:8F:10:64:A0:72:1C:3A:7E:BA:98:B0:61:1B:82:05:82:3D:D4 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.25.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:af:9a:f7:16:d7:53:10:c5:e9:96:0d:a6:67:f2:11:6f:e3: 27:f1:51:41:05:69:dd:0b:15:13:31:00:2d:cf:8f:22:6d:fb: 1a:6c:2f:6d:22:7c:ff:48:bc:d3:6b:ca:af:94:d5:4b:0f:c3: e6:d4:34:5d:cd:3f:d5:25:d5:cb:26:4e:5e:67:0e:5d:89:79: 0e:34:87:7f:13:37:8f:f6:17:7e:cf:d1:75:5d:35:a6:3a:ec: 43:df:55:8b:b6:5d:77:af:76:ac:58:57:00:f7:ed:30:45:85: b8:1b:9c:38:d9:1e:7c:b7:14:3e:1a:a7:5e:7d:06:42:84:f8: ef:45:c0:43:79:2b:d8:da:66:e7:20:32:97:5b:f8:d9:c7:3d: 7b:ab:3b:d6:fe:0b:fd:0d:dd:52:41:ed:a2:1d:df:d6:10:f3: 37:af:c1:60:99:50:50:68:c7:2c:b5:75:0b:65:40:48:43:b5: d2:66:b4:80:69:62:4f:4c:fe:cb:a9:da:b1:c8:b2:1c:a7:24: a4:bb:74:99:b2:2d:b1:4d:73:53:7c:bf:1d:8a:f4:ab:e1:fb: 7f:3d:b3:ea:89:68:ec:f1:70:e5:64:0f:d3:aa:89:0b:cd:a2: 57:20:33:6a:0d:66:37:db:1a:ad:1d:a7:ac:a2:92:e0:22:87: 95:53:d3:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUcbu+bxdFD+PqYOad6Tho5rLHS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMjBaFw0yNzA1MDIwMzE3MjBaMDMxMTAvBgNV BAMTKDIxRDM4RjEwNjRBMDcyMUMzQTdFQkE5OEIwNjExQjgyMDU4MjNERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5QPlqmMceQQZJazA1AB4UFs0g 8Ae6ZTyB+x9tF9aBgffm5C9ZcgON4pSAlXmz0gh70t1EKVLM6Ufjz6Ikwsmakt1z lRljT3S7fB8Ao8pKbeaZ7+4joLgrelPSbJUDi1kVAqMhsIUwD1zg8Mvx+ew4GY2U yclxDDCI4Xq3HFp+RH7J3XzytyHFp+teWsfJDKd5LmXuatI6j8QkMLL91YM4ym6H ID9EOLPZRWbjRReb9Y30djlszuSaC8gZbdYkcbeIgGrbytYZMyJZsMzz+/lQ6Ue2 8TmqlOQjsjwMGUX57C2kHhcleuZfX89mg6Xg8W61Axfwc/RisXKeN/VCbLXpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIdOPEGSgchw6frqYsGEbggWCPdQwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGTANBgkqhkiG 9w0BAQsFAAOCAQEAT6+a9xbXUxDF6ZYNpmfyEW/jJ/FRQQVp3QsVEzEALc+PIm37 GmwvbSJ8/0i802vKr5TVSw/D5tQ0Xc0/1SXVyyZOXmcOXYl5DjSHfxM3j/YXfs/R dV01pjrsQ99Vi7Zdd692rFhXAPftMEWFuBucONkefLcUPhqnXn0GQoT470XAQ3kr 2Npm5yAyl1v42cc9e6s71v4L/Q3dUkHtoh3f1hDzN6/BYJlQUGjHLLV1C2VASEO1 0ma0gGliT0z+y6nasciyHKckpLt0mbItsU1zU3y/HYr0q+H7fz2z6olo7PFw5WQP 06qJC82iVyAzag1mN9sarR2nrKKS4CKHlVPTdg== -----END CERTIFICATE-----Generated at Wed May 13 04:53:49 2026 by rpki-client