$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: duzHOKzQQObJpl00Qp3LLfTMYV7Yve61C2dPHbO11xw= Subject key identifier: 91:2E:8F:B9:60:D2:4B:55:DF:3B:94:7C:99:67:B0:42:1A:68:DA:E6 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 161AC77A6ABEB5A122EFE026420D20756F4BEFCC Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:22 +0000 ROA not before: Sun 03 May 2026 03:12:22 +0000 ROA not after: Sun 02 May 2027 03:17:22 +0000 asID: 9794 IP address blocks: 202.148.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:1a:c7:7a:6a:be:b5:a1:22:ef:e0:26:42:0d:20:75:6f:4b:ef:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:22 2026 GMT Not After : May 2 03:17:22 2027 GMT Subject: CN=912E8FB960D24B55DF3B947C9967B0421A68DAE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:92:2a:04:66:50:e4:78:f2:c8:8c:82:b0: 5b:d4:42:58:30:fe:14:aa:30:0c:2e:9b:29:8e:f2: 51:0f:12:61:19:be:ad:f5:c3:b7:57:80:32:65:56: 84:21:4a:f4:81:65:8e:34:42:a2:1b:40:be:b5:26: 4d:c3:a5:55:5d:b3:67:5c:9d:8a:8d:d9:86:a2:7e: 02:dc:75:25:e4:54:ea:50:6e:6e:e6:56:01:03:02: 03:f3:a7:37:12:f3:34:cd:6d:55:ba:2e:65:f8:61: 1b:d3:73:b4:62:d2:6d:40:11:96:78:4e:9b:48:13: 25:05:07:ac:bc:c6:ab:84:19:8b:70:1a:1f:be:6f: bd:e4:85:ad:29:53:2e:48:39:76:61:92:fe:69:88: e5:26:e6:61:09:d0:5d:e4:ea:da:b7:9f:25:b1:02: 1f:31:bb:a3:8b:5e:0c:41:66:f5:3b:dc:ed:1d:3c: a1:af:26:d6:ae:68:f2:1b:52:47:9e:6c:c5:2b:9d: fa:4e:62:77:e5:49:4f:ee:47:49:c4:4f:cc:d8:39: e4:35:43:cf:6c:15:06:07:3e:0b:c1:08:6d:9c:99: 9d:ce:3c:3b:d5:51:ea:a8:2d:0e:48:28:3b:4f:ff: fd:5f:f4:b6:04:43:d6:f8:39:ac:52:df:65:4b:4d: d0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2E:8F:B9:60:D2:4B:55:DF:3B:94:7C:99:67:B0:42:1A:68:DA:E6 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.29.0/24 Signature Algorithm: sha256WithRSAEncryption 44:ba:a5:95:5b:e1:18:49:95:87:c7:83:81:bb:bd:b1:b5:42: 44:8b:a7:e8:0a:ba:b9:c7:74:89:bc:5d:9e:16:40:66:72:a1: 5e:16:9f:ee:fe:2f:f9:48:c3:c6:a3:e5:de:01:01:24:12:53: 08:f7:44:ff:fd:0c:7e:be:11:a7:f5:dc:c2:41:1c:42:ad:ba: 01:08:33:6b:1f:99:35:ad:53:44:a4:0a:6d:be:45:f1:21:d1: 5e:83:b6:40:83:be:70:12:b4:d6:f6:c4:80:46:8b:50:92:e4: a8:5f:df:c4:58:a8:53:fb:60:2b:1b:20:c2:93:b1:d0:57:23: d8:2e:44:bc:a2:9c:25:c6:da:3d:f3:67:d4:e4:69:7c:57:56: f1:f5:dd:4b:0f:a3:54:ba:82:bd:5a:c9:26:ef:54:a8:ce:65: 58:35:f1:53:1d:d5:d4:83:93:8c:01:3c:d5:b4:6b:d4:65:d8: 4e:76:7d:41:92:0b:98:ad:1b:32:c1:9b:4f:31:1f:ae:b2:4c: 78:a6:39:f0:cb:ae:da:d3:86:0a:99:e2:47:61:6d:59:c5:70: a4:6c:d5:ec:bb:1e:07:2d:87:3b:de:b4:d5:7e:20:1c:91:5a: 07:01:92:5e:21:fd:5e:cb:71:50:df:46:50:93:52:8f:fa:69: cc:4c:65:03 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFhrHemq+taEi7+AmQg0gdW9L78wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMjJaFw0yNzA1MDIwMzE3MjJaMDMxMTAvBgNV BAMTKDkxMkU4RkI5NjBEMjRCNTVERjNCOTQ3Qzk5NjdCMDQyMUE2OERBRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jZIqBGZQ5HjyyIyCsFvUQlgw /hSqMAwumymO8lEPEmEZvq31w7dXgDJlVoQhSvSBZY40QqIbQL61Jk3DpVVds2dc nYqN2YaifgLcdSXkVOpQbm7mVgEDAgPzpzcS8zTNbVW6LmX4YRvTc7Ri0m1AEZZ4 TptIEyUFB6y8xquEGYtwGh++b73kha0pUy5IOXZhkv5piOUm5mEJ0F3k6tq3nyWx Ah8xu6OLXgxBZvU73O0dPKGvJtauaPIbUkeebMUrnfpOYnflSU/uR0nET8zYOeQ1 Q89sFQYHPgvBCG2cmZ3OPDvVUeqoLQ5IKDtP//1f9LYEQ9b4OaxS32VLTdA9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkS6PuWDSS1XfO5R8mWewQhpo2uYwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlB0wDQYJKoZIhvcN AQELBQADggEBAES6pZVb4RhJlYfHg4G7vbG1QkSLp+gKurnHdIm8XZ4WQGZyoV4W n+7+L/lIw8aj5d4BASQSUwj3RP/9DH6+Eaf13MJBHEKtugEIM2sfmTWtU0SkCm2+ RfEh0V6DtkCDvnAStNb2xIBGi1CS5Khf38RYqFP7YCsbIMKTsdBXI9guRLyinCXG 2j3zZ9TkaXxXVvH13UsPo1S6gr1aySbvVKjOZVg18VMd1dSDk4wBPNW0a9Rl2E52 fUGSC5itGzLBm08xH66yTHimOfDLrtrThgqZ4kdhbVnFcKRs1ey7HgcthzvetNV+ IByRWgcBkl4h/V7LcVDfRlCTUo/6acxMZQM= -----END CERTIFICATE-----Generated at Wed May 13 03:51:48 2026 by rpki-client