$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: mswQJEoE6hpBPSwTjgYdojhPSxM4iipV0p8qy62Z/LY= Subject key identifier: 51:DF:4F:95:61:7E:39:4D:92:66:F3:CA:42:F2:89:8D:37:BA:47:97 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 41A37328CAABEA313C3D18A1DE21A39D5E4A0125 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:08 +0000 ROA not before: Sun 03 May 2026 03:12:08 +0000 ROA not after: Sun 02 May 2027 03:17:08 +0000 asID: 38778 IP address blocks: 202.148.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a3:73:28:ca:ab:ea:31:3c:3d:18:a1:de:21:a3:9d:5e:4a:01:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:08 2026 GMT Not After : May 2 03:17:08 2027 GMT Subject: CN=51DF4F95617E394D9266F3CA42F2898D37BA4797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9f:6e:d1:76:1e:f5:63:d8:be:52:a2:ac:9e: 9f:fe:88:91:f4:d5:2d:11:66:93:39:5a:8d:f5:f9: 1c:1b:1f:a7:af:8d:26:0b:dd:ac:5f:46:db:da:8c: dd:e5:38:56:74:26:49:50:bc:45:b4:d7:d1:11:31: 1f:25:08:ef:e3:28:6d:28:81:77:39:9f:6a:a4:da: 73:21:e5:b4:ee:dd:81:30:41:50:98:a9:81:5d:37: 49:ad:1e:32:b9:44:53:b3:bf:e7:06:78:5d:7e:25: 84:b7:82:7e:15:47:e4:92:2f:22:2b:5f:30:9c:51: 4e:be:32:e4:db:ce:3e:75:83:9b:ef:7b:2a:23:b5: fc:95:00:97:f5:d4:c0:43:49:eb:f9:3f:0b:ff:f0: e2:82:ea:2f:ad:08:33:2c:ed:a6:f6:16:43:ee:ff: 5f:99:98:af:ce:c7:63:7d:2b:6c:8f:8d:70:e8:d8: 88:34:88:a5:b0:50:60:3a:16:fa:98:a8:0f:14:01: ea:44:65:1a:d4:e0:a7:3b:7c:8f:8a:2e:2e:4d:7d: 20:49:e2:6f:f1:94:41:50:0c:de:8e:4b:3b:8f:97: 32:48:05:82:cb:6c:ea:0b:c2:90:17:a2:fa:fa:81: 01:91:8d:fe:10:42:6d:f3:93:3d:8f:8b:cd:90:f9: 21:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DF:4F:95:61:7E:39:4D:92:66:F3:CA:42:F2:89:8D:37:BA:47:97 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/24 Signature Algorithm: sha256WithRSAEncryption ad:9f:9d:28:7d:42:f3:2a:2d:ea:5b:04:3a:24:09:bb:f6:36: 4f:50:d4:fe:f4:92:2c:5c:f5:45:9b:cf:ea:1b:6b:e6:32:a4: 02:b9:93:18:db:25:f5:2c:82:1d:e1:1c:03:ce:2a:cf:1b:4d: 05:a7:19:6d:bf:53:8b:af:75:ab:1c:e9:93:d2:14:30:a1:05: 25:4d:45:04:c2:fe:43:99:d7:b4:70:c6:e0:98:50:40:28:58: fd:96:21:b7:30:21:9e:84:65:d4:46:36:21:d3:d2:37:01:9b: 65:19:14:8c:6b:0c:d0:1e:31:df:39:e6:dd:06:2a:ed:7f:42: 5f:33:45:5f:e6:a9:65:53:27:ac:63:6a:95:f7:7d:1c:c9:98: f9:40:d9:59:d1:e2:85:c9:cc:35:00:42:2c:7e:56:0b:61:dc: fe:16:c2:86:cd:72:52:ee:de:69:5c:00:c4:e4:a4:1e:2d:49: cb:d1:53:72:a0:8a:f5:77:c0:cc:70:b9:db:18:a8:9a:cf:52: 74:25:78:7f:5b:7b:cb:b5:a5:72:ce:bc:dc:08:fd:8f:15:5e: 7f:dc:71:6e:ff:c8:bf:3a:d5:1b:26:b1:6b:29:8b:a5:1b:6a: ed:ea:0c:0e:93:c9:68:79:40:1c:f8:a7:f4:36:55:23:d8:9d: e9:09:56:c1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQaNzKMqr6jE8PRih3iGjnV5KASUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDhaFw0yNzA1MDIwMzE3MDhaMDMxMTAvBgNV BAMTKDUxREY0Rjk1NjE3RTM5NEQ5MjY2RjNDQTQyRjI4OThEMzdCQTQ3OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfn27Rdh71Y9i+UqKsnp/+iJH0 1S0RZpM5Wo31+RwbH6evjSYL3axfRtvajN3lOFZ0JklQvEW019ERMR8lCO/jKG0o gXc5n2qk2nMh5bTu3YEwQVCYqYFdN0mtHjK5RFOzv+cGeF1+JYS3gn4VR+SSLyIr XzCcUU6+MuTbzj51g5vveyojtfyVAJf11MBDSev5Pwv/8OKC6i+tCDMs7ab2FkPu /1+ZmK/Ox2N9K2yPjXDo2Ig0iKWwUGA6FvqYqA8UAepEZRrU4Kc7fI+KLi5NfSBJ 4m/xlEFQDN6OSzuPlzJIBYLLbOoLwpAXovr6gQGRjf4QQm3zkz2Pi82Q+SGNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUd9PlWF+OU2SZvPKQvKJjTe6R5cwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHjANBgkqhkiG 9w0BAQsFAAOCAQEArZ+dKH1C8yot6lsEOiQJu/Y2T1DU/vSSLFz1RZvP6htr5jKk ArmTGNsl9SyCHeEcA84qzxtNBacZbb9Ti691qxzpk9IUMKEFJU1FBML+Q5nXtHDG 4JhQQChY/ZYhtzAhnoRl1EY2IdPSNwGbZRkUjGsM0B4x3znm3QYq7X9CXzNFX+ap ZVMnrGNqlfd9HMmY+UDZWdHihcnMNQBCLH5WC2Hc/hbChs1yUu7eaVwAxOSkHi1J y9FTcqCK9XfAzHC52xioms9SdCV4f1t7y7Wlcs683Aj9jxVef9xxbv/IvzrVGyax aymLpRtq7eoMDpPJaHlAHPin9DZVI9id6QlWwQ== -----END CERTIFICATE-----Generated at Wed May 13 03:47:53 2026 by rpki-client