$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 1bEAigTCXYQNQOTTIEKmMW1YbFY+f+/gdziVfhYkdGc= Subject key identifier: DF:5B:AC:C8:0D:FA:A0:AD:6D:F2:5E:44:72:E9:6E:99:EC:49:7B:32 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 65C4AFDFE03BE01F5AB960A365DF7181CA476214 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:19 +0000 ROA not before: Sun 03 May 2026 03:12:19 +0000 ROA not after: Sun 02 May 2027 03:17:19 +0000 asID: 38778 IP address blocks: 202.148.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c4:af:df:e0:3b:e0:1f:5a:b9:60:a3:65:df:71:81:ca:47:62:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:19 2026 GMT Not After : May 2 03:17:19 2027 GMT Subject: CN=DF5BACC80DFAA0AD6DF25E4472E96E99EC497B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:aa:b5:db:0e:bf:35:c4:0c:37:df:70:46: f8:e9:18:2d:40:b6:0a:6e:6b:e8:58:61:29:81:64: 27:ac:d0:0a:71:5a:7e:c5:73:7a:72:2c:6c:a3:b1: 99:44:da:b1:70:f2:9f:88:97:ac:cb:37:e4:04:fa: 7a:06:6b:eb:89:fc:75:cb:e6:a1:45:ad:42:f4:11: c4:7d:e5:ef:fc:d7:ed:18:df:4d:f1:75:94:2e:27: 33:0e:53:9b:7a:51:bb:ea:f7:46:98:36:34:dd:25: 68:24:78:69:06:4d:cd:be:8d:3c:2f:e6:3d:8d:05: 48:8f:c6:73:67:3b:84:a7:cb:12:83:bd:f0:88:0f: 47:60:b6:62:fc:40:ae:5a:2f:b9:7a:1b:bf:c7:7d: fd:95:cc:0f:3e:cb:7f:90:be:d7:68:1a:5c:16:9d: 71:08:47:ad:ca:28:f6:c7:10:3a:dd:fb:b5:f4:e6: 3c:ea:61:35:f0:5f:00:68:5e:3a:24:dd:3d:ad:ff: e6:5f:34:f9:86:f3:0b:ea:07:02:7f:b9:99:8b:e1: 50:fa:dd:54:c5:c1:d2:1d:1c:ae:e6:49:77:6b:d6: 00:11:3f:07:72:ef:a4:2d:c6:a1:a7:a7:5e:03:03: 17:bc:9e:53:b6:54:65:aa:6d:1e:6b:48:de:de:4c: 67:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5B:AC:C8:0D:FA:A0:AD:6D:F2:5E:44:72:E9:6E:99:EC:49:7B:32 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.31.0/24 Signature Algorithm: sha256WithRSAEncryption 30:c9:9e:e4:ec:96:78:8b:da:c0:ed:d3:0c:f6:f6:12:ab:05: cb:8b:aa:33:f3:e2:14:69:18:1d:29:9c:f9:26:a8:75:aa:80: 84:a8:53:8a:8d:54:fb:b6:2f:30:d6:a8:5f:d9:07:cd:f3:3e: 8b:ab:a3:d4:6d:bd:cd:c2:d9:e6:23:ba:73:63:67:0d:b1:8e: 09:91:24:ee:14:44:a2:44:0a:61:29:31:e9:e8:b9:12:56:e8: 7e:1b:e4:a8:3f:a5:9d:37:0d:52:42:ed:36:f4:2b:bc:e1:a4: 8e:7c:9d:e0:67:31:00:f2:a6:64:25:7b:2b:1d:8b:7f:07:f6: 76:22:48:e3:93:65:f3:e9:58:f3:ad:2f:e2:35:dd:ec:59:89: 42:35:8b:7d:e5:9a:4c:6c:bb:b7:8d:7f:57:b8:39:13:36:e5: b1:21:d6:e0:4d:da:43:a8:17:82:64:41:a6:0f:f3:4d:6f:55: 5f:a4:34:11:ca:08:a6:c2:36:58:a1:9b:0a:99:be:b9:9e:4f: 80:80:67:16:b3:fe:89:00:9f:c0:31:d0:06:31:b0:02:59:33: 1f:6c:b7:31:6c:f8:c5:f9:7e:28:5c:09:0a:b9:a3:56:3b:65: 80:df:83:2d:45:c3:e6:0a:ef:56:b3:92:1e:0b:8b:df:4f:25: f3:a7:7b:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZcSv3+A74B9auWCjZd9xgcpHYhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTlaFw0yNzA1MDIwMzE3MTlaMDMxMTAvBgNV BAMTKERGNUJBQ0M4MERGQUEwQUQ2REYyNUU0NDcyRTk2RTk5RUM0OTdCMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfn6q12w6/NcQMN99wRvjpGC1A tgpua+hYYSmBZCes0ApxWn7Fc3pyLGyjsZlE2rFw8p+Il6zLN+QE+noGa+uJ/HXL 5qFFrUL0EcR95e/81+0Y303xdZQuJzMOU5t6Ubvq90aYNjTdJWgkeGkGTc2+jTwv 5j2NBUiPxnNnO4SnyxKDvfCID0dgtmL8QK5aL7l6G7/Hff2VzA8+y3+QvtdoGlwW nXEIR63KKPbHEDrd+7X05jzqYTXwXwBoXjok3T2t/+ZfNPmG8wvqBwJ/uZmL4VD6 3VTFwdIdHK7mSXdr1gARPwdy76QtxqGnp14DAxe8nlO2VGWqbR5rSN7eTGebAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU31usyA36oK1t8l5EculumexJezIwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHzANBgkqhkiG 9w0BAQsFAAOCAQEAMMme5OyWeIvawO3TDPb2EqsFy4uqM/PiFGkYHSmc+SaodaqA hKhTio1U+7YvMNaoX9kHzfM+i6uj1G29zcLZ5iO6c2NnDbGOCZEk7hREokQKYSkx 6ei5ElbofhvkqD+lnTcNUkLtNvQrvOGkjnyd4GcxAPKmZCV7Kx2Lfwf2diJI45Nl 8+lY860v4jXd7FmJQjWLfeWaTGy7t41/V7g5EzblsSHW4E3aQ6gXgmRBpg/zTW9V X6Q0EcoIpsI2WKGbCpm+uZ5PgIBnFrP+iQCfwDHQBjGwAlkzH2y3MWz4xfl+KFwJ CrmjVjtlgN+DLUXD5grvVrOSHguL308l86d72A== -----END CERTIFICATE-----Generated at Wed May 13 04:15:58 2026 by rpki-client