$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa File: 3230322e3134382e382e302f32312d3231203d3e203338373738.roa (raw, json) Hash identifier: IuvlHaML5VsnfUMZA1ECNe/xMupbNZk08ek4O+aCYes= Subject key identifier: EE:94:8F:9D:26:DC:67:FD:5A:89:A3:F7:BB:7F:CF:09:09:81:80:4F Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 6BD39751331DF5D9B7C735DEFF092E86A0D8A7C9 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:11 +0000 ROA not before: Sun 03 May 2026 03:12:11 +0000 ROA not after: Sun 02 May 2027 03:17:11 +0000 asID: 38778 IP address blocks: 202.148.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d3:97:51:33:1d:f5:d9:b7:c7:35:de:ff:09:2e:86:a0:d8:a7:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:11 2026 GMT Not After : May 2 03:17:11 2027 GMT Subject: CN=EE948F9D26DC67FD5A89A3F7BB7FCF090981804F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:df:16:33:3e:f2:59:fc:17:2a:4b:83:f0:b7: 26:0d:94:cb:52:a7:27:cc:b6:3a:cc:f9:77:2e:09: d9:08:a3:c7:c1:a2:89:47:7c:9b:c4:cf:37:09:af: c1:91:b1:e3:db:5f:ff:e5:2c:39:72:2e:87:47:94: 20:db:35:0a:d4:85:2a:ee:b8:48:46:50:1c:7d:1a: 55:fe:96:e4:90:2d:51:91:29:2b:57:cd:e2:b7:03: d3:24:b6:50:95:df:6f:4e:18:2e:62:94:51:48:da: ef:e0:7e:d6:28:51:5c:64:48:e4:02:b1:7d:c4:2c: b9:4b:01:31:7e:72:5c:c7:7d:eb:f7:03:bb:8a:bd: e3:ff:e2:b8:a4:f3:fd:70:62:5c:78:d3:5c:ae:09: 84:17:f3:0e:30:a9:c8:be:05:2b:6f:d2:9e:a7:7f: dd:0a:9b:15:79:e6:61:3f:49:f6:b6:c6:c6:ed:7b: c8:42:f4:90:94:51:84:1b:82:8c:4b:ec:48:c9:0d: 8c:e3:05:10:4b:79:d3:68:11:64:ff:2f:ac:93:13: 43:9a:09:da:3b:1e:39:61:53:2c:48:78:6a:af:ca: c6:c1:4d:24:53:f6:a6:25:9e:bd:ea:7f:f1:00:3e: de:b4:74:f8:8b:f0:6e:66:fd:cd:f5:24:7e:05:bd: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:94:8F:9D:26:DC:67:FD:5A:89:A3:F7:BB:7F:CF:09:09:81:80:4F X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/21 Signature Algorithm: sha256WithRSAEncryption b8:1d:6d:a9:1e:de:58:24:7c:70:18:bc:5e:93:04:b8:8d:d9: a9:8e:33:4d:4f:77:9c:73:28:cb:22:7a:da:93:df:88:f3:4d: 40:2f:d0:9c:a8:03:b0:04:35:80:74:fc:a8:4e:86:b2:a6:c6: 58:fe:12:f6:1f:4c:bd:72:71:93:7d:c8:a9:fd:7b:69:88:7f: dc:1b:47:da:b9:6b:05:b4:4c:5c:8d:8f:ea:5c:d0:5a:01:51: 99:33:b9:eb:e2:77:f1:be:c2:49:47:3f:ed:6d:d6:f7:1d:d8: 40:a6:0a:5e:cb:42:e4:ce:3a:46:45:3b:84:87:37:35:db:c0: f5:a7:cd:be:ab:9b:ea:ed:ea:92:7c:1f:a4:e1:1c:30:c7:00: 64:9b:5e:e4:04:f4:c5:f8:ef:d6:2f:41:5f:2a:53:46:91:68: a2:d8:e0:7c:97:f1:f9:24:99:43:2d:e6:2b:58:b9:95:89:5d: 6e:82:bd:68:19:be:06:d9:d1:c9:5c:5d:b8:14:a8:2c:ae:f9: 70:3a:03:6b:95:6a:58:9e:0c:07:ca:5a:8e:dd:3a:39:0b:aa: 43:66:68:8f:b0:82:2f:8c:01:5f:bd:e1:97:d3:00:62:1d:83: 75:f9:36:29:db:31:df:4c:ba:cd:04:ef:65:ac:d2:b2:e3:5e: 3d:fc:d8:5e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUa9OXUTMd9dm3xzXe/wkuhqDYp8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTFaFw0yNzA1MDIwMzE3MTFaMDMxMTAvBgNV BAMTKEVFOTQ4RjlEMjZEQzY3RkQ1QTg5QTNGN0JCN0ZDRjA5MDk4MTgwNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg3xYzPvJZ/BcqS4PwtyYNlMtS pyfMtjrM+XcuCdkIo8fBoolHfJvEzzcJr8GRsePbX//lLDlyLodHlCDbNQrUhSru uEhGUBx9GlX+luSQLVGRKStXzeK3A9MktlCV329OGC5ilFFI2u/gftYoUVxkSOQC sX3ELLlLATF+clzHfev3A7uKveP/4rik8/1wYlx401yuCYQX8w4wqci+BStv0p6n f90KmxV55mE/Sfa2xsbte8hC9JCUUYQbgoxL7EjJDYzjBRBLedNoEWT/L6yTE0Oa Cdo7HjlhUyxIeGqvysbBTSRT9qYlnr3qf/EAPt60dPiL8G5m/c31JH4FvRkZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7pSPnSbcZ/1aiaP3u3/PCQmBgE8wHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKlAgwDQYJKoZIhvcN AQELBQADggEBALgdbake3lgkfHAYvF6TBLiN2amOM01Pd5xzKMsietqT34jzTUAv 0JyoA7AENYB0/KhOhrKmxlj+EvYfTL1ycZN9yKn9e2mIf9wbR9q5awW0TFyNj+pc 0FoBUZkzuevid/G+wklHP+1t1vcd2ECmCl7LQuTOOkZFO4SHNzXbwPWnzb6rm+rt 6pJ8H6ThHDDHAGSbXuQE9MX479YvQV8qU0aRaKLY4HyX8fkkmUMt5itYuZWJXW6C vWgZvgbZ0clcXbgUqCyu+XA6A2uValieDAfKWo7dOjkLqkNmaI+wgi+MAV+94ZfT AGIdg3X5NinbMd9Mus0E72Ws0rLjXj382F4= -----END CERTIFICATE-----Generated at Wed May 13 02:25:55 2026 by rpki-client