$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: PejbQUYXvKZ+MukXeBsdH566CURpqOzTFknoGGpqvbo= Subject key identifier: CF:CD:60:97:0A:04:2A:66:7C:6E:8E:52:77:2F:85:8F:1D:02:FB:A6 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 3D806FAFE11B799372308DE5D8C5A70959C6F463 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:07 +0000 ROA not before: Sun 03 May 2026 03:12:07 +0000 ROA not after: Sun 02 May 2027 03:17:07 +0000 asID: 38778 IP address blocks: 202.148.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:80:6f:af:e1:1b:79:93:72:30:8d:e5:d8:c5:a7:09:59:c6:f4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:07 2026 GMT Not After : May 2 03:17:07 2027 GMT Subject: CN=CFCD60970A042A667C6E8E52772F858F1D02FBA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:1f:64:a2:99:ae:90:44:4a:e2:8c:18:a6: 84:d1:38:87:41:6e:3e:a4:45:38:90:93:37:a1:be: f6:6a:f3:4b:f2:68:47:7b:a8:bf:98:b2:87:61:2b: ef:1d:0e:4b:51:bd:ea:aa:03:a3:b3:eb:69:16:71: 3f:e3:df:4b:55:ef:a1:a5:39:d6:d6:88:3c:56:49: c9:93:b0:60:4a:a9:4d:2c:b0:a2:59:e4:24:75:14: ca:8a:97:d2:3e:7d:df:54:43:88:00:4f:89:ce:4c: 75:07:59:87:cb:13:2e:db:4c:10:5f:7c:85:43:7e: 01:77:03:83:76:3c:47:83:b3:8c:46:2f:5f:7d:e7: bd:95:66:6f:da:e7:74:78:cb:fb:31:27:aa:9b:e1: 16:32:b5:70:bc:cf:a0:c8:1d:29:b3:e5:76:0a:3b: d3:8f:30:44:5f:25:59:0e:0a:df:af:5b:29:db:be: c5:02:79:33:14:7f:4e:36:b7:4b:a9:a8:8b:81:f4: 56:cc:17:be:4d:a6:44:5f:d8:d7:00:96:3c:91:f7: 6a:03:16:3e:a4:91:d6:32:71:9a:22:46:cf:8a:d7: 6b:1c:f8:a0:2d:82:31:93:fc:74:e5:5e:e2:fa:31: f7:dd:89:dc:ae:95:44:4b:81:b0:a7:6e:ed:48:7f: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CD:60:97:0A:04:2A:66:7C:6E:8E:52:77:2F:85:8F:1D:02:FB:A6 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.9.0/24 Signature Algorithm: sha256WithRSAEncryption 78:a2:55:89:e0:ed:f2:67:ad:90:63:a9:09:61:94:fb:68:7f: 01:17:5f:bd:d1:3e:e5:cc:41:f3:9a:b7:cf:96:58:57:9f:3c: 58:31:61:6d:d7:dc:46:2b:ce:a7:11:b0:93:03:c7:9b:e4:b3: 4f:f9:b5:2f:87:ab:23:ba:3d:de:24:c9:25:47:38:bc:0b:b9: 2f:9d:0d:55:c5:93:55:c1:93:09:33:90:1f:b5:51:29:a6:ec: 90:dd:4b:0e:3a:5f:2e:aa:2e:6e:a7:24:23:dc:4c:9b:77:b5: 96:53:51:5b:77:a8:bd:f3:e8:a5:a6:6c:a7:20:6a:5a:d6:7a: 00:9e:c9:47:dc:43:11:50:d7:c7:14:68:46:b1:b1:80:e6:14: f3:c7:cb:35:22:3a:a8:67:65:4a:b2:63:5e:83:16:d3:b0:11: 1a:c5:2e:b3:34:ec:64:50:96:48:e8:34:c7:77:6a:1e:c4:e6: dc:3b:67:7b:32:c7:9e:f8:71:2e:de:8e:83:6b:68:65:16:b4: ac:c9:46:13:44:c7:42:25:4b:61:18:ca:d5:6f:a9:d4:1b:82: 11:e8:6e:d9:5f:66:6c:d5:0a:73:26:05:e7:f9:09:a3:93:af: 28:1a:66:57:99:18:b4:eb:ea:a9:3f:10:13:af:1f:0d:70:f0: d4:73:a4:e9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPYBvr+EbeZNyMI3l2MWnCVnG9GMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDdaFw0yNzA1MDIwMzE3MDdaMDMxMTAvBgNV BAMTKENGQ0Q2MDk3MEEwNDJBNjY3QzZFOEU1Mjc3MkY4NThGMUQwMkZCQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Qx9kopmukERK4owYpoTROIdB bj6kRTiQkzehvvZq80vyaEd7qL+YsodhK+8dDktRveqqA6Oz62kWcT/j30tV76Gl OdbWiDxWScmTsGBKqU0ssKJZ5CR1FMqKl9I+fd9UQ4gAT4nOTHUHWYfLEy7bTBBf fIVDfgF3A4N2PEeDs4xGL199572VZm/a53R4y/sxJ6qb4RYytXC8z6DIHSmz5XYK O9OPMERfJVkOCt+vWynbvsUCeTMUf042t0upqIuB9FbMF75NpkRf2NcAljyR92oD Fj6kkdYycZoiRs+K12sc+KAtgjGT/HTlXuL6MffdidyulURLgbCnbu1IfzzRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUz81glwoEKmZ8bo5Sdy+Fjx0C+6YwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAkwDQYJKoZIhvcN AQELBQADggEBAHiiVYng7fJnrZBjqQlhlPtofwEXX73RPuXMQfOat8+WWFefPFgx YW3X3EYrzqcRsJMDx5vks0/5tS+HqyO6Pd4kySVHOLwLuS+dDVXFk1XBkwkzkB+1 USmm7JDdSw46Xy6qLm6nJCPcTJt3tZZTUVt3qL3z6KWmbKcgalrWegCeyUfcQxFQ 18cUaEaxsYDmFPPHyzUiOqhnZUqyY16DFtOwERrFLrM07GRQlkjoNMd3ah7E5tw7 Z3syx574cS7ejoNraGUWtKzJRhNEx0IlS2EYytVvqdQbghHobtlfZmzVCnMmBef5 CaOTrygaZleZGLTr6qk/EBOvHw1w8NRzpOk= -----END CERTIFICATE-----Generated at Wed May 13 03:48:14 2026 by rpki-client