$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: mESD1FYsyOc57B0nKIzz+PWA3OyjV6NQ72PnCGbtI+w= Subject key identifier: C8:07:17:48:E3:5C:61:7F:FE:B4:E4:C0:B3:78:19:BA:F6:89:9C:D3 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 01E0CE2EBEE43EFBAD9A94981ED03873E6FEC6F9 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:09 +0000 ROA not before: Sun 03 May 2026 03:12:09 +0000 ROA not after: Sun 02 May 2027 03:17:09 +0000 asID: 9794 IP address blocks: 203.201.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e0:ce:2e:be:e4:3e:fb:ad:9a:94:98:1e:d0:38:73:e6:fe:c6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:09 2026 GMT Not After : May 2 03:17:09 2027 GMT Subject: CN=C8071748E35C617FFEB4E4C0B37819BAF6899CD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:9b:33:e3:73:af:c9:1e:42:21:15:9d:69: 53:e3:6e:29:3d:ae:7b:ff:18:b2:38:38:b4:23:41: 9f:6b:5a:1d:fb:d4:ef:a0:bd:30:10:43:69:e0:bb: ac:c5:17:81:a5:23:92:bd:ef:f2:37:e7:83:aa:3e: d8:db:d6:e1:20:f7:4f:6c:7c:7d:a0:8e:c2:ec:2e: a7:80:09:90:02:99:7e:ec:85:2d:06:c4:26:01:24: d1:be:20:f4:f6:84:5c:cc:82:90:bd:de:69:66:8b: b7:9b:43:b0:4b:70:c3:ac:d5:33:2b:24:24:84:4a: e0:ee:c2:4e:4b:2c:82:a5:b0:02:01:e4:37:5d:1d: 75:ed:4b:37:db:1a:44:8c:b1:1c:76:62:a2:fc:85: 5f:2e:98:a9:55:05:b7:2c:80:f5:e9:84:b9:5b:16: 5b:cb:55:e8:ba:a7:19:a9:db:c3:6a:3a:0b:4e:39: 88:10:94:da:07:f6:63:06:8a:27:28:4c:36:97:09: aa:f2:fb:23:24:58:09:2c:ff:e7:33:a8:a0:06:a7: dd:63:67:4b:31:39:58:fd:96:f5:f0:b8:52:3e:1a: 01:6b:e8:b5:29:33:c9:e5:a9:08:7f:c3:35:6b:3e: 5f:9e:3b:89:bd:31:d2:14:11:96:6a:7b:35:4e:2f: b4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:07:17:48:E3:5C:61:7F:FE:B4:E4:C0:B3:78:19:BA:F6:89:9C:D3 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.161.0/24 Signature Algorithm: sha256WithRSAEncryption 40:49:49:f5:e7:36:5e:8c:24:ff:79:ad:0a:88:4f:d6:c6:d3: e4:0c:85:19:de:88:3e:e7:0d:da:62:0e:1d:62:82:af:99:2b: 03:65:5b:af:de:0d:48:6a:7f:c1:7e:ff:be:24:f9:d5:ca:9b: 0c:9c:1b:62:13:34:8f:25:b9:e7:5a:44:bc:0a:17:ea:ce:3b: c8:d0:75:89:3e:6f:93:2c:b9:f1:78:19:0e:0f:9e:3a:db:25: 89:40:6e:0c:d4:ff:dc:85:c2:6a:0b:c9:70:14:b3:3e:58:5b: 20:0f:89:2c:e3:a7:de:62:7a:8f:49:a1:80:9b:8c:cb:25:e7: 17:93:f5:8b:68:30:5f:c7:14:ad:52:6a:72:a1:61:de:51:d9: 4e:85:bf:91:12:72:7b:96:fb:41:7d:7f:0c:f5:37:98:2f:c3: 6c:d0:62:55:08:2d:3f:1e:94:06:45:0c:b2:ea:5e:2f:21:8f: fd:5d:b9:97:09:31:71:81:ad:36:66:24:1f:0a:f2:f9:10:eb: c7:24:96:cc:a6:b7:16:9d:71:1b:0a:bd:97:30:e7:46:98:72: 5d:0e:97:d4:a2:77:09:37:4d:3d:56:2e:80:69:ce:55:9b:8b: d0:72:33:54:45:9d:df:78:88:3c:49:0d:ce:22:eb:cd:fe:45: 03:92:8a:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAeDOLr7kPvutmpSYHtA4c+b+xvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDlaFw0yNzA1MDIwMzE3MDlaMDMxMTAvBgNV BAMTKEM4MDcxNzQ4RTM1QzYxN0ZGRUI0RTRDMEIzNzgxOUJBRjY4OTlDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+FZsz43OvyR5CIRWdaVPjbik9 rnv/GLI4OLQjQZ9rWh371O+gvTAQQ2ngu6zFF4GlI5K97/I354OqPtjb1uEg909s fH2gjsLsLqeACZACmX7shS0GxCYBJNG+IPT2hFzMgpC93mlmi7ebQ7BLcMOs1TMr JCSESuDuwk5LLIKlsAIB5DddHXXtSzfbGkSMsRx2YqL8hV8umKlVBbcsgPXphLlb FlvLVei6pxmp28NqOgtOOYgQlNoH9mMGiicoTDaXCary+yMkWAks/+czqKAGp91j Z0sxOVj9lvXwuFI+GgFr6LUpM8nlqQh/wzVrPl+eO4m9MdIUEZZqezVOL7QRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyAcXSONcYX/+tOTAs3gZuvaJnNMwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJoTANBgkqhkiG 9w0BAQsFAAOCAQEAQElJ9ec2Xowk/3mtCohP1sbT5AyFGd6IPucN2mIOHWKCr5kr A2Vbr94NSGp/wX7/viT51cqbDJwbYhM0jyW551pEvAoX6s47yNB1iT5vkyy58XgZ Dg+eOtsliUBuDNT/3IXCagvJcBSzPlhbIA+JLOOn3mJ6j0mhgJuMyyXnF5P1i2gw X8cUrVJqcqFh3lHZToW/kRJye5b7QX1/DPU3mC/DbNBiVQgtPx6UBkUMsupeLyGP /V25lwkxcYGtNmYkHwry+RDrxySWzKa3Fp1xGwq9lzDnRphyXQ6X1KJ3CTdNPVYu gGnOVZuL0HIzVEWd33iIPEkNziLrzf5FA5KK1w== -----END CERTIFICATE-----Generated at Wed May 13 02:11:54 2026 by rpki-client