$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: E6nUJtAnsy329dO70cqlamRdfQyl0smP/033w7kt87I= Subject key identifier: 8A:9E:28:95:64:9E:FA:63:1B:7B:5D:39:CB:ED:70:E0:C1:B7:FA:35 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 010B4C36E4B307474F71CD468D4757BE164B9B4F Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:07 +0000 ROA not before: Sun 03 May 2026 03:12:07 +0000 ROA not after: Sun 02 May 2027 03:17:07 +0000 asID: 9794 IP address blocks: 203.201.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0b:4c:36:e4:b3:07:47:4f:71:cd:46:8d:47:57:be:16:4b:9b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:07 2026 GMT Not After : May 2 03:17:07 2027 GMT Subject: CN=8A9E2895649EFA631B7B5D39CBED70E0C1B7FA35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:0d:b0:3e:59:b2:8a:d1:ab:96:bb:2a:bc: 1c:04:68:e5:62:1c:ed:60:ae:d1:f3:5e:c8:2c:fc: cb:bc:ec:71:25:06:6d:71:8d:0b:96:cb:d6:ce:08: e7:c5:01:35:3e:3f:00:dd:54:df:8e:26:6a:2b:4e: eb:72:27:d0:60:f7:c1:29:51:83:d1:84:73:db:86: dc:50:47:01:70:24:b7:cd:09:50:fd:56:64:06:b2: 37:dd:6d:92:41:8e:88:e5:d9:3d:5d:3f:ea:29:ce: d7:86:33:43:12:cc:0b:9f:43:a2:52:20:a4:7c:f2: d3:56:eb:3c:0d:ad:8a:ae:f1:27:d0:6c:de:4a:08: d4:49:f8:79:48:35:71:88:8c:e9:08:07:f8:08:1b: 8e:36:c4:c8:b5:28:bc:31:7c:5b:af:62:bd:1b:9d: aa:e7:3f:f7:ea:1e:50:bf:4d:86:aa:50:a9:1c:5a: 58:8e:21:c0:6e:b5:60:6f:53:68:b1:76:31:24:4a: 00:07:dd:76:4c:ff:60:23:ca:5b:52:fd:44:b3:3b: b1:41:37:d7:b9:8c:57:6c:4f:e0:bc:91:43:fb:0d: 4d:6d:b6:8f:a4:a2:19:58:5b:83:64:be:9b:03:39: ef:bf:6e:3a:f1:50:b0:ae:1b:18:6b:c9:34:52:2f: c8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9E:28:95:64:9E:FA:63:1B:7B:5D:39:CB:ED:70:E0:C1:B7:FA:35 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.168.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:40:7f:9b:74:5c:42:a2:5e:63:d5:03:e9:9a:d2:34:d1:37: fa:64:27:22:5b:4b:46:97:f4:e9:0e:c3:87:20:88:c4:5f:7a: 53:6f:34:13:1f:af:e7:08:3c:1f:d5:7f:8f:cf:35:90:0a:0f: 46:ef:43:0d:62:d4:14:cc:44:f2:31:e3:eb:5a:55:39:41:5b: 56:87:f4:52:9e:9f:e4:e3:30:0c:3d:c0:e0:96:f5:8a:ae:fc: 8d:32:7a:b5:3c:e0:db:37:c3:c3:08:7d:47:52:b6:b7:50:7d: d8:44:39:a1:f1:72:90:aa:c4:da:77:2f:37:83:da:bb:03:54: 86:43:06:36:c9:6c:cb:6e:07:42:70:31:ee:c8:c5:81:ba:ae: 15:63:80:cb:fb:4a:40:cf:eb:f4:6e:c1:f3:35:18:19:ae:4b: 09:62:23:7e:ea:05:f1:9f:c1:1c:62:73:1a:5b:03:a3:eb:c6: e8:03:4c:bb:70:b6:98:93:44:f0:ae:1c:30:9a:a7:5c:07:2d: 0a:e4:a4:56:b5:7c:75:5c:e8:b0:cf:12:21:34:ab:5c:0d:bc: 0b:a3:00:f2:5e:88:ba:73:dc:a0:27:5b:a4:84:9d:bb:2f:4d: 7d:12:bb:68:e0:49:02:6f:3b:70:40:29:dc:23:16:8c:da:d7: 8f:d6:e9:b2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAQtMNuSzB0dPcc1GjUdXvhZLm08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDdaFw0yNzA1MDIwMzE3MDdaMDMxMTAvBgNV BAMTKDhBOUUyODk1NjQ5RUZBNjMxQjdCNUQzOUNCRUQ3MEUwQzFCN0ZBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCexA2wPlmyitGrlrsqvBwEaOVi HO1grtHzXsgs/Mu87HElBm1xjQuWy9bOCOfFATU+PwDdVN+OJmorTutyJ9Bg98Ep UYPRhHPbhtxQRwFwJLfNCVD9VmQGsjfdbZJBjojl2T1dP+opzteGM0MSzAufQ6JS IKR88tNW6zwNrYqu8SfQbN5KCNRJ+HlINXGIjOkIB/gIG442xMi1KLwxfFuvYr0b narnP/fqHlC/TYaqUKkcWliOIcButWBvU2ixdjEkSgAH3XZM/2AjyltS/USzO7FB N9e5jFdsT+C8kUP7DU1tto+kohlYW4NkvpsDOe+/bjrxULCuGxhryTRSL8grAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUip4olWSe+mMbe105y+1w4MG3+jUwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJqDANBgkqhkiG 9w0BAQsFAAOCAQEAPEB/m3RcQqJeY9UD6ZrSNNE3+mQnIltLRpf06Q7DhyCIxF96 U280Ex+v5wg8H9V/j881kAoPRu9DDWLUFMxE8jHj61pVOUFbVof0Up6f5OMwDD3A 4Jb1iq78jTJ6tTzg2zfDwwh9R1K2t1B92EQ5ofFykKrE2ncvN4PauwNUhkMGNsls y24HQnAx7sjFgbquFWOAy/tKQM/r9G7B8zUYGa5LCWIjfuoF8Z/BHGJzGlsDo+vG 6ANMu3C2mJNE8K4cMJqnXActCuSkVrV8dVzosM8SITSrXA28C6MA8l6IunPcoCdb pISduy9NfRK7aOBJAm87cEAp3CMWjNrXj9bpsg== -----END CERTIFICATE-----Generated at Wed May 13 02:58:57 2026 by rpki-client