$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa File: 3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: 121uvSHsTlmvRA9kImKK2Xe8qP/NpdEj/rKbXNWWhG0= Subject key identifier: 3D:C8:1D:11:D2:6C:75:BD:68:B9:D4:B7:DD:DF:A0:6E:5F:04:BE:2C Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 13FABB3025AE8B49C2709FFC939EC480479DAC1A Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:19 +0000 ROA not before: Sun 03 May 2026 03:12:19 +0000 ROA not after: Sun 02 May 2027 03:17:19 +0000 asID: 38778 IP address blocks: 203.201.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:fa:bb:30:25:ae:8b:49:c2:70:9f:fc:93:9e:c4:80:47:9d:ac:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:19 2026 GMT Not After : May 2 03:17:19 2027 GMT Subject: CN=3DC81D11D26C75BD68B9D4B7DDDFA06E5F04BE2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:33:d4:07:5c:2b:f5:c0:f8:e1:7a:84:51:ae: 31:8d:ee:85:5c:35:39:a4:5d:27:0b:80:e1:50:63: a1:68:7b:c1:bd:5c:46:f0:5f:0f:48:f8:08:a9:6f: d4:00:d9:67:64:39:f8:6d:c6:42:86:ab:97:30:7d: 22:a9:db:c5:05:ea:d9:02:a2:aa:36:e8:b9:62:10: 13:88:25:5e:6f:7b:38:3d:87:78:91:d3:bd:3b:13: ee:4e:e1:25:90:9e:43:46:6a:1f:af:e3:95:84:4f: 02:fa:83:75:2b:3a:17:c6:26:e1:f2:2f:0f:76:7e: e1:71:88:05:6e:e6:48:9c:25:cc:bc:fd:bc:08:e4: 9b:42:25:8d:ac:93:ef:2f:5c:43:74:4a:6f:92:98: 2f:d8:2f:47:0c:ac:91:41:0b:69:61:84:a8:df:17: ef:fb:4e:aa:ad:98:ba:18:b2:1b:39:df:11:63:82: ff:e4:5c:66:2f:47:2c:08:2a:63:33:d7:7c:1b:00: d6:03:61:39:96:39:9c:1c:ed:3b:b2:0f:06:99:05: db:21:eb:7a:d3:27:f5:7f:98:4b:ff:3d:7c:47:3a: ec:de:a2:63:f7:c5:98:f0:95:d5:14:a3:b2:2b:0a: ec:fd:82:ba:e9:d5:1f:a6:42:f7:b0:4b:3d:32:cd: f2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C8:1D:11:D2:6C:75:BD:68:B9:D4:B7:DD:DF:A0:6E:5F:04:BE:2C X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/23 Signature Algorithm: sha256WithRSAEncryption 23:e4:c4:3c:25:4d:4e:e0:2e:54:d0:4e:1b:6f:c2:15:9b:cb: 54:c7:61:78:42:ad:7a:3a:d6:37:cb:a0:7d:f4:5a:62:e9:a1: 6b:37:fd:44:e1:5c:11:f3:e6:f2:b1:a0:74:81:59:73:eb:cd: eb:30:fb:65:79:46:39:19:22:cf:5a:06:dd:3e:ab:36:aa:6e: e2:10:74:90:05:9c:78:28:69:a2:8d:ea:da:5b:6e:3f:ad:9e: 27:b0:52:ce:b5:3d:aa:80:ac:da:e0:26:d2:52:7d:c2:8b:9b: 39:ca:fb:b0:52:33:e9:a8:43:df:bd:8e:1b:55:59:50:0e:b2: e0:23:70:b0:54:97:e4:cb:ad:69:d1:dd:f1:6d:0c:06:4e:00: e0:77:2c:91:a6:95:2b:57:a7:50:b6:da:19:27:cd:d2:3a:8f: f2:43:91:c8:30:d3:87:68:49:a5:b5:e8:21:2f:95:19:62:97: d5:69:6e:2e:a0:57:6e:84:e2:6d:70:90:d1:e4:30:dd:29:c5: 7e:59:1b:fa:bb:36:96:93:51:ba:93:d0:86:90:e9:22:61:a9: b6:18:33:60:65:80:05:e8:49:cd:69:a9:03:42:27:88:09:21: 44:a9:50:48:3f:2b:cb:15:8a:2b:7a:54:64:50:3e:a5:a7:6c: 8e:4a:db:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE/q7MCWui0nCcJ/8k57EgEedrBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTlaFw0yNzA1MDIwMzE3MTlaMDMxMTAvBgNV BAMTKDNEQzgxRDExRDI2Qzc1QkQ2OEI5RDRCN0REREZBMDZFNUYwNEJFMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1M9QHXCv1wPjheoRRrjGN7oVc NTmkXScLgOFQY6Foe8G9XEbwXw9I+Aipb9QA2WdkOfhtxkKGq5cwfSKp28UF6tkC oqo26LliEBOIJV5vezg9h3iR0707E+5O4SWQnkNGah+v45WETwL6g3UrOhfGJuHy Lw92fuFxiAVu5kicJcy8/bwI5JtCJY2sk+8vXEN0Sm+SmC/YL0cMrJFBC2lhhKjf F+/7TqqtmLoYshs53xFjgv/kXGYvRywIKmMz13wbANYDYTmWOZwc7TuyDwaZBdsh 63rTJ/V/mEv/PXxHOuzeomP3xZjwldUUo7IrCuz9grrp1R+mQvewSz0yzfILAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPcgdEdJsdb1oudS33d+gbl8EviwwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQAj5MQ8JU1O4C5U0E4bb8IVm8tUx2F4Qq16OtY3y6B99Fpi 6aFrN/1E4VwR8+bysaB0gVlz683rMPtleUY5GSLPWgbdPqs2qm7iEHSQBZx4KGmi jeraW24/rZ4nsFLOtT2qgKza4CbSUn3Ci5s5yvuwUjPpqEPfvY4bVVlQDrLgI3Cw VJfky61p0d3xbQwGTgDgdyyRppUrV6dQttoZJ83SOo/yQ5HIMNOHaEmlteghL5UZ YpfVaW4uoFduhOJtcJDR5DDdKcV+WRv6uzaWk1G6k9CGkOkiYam2GDNgZYAF6EnN aakDQieICSFEqVBIPyvLFYorelRkUD6lp2yOStvw -----END CERTIFICATE-----Generated at Wed May 13 01:35:50 2026 by rpki-client