$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: UPsO7mQRQ8q99r64qWKwSrTLtb5rB8e6n6wnpMv3Zy4= Subject key identifier: 1B:ED:B1:03:74:48:E5:14:3E:AF:0F:D3:83:FF:CD:0F:20:42:05:B0 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 4F8B902AE221CE3FCD65D0D97144CABE0BFF8876 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:20 +0000 ROA not before: Sun 03 May 2026 03:12:20 +0000 ROA not after: Sun 02 May 2027 03:17:20 +0000 asID: 38778 IP address blocks: 203.201.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:8b:90:2a:e2:21:ce:3f:cd:65:d0:d9:71:44:ca:be:0b:ff:88:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:20 2026 GMT Not After : May 2 03:17:20 2027 GMT Subject: CN=1BEDB1037448E5143EAF0FD383FFCD0F204205B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:d8:ed:18:0c:19:e7:49:3f:8b:af:11:9e: 73:b7:b5:1b:91:a6:09:da:0d:cd:98:13:02:b5:d9: 66:6e:44:dd:0e:58:25:71:6d:ff:4b:f6:b7:60:a9: 53:66:bb:dc:36:ee:9d:39:31:da:c2:ee:86:8b:c9: e6:9a:75:d9:9e:e1:76:56:e7:c1:5d:a4:13:c8:67: 42:a8:f7:7d:cb:e0:c7:fd:cf:40:fa:46:94:45:75: c1:f1:ba:89:10:55:ce:80:26:86:f3:a8:02:6b:77: 0d:30:83:b5:f0:3c:48:78:cf:40:35:a8:1e:00:4d: fc:58:77:95:23:fe:5e:75:a1:3e:2b:de:06:64:f5: 00:05:03:20:05:ff:0a:2d:b8:ab:2a:89:f2:a9:97: b9:6a:62:44:7d:82:ed:a9:10:40:1a:7c:5e:6b:ce: 77:d2:2a:a0:f7:3a:b1:c5:06:a1:e4:3a:b2:9b:3c: 07:6b:72:20:44:fb:f6:5e:27:81:34:89:24:3e:5f: 0f:ca:16:4d:9d:64:75:19:44:d1:d9:0f:de:10:eb: 27:17:84:87:f7:24:55:4e:43:0c:91:00:00:72:47: b2:d5:1d:f1:cf:cb:54:05:04:13:4b:26:b4:d9:87: 8d:23:f5:41:8b:8d:bc:e7:aa:35:51:11:a7:23:49: e4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:ED:B1:03:74:48:E5:14:3E:AF:0F:D3:83:FF:CD:0F:20:42:05:B0 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:82:c4:74:47:97:95:5c:53:96:be:99:8b:f3:41:f3:8e:79: 57:9f:fc:4c:0b:95:e6:28:bf:3c:2f:99:9a:69:b4:f7:1c:92: bb:d6:b4:44:c6:26:f9:26:17:7b:95:7f:bb:d5:d5:19:77:75: be:a0:3d:12:90:8d:56:16:03:b9:c2:d9:c0:47:d8:27:e9:f7: b0:16:71:17:8b:34:29:de:04:b6:ee:ea:8e:cd:7d:92:e1:11: c3:1f:69:fa:c2:55:b8:1a:ff:29:9a:84:e0:02:a9:5e:fd:dd: 9c:9f:85:37:8e:16:1f:d6:1a:92:90:89:e7:37:50:fc:04:e3: 03:15:69:06:c1:35:f7:36:89:e4:17:38:bf:fd:66:6a:29:13: a4:2a:75:42:d0:0b:63:4e:f1:e5:58:a0:a6:8d:17:13:3a:47: 62:4f:c8:23:59:75:ea:88:80:29:11:b0:e1:be:84:8f:62:08: 6e:fe:44:61:cb:ea:79:f4:6c:73:36:ff:78:fc:40:dc:ca:3d: f3:9f:3d:fb:27:b2:d2:9c:cb:12:64:02:8c:5d:50:f1:e9:6b: 4a:af:c3:d5:61:16:f2:c1:f1:78:d8:06:d2:e9:4d:75:4a:3b: 0e:6a:40:26:f1:68:05:29:95:ef:77:26:dd:aa:44:92:6d:c0: 05:e2:79:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT4uQKuIhzj/NZdDZcUTKvgv/iHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMjBaFw0yNzA1MDIwMzE3MjBaMDMxMTAvBgNV BAMTKDFCRURCMTAzNzQ0OEU1MTQzRUFGMEZEMzgzRkZDRDBGMjA0MjA1QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrTdjtGAwZ50k/i68RnnO3tRuR pgnaDc2YEwK12WZuRN0OWCVxbf9L9rdgqVNmu9w27p05MdrC7oaLyeaaddme4XZW 58FdpBPIZ0Ko933L4Mf9z0D6RpRFdcHxuokQVc6AJobzqAJrdw0wg7XwPEh4z0A1 qB4ATfxYd5Uj/l51oT4r3gZk9QAFAyAF/wotuKsqifKpl7lqYkR9gu2pEEAafF5r znfSKqD3OrHFBqHkOrKbPAdrciBE+/ZeJ4E0iSQ+Xw/KFk2dZHUZRNHZD94Q6ycX hIf3JFVOQwyRAAByR7LVHfHPy1QFBBNLJrTZh40j9UGLjbznqjVREacjSeQZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG+2xA3RI5RQ+rw/Tg//NDyBCBbAwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQB8gsR0R5eVXFOWvpmL80HzjnlXn/xMC5XmKL88L5maabT3 HJK71rRExib5Jhd7lX+71dUZd3W+oD0SkI1WFgO5wtnAR9gn6fewFnEXizQp3gS2 7uqOzX2S4RHDH2n6wlW4Gv8pmoTgAqle/d2cn4U3jhYf1hqSkInnN1D8BOMDFWkG wTX3NonkFzi//WZqKROkKnVC0AtjTvHlWKCmjRcTOkdiT8gjWXXqiIApEbDhvoSP Yghu/kRhy+p59GxzNv94/EDcyj3znz37J7LSnMsSZAKMXVDx6WtKr8PVYRbywfF4 2AbS6U11SjsOakAm8WgFKZXvdybdqkSSbcAF4nkL -----END CERTIFICATE-----Generated at Wed May 13 03:48:24 2026 by rpki-client