$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Zl5/JMdAr02GR3DCNBsodovfPqI0zBMQVhKj8H/Cg4Q= Subject key identifier: F4:5C:86:B3:7E:EA:9E:4D:B5:71:CA:D1:88:8C:D0:82:E4:4F:A2:C4 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 1FDA684974ED162E06307DBA50F9846AD025C69D Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:05 +0000 ROA not before: Sun 03 May 2026 03:12:05 +0000 ROA not after: Sun 02 May 2027 03:17:05 +0000 asID: 38778 IP address blocks: 203.201.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:da:68:49:74:ed:16:2e:06:30:7d:ba:50:f9:84:6a:d0:25:c6:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:05 2026 GMT Not After : May 2 03:17:05 2027 GMT Subject: CN=F45C86B37EEA9E4DB571CAD1888CD082E44FA2C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:11:65:ee:b4:1c:ab:73:5d:b2:48:ae:ff:8c: 10:09:6d:2c:5a:3f:70:93:66:ad:3c:89:15:71:8c: 3d:75:3d:9e:e8:10:bc:cf:27:37:d7:2a:70:8a:25: cd:7a:63:e9:26:74:e8:fd:81:07:90:44:39:25:f3: bd:bc:18:f7:04:1e:f5:e8:2b:ab:d8:09:8b:c3:3d: f6:d8:f2:b6:5e:e4:37:54:26:f8:86:a7:7f:97:9b: f4:15:9c:f7:50:ec:5d:b9:0a:83:ae:74:82:19:26: 7f:7a:be:4e:d3:12:65:a3:0a:01:7f:fd:85:96:9d: 5d:5d:d6:8e:18:a1:ca:30:03:95:c4:cb:21:da:8d: 00:3b:33:61:35:b5:6a:40:66:cb:d8:2d:77:6b:7b: 7f:f7:f1:7f:20:de:f7:b7:37:80:37:dd:15:0e:77: 7b:38:53:a5:75:85:0f:f7:86:0c:49:46:c3:72:7c: 5f:67:39:79:b4:9e:7a:34:c0:b1:fa:c1:0c:2d:0e: de:e6:69:82:9b:66:df:17:75:67:ab:21:26:58:73: 25:13:c5:61:83:50:a7:3c:45:74:56:c6:df:2b:72: 02:9f:ee:e2:69:36:b4:c3:46:c1:92:79:53:0c:e0: 0b:8c:20:0c:94:d3:de:fa:e4:61:71:f9:ce:c1:69: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5C:86:B3:7E:EA:9E:4D:B5:71:CA:D1:88:8C:D0:82:E4:4F:A2:C4 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:fd:4a:38:56:04:58:2a:5c:a5:7e:16:b1:37:21:01:70:ae: 85:22:4b:24:9f:7d:1f:ef:50:9e:53:a8:6a:3c:39:5b:4e:2f: e6:0d:fa:2e:e9:14:8c:7d:02:d4:18:00:c5:b0:9f:04:e7:fe: 98:fc:7a:be:a9:f1:11:97:9a:15:ba:13:12:6a:07:fe:cc:2a: a3:8f:80:c9:8b:ad:27:7e:81:34:f0:5c:ff:fe:12:a7:9d:2a: 63:d7:87:bf:af:4d:a1:c6:42:e9:eb:1b:26:b1:a7:16:a0:46: 2a:db:12:24:83:89:7a:67:a8:2e:23:1d:6d:08:95:98:26:e6: 3c:e0:a5:32:74:3c:f2:97:fd:4f:ab:62:ea:29:ee:9f:71:0f: 37:46:08:6f:a1:e7:b4:4f:75:5e:ba:13:90:f7:01:28:b5:bf: 1c:9a:f1:1c:dd:24:57:db:3a:26:08:b2:a2:f4:bb:55:d9:7c: fd:30:4d:52:2e:c2:97:9c:07:73:c4:22:6a:f6:2c:61:25:67: d3:bb:f6:d9:79:98:5b:a2:27:d1:e5:74:12:66:f3:3a:2f:c3: e3:ee:a9:83:3f:70:bc:6d:64:39:ea:8c:59:62:c4:84:ab:37: 6f:c1:f2:07:91:94:90:e6:fe:b6:9f:88:43:ab:26:6f:4e:0d: c3:62:d3:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH9poSXTtFi4GMH26UPmEatAlxp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDVaFw0yNzA1MDIwMzE3MDVaMDMxMTAvBgNV BAMTKEY0NUM4NkIzN0VFQTlFNERCNTcxQ0FEMTg4OENEMDgyRTQ0RkEyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVEWXutByrc12ySK7/jBAJbSxa P3CTZq08iRVxjD11PZ7oELzPJzfXKnCKJc16Y+kmdOj9gQeQRDkl8728GPcEHvXo K6vYCYvDPfbY8rZe5DdUJviGp3+Xm/QVnPdQ7F25CoOudIIZJn96vk7TEmWjCgF/ /YWWnV1d1o4YocowA5XEyyHajQA7M2E1tWpAZsvYLXdre3/38X8g3ve3N4A33RUO d3s4U6V1hQ/3hgxJRsNyfF9nOXm0nno0wLH6wQwtDt7maYKbZt8XdWerISZYcyUT xWGDUKc8RXRWxt8rcgKf7uJpNrTDRsGSeVMM4AuMIAyU09765GFx+c7BaS4/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9FyGs37qnk21ccrRiIzQguRPosQwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mrMA0GCSqG SIb3DQEBCwUAA4IBAQCM/Uo4VgRYKlylfhaxNyEBcK6FIkskn30f71CeU6hqPDlb Ti/mDfou6RSMfQLUGADFsJ8E5/6Y/Hq+qfERl5oVuhMSagf+zCqjj4DJi60nfoE0 8Fz//hKnnSpj14e/r02hxkLp6xsmsacWoEYq2xIkg4l6Z6guIx1tCJWYJuY84KUy dDzyl/1Pq2LqKe6fcQ83Rghvoee0T3VeuhOQ9wEotb8cmvEc3SRX2zomCLKi9LtV 2Xz9ME1SLsKXnAdzxCJq9ixhJWfTu/bZeZhboifR5XQSZvM6L8Pj7qmDP3C8bWQ5 6oxZYsSEqzdvwfIHkZSQ5v62n4hDqyZvTg3DYtN9 -----END CERTIFICATE-----Generated at Wed May 13 02:12:11 2026 by rpki-client