$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa File: 3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa (raw, json) Hash identifier: sOyNFk0q/okGcjGNGZ8UuoweAg8z82NIIk7OmWkW4oo= Subject key identifier: 56:A9:4F:D3:76:9C:48:F1:A4:CD:0E:A9:21:BA:98:EC:C7:1D:E4:B7 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 653A852F693131CE31CE1860D422E20BE6EE3935 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:02 +0000 ROA not before: Sun 03 May 2026 03:12:02 +0000 ROA not after: Sun 02 May 2027 03:17:02 +0000 asID: 38778 IP address blocks: 203.201.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3a:85:2f:69:31:31:ce:31:ce:18:60:d4:22:e2:0b:e6:ee:39:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:02 2026 GMT Not After : May 2 03:17:02 2027 GMT Subject: CN=56A94FD3769C48F1A4CD0EA921BA98ECC71DE4B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:a5:40:9f:7e:c4:6d:7d:71:e4:8a:66:f2: c7:ce:6e:86:e2:45:e5:ab:0d:4a:c3:81:c6:ac:e5: a1:9c:a7:2b:fd:a0:f6:4c:56:8a:b0:34:52:b1:e2: 29:24:21:5a:a9:1c:ce:d0:d8:ac:33:23:ac:bc:9a: 1f:78:27:e3:72:37:93:4c:6c:7c:ec:83:c8:8f:f3: 68:01:2d:e9:1f:63:ae:1b:cd:2d:46:eb:29:b8:28: a1:a6:06:60:0a:00:69:91:0e:c4:1a:e0:b3:f2:d3: f7:34:8a:b9:a9:ee:59:51:7f:5c:f3:49:24:88:77: c2:bd:d9:f1:0e:33:37:20:83:dd:37:6a:3d:b4:f3: da:02:db:a0:d8:e2:8c:d4:0e:9f:f0:a8:3e:b9:74: be:ed:f7:a7:0f:38:c1:24:0b:52:d6:19:44:10:7e: d3:7d:9e:93:84:60:d7:d3:10:42:ce:63:a3:01:da: cc:f2:5f:b3:49:cf:77:7e:06:e9:67:79:be:9d:bb: 50:05:c4:7f:95:8c:00:da:43:96:a4:8a:e2:98:c6: f1:90:27:31:e7:95:db:c0:5b:49:d4:aa:a6:c7:ca: eb:f6:5c:f6:11:22:07:ee:65:38:37:8c:2f:a2:4e: 78:20:96:ec:60:38:42:da:67:5b:b3:3f:9f:25:4a: 7c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A9:4F:D3:76:9C:48:F1:A4:CD:0E:A9:21:BA:98:EC:C7:1D:E4:B7 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/22 Signature Algorithm: sha256WithRSAEncryption 38:dd:d3:47:81:93:0e:d9:c1:c8:a3:d1:c9:da:61:30:d8:7d: f3:5f:34:df:79:00:26:7a:62:8f:40:e2:e0:23:07:3d:fb:4e: a2:96:0e:be:98:83:b2:58:c7:1f:55:1d:7a:93:2c:7f:f2:7e: d0:c8:89:05:d3:71:8f:5b:1c:74:b2:23:f7:c3:0e:47:fb:d6: 2b:db:23:e5:29:7a:12:c6:9d:59:94:02:c5:8a:57:29:7c:5b: a1:73:1d:7e:95:0f:87:a5:b2:ea:85:b3:98:bc:f5:7a:30:bb: a7:4c:9a:d4:e9:93:64:91:3e:9f:cf:bc:3a:2b:a9:35:85:b9: 32:ce:b1:f4:06:d3:b9:41:ed:6f:5f:25:a8:74:2b:7c:b1:26: 2f:38:d1:ff:6f:80:7d:c7:d4:6c:5e:23:41:0d:24:2b:2c:23: cb:4f:35:f3:62:22:31:ac:7b:c2:19:e6:c8:af:ee:7e:3f:ea: 90:3b:4d:53:41:cd:92:8c:8d:1d:86:09:33:03:2c:12:36:3f: c9:31:a8:59:7a:90:f0:10:7b:9e:31:13:df:65:75:b7:65:38: be:7f:9e:9b:82:ce:f0:db:3b:1e:b8:0c:13:a1:b4:95:6b:84: c5:16:29:ef:44:43:a0:7f:29:9d:e8:5e:81:66:da:47:e1:6a: 59:bd:6e:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZTqFL2kxMc4xzhhg1CLiC+buOTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDJaFw0yNzA1MDIwMzE3MDJaMDMxMTAvBgNV BAMTKDU2QTk0RkQzNzY5QzQ4RjFBNENEMEVBOTIxQkE5OEVDQzcxREU0QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs4KVAn37EbX1x5Ipm8sfObobi ReWrDUrDgcas5aGcpyv9oPZMVoqwNFKx4ikkIVqpHM7Q2KwzI6y8mh94J+NyN5NM bHzsg8iP82gBLekfY64bzS1G6ym4KKGmBmAKAGmRDsQa4LPy0/c0irmp7llRf1zz SSSId8K92fEOMzcgg903aj2089oC26DY4ozUDp/wqD65dL7t96cPOMEkC1LWGUQQ ftN9npOEYNfTEELOY6MB2szyX7NJz3d+Bulneb6du1AFxH+VjADaQ5akiuKYxvGQ JzHnldvAW0nUqqbHyuv2XPYRIgfuZTg3jC+iTnggluxgOELaZ1uzP58lSnyDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVqlP03acSPGkzQ6pIbqY7Mcd5LcwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCy8msMA0GCSqG SIb3DQEBCwUAA4IBAQA43dNHgZMO2cHIo9HJ2mEw2H3zXzTfeQAmemKPQOLgIwc9 +06ilg6+mIOyWMcfVR16kyx/8n7QyIkF03GPWxx0siP3ww5H+9Yr2yPlKXoSxp1Z lALFilcpfFuhcx1+lQ+HpbLqhbOYvPV6MLunTJrU6ZNkkT6fz7w6K6k1hbkyzrH0 BtO5Qe1vXyWodCt8sSYvONH/b4B9x9RsXiNBDSQrLCPLTzXzYiIxrHvCGebIr+5+ P+qQO01TQc2SjI0dhgkzAywSNj/JMahZepDwEHueMRPfZXW3ZTi+f56bgs7w2zse uAwTobSVa4TFFinvREOgfymd6F6BZtpH4WpZvW69 -----END CERTIFICATE-----Generated at Wed May 13 02:12:10 2026 by rpki-client