$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: OOU5THxfxOgaC6P/B6Iz0S/Pmv5Z5QhQjk2q18/sn/w= Subject key identifier: 5C:FF:84:51:EC:BD:45:21:DC:5D:88:BB:57:61:03:3F:C5:B7:CD:6F Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 5E9F1304CB3158ADD272E66380A29C83C88D7313 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:07 +0000 ROA not before: Sun 03 May 2026 03:12:07 +0000 ROA not after: Sun 02 May 2027 03:17:07 +0000 asID: 38778 IP address blocks: 203.201.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:9f:13:04:cb:31:58:ad:d2:72:e6:63:80:a2:9c:83:c8:8d:73:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:07 2026 GMT Not After : May 2 03:17:07 2027 GMT Subject: CN=5CFF8451ECBD4521DC5D88BB5761033FC5B7CD6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:32:c2:c8:3f:19:e1:35:53:d6:a6:39:90:30: ce:21:cf:70:a2:77:01:3d:ad:4a:0f:56:ef:d0:6d: 0a:b5:60:8d:70:a2:26:ea:d2:a3:97:8a:f0:b6:60: fb:8f:8c:3b:b3:d6:54:5c:60:58:b4:69:6c:cd:11: 7c:88:1a:cb:9d:26:d1:e6:85:6c:ec:1f:0d:c7:ec: d1:a2:4e:60:84:9b:16:24:f5:b5:3e:03:4b:30:7b: a2:bd:cf:77:9a:a3:32:eb:42:ce:cd:a4:a8:ac:5c: 58:14:46:c7:58:0d:9d:db:74:21:29:df:3c:cc:22: 41:7c:eb:b0:4a:d9:40:32:1b:46:1a:60:19:ed:59: f0:f1:f8:ca:eb:90:2e:8d:46:b7:d8:29:e9:5d:7b: c5:bd:c3:66:79:63:e1:02:4c:99:16:6e:be:e8:8c: 70:2d:a1:8b:7e:a7:18:0c:5e:5b:90:c6:77:62:b9: 17:ce:b5:1b:4f:62:db:1b:39:f4:ce:09:f9:6e:bd: 4c:f2:19:3b:17:78:a8:2f:61:53:95:5c:51:42:d9: fc:34:6c:c1:36:85:68:40:5d:61:ff:c4:0f:0b:9d: 0b:5e:dd:29:52:1c:75:c2:56:77:a9:d1:21:fa:0b: 24:7d:39:3b:91:49:bc:a4:b4:f5:3e:1f:d3:45:93: c3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FF:84:51:EC:BD:45:21:DC:5D:88:BB:57:61:03:3F:C5:B7:CD:6F X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/24 Signature Algorithm: sha256WithRSAEncryption b8:1b:5e:15:70:fd:c0:7a:45:c9:19:90:6b:59:f3:ae:bb:3c: 6c:44:5b:6a:46:8b:61:15:a0:05:2d:4d:63:a1:a4:6c:ad:3e: 39:bf:6d:a8:69:77:02:07:6d:db:65:34:d4:fd:e6:2e:bf:d1: e4:8d:17:f3:59:0d:fe:16:9c:2d:d6:04:3d:e7:d8:5c:a8:4a: 58:f4:00:e7:04:7c:c9:17:36:28:1c:74:4f:b9:a7:58:ec:4c: dc:b2:c7:93:7e:0c:f9:02:8e:ad:6d:38:3a:51:0f:62:ea:c0: da:de:85:58:69:29:e4:1f:ec:7a:df:39:70:df:92:9a:93:30: ac:c6:fd:02:5b:4c:8e:01:e0:4a:78:6c:27:b2:9e:1c:5d:4d: 3b:d5:43:11:23:a9:14:07:10:d8:f2:25:51:06:e9:3f:2b:4b: 8c:a2:91:77:3d:c4:07:2a:19:53:2e:a7:6c:58:97:84:f9:a6: 16:e5:8a:ab:5f:f0:73:ba:e7:2f:f7:39:d9:ee:2b:90:b5:ea: bb:a9:3c:fd:97:2b:1a:47:6d:81:3e:09:16:8b:b5:d0:bd:34: ba:9c:a1:3a:17:4b:17:07:3e:6f:0a:d5:0a:eb:7c:78:40:11: c6:bf:94:2f:04:ed:32:fc:39:39:a1:33:42:32:f5:02:f5:c7: a1:b3:34:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXp8TBMsxWK3ScuZjgKKcg8iNcxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDdaFw0yNzA1MDIwMzE3MDdaMDMxMTAvBgNV BAMTKDVDRkY4NDUxRUNCRDQ1MjFEQzVEODhCQjU3NjEwMzNGQzVCN0NENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUMsLIPxnhNVPWpjmQMM4hz3Ci dwE9rUoPVu/QbQq1YI1woibq0qOXivC2YPuPjDuz1lRcYFi0aWzNEXyIGsudJtHm hWzsHw3H7NGiTmCEmxYk9bU+A0swe6K9z3eaozLrQs7NpKisXFgURsdYDZ3bdCEp 3zzMIkF867BK2UAyG0YaYBntWfDx+MrrkC6NRrfYKelde8W9w2Z5Y+ECTJkWbr7o jHAtoYt+pxgMXluQxndiuRfOtRtPYtsbOfTOCfluvUzyGTsXeKgvYVOVXFFC2fw0 bME2hWhAXWH/xA8LnQte3SlSHHXCVnep0SH6CyR9OTuRSbyktPU+H9NFk8PHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXP+EUey9RSHcXYi7V2EDP8W3zW8wHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8msMA0GCSqG SIb3DQEBCwUAA4IBAQC4G14VcP3AekXJGZBrWfOuuzxsRFtqRothFaAFLU1joaRs rT45v22oaXcCB23bZTTU/eYuv9HkjRfzWQ3+Fpwt1gQ959hcqEpY9ADnBHzJFzYo HHRPuadY7EzcsseTfgz5Ao6tbTg6UQ9i6sDa3oVYaSnkH+x63zlw35KakzCsxv0C W0yOAeBKeGwnsp4cXU071UMRI6kUBxDY8iVRBuk/K0uMopF3PcQHKhlTLqdsWJeE +aYW5YqrX/Bzuucv9znZ7iuQteq7qTz9lysaR22BPgkWi7XQvTS6nKE6F0sXBz5v CtUK63x4QBHGv5QvBO0y/Dk5oTNCMvUC9cehszSQ -----END CERTIFICATE-----Generated at Wed May 13 02:15:58 2026 by rpki-client