$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137352e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: TOiqdnUQKrsv6037Qj9pyENIOOzUL5k2QHotp9iQ8zo= Subject key identifier: 8B:7D:C5:85:69:B5:F6:24:B2:87:BB:D2:5C:31:FD:CD:F6:60:20:A3 Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 2E22B509B262D0F0721561BEDF4BFC3F07862FDD Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137352e302f32342d3234203d3e203338373738.roa Signing time: Sun 03 May 2026 03:17:16 +0000 ROA not before: Sun 03 May 2026 03:12:16 +0000 ROA not after: Sun 02 May 2027 03:17:16 +0000 asID: 38778 IP address blocks: 203.201.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:22:b5:09:b2:62:d0:f0:72:15:61:be:df:4b:fc:3f:07:86:2f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:16 2026 GMT Not After : May 2 03:17:16 2027 GMT Subject: CN=8B7DC58569B5F624B287BBD25C31FDCDF66020A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fe:b6:5e:c9:9a:41:3f:83:cb:25:e4:02:a8: 9f:72:ee:fd:4d:53:c2:8f:7b:c9:7e:47:1f:66:6d: e1:1a:b0:99:2c:e0:da:fc:74:d5:b0:b2:eb:ba:5d: f7:3d:14:1c:a5:fe:d7:4c:ef:b7:38:e9:9c:62:6e: 53:d0:2d:f7:a0:e7:78:88:ad:da:59:8c:7b:96:31: 57:33:c4:a8:3d:17:f7:94:80:c2:62:72:d8:42:9c: 45:c6:f2:ba:ae:90:42:72:ed:9f:ac:16:41:b9:17: 9c:e2:b4:ae:47:0e:de:1d:3c:f6:24:5d:f3:c5:b2: 9f:c4:52:0b:5c:76:f6:f0:6b:4c:c8:ef:30:d4:a5: 6c:c0:2a:5f:24:c1:bb:68:25:04:7e:9a:e0:44:73: 65:2a:ef:ee:36:e4:de:52:be:61:c9:86:80:79:5e: c4:75:30:8e:35:bf:29:5f:1c:b0:f6:b5:4c:2b:45: 19:f1:0b:56:7b:77:21:7d:0f:9e:e1:82:f5:95:a3: 5a:3e:53:0a:52:7b:93:8d:19:44:ed:9e:07:6f:6d: 44:4d:74:68:60:a3:bd:18:60:80:ea:d0:ea:4b:eb: 1f:05:68:3a:9c:59:b9:bf:4a:8e:13:9b:88:c3:f1: b1:32:be:44:a5:81:7f:96:73:bd:76:97:3f:e6:2f: a6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7D:C5:85:69:B5:F6:24:B2:87:BB:D2:5C:31:FD:CD:F6:60:20:A3 X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.175.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:29:80:6b:a5:b4:0e:bd:37:df:ef:04:a6:0a:26:f6:e7:8f: 6b:55:a2:05:3e:be:78:47:81:71:15:21:0d:ad:6f:0e:89:90: 49:ef:5f:67:73:31:f2:3f:7b:82:1a:9d:ca:a5:f3:8b:e8:65: 32:ec:88:bd:97:39:86:d6:12:6f:96:41:7c:e1:25:fa:d5:91: 5d:bf:08:6a:1c:c4:27:a5:77:9b:1f:10:66:9a:ae:72:1e:18: 3a:03:12:e9:59:91:03:c9:de:0d:09:4e:ef:2e:a7:49:c6:75: 78:67:42:7a:e8:42:e5:fe:6e:6a:01:bc:8a:9d:66:a8:49:89: fc:d9:52:7f:0d:d1:1c:30:0e:1d:cb:c7:c7:63:a1:15:b4:50: 59:19:4e:9a:9c:c1:73:cf:4d:33:38:f0:e9:3b:fb:1e:3f:48: 56:5c:91:ac:22:79:2d:3b:e6:20:67:b4:22:70:26:35:70:db: 6e:40:9d:f2:2d:46:4d:87:a5:85:43:9b:f6:d5:77:99:a0:98: 9b:0f:36:0a:da:c3:5c:4d:c2:1d:98:c5:38:14:d5:f1:79:ee: 12:5a:61:82:4d:4f:cd:a6:dc:a6:3c:be:56:46:81:c7:fc:9c: 62:95:64:26:9a:64:e9:3a:be:ae:04:86:4d:d2:db:cc:6a:ee: 06:6d:57:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULiK1CbJi0PByFWG+30v8PweGL90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMTZaFw0yNzA1MDIwMzE3MTZaMDMxMTAvBgNV BAMTKDhCN0RDNTg1NjlCNUY2MjRCMjg3QkJEMjVDMzFGRENERjY2MDIwQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh/rZeyZpBP4PLJeQCqJ9y7v1N U8KPe8l+Rx9mbeEasJks4Nr8dNWwsuu6Xfc9FByl/tdM77c46ZxiblPQLfeg53iI rdpZjHuWMVczxKg9F/eUgMJicthCnEXG8rqukEJy7Z+sFkG5F5zitK5HDt4dPPYk XfPFsp/EUgtcdvbwa0zI7zDUpWzAKl8kwbtoJQR+muBEc2Uq7+425N5SvmHJhoB5 XsR1MI41vylfHLD2tUwrRRnxC1Z7dyF9D57hgvWVo1o+UwpSe5ONGUTtngdvbURN dGhgo70YYIDq0OpL6x8FaDqcWbm/So4Tm4jD8bEyvkSlgX+Wc712lz/mL6Y7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi33FhWm19iSyh7vSXDH9zfZgIKMwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mvMA0GCSqG SIb3DQEBCwUAA4IBAQBcKYBrpbQOvTff7wSmCib2549rVaIFPr54R4FxFSENrW8O iZBJ719nczHyP3uCGp3KpfOL6GUy7Ii9lzmG1hJvlkF84SX61ZFdvwhqHMQnpXeb HxBmmq5yHhg6AxLpWZEDyd4NCU7vLqdJxnV4Z0J66ELl/m5qAbyKnWaoSYn82VJ/ DdEcMA4dy8fHY6EVtFBZGU6anMFzz00zOPDpO/seP0hWXJGsInktO+YgZ7QicCY1 cNtuQJ3yLUZNh6WFQ5v21XeZoJibDzYK2sNcTcIdmMU4FNXxee4SWmGCTU/Nptym PL5WRoHH/JxilWQmmmTpOr6uBIZN0tvMau4GbVfa -----END CERTIFICATE-----Generated at Wed May 13 03:47:59 2026 by rpki-client