$ rpki-client -vvf rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa File: 3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa (raw, json) Hash identifier: YX70OIsu7iTqiI3a5soFelDVlujYH0j+VtFdThdooz4= Subject key identifier: 5B:C7:42:FB:DE:27:1B:5A:B5:51:C6:8E:EF:46:5C:E8:38:A5:77:B6 Certificate issuer: /CN=EBA9D784E9CC3F2A70EB526976A01F48F5F52951 Certificate serial: 384503CD203E4E3DB72E27B56301FBBE8FB729E0 Authority key identifier: EB:A9:D7:84:E9:CC:3F:2A:70:EB:52:69:76:A0:1F:48:F5:F5:29:51 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa Signing time: Sun 03 May 2026 02:10:08 +0000 ROA not before: Sun 03 May 2026 02:05:08 +0000 ROA not after: Sun 02 May 2027 02:10:08 +0000 asID: 138823 IP address blocks: 203.161.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.crl rsync://rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:45:03:cd:20:3e:4e:3d:b7:2e:27:b5:63:01:fb:be:8f:b7:29:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EBA9D784E9CC3F2A70EB526976A01F48F5F52951 Validity Not Before: May 3 02:05:08 2026 GMT Not After : May 2 02:10:08 2027 GMT Subject: CN=5BC742FBDE271B5AB551C68EEF465CE838A577B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:b8:8f:9d:2e:47:41:25:ea:30:ca:71:ce: 4a:ea:82:7d:18:ce:77:21:0f:46:8b:da:34:ff:70: 56:4b:71:64:f2:dd:db:71:68:06:74:85:f2:71:69: 61:67:4a:9c:28:42:89:a4:c0:76:b2:70:3e:24:a8: 7c:41:a3:de:08:b6:a9:d2:ae:d4:f7:49:44:7c:16: b3:0e:99:ad:fc:3d:28:b2:df:1f:15:1a:de:11:ae: cc:b2:db:78:c2:d9:3c:3e:87:78:f9:db:53:95:81: 0b:3c:07:2e:59:08:b1:b8:7b:31:40:44:1d:f4:2f: 8d:04:2d:cf:1a:77:15:af:58:75:83:f5:bf:7b:85: 48:44:44:c1:90:af:6c:e5:64:0f:51:47:f7:ab:f3: 37:42:56:52:9d:14:07:48:2c:9f:2c:26:2c:7f:b1: 28:7d:90:9c:59:cc:16:ea:b7:6b:48:71:91:a6:c9: 6e:a0:b3:e4:90:88:2e:d1:0d:f4:7f:97:2e:b6:db: 76:2f:c2:46:14:b4:0b:4e:56:7a:9d:cf:e5:ac:5f: de:e3:fc:89:45:b9:7a:3f:0d:71:00:9a:5d:5c:86: 36:af:6f:d9:ca:0d:e1:ba:4d:fb:84:94:be:64:71: 70:0a:ac:0d:a6:6c:08:0d:55:1d:f6:18:d7:4f:2d: 77:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C7:42:FB:DE:27:1B:5A:B5:51:C6:8E:EF:46:5C:E8:38:A5:77:B6 X509v3 Authority Key Identifier: keyid:EB:A9:D7:84:E9:CC:3F:2A:70:EB:52:69:76:A0:1F:48:F5:F5:29:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EBA9D784E9CC3F2A70EB526976A01F48F5F52951.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.24.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:a3:bb:9d:5d:37:90:22:e7:2d:5b:27:52:3d:6e:df:2a:7a: 15:3a:b9:31:14:06:cf:5f:f1:0a:90:71:45:fa:cd:be:85:3e: 7b:b7:4d:c7:b0:e9:f7:b8:04:04:c7:b6:24:a3:23:d6:da:ec: df:8e:72:1a:f7:7a:ca:ee:63:20:7f:52:93:3f:20:00:cb:cd: 16:73:e0:6e:c7:53:e5:4c:0a:17:5b:73:19:bd:5e:82:5a:c7: b0:4e:f3:75:c3:4a:7d:7b:e0:f8:ca:b4:a5:bd:5f:4a:47:df: 49:fe:7a:0c:d2:30:2c:72:ef:1f:70:28:be:e6:a5:a0:2e:c7: 91:66:d7:36:a0:19:40:8c:90:0a:fc:f2:d7:13:30:a8:9d:7b: c7:32:3f:e4:9c:21:64:47:e5:b6:95:68:20:4b:c1:f1:d2:24: b7:46:45:b7:20:87:13:42:13:ad:52:80:67:3d:6a:5b:44:62: 9d:ef:81:0e:7c:de:48:de:d2:ff:17:8c:e8:ff:52:34:19:3e: 8d:7f:51:32:6a:e4:68:4b:c1:10:84:5b:8b:06:ca:04:7b:dc: 6f:82:f6:b9:3d:18:44:ec:69:ed:4d:73:b7:ed:77:54:c3:8c: 99:90:a8:d7:0b:b6:5e:a0:b7:04:40:c4:08:3c:98:7a:91:fc: fb:5a:fd:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOEUDzSA+Tj23Lie1YwH7vo+3KeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUJBOUQ3ODRFOUNDM0YyQTcwRUI1MjY5NzZBMDFGNDhG NUY1Mjk1MTAeFw0yNjA1MDMwMjA1MDhaFw0yNzA1MDIwMjEwMDhaMDMxMTAvBgNV BAMTKDVCQzc0MkZCREUyNzFCNUFCNTUxQzY4RUVGNDY1Q0U4MzhBNTc3QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDa7iPnS5HQSXqMMpxzkrqgn0Y znchD0aL2jT/cFZLcWTy3dtxaAZ0hfJxaWFnSpwoQomkwHaycD4kqHxBo94ItqnS rtT3SUR8FrMOma38PSiy3x8VGt4Rrsyy23jC2Tw+h3j521OVgQs8By5ZCLG4ezFA RB30L40ELc8adxWvWHWD9b97hUhERMGQr2zlZA9RR/er8zdCVlKdFAdILJ8sJix/ sSh9kJxZzBbqt2tIcZGmyW6gs+SQiC7RDfR/ly6223YvwkYUtAtOVnqdz+WsX97j /IlFuXo/DXEAml1chjavb9nKDeG6TfuElL5kcXAKrA2mbAgNVR32GNdPLXcpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW8dC+94nG1q1UcaO70Zc6Dild7YwHwYDVR0j BBgwFoAU66nXhOnMPypw61JpdqAfSPX1KVEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDIxNThhZWMtNTI4MS00MmU2LTk3OWItZmNhNjFkNDdjODQ1LzAvRUJBOUQ3ODRF OUNDM0YyQTcwRUI1MjY5NzZBMDFGNDhGNUY1Mjk1MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQkE5RDc4NEU5Q0MzRjJBNzBFQjUyNjk3NkEwMUY0OEY1RjUy OTUxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzAzMzJlMzEzNjMxMmUzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy6EYMA0GCSqG SIb3DQEBCwUAA4IBAQB+o7udXTeQIuctWydSPW7fKnoVOrkxFAbPX/EKkHFF+s2+ hT57t03HsOn3uAQEx7YkoyPW2uzfjnIa93rK7mMgf1KTPyAAy80Wc+Bux1PlTAoX W3MZvV6CWsewTvN1w0p9e+D4yrSlvV9KR99J/noM0jAscu8fcCi+5qWgLseRZtc2 oBlAjJAK/PLXEzConXvHMj/knCFkR+W2lWggS8Hx0iS3RkW3IIcTQhOtUoBnPWpb RGKd74EOfN5I3tL/F4zo/1I0GT6Nf1EyauRoS8EQhFuLBsoEe9xvgva5PRhE7Gnt TXO37XdUw4yZkKjXC7ZeoLcEQMQIPJh6kfz7Wv2a -----END CERTIFICATE-----Generated at Wed May 13 02:20:39 2026 by rpki-client