$ rpki-client -vvf rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa File: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (raw, json) Hash identifier: mLNvyo56xMvlY2ZSKvstmsPMbawgSec2YeBLS8bZ9sA= Subject key identifier: A2:BD:DF:FE:01:FF:93:CB:25:7D:69:1E:2C:89:06:3F:27:0B:38:93 Certificate issuer: /CN=6682CFF7F80E4587133A4FFEFC163B1417741DC6 Certificate serial: DB47DA99EF89800B65AD4BF8E02106AC97352B Authority key identifier: 66:82:CF:F7:F8:0E:45:87:13:3A:4F:FE:FC:16:3B:14:17:74:1D:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa Signing time: Sun 03 May 2026 02:18:13 +0000 ROA not before: Sun 03 May 2026 02:13:13 +0000 ROA not after: Sun 02 May 2027 02:18:13 +0000 asID: 23951 IP address blocks: 202.65.120.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.crl rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: db:47:da:99:ef:89:80:0b:65:ad:4b:f8:e0:21:06:ac:97:35:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6682CFF7F80E4587133A4FFEFC163B1417741DC6 Validity Not Before: May 3 02:13:13 2026 GMT Not After : May 2 02:18:13 2027 GMT Subject: CN=A2BDDFFE01FF93CB257D691E2C89063F270B3893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:01:03:cc:a6:52:43:7a:62:5e:8b:90:44:7c: 70:e6:24:20:93:ff:65:9c:77:c7:8a:db:dc:37:e0: 2e:97:77:c5:aa:50:c9:0d:b1:c3:f7:f8:51:32:15: 8c:69:cb:5f:b2:3e:6b:24:e9:1e:96:e2:67:f5:37: 4f:5a:17:e6:c7:55:17:7b:0d:36:94:35:50:af:1f: 9f:84:2c:8f:53:48:da:97:bc:1b:cb:3f:05:5d:ce: ce:68:11:32:07:be:98:60:e9:90:3f:51:7e:3b:ed: 89:a9:f8:fc:ce:88:f1:81:70:0a:ef:8c:e3:5a:ea: e2:54:9f:73:2d:5a:e5:f4:90:6e:46:1f:2c:a3:b5: b3:13:53:f1:18:31:d6:cc:59:2a:c8:98:c1:f2:e6: 1a:10:92:d7:2b:0e:14:20:79:a8:bf:7f:9b:57:f7: 78:26:44:cd:cd:7f:aa:b1:7d:9b:96:e1:80:52:78: d1:dd:4b:67:94:61:27:24:57:74:aa:a0:56:37:ce: 09:d5:d4:3d:68:b2:66:06:30:3a:94:24:25:a8:1c: 9a:e9:4b:41:5a:bf:b5:0f:09:cd:85:7c:12:e9:2b: fb:34:63:d9:69:28:6d:08:eb:23:3f:25:44:c1:7e: 13:15:50:b7:c7:f1:ab:db:9f:a3:5a:3c:5b:e6:bd: 82:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BD:DF:FE:01:FF:93:CB:25:7D:69:1E:2C:89:06:3F:27:0B:38:93 X509v3 Authority Key Identifier: keyid:66:82:CF:F7:F8:0E:45:87:13:3A:4F:FE:FC:16:3B:14:17:74:1D:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:b4:2c:92:35:f5:47:b7:a7:7a:b9:8d:0a:6f:fb:e9:dd:14: 24:8f:4c:5a:70:f4:33:38:dd:f5:f1:a7:44:48:d6:2e:56:bf: 3c:a8:4d:0d:86:11:5f:78:26:d2:e5:c5:21:d9:9d:dd:fc:a0: ac:61:c9:27:67:96:c9:3c:ec:cd:f2:c5:32:b2:de:9c:22:db: e2:8d:3d:37:dc:2e:48:0f:ef:65:13:f0:44:84:a4:3f:ae:00: 2e:b0:e7:c0:4a:7a:e0:cf:d4:8c:90:ca:9f:9d:6e:30:14:b4: ab:66:dc:16:80:86:8a:14:c3:01:5e:3f:81:be:f7:b1:5e:64: 28:7c:6f:72:07:12:47:6f:7f:81:b3:4b:49:07:31:7e:14:4d: b9:8c:4b:8a:5b:78:40:14:6f:10:98:6c:8b:bd:64:0d:dd:d4: d8:d8:00:5c:fc:33:90:a3:72:b5:b8:7a:26:5d:3a:04:22:d7: 22:26:e0:41:11:38:0a:e1:97:74:4b:fc:82:1c:47:aa:64:70: 8b:59:d6:6c:48:3c:d4:6b:77:dc:8f:70:c8:ac:43:35:8a:bb: 47:87:a3:5f:72:e2:2b:17:6e:26:37:f8:2b:2f:d1:b6:c7:df: e7:ca:d3:6e:80:1f:e6:1f:16:86:41:e5:71:a2:9b:f9:db:c1: c3:29:84:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUANtH2pnviYALZa1L+OAhBqyXNSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY4MkNGRjdGODBFNDU4NzEzM0E0RkZFRkMxNjNCMTQx Nzc0MURDNjAeFw0yNjA1MDMwMjEzMTNaFw0yNzA1MDIwMjE4MTNaMDMxMTAvBgNV BAMTKEEyQkRERkZFMDFGRjkzQ0IyNTdENjkxRTJDODkwNjNGMjcwQjM4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFAQPMplJDemJei5BEfHDmJCCT /2Wcd8eK29w34C6Xd8WqUMkNscP3+FEyFYxpy1+yPmsk6R6W4mf1N09aF+bHVRd7 DTaUNVCvH5+ELI9TSNqXvBvLPwVdzs5oETIHvphg6ZA/UX477Ymp+PzOiPGBcArv jONa6uJUn3MtWuX0kG5GHyyjtbMTU/EYMdbMWSrImMHy5hoQktcrDhQgeai/f5tX 93gmRM3Nf6qxfZuW4YBSeNHdS2eUYSckV3SqoFY3zgnV1D1osmYGMDqUJCWoHJrp S0Fav7UPCc2FfBLpK/s0Y9lpKG0I6yM/JUTBfhMVULfH8avbn6NaPFvmvYL7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUor3f/gH/k8slfWkeLIkGPycLOJMwHwYDVR0j BBgwFoAUZoLP9/gORYcTOk/+/BY7FBd0HcYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWU2YTdlNDYtYjZhZC00YTdkLWI5MzAtMWFiMGJmMDJkZDVkLzAvNjY4MkNGRjdG ODBFNDU4NzEzM0E0RkZFRkMxNjNCMTQxNzc0MURDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NjgyQ0ZGN0Y4MEU0NTg3MTMzQTRGRkVGQzE2M0IxNDE3NzQx REM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzMzIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspBeDANBgkqhkiG 9w0BAQsFAAOCAQEATLQskjX1R7enermNCm/76d0UJI9MWnD0Mzjd9fGnREjWLla/ PKhNDYYRX3gm0uXFIdmd3fygrGHJJ2eWyTzszfLFMrLenCLb4o09N9wuSA/vZRPw RISkP64ALrDnwEp64M/UjJDKn51uMBS0q2bcFoCGihTDAV4/gb73sV5kKHxvcgcS R29/gbNLSQcxfhRNuYxLilt4QBRvEJhsi71kDd3U2NgAXPwzkKNytbh6Jl06BCLX IibgQRE4CuGXdEv8ghxHqmRwi1nWbEg81Gt33I9wyKxDNYq7R4ejX3LiKxduJjf4 Ky/Rtsff58rTboAf5h8WhkHlcaKb+dvBwymEJA== -----END CERTIFICATE-----Generated at Wed May 13 01:45:19 2026 by rpki-client