$ rpki-client -vvf rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa File: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (raw, json) Hash identifier: EnPb48KAH/rDHK4BXBIr8OrfPZBZCqfsFv/VR+LxTZA= Subject key identifier: AF:2B:20:81:5F:A3:4F:96:81:71:E9:1E:01:EF:67:C2:9D:AB:CE:D6 Certificate issuer: /CN=6682CFF7F80E4587133A4FFEFC163B1417741DC6 Certificate serial: 5FA166A298C75C81B1E398E022D1B8321E76B481 Authority key identifier: 66:82:CF:F7:F8:0E:45:87:13:3A:4F:FE:FC:16:3B:14:17:74:1D:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa Signing time: Sun 03 May 2026 02:18:11 +0000 ROA not before: Sun 03 May 2026 02:13:11 +0000 ROA not after: Sun 02 May 2027 02:18:11 +0000 asID: 23951 IP address blocks: 202.65.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.crl rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a1:66:a2:98:c7:5c:81:b1:e3:98:e0:22:d1:b8:32:1e:76:b4:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6682CFF7F80E4587133A4FFEFC163B1417741DC6 Validity Not Before: May 3 02:13:11 2026 GMT Not After : May 2 02:18:11 2027 GMT Subject: CN=AF2B20815FA34F968171E91E01EF67C29DABCED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c7:c9:99:3c:3d:51:eb:21:ef:61:0e:e5:a9: 1c:c1:ae:8e:40:03:18:ba:44:76:9a:00:8d:0c:2c: db:8c:38:6c:d3:34:86:0f:67:8d:3c:ce:74:3f:13: b3:d8:1a:c7:38:a7:e7:f8:49:ad:88:97:ba:a3:a2: 80:a9:93:6a:26:42:9d:d2:13:d1:c0:37:b5:de:ca: 66:6f:83:66:d8:5b:85:d9:0b:36:12:fa:fd:ac:9c: b0:71:4b:64:25:c4:05:13:07:ff:45:8d:2c:3b:43: f9:d8:e7:a3:14:c0:3c:ff:fb:1e:24:c5:ef:17:20: b3:63:cf:95:21:9c:4d:76:39:76:4a:a0:9a:40:dc: 2a:10:54:93:7c:29:92:a5:bb:21:59:23:8b:79:8c: ba:f0:91:7c:ce:61:72:fc:13:97:9f:23:18:dc:76: c7:c3:11:a0:11:01:ed:1e:26:ae:fc:25:81:71:4c: 19:58:f1:cd:c6:66:71:90:a9:54:46:6b:90:42:cc: ba:c7:16:02:d0:5d:91:73:9f:d0:44:24:07:c9:47: d2:81:5a:17:d0:61:40:f1:91:f5:d7:86:0c:60:8d: f8:f3:33:80:18:05:db:cc:55:bb:50:68:e1:55:3c: 0b:07:bc:e6:1b:a9:b5:4e:da:ba:19:27:ac:44:61: 87:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:2B:20:81:5F:A3:4F:96:81:71:E9:1E:01:EF:67:C2:9D:AB:CE:D6 X509v3 Authority Key Identifier: keyid:66:82:CF:F7:F8:0E:45:87:13:3A:4F:FE:FC:16:3B:14:17:74:1D:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/6682CFF7F80E4587133A4FFEFC163B1417741DC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6682CFF7F80E4587133A4FFEFC163B1417741DC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32332d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.120.0/23 Signature Algorithm: sha256WithRSAEncryption 24:4d:d5:13:18:01:89:e1:ec:e8:f1:46:d6:52:25:26:2d:25: 77:dc:7c:31:75:fe:8f:6e:19:13:dd:c6:3f:20:82:57:48:f0: 8a:4a:aa:8f:83:e2:57:52:9e:fd:8e:97:ed:5d:ef:24:65:8c: 1a:56:67:cf:a4:c3:e0:fa:06:7a:84:97:2d:0e:5a:fe:b2:5f: 3a:32:ae:d2:f4:f5:8e:00:1d:16:dd:25:ec:f0:00:ac:5a:8c: 17:7a:9a:af:6c:7f:55:d5:e9:3a:4e:a3:6d:e7:93:25:67:b8: 52:67:98:d9:0e:59:d4:af:c9:36:28:d2:c2:74:dc:94:d3:10: 39:54:b2:a9:36:18:49:df:75:66:50:40:48:23:4e:9d:01:ef: f1:39:ec:74:16:50:ad:80:b6:e5:28:69:c8:9e:2e:38:b8:2a: 4c:b3:1e:5f:3d:d0:3a:25:f8:45:9c:bb:e0:5f:8d:09:a0:16: 96:e8:5b:af:b0:e4:44:86:f4:e5:f5:76:8b:5e:8e:f8:88:c0: 6d:e0:cf:e4:49:11:42:c0:03:42:ff:9f:9a:8b:7d:4b:fe:3e: 90:4e:d3:bb:23:e8:b1:7a:b0:57:27:19:14:01:14:36:1c:47: fa:18:56:68:65:04:ca:0b:1f:c4:f6:c3:de:2f:c6:e2:cf:e2: 93:1f:48:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX6FmopjHXIGx45jgItG4Mh52tIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY4MkNGRjdGODBFNDU4NzEzM0E0RkZFRkMxNjNCMTQx Nzc0MURDNjAeFw0yNjA1MDMwMjEzMTFaFw0yNzA1MDIwMjE4MTFaMDMxMTAvBgNV BAMTKEFGMkIyMDgxNUZBMzRGOTY4MTcxRTkxRTAxRUY2N0MyOURBQkNFRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcx8mZPD1R6yHvYQ7lqRzBro5A Axi6RHaaAI0MLNuMOGzTNIYPZ408znQ/E7PYGsc4p+f4Sa2Il7qjooCpk2omQp3S E9HAN7XeymZvg2bYW4XZCzYS+v2snLBxS2QlxAUTB/9FjSw7Q/nY56MUwDz/+x4k xe8XILNjz5UhnE12OXZKoJpA3CoQVJN8KZKluyFZI4t5jLrwkXzOYXL8E5efIxjc dsfDEaARAe0eJq78JYFxTBlY8c3GZnGQqVRGa5BCzLrHFgLQXZFzn9BEJAfJR9KB WhfQYUDxkfXXhgxgjfjzM4AYBdvMVbtQaOFVPAsHvOYbqbVO2roZJ6xEYYczAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrysggV+jT5aBcekeAe9nwp2rztYwHwYDVR0j BBgwFoAUZoLP9/gORYcTOk/+/BY7FBd0HcYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWU2YTdlNDYtYjZhZC00YTdkLWI5MzAtMWFiMGJmMDJkZDVkLzAvNjY4MkNGRjdG ODBFNDU4NzEzM0E0RkZFRkMxNjNCMTQxNzc0MURDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NjgyQ0ZGN0Y4MEU0NTg3MTMzQTRGRkVGQzE2M0IxNDE3NzQx REM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpBeDANBgkqhkiG 9w0BAQsFAAOCAQEAJE3VExgBieHs6PFG1lIlJi0ld9x8MXX+j24ZE93GPyCCV0jw ikqqj4PiV1Ke/Y6X7V3vJGWMGlZnz6TD4PoGeoSXLQ5a/rJfOjKu0vT1jgAdFt0l 7PAArFqMF3qar2x/VdXpOk6jbeeTJWe4UmeY2Q5Z1K/JNijSwnTclNMQOVSyqTYY Sd91ZlBASCNOnQHv8TnsdBZQrYC25ShpyJ4uOLgqTLMeXz3QOiX4RZy74F+NCaAW luhbr7DkRIb05fV2i16O+IjAbeDP5EkRQsADQv+fmot9S/4+kE7TuyPosXqwVycZ FAEUNhxH+hhWaGUEygsfxPbD3i/G4s/ikx9Ipg== -----END CERTIFICATE-----Generated at Wed May 13 02:13:39 2026 by rpki-client