$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa File: 3230322e34372e3138382e302f32332d3234203d3e203435333035.roa (raw, json) Hash identifier: 0+nHSjmEBtHrdpW5swBsy/CGgBdToecJRrJ4YRQ1Ieo= Subject key identifier: F6:B6:F5:A9:28:80:31:9E:54:08:1C:D4:56:57:48:33:BF:2F:3F:82 Certificate issuer: /CN=8863D43C2CD36E9DE28C7E55F1891CC25C4F2985 Certificate serial: 68AF928F7DE0DE8DDEAEBBADA23E9983F5758479 Authority key identifier: 88:63:D4:3C:2C:D3:6E:9D:E2:8C:7E:55:F1:89:1C:C2:5C:4F:29:85 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa Signing time: Sun 03 May 2026 02:18:26 +0000 ROA not before: Sun 03 May 2026 02:13:26 +0000 ROA not after: Sun 02 May 2027 02:18:26 +0000 asID: 45305 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.crl rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:af:92:8f:7d:e0:de:8d:de:ae:bb:ad:a2:3e:99:83:f5:75:84:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8863D43C2CD36E9DE28C7E55F1891CC25C4F2985 Validity Not Before: May 3 02:13:26 2026 GMT Not After : May 2 02:18:26 2027 GMT Subject: CN=F6B6F5A92880319E54081CD456574833BF2F3F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:52:42:1a:a4:54:71:eb:65:14:3e:04:c9:fe: 7e:d2:52:9e:33:3a:b1:76:49:8f:a0:43:9d:4a:8d: 4a:42:fd:2e:aa:94:1d:9f:68:bb:88:93:d9:8c:65: fc:51:60:85:7e:96:a1:35:d5:7f:db:5f:d7:55:ae: 41:6d:76:7c:67:2b:ee:15:7e:ca:c0:63:c8:b1:45: f5:51:e7:45:e1:ef:26:ef:4a:73:a8:76:64:dd:67: f8:b0:1e:10:78:42:0d:fb:9c:0d:fa:9a:4d:42:fc: 8a:6e:52:c9:4c:2a:d8:e3:62:28:cd:a0:3d:33:b6: 61:63:60:f2:8a:9f:2a:28:27:30:70:2e:bd:92:2a: bd:13:1b:cf:44:1c:91:2f:36:d5:c5:46:c1:98:df: 1a:52:3f:ba:52:5a:1f:4f:78:6f:b6:12:b3:b0:a0: 4b:e1:20:22:7b:01:c0:21:93:ef:a1:7a:bd:1e:60: 84:79:cf:b5:58:03:79:16:89:d7:4a:dc:9a:05:50: ea:13:79:95:a5:4e:3d:08:95:80:8c:1d:f5:0e:82: ab:d5:95:59:00:63:2a:c3:85:a2:65:f5:21:26:e9: 99:ff:dc:ac:01:6e:67:96:5c:66:9b:9e:0c:66:38: f1:f9:ba:d3:2b:87:69:45:e0:ee:e9:99:38:aa:c3: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B6:F5:A9:28:80:31:9E:54:08:1C:D4:56:57:48:33:BF:2F:3F:82 X509v3 Authority Key Identifier: keyid:88:63:D4:3C:2C:D3:6E:9D:E2:8C:7E:55:F1:89:1C:C2:5C:4F:29:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8863D43C2CD36E9DE28C7E55F1891CC25C4F2985.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption 91:9e:8a:48:99:8d:85:6c:64:2d:52:de:a5:d9:e7:9c:03:cd: 31:25:31:52:4a:87:a6:d5:29:c1:e0:4b:14:b4:97:f4:b6:d2: 3a:ee:43:04:fd:23:2c:cb:a7:68:82:1d:c1:79:29:1f:84:2b: fc:92:95:4b:25:f3:f4:a2:6e:85:ea:e1:5e:27:23:a5:1c:84: 93:39:ad:c6:9a:61:cf:ce:0b:11:40:db:b3:57:76:59:9b:48: 8c:d0:00:a5:c2:89:f5:f7:1e:07:da:c2:3d:b9:67:47:19:f2: 02:84:7d:0b:86:a0:28:75:39:f6:01:12:aa:73:96:9f:ad:fb: a1:67:e6:25:43:06:31:b3:76:a3:ec:35:0a:02:1c:50:81:08: 96:66:a0:6a:2d:a5:d7:1f:a4:d2:92:d3:bb:b9:3f:3f:24:f9: da:69:00:05:0c:77:a4:43:df:a5:75:a3:63:96:f5:09:ef:0d: cb:e3:55:cc:4a:29:84:ac:00:6c:8a:01:02:47:b0:ec:49:0d: da:83:9e:4a:df:4f:bf:11:2e:03:73:55:f1:3f:98:f1:dc:3e: 8e:fc:e5:cb:9e:0d:9e:d1:4f:fd:db:25:3e:86:18:03:22:fb: bc:ad:f7:e2:51:26:6f:83:92:45:c6:3d:6f:10:94:09:b1:11: f6:c2:e4:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaK+Sj33g3o3errutoj6Zg/V1hHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg2M0Q0M0MyQ0QzNkU5REUyOEM3RTU1RjE4OTFDQzI1 QzRGMjk4NTAeFw0yNjA1MDMwMjEzMjZaFw0yNzA1MDIwMjE4MjZaMDMxMTAvBgNV BAMTKEY2QjZGNUE5Mjg4MDMxOUU1NDA4MUNENDU2NTc0ODMzQkYyRjNGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqUkIapFRx62UUPgTJ/n7SUp4z OrF2SY+gQ51KjUpC/S6qlB2faLuIk9mMZfxRYIV+lqE11X/bX9dVrkFtdnxnK+4V fsrAY8ixRfVR50Xh7ybvSnOodmTdZ/iwHhB4Qg37nA36mk1C/IpuUslMKtjjYijN oD0ztmFjYPKKnyooJzBwLr2SKr0TG89EHJEvNtXFRsGY3xpSP7pSWh9PeG+2ErOw oEvhICJ7AcAhk++her0eYIR5z7VYA3kWiddK3JoFUOoTeZWlTj0IlYCMHfUOgqvV lVkAYyrDhaJl9SEm6Zn/3KwBbmeWXGabngxmOPH5utMrh2lF4O7pmTiqw7O7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9rb1qSiAMZ5UCBzUVldIM78vP4IwHwYDVR0j BBgwFoAUiGPUPCzTbp3ijH5V8YkcwlxPKYUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWVlOTQwMTQtODdmYS00YmMyLWIxYzYtN2ZkMmE4OTQ3NmYzLzAvODg2M0Q0M0My Q0QzNkU5REUyOEM3RTU1RjE4OTFDQzI1QzRGMjk4NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84ODYzRDQzQzJDRDM2RTlERTI4QzdFNTVGMTg5MUNDMjVDNEYy OTg1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcovvDANBgkqhkiG 9w0BAQsFAAOCAQEAkZ6KSJmNhWxkLVLepdnnnAPNMSUxUkqHptUpweBLFLSX9LbS Ou5DBP0jLMunaIIdwXkpH4Qr/JKVSyXz9KJuherhXicjpRyEkzmtxpphz84LEUDb s1d2WZtIjNAApcKJ9fceB9rCPblnRxnyAoR9C4agKHU59gESqnOWn637oWfmJUMG MbN2o+w1CgIcUIEIlmagai2l1x+k0pLTu7k/PyT52mkABQx3pEPfpXWjY5b1Ce8N y+NVzEophKwAbIoBAkew7EkN2oOeSt9PvxEuA3NV8T+Y8dw+jvzly54NntFP/dsl PoYYAyL7vK334lEmb4OSRcY9bxCUCbER9sLkSg== -----END CERTIFICATE-----Generated at Wed May 13 03:15:43 2026 by rpki-client