$ rpki-client -vvf rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa File: 3230332e3134352e36322e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: bfwByw1OryUOPM+r8Xth/6t7HmBI225IaP1YDRFG3v0= Subject key identifier: 56:8B:12:EA:DB:92:94:8E:0E:2B:D7:4F:50:EB:EA:80:A7:D1:D8:CE Certificate issuer: /CN=0171EAA218774432ABC9A9D090D868F4943C2BC9 Certificate serial: 7A13400D70CD9488D0DA19A87413ED0315E132DD Authority key identifier: 01:71:EA:A2:18:77:44:32:AB:C9:A9:D0:90:D8:68:F4:94:3C:2B:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa Signing time: Sun 03 May 2026 02:24:51 +0000 ROA not before: Sun 03 May 2026 02:19:51 +0000 ROA not after: Sun 02 May 2027 02:24:51 +0000 asID: 46023 IP address blocks: 203.145.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.crl rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:13:40:0d:70:cd:94:88:d0:da:19:a8:74:13:ed:03:15:e1:32:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0171EAA218774432ABC9A9D090D868F4943C2BC9 Validity Not Before: May 3 02:19:51 2026 GMT Not After : May 2 02:24:51 2027 GMT Subject: CN=568B12EADB92948E0E2BD74F50EBEA80A7D1D8CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e9:c6:a7:7c:4e:88:51:69:86:27:7a:1f:bd: 01:be:28:d3:33:f5:60:cf:3a:67:87:dc:99:6c:6e: f1:de:79:d2:7f:28:a9:ed:32:7b:f6:52:96:d0:48: f1:b7:6a:49:68:e2:87:8c:35:9c:d4:47:94:45:95: 7d:12:03:83:e0:d4:10:be:27:26:0d:cd:6f:79:76: bf:ef:3a:70:75:03:26:63:e1:3d:5d:68:9e:65:a5: 73:4c:44:cc:35:ed:f1:e5:0d:ac:42:82:36:9a:b3: ef:09:db:be:79:b7:1b:86:2e:e0:02:51:5f:48:69: 85:19:b5:cd:69:67:96:d0:e5:f3:08:4f:98:f6:1b: d3:36:2a:26:43:b2:77:b0:3c:75:90:ff:ea:f4:68: db:3d:2d:34:45:d6:2f:0b:10:43:c3:c3:ef:62:89: 21:e8:87:37:e3:c7:e1:df:66:f4:74:db:77:68:8f: 75:00:eb:cb:b7:26:6e:b0:4d:33:b5:d9:95:10:47: a2:44:02:34:f2:a1:68:44:33:2e:72:f4:ad:e5:35: 32:e9:f8:1d:51:e4:2a:e1:48:4c:0e:4c:6f:9a:76: 72:d0:49:3f:bd:e2:62:e7:f2:51:bc:93:1e:06:34: c7:f0:6d:d7:32:c2:e2:58:3a:e0:3f:f4:a4:15:0a: e7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8B:12:EA:DB:92:94:8E:0E:2B:D7:4F:50:EB:EA:80:A7:D1:D8:CE X509v3 Authority Key Identifier: keyid:01:71:EA:A2:18:77:44:32:AB:C9:A9:D0:90:D8:68:F4:94:3C:2B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.62.0/23 Signature Algorithm: sha256WithRSAEncryption b7:e7:82:c2:14:77:3e:be:b4:94:c0:59:53:8c:f1:68:c2:cb: 04:ed:df:b4:2e:84:29:51:4e:da:90:b4:63:89:3e:2c:6f:bb: c7:37:19:8b:95:62:a7:34:68:6e:5a:fa:73:89:a9:9e:d6:9e: 36:3b:4b:61:3e:9f:8c:96:4e:0f:61:fb:74:73:78:2b:9e:15: 61:b2:42:91:32:29:73:62:bf:11:bc:70:4c:3b:d0:93:6f:8b: 46:ad:7f:f2:ac:2d:d4:27:fe:d3:0c:20:d1:68:47:2e:aa:9d: 24:66:df:08:a1:e1:3f:25:09:48:b2:84:3e:00:74:99:a4:a6: 96:31:8c:80:97:7a:0a:c0:1f:dd:eb:dd:17:82:2d:14:4f:03: 91:5a:78:de:8b:0e:3f:d2:62:dc:5a:19:64:70:0e:ba:95:0e: 8a:8a:e5:c6:c7:8e:2d:98:d7:c6:47:12:c6:d1:6b:3c:9a:f7: 59:ae:f7:e9:e8:03:72:c3:b2:c0:01:81:0c:89:bc:36:00:0c: 80:6c:d1:29:64:a3:83:d4:a3:66:f2:91:1e:a3:b7:2d:2b:4e: 90:9b:a4:db:c6:68:33:8c:5e:37:59:3b:1e:d2:ce:a7:9a:e7: 46:98:7d:1e:13:05:52:f4:55:64:06:70:47:b6:40:e7:4e:35: ed:71:bd:30 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUehNADXDNlIjQ2hmodBPtAxXhMt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE3MUVBQTIxODc3NDQzMkFCQzlBOUQwOTBEODY4RjQ5 NDNDMkJDOTAeFw0yNjA1MDMwMjE5NTFaFw0yNzA1MDIwMjI0NTFaMDMxMTAvBgNV BAMTKDU2OEIxMkVBREI5Mjk0OEUwRTJCRDc0RjUwRUJFQTgwQTdEMUQ4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr6canfE6IUWmGJ3ofvQG+KNMz 9WDPOmeH3JlsbvHeedJ/KKntMnv2UpbQSPG3aklo4oeMNZzUR5RFlX0SA4Pg1BC+ JyYNzW95dr/vOnB1AyZj4T1daJ5lpXNMRMw17fHlDaxCgjaas+8J2755txuGLuAC UV9IaYUZtc1pZ5bQ5fMIT5j2G9M2KiZDsnewPHWQ/+r0aNs9LTRF1i8LEEPDw+9i iSHohzfjx+HfZvR023doj3UA68u3Jm6wTTO12ZUQR6JEAjTyoWhEMy5y9K3lNTLp +B1R5CrhSEwOTG+adnLQST+94mLn8lG8kx4GNMfwbdcywuJYOuA/9KQVCudvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVosS6tuSlI4OK9dPUOvqgKfR2M4wHwYDVR0j BBgwFoAUAXHqohh3RDKryanQkNho9JQ8K8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzNkZGE5MjMtZWEzNi00NTZiLWJhZmUtNDBlNmI2MmY1MGM1LzAvMDE3MUVBQTIx ODc3NDQzMkFCQzlBOUQwOTBEODY4RjQ5NDNDMkJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMTcxRUFBMjE4Nzc0NDMyQUJDOUE5RDA5MEQ4NjhGNDk0M0My QkM5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcuRPjANBgkqhkiG 9w0BAQsFAAOCAQEAt+eCwhR3Pr60lMBZU4zxaMLLBO3ftC6EKVFO2pC0Y4k+LG+7 xzcZi5VipzRoblr6c4mpntaeNjtLYT6fjJZOD2H7dHN4K54VYbJCkTIpc2K/Ebxw TDvQk2+LRq1/8qwt1Cf+0wwg0WhHLqqdJGbfCKHhPyUJSLKEPgB0maSmljGMgJd6 CsAf3evdF4ItFE8DkVp43osOP9Ji3FoZZHAOupUOiorlxseOLZjXxkcSxtFrPJr3 Wa736egDcsOywAGBDIm8NgAMgGzRKWSjg9SjZvKRHqO3LStOkJuk28ZoM4xeN1k7 HtLOp5rnRph9HhMFUvRVZAZwR7ZA50417XG9MA== -----END CERTIFICATE-----Generated at Wed May 13 05:57:52 2026 by rpki-client