$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa File: 3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: MUcpE9ISijiu2jmaCVn/Sl4d64Wp2iYm3FrbZk8E76Q= Subject key identifier: 61:30:5F:37:53:28:B8:7E:79:99:8E:F3:B6:97:57:C8:55:E7:E7:8A Certificate issuer: /CN=ACF266E9010F46F691CC6A492EB1EAC623155D6B Certificate serial: 4D0DFC149C366A473FF69E68ACBD4CD32780DD55 Authority key identifier: AC:F2:66:E9:01:0F:46:F6:91:CC:6A:49:2E:B1:EA:C6:23:15:5D:6B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACF266E9010F46F691CC6A492EB1EAC623155D6B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa Signing time: Sun 03 May 2026 02:31:49 +0000 ROA not before: Sun 03 May 2026 02:26:49 +0000 ROA not after: Sun 02 May 2027 02:31:49 +0000 asID: 45298 IP address blocks: 203.171.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/ACF266E9010F46F691CC6A492EB1EAC623155D6B.crl rsync://rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/ACF266E9010F46F691CC6A492EB1EAC623155D6B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACF266E9010F46F691CC6A492EB1EAC623155D6B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0d:fc:14:9c:36:6a:47:3f:f6:9e:68:ac:bd:4c:d3:27:80:dd:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACF266E9010F46F691CC6A492EB1EAC623155D6B Validity Not Before: May 3 02:26:49 2026 GMT Not After : May 2 02:31:49 2027 GMT Subject: CN=61305F375328B87E79998EF3B69757C855E7E78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:46:06:b4:c9:8c:5f:f5:8e:50:db:f9:43:74: ec:6d:b8:30:f8:89:4f:de:9d:0a:e1:18:3c:4c:56: 7a:5e:5f:d9:30:0d:97:63:18:ec:4a:4f:af:7a:ee: 9e:9b:a6:e1:81:25:78:f4:62:fb:95:8b:42:6d:30: a0:ff:45:0b:89:4f:86:d2:40:63:2a:db:f8:69:81: c4:77:31:bf:fe:35:85:44:85:0c:42:ed:10:76:c7: e7:a2:b8:07:e0:0a:6a:3c:5d:ae:36:6a:b3:19:c4: bb:a7:c6:86:bc:d0:6c:70:8b:d6:e0:b9:bc:f9:48: 81:37:92:84:4a:52:20:ff:c2:22:60:aa:30:88:76: 2c:30:21:e1:54:31:de:ae:47:9d:a8:fd:da:ea:35: 33:38:21:b0:a1:a3:72:00:5b:99:68:20:f2:53:21: 06:e6:f0:43:ab:43:c7:d0:9b:ec:8e:03:06:45:9e: fb:33:1f:0c:cc:6e:68:38:82:43:b6:48:41:da:16: 3c:ad:6a:44:e5:ca:ca:6d:f3:1f:08:a0:00:5b:b5: 5b:e4:08:a2:b3:29:99:2a:07:fe:bb:58:e0:70:9f: 10:c9:cf:5a:45:70:c2:43:ae:2a:a6:df:88:85:93: 1e:d0:98:27:fe:9f:f1:6d:81:a7:97:93:23:13:68: a0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:30:5F:37:53:28:B8:7E:79:99:8E:F3:B6:97:57:C8:55:E7:E7:8A X509v3 Authority Key Identifier: keyid:AC:F2:66:E9:01:0F:46:F6:91:CC:6A:49:2E:B1:EA:C6:23:15:5D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/ACF266E9010F46F691CC6A492EB1EAC623155D6B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ACF266E9010F46F691CC6A492EB1EAC623155D6B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bf2ad4f-a72a-46d1-bd7d-a560c31efcad/0/3230332e3137312e3232312e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.171.221.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:5a:35:be:6f:f0:27:51:f0:99:bc:ba:c9:9d:5b:65:e8:a0: 02:40:05:55:b4:88:55:3d:4c:42:97:ae:ab:a8:d9:46:06:e1: e2:d7:d1:e2:a5:b8:4b:f7:60:c9:1b:71:bd:1b:48:fd:10:e5: aa:72:89:8e:34:f0:88:bd:d0:44:a5:be:bc:9f:79:4b:ce:2a: 79:b0:5a:ec:b1:95:23:55:da:3e:fe:32:03:4b:1f:67:6a:e9: 04:91:39:5a:30:54:96:8d:6b:2f:28:cf:68:6f:79:12:4e:8f: 19:f2:e8:4a:1b:69:3c:46:91:a2:e9:26:61:8a:f7:fd:1a:0d: 86:68:3d:3c:97:86:e8:23:31:5b:14:51:99:76:57:f6:b1:32: 86:05:79:ff:f5:50:cd:c3:c6:d0:08:73:de:21:ee:ae:de:da: 48:8b:0a:77:4c:8c:56:ee:0f:65:5c:3f:a9:9d:45:a1:8c:fd: 14:59:04:ee:13:79:eb:f5:c1:78:f9:84:10:07:23:6f:86:31: c8:be:f5:b3:10:f6:9b:17:b2:0b:ba:e4:c4:e9:f3:1e:a3:33: 62:e5:f8:82:41:ae:cc:64:ae:34:32:a3:e4:b6:e2:0e:40:60: e3:dc:5d:a7:27:aa:29:ca:39:19:80:cc:09:14:ff:ed:f2:ea: 94:02:5d:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTQ38FJw2akc/9p5orL1M0yeA3VUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNGMjY2RTkwMTBGNDZGNjkxQ0M2QTQ5MkVCMUVBQzYy MzE1NUQ2QjAeFw0yNjA1MDMwMjI2NDlaFw0yNzA1MDIwMjMxNDlaMDMxMTAvBgNV BAMTKDYxMzA1RjM3NTMyOEI4N0U3OTk5OEVGM0I2OTc1N0M4NTVFN0U3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTRga0yYxf9Y5Q2/lDdOxtuDD4 iU/enQrhGDxMVnpeX9kwDZdjGOxKT6967p6bpuGBJXj0YvuVi0JtMKD/RQuJT4bS QGMq2/hpgcR3Mb/+NYVEhQxC7RB2x+eiuAfgCmo8Xa42arMZxLunxoa80Gxwi9bg ubz5SIE3koRKUiD/wiJgqjCIdiwwIeFUMd6uR52o/drqNTM4IbCho3IAW5loIPJT IQbm8EOrQ8fQm+yOAwZFnvszHwzMbmg4gkO2SEHaFjytakTlyspt8x8IoABbtVvk CKKzKZkqB/67WOBwnxDJz1pFcMJDriqm34iFkx7QmCf+n/FtgaeXkyMTaKATAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYTBfN1MouH55mY7ztpdXyFXn54owHwYDVR0j BBgwFoAUrPJm6QEPRvaRzGpJLrHqxiMVXWswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJmMmFkNGYtYTcyYS00NmQxLWJkN2QtYTU2MGMzMWVmY2FkLzAvQUNGMjY2RTkw MTBGNDZGNjkxQ0M2QTQ5MkVCMUVBQzYyMzE1NUQ2Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQ0YyNjZFOTAxMEY0NkY2OTFDQzZBNDkyRUIxRUFDNjIzMTU1 RDZCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRiZjJhZDRmLWE3MmEtNDZkMS1i ZDdkLWE1NjBjMzFlZmNhZC8wLzMyMzAzMzJlMzEzNzMxMmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6vdMA0GCSqG SIb3DQEBCwUAA4IBAQBKWjW+b/AnUfCZvLrJnVtl6KACQAVVtIhVPUxCl66rqNlG BuHi19HipbhL92DJG3G9G0j9EOWqcomONPCIvdBEpb68n3lLzip5sFrssZUjVdo+ /jIDSx9naukEkTlaMFSWjWsvKM9ob3kSTo8Z8uhKG2k8RpGi6SZhivf9Gg2GaD08 l4boIzFbFFGZdlf2sTKGBXn/9VDNw8bQCHPeIe6u3tpIiwp3TIxW7g9lXD+pnUWh jP0UWQTuE3nr9cF4+YQQByNvhjHIvvWzEPabF7ILuuTE6fMeozNi5fiCQa7MZK40 MqPktuIOQGDj3F2nJ6opyjkZgMwJFP/t8uqUAl0c -----END CERTIFICATE-----Generated at Wed May 13 01:35:19 2026 by rpki-client