$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa File: 3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa (raw, json) Hash identifier: gR1DTuGl5zoFpulg1oigiYRS4tO3/p7LnE5jaqD1jaU= Subject key identifier: 42:91:C6:EE:53:32:A7:4E:0E:18:14:78:E5:07:11:F4:2A:EE:3D:1C Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 52AD65F3FBF3A5566D07C8E242B0D6429232291A Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:18 +0000 ROA not before: Sun 03 May 2026 02:30:18 +0000 ROA not after: Sun 02 May 2027 02:35:18 +0000 asID: 24211 IP address blocks: 203.190.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ad:65:f3:fb:f3:a5:56:6d:07:c8:e2:42:b0:d6:42:92:32:29:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:18 2026 GMT Not After : May 2 02:35:18 2027 GMT Subject: CN=4291C6EE5332A74E0E181478E50711F42AEE3D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:41:6c:08:98:cb:7f:f1:3c:35:81:cb:b9: ae:a5:cd:4c:6e:8b:f8:6d:e8:c3:88:78:58:04:42: 70:90:23:10:b4:38:9f:09:05:a6:f3:1c:94:f5:72: b1:5b:e2:62:df:74:3b:60:db:8e:2f:1b:06:cc:9e: 35:72:9f:7b:af:43:80:3d:62:5f:e7:7b:d3:0d:2b: 88:5f:dd:aa:ac:ef:c6:42:48:f8:1c:20:24:fd:83: b3:c6:2b:fb:a9:97:ec:3b:5f:ca:ca:70:b1:b2:d7: a7:f3:a3:e6:80:f1:9c:31:a6:93:c2:1a:47:22:ff: 57:83:c9:74:74:40:01:3d:c7:d9:0d:b3:84:71:17: fe:46:69:65:ec:56:00:20:8e:88:50:3c:b5:aa:cf: 65:a8:b1:b4:79:9c:10:9a:aa:06:8d:cc:e1:80:9a: 96:2d:d7:97:43:fa:1c:4a:63:d8:d1:06:17:26:23: dd:6c:00:69:47:8f:d9:96:a8:8b:aa:d4:7a:ff:78: 0e:b8:46:80:5a:d8:7e:0e:5e:29:a2:4f:cb:2c:b4: 9c:15:47:3d:cf:53:7d:b6:5e:7b:7d:8d:4f:6b:e4: 2c:38:e8:f0:5f:61:b2:3b:5b:59:8f:05:a4:15:90: 01:1d:a6:70:fa:89:f3:87:78:3f:c1:df:46:d1:e1: ab:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:91:C6:EE:53:32:A7:4E:0E:18:14:78:E5:07:11:F4:2A:EE:3D:1C X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.240.0/21 Signature Algorithm: sha256WithRSAEncryption a3:51:c4:14:c2:71:c2:e6:91:32:0f:fa:10:7a:87:72:27:d4: e2:26:8b:19:34:52:59:bc:2e:da:16:69:9c:d4:04:8a:2b:d9: 8c:32:d7:53:8e:75:ab:1e:61:98:9f:a0:4d:b5:80:7b:3b:31: 59:cf:74:12:e9:5f:d9:e6:32:ce:ea:03:43:af:3b:c8:73:4e: f5:db:77:42:86:32:26:f0:80:75:42:47:3a:c4:21:b4:70:b7: b2:60:14:96:1f:fb:64:8c:23:6a:c1:05:0b:d8:ad:78:c2:fd: 6d:1c:78:ea:f0:0d:59:56:ca:76:3a:35:b0:9c:2a:1e:9d:9e: b9:ba:0b:af:ca:ea:9e:15:0c:e0:6b:50:a1:91:1b:ca:9d:e2: b9:84:0c:7e:d8:91:e1:cb:3b:c3:57:4d:ce:af:aa:86:28:52: e3:95:2c:4d:6f:bd:a3:00:68:41:46:51:43:22:45:af:62:9e: a1:ec:ef:1d:a1:ed:45:cc:47:ba:d0:e9:e8:74:85:02:4d:28: b1:99:91:6c:e0:dc:49:2f:1a:82:99:11:cf:4e:0b:f3:b2:e2: 29:23:06:e8:12:40:78:fb:0b:7c:f3:eb:4f:7e:4b:ee:1d:e8: 71:7d:af:89:66:04:06:a9:61:56:07:a5:3a:49:b3:22:22:ad: de:8e:85:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUq1l8/vzpVZtB8jiQrDWQpIyKRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMThaFw0yNzA1MDIwMjM1MThaMDMxMTAvBgNV BAMTKDQyOTFDNkVFNTMzMkE3NEUwRTE4MTQ3OEU1MDcxMUY0MkFFRTNEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGEFsCJjLf/E8NYHLua6lzUxu i/ht6MOIeFgEQnCQIxC0OJ8JBabzHJT1crFb4mLfdDtg244vGwbMnjVyn3uvQ4A9 Yl/ne9MNK4hf3aqs78ZCSPgcICT9g7PGK/upl+w7X8rKcLGy16fzo+aA8ZwxppPC Gkci/1eDyXR0QAE9x9kNs4RxF/5GaWXsVgAgjohQPLWqz2WosbR5nBCaqgaNzOGA mpYt15dD+hxKY9jRBhcmI91sAGlHj9mWqIuq1Hr/eA64RoBa2H4OXimiT8sstJwV Rz3PU322Xnt9jU9r5Cw46PBfYbI7W1mPBaQVkAEdpnD6ifOHeD/B30bR4au7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQpHG7lMyp04OGBR45QcR9CruPRwwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy77wMA0GCSqG SIb3DQEBCwUAA4IBAQCjUcQUwnHC5pEyD/oQeodyJ9TiJosZNFJZvC7aFmmc1ASK K9mMMtdTjnWrHmGYn6BNtYB7OzFZz3QS6V/Z5jLO6gNDrzvIc07123dChjIm8IB1 Qkc6xCG0cLeyYBSWH/tkjCNqwQUL2K14wv1tHHjq8A1ZVsp2OjWwnCoenZ65uguv yuqeFQzga1ChkRvKneK5hAx+2JHhyzvDV03Or6qGKFLjlSxNb72jAGhBRlFDIkWv Yp6h7O8doe1FzEe60OnodIUCTSixmZFs4NxJLxqCmRHPTgvzsuIpIwboEkB4+wt8 8+tPfkvuHehxfa+JZgQGqWFWB6U6SbMiIq3ejoV2 -----END CERTIFICATE-----Generated at Wed May 13 03:22:56 2026 by rpki-client