$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: 6s+J2D1xc+Un9FBlPt0gue96vFI4b8yX8woz+h6eFQo= Subject key identifier: AA:8C:2F:AE:EB:99:08:A4:8F:F3:2A:BC:62:CA:89:69:78:4B:1C:E1 Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 56C3BB352AEA1A934A4F80F00323CCDE1AFF7961 Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:14 +0000 ROA not before: Sun 03 May 2026 02:30:14 +0000 ROA not after: Sun 02 May 2027 02:35:14 +0000 asID: 24211 IP address blocks: 203.190.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c3:bb:35:2a:ea:1a:93:4a:4f:80:f0:03:23:cc:de:1a:ff:79:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:14 2026 GMT Not After : May 2 02:35:14 2027 GMT Subject: CN=AA8C2FAEEB9908A48FF32ABC62CA8969784B1CE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:68:96:87:57:1f:db:8d:3f:a8:7c:1a:a4:c9: 93:2c:c9:3f:ab:94:ec:91:7f:04:1a:9c:5d:53:cd: ca:d4:e9:41:82:da:57:32:73:d5:46:07:57:a2:bc: 60:29:11:76:a1:16:1c:2e:6e:c2:ce:46:1a:b9:f2: 5e:03:92:fc:9f:a6:af:7a:25:8f:07:e3:87:c9:78: af:ce:1b:c0:f6:52:01:fe:bb:95:cd:97:ea:37:5e: b8:ce:a2:05:3a:b4:01:f4:95:69:96:9f:41:74:7d: 87:02:b0:e1:a2:37:a8:21:61:b8:7d:a9:40:da:60: 2d:04:c6:e6:aa:a4:b8:de:56:35:3e:d8:56:72:a4: 27:41:80:52:8c:7f:0c:8b:21:89:c1:dc:5d:39:34: 2d:82:16:17:01:12:6c:e7:7f:0c:1d:27:c5:76:d8: 73:22:d1:e7:47:63:55:ea:58:a7:8a:9a:59:98:4a: cd:b6:95:c3:e4:3c:17:21:69:a3:2b:0e:a7:24:83: 6b:88:0f:a3:0f:cc:ee:a9:54:3c:ac:77:2d:97:93: c1:25:ab:62:41:a2:6a:79:a3:6d:7a:d7:30:b7:52: ca:e0:f1:23:50:57:21:8f:46:7b:07:54:7f:23:3e: f5:4f:4a:15:72:97:ff:9e:50:ce:5c:28:fe:26:c5: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8C:2F:AE:EB:99:08:A4:8F:F3:2A:BC:62:CA:89:69:78:4B:1C:E1 X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.244.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:84:57:2d:43:73:08:9b:40:f2:1b:5d:60:3c:b6:e2:0e:81: af:90:37:b5:48:5d:c3:d8:eb:75:c2:75:53:37:a7:9d:e8:64: d5:d8:13:fb:ee:e3:0d:5a:14:f5:92:bb:fd:da:7a:97:dd:69: f0:b1:cb:08:1f:55:15:6f:ef:4c:ce:1e:1a:3d:f1:e0:49:61: c3:b7:9e:4f:ab:3e:e7:5c:17:3a:4c:4e:69:29:a6:49:43:f9: f2:cd:d9:9c:56:65:f2:4b:2f:f8:fe:04:ae:41:dd:c1:f8:11: 3e:49:99:df:70:66:62:d9:39:77:88:a6:66:5b:27:e9:d5:65: 4a:9f:78:af:e6:40:d4:2a:2c:58:0e:2e:87:7e:0e:49:08:44: 8a:cc:fd:1c:c3:28:47:64:5d:8d:8e:20:14:fa:c3:d4:da:58: a7:bc:e0:ec:a9:38:e9:96:58:fb:bc:67:71:42:e2:e0:b4:ea: b3:9f:d2:71:ac:9f:50:34:78:d4:a7:28:40:60:e8:5c:ce:42: 7d:39:76:4e:2c:12:fb:45:ea:3c:a8:78:57:66:41:c9:2f:43: d6:64:e9:4b:11:e5:9e:5b:eb:69:cb:a8:be:49:29:b3:e9:45: 32:ce:94:bd:5e:b3:6a:eb:61:38:66:32:00:a4:d2:2d:17:6c: 77:18:4b:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVsO7NSrqGpNKT4DwAyPM3hr/eWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTRaFw0yNzA1MDIwMjM1MTRaMDMxMTAvBgNV BAMTKEFBOEMyRkFFRUI5OTA4QTQ4RkYzMkFCQzYyQ0E4OTY5Nzg0QjFDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzaJaHVx/bjT+ofBqkyZMsyT+r lOyRfwQanF1TzcrU6UGC2lcyc9VGB1eivGApEXahFhwubsLORhq58l4Dkvyfpq96 JY8H44fJeK/OG8D2UgH+u5XNl+o3XrjOogU6tAH0lWmWn0F0fYcCsOGiN6ghYbh9 qUDaYC0ExuaqpLjeVjU+2FZypCdBgFKMfwyLIYnB3F05NC2CFhcBEmznfwwdJ8V2 2HMi0edHY1XqWKeKmlmYSs22lcPkPBchaaMrDqckg2uID6MPzO6pVDysdy2Xk8El q2JBomp5o2161zC3Usrg8SNQVyGPRnsHVH8jPvVPShVyl/+eUM5cKP4mxR5lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqowvruuZCKSP8yq8YsqJaXhLHOEwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy770MA0GCSqG SIb3DQEBCwUAA4IBAQCbhFctQ3MIm0DyG11gPLbiDoGvkDe1SF3D2Ot1wnVTN6ed 6GTV2BP77uMNWhT1krv92nqX3WnwscsIH1UVb+9Mzh4aPfHgSWHDt55Pqz7nXBc6 TE5pKaZJQ/nyzdmcVmXySy/4/gSuQd3B+BE+SZnfcGZi2Tl3iKZmWyfp1WVKn3iv 5kDUKixYDi6Hfg5JCESKzP0cwyhHZF2NjiAU+sPU2linvODsqTjpllj7vGdxQuLg tOqzn9JxrJ9QNHjUpyhAYOhczkJ9OXZOLBL7Reo8qHhXZkHJL0PWZOlLEeWeW+tp y6i+SSmz6UUyzpS9XrNq62E4ZjIApNItF2x3GEuZ -----END CERTIFICATE-----Generated at Wed May 13 02:27:20 2026 by rpki-client