$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa File: 3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa (raw, json) Hash identifier: c+NnvyqB3knbtuO7KdhM0hJjec2wwtXVinOUBhE4/24= Subject key identifier: D2:99:C6:B6:B1:72:17:68:67:D8:BB:F9:85:31:1A:24:86:9D:A1:59 Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 1F779E297F5840E6C1D21E310BDFB9E54BBEB251 Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:16 +0000 ROA not before: Sun 03 May 2026 02:30:16 +0000 ROA not after: Sun 02 May 2027 02:35:16 +0000 asID: 24211 IP address blocks: 203.190.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 12:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:77:9e:29:7f:58:40:e6:c1:d2:1e:31:0b:df:b9:e5:4b:be:b2:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:16 2026 GMT Not After : May 2 02:35:16 2027 GMT Subject: CN=D299C6B6B172176867D8BBF985311A24869DA159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:03:6f:a4:dd:f5:7d:35:89:dc:cd:4f:e9:72: 91:ed:e8:c5:b7:55:8b:b8:c1:1a:26:64:ee:37:9c: b4:00:7c:23:07:07:f9:25:e1:77:07:b3:e2:cc:5d: 13:c9:a3:b3:4f:b2:e0:e2:41:37:90:39:cd:d8:48: 18:d0:8b:d4:e9:96:2d:40:b5:5c:0e:57:94:c1:05: 06:d2:b8:6c:99:8f:e0:16:92:16:4e:4a:a5:82:86: b4:17:9b:26:c3:8f:15:c7:cf:54:fd:60:df:bb:85: 6d:97:a4:f4:55:15:77:12:ac:57:d5:3c:c6:bc:6e: 3b:da:17:72:1e:9c:89:2b:47:9b:f9:96:36:82:e1: 77:fb:58:1f:c1:73:9b:ed:f4:a7:a3:aa:03:49:ee: 68:9d:5d:1a:21:23:9f:e0:b9:61:15:db:0b:38:f9: 51:51:16:dd:95:ac:d2:8e:3c:c9:41:0c:b4:1c:8e: b8:ce:6e:52:1b:6e:2d:1b:38:d5:2b:28:de:1b:d9: 97:c9:9a:8c:37:b0:f6:78:72:6e:aa:c0:21:8b:67: 12:b6:c0:c2:5e:ba:c7:3f:70:68:6d:70:2a:92:eb: a8:c4:b7:61:cd:31:6d:48:32:88:f7:62:15:42:4b: 32:ec:e5:6a:5d:ba:b6:a2:53:77:10:87:a4:35:ef: 04:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:99:C6:B6:B1:72:17:68:67:D8:BB:F9:85:31:1A:24:86:9D:A1:59 X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.246.0/24 Signature Algorithm: sha256WithRSAEncryption bd:b9:2d:05:d1:27:88:66:42:ea:d2:38:69:09:bc:b2:b3:30: 30:c9:53:56:56:55:b5:ad:56:e9:60:34:9f:2d:01:c4:58:59: e1:19:6a:bb:94:3d:b2:33:6d:85:ea:91:cc:9f:55:a3:69:4f: 89:a5:c3:fa:c8:ef:8c:04:29:5f:8e:e0:86:03:db:fc:9d:d3: 18:b2:f3:9d:90:83:24:80:ef:e0:4c:db:a5:35:ac:83:a9:8a: 39:c3:4f:c6:cf:55:49:ae:97:54:f5:22:c9:2d:71:22:12:40: 45:40:50:47:89:99:23:0d:6b:8b:02:f7:97:ea:a5:2d:aa:87: c0:15:dd:b2:15:7d:cb:f1:8e:e2:70:98:2a:6b:1d:18:11:c9: f2:bd:25:43:fe:20:8b:f3:1f:da:79:1f:f9:76:14:95:8d:4a: e0:e7:3b:6a:cf:7b:1a:7f:b7:26:ae:f8:e0:7c:2d:95:46:72: ec:a3:91:16:34:c4:a8:f7:05:17:0b:98:03:4b:3f:d3:8b:2d: 54:33:c1:98:68:51:1a:85:35:4e:14:de:dc:b9:d8:c5:ef:72: 9e:68:c9:fa:09:ab:06:a5:5c:0f:a2:70:f8:ec:4e:b9:d3:6d: 9a:71:94:61:d0:c6:28:7b:39:71:ee:28:a7:87:53:c7:a1:be: 56:de:8e:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH3eeKX9YQObB0h4xC9+55Uu+slEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTZaFw0yNzA1MDIwMjM1MTZaMDMxMTAvBgNV BAMTKEQyOTlDNkI2QjE3MjE3Njg2N0Q4QkJGOTg1MzExQTI0ODY5REExNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyA2+k3fV9NYnczU/pcpHt6MW3 VYu4wRomZO43nLQAfCMHB/kl4XcHs+LMXRPJo7NPsuDiQTeQOc3YSBjQi9Tpli1A tVwOV5TBBQbSuGyZj+AWkhZOSqWChrQXmybDjxXHz1T9YN+7hW2XpPRVFXcSrFfV PMa8bjvaF3IenIkrR5v5ljaC4Xf7WB/Bc5vt9KejqgNJ7midXRohI5/guWEV2ws4 +VFRFt2VrNKOPMlBDLQcjrjOblIbbi0bONUrKN4b2ZfJmow3sPZ4cm6qwCGLZxK2 wMJeusc/cGhtcCqS66jEt2HNMW1IMoj3YhVCSzLs5WpduraiU3cQh6Q17wRbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0pnGtrFyF2hn2Lv5hTEaJIadoVkwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy772MA0GCSqG SIb3DQEBCwUAA4IBAQC9uS0F0SeIZkLq0jhpCbyyszAwyVNWVlW1rVbpYDSfLQHE WFnhGWq7lD2yM22F6pHMn1WjaU+JpcP6yO+MBClfjuCGA9v8ndMYsvOdkIMkgO/g TNulNayDqYo5w0/Gz1VJrpdU9SLJLXEiEkBFQFBHiZkjDWuLAveX6qUtqofAFd2y FX3L8Y7icJgqax0YEcnyvSVD/iCL8x/aeR/5dhSVjUrg5ztqz3saf7cmrvjgfC2V RnLso5EWNMSo9wUXC5gDSz/Tiy1UM8GYaFEahTVOFN7cudjF73KeaMn6CasGpVwP onD47E65022acZRh0MYoezlx7iinh1PHob5W3o54 -----END CERTIFICATE-----Generated at Wed May 13 04:09:07 2026 by rpki-client