$ rpki-client -vvf rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa File: 3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa (raw, json) Hash identifier: lCknCbn1e4JowaioeH82UQR3fwZeR46CsNwrligI+W0= Subject key identifier: F9:FF:40:72:CA:41:35:9A:B0:89:AE:B6:FE:66:0D:EB:CC:47:6F:82 Certificate issuer: /CN=70562FBF0E190EE7E1BA063D6E46853A67FFEFAA Certificate serial: 1844B3137172598F1D48594C020549ADDD2E9459 Authority key identifier: 70:56:2F:BF:0E:19:0E:E7:E1:BA:06:3D:6E:46:85:3A:67:FF:EF:AA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa Signing time: Sun 03 May 2026 02:37:18 +0000 ROA not before: Sun 03 May 2026 02:32:18 +0000 ROA not after: Sun 02 May 2027 02:37:18 +0000 asID: 17670 IP address blocks: 202.147.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.crl rsync://rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:44:b3:13:71:72:59:8f:1d:48:59:4c:02:05:49:ad:dd:2e:94:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70562FBF0E190EE7E1BA063D6E46853A67FFEFAA Validity Not Before: May 3 02:32:18 2026 GMT Not After : May 2 02:37:18 2027 GMT Subject: CN=F9FF4072CA41359AB089AEB6FE660DEBCC476F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:11:04:c2:6b:9e:40:2d:15:75:61:b8:4e:07: 74:ac:72:4f:51:55:f5:bd:32:f1:4e:29:4e:1a:ce: ae:d5:ac:1a:42:65:fd:53:e8:a1:67:d4:4b:5e:cd: 71:79:d1:7f:de:9e:5e:02:0d:a1:0b:5e:41:73:a7: 84:bc:fa:46:ef:70:54:19:fd:b3:35:df:fb:91:02: c9:5a:9f:f3:46:bd:04:15:c6:71:6f:9a:66:e9:7c: b4:7a:fb:29:a3:da:29:8f:2d:e4:12:cc:7d:e2:c1: 25:79:c5:c9:f2:18:ae:06:7c:47:15:6d:64:6a:cc: b9:e7:39:14:0e:2a:64:bd:fb:d2:c4:b8:bf:95:c0: 7a:1c:5a:48:e7:00:6c:6d:5a:18:cf:47:c7:73:d6: 9e:e5:58:57:1c:bf:c5:f8:94:6b:25:2d:ac:11:e2: f3:4b:b5:7a:99:b3:9f:b7:4d:7a:ab:f2:15:71:0d: b1:c3:d0:34:f2:e2:60:de:05:3d:03:cc:63:a0:76: 52:9d:36:87:41:74:47:22:d0:8d:60:f0:11:ae:f3: c0:18:1f:de:72:a5:68:4e:11:21:ef:d7:39:44:b1: 5c:e6:8b:fc:bb:00:b7:26:e3:b7:ae:8f:24:39:ed: bc:3c:06:79:fb:da:3c:31:40:1f:ac:c9:29:32:d9: 63:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FF:40:72:CA:41:35:9A:B0:89:AE:B6:FE:66:0D:EB:CC:47:6F:82 X509v3 Authority Key Identifier: keyid:70:56:2F:BF:0E:19:0E:E7:E1:BA:06:3D:6E:46:85:3A:67:FF:EF:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/70562FBF0E190EE7E1BA063D6E46853A67FFEFAA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.192.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:88:82:8b:42:fa:ed:bd:fd:fd:97:37:ca:09:bf:35:50:69: b4:0e:12:08:96:25:cc:79:82:39:20:bd:98:df:02:ba:e5:2e: 7a:01:f9:08:6a:02:37:94:24:72:82:56:17:c7:b3:b2:89:24: db:2c:17:d1:52:0f:39:c8:91:bb:1b:b7:06:d8:cc:6d:a9:c7: d8:d3:22:89:8e:2a:eb:04:f8:76:70:c3:b1:74:0e:f9:a1:5f: 04:ac:74:f9:43:78:86:f0:93:d7:c3:81:72:ec:7a:be:04:91: 52:99:5b:aa:ed:30:89:b6:47:66:43:86:ae:c8:2c:5d:cb:7d: 65:81:f3:90:7e:51:1d:7f:b1:63:3c:4a:94:39:db:1c:e5:bd: 04:24:97:2e:07:31:68:7e:e8:91:b3:1b:cd:9c:e2:a4:2a:dc: 75:8d:53:e5:af:7e:25:7f:e7:a8:d9:4c:c0:2b:d8:0b:50:52: 13:f6:39:bc:88:d3:ef:7b:96:63:c8:4b:92:60:1e:ac:7d:24: fe:0c:27:c3:bb:45:fc:83:cb:9f:a9:00:f9:1d:a0:89:3a:44: 56:e3:59:3b:b2:d1:55:00:56:88:df:96:da:09:32:fb:22:00: f2:5b:b5:4b:01:18:bb:76:88:98:6a:a7:9f:8f:21:da:ce:3e: d4:58:6b:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGESzE3FyWY8dSFlMAgVJrd0ulFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA1NjJGQkYwRTE5MEVFN0UxQkEwNjNENkU0Njg1M0E2 N0ZGRUZBQTAeFw0yNjA1MDMwMjMyMThaFw0yNzA1MDIwMjM3MThaMDMxMTAvBgNV BAMTKEY5RkY0MDcyQ0E0MTM1OUFCMDg5QUVCNkZFNjYwREVCQ0M0NzZGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiEQTCa55ALRV1YbhOB3Ssck9R VfW9MvFOKU4azq7VrBpCZf1T6KFn1EtezXF50X/enl4CDaELXkFzp4S8+kbvcFQZ /bM13/uRAslan/NGvQQVxnFvmmbpfLR6+ymj2imPLeQSzH3iwSV5xcnyGK4GfEcV bWRqzLnnORQOKmS9+9LEuL+VwHocWkjnAGxtWhjPR8dz1p7lWFccv8X4lGslLawR 4vNLtXqZs5+3TXqr8hVxDbHD0DTy4mDeBT0DzGOgdlKdNodBdEci0I1g8BGu88AY H95ypWhOESHv1zlEsVzmi/y7ALcm47eujyQ57bw8Bnn72jwxQB+sySky2WOrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+f9AcspBNZqwia62/mYN68xHb4IwHwYDVR0j BBgwFoAUcFYvvw4ZDufhugY9bkaFOmf/76owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWZiMWM4MGMtNGQ2Yy00NDA4LTg5NDctZmJhNmU3YzRiZTdjLzAvNzA1NjJGQkYw RTE5MEVFN0UxQkEwNjNENkU0Njg1M0E2N0ZGRUZBQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MDU2MkZCRjBFMTkwRUU3RTFCQTA2M0Q2RTQ2ODUzQTY3RkZF RkFBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzAzMjJlMzEzNDM3MmUzMTM5MzIyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTM3MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypPAMA0GCSqG SIb3DQEBCwUAA4IBAQAaiIKLQvrtvf39lzfKCb81UGm0DhIIliXMeYI5IL2Y3wK6 5S56AfkIagI3lCRyglYXx7OyiSTbLBfRUg85yJG7G7cG2MxtqcfY0yKJjirrBPh2 cMOxdA75oV8ErHT5Q3iG8JPXw4Fy7Hq+BJFSmVuq7TCJtkdmQ4auyCxdy31lgfOQ flEdf7FjPEqUOdsc5b0EJJcuBzFofuiRsxvNnOKkKtx1jVPlr34lf+eo2UzAK9gL UFIT9jm8iNPve5ZjyEuSYB6sfST+DCfDu0X8g8ufqQD5HaCJOkRW41k7stFVAFaI 35baCTL7IgDyW7VLARi7doiYaqefjyHazj7UWGu1 -----END CERTIFICATE-----Generated at Wed May 13 14:33:20 2026 by rpki-client