$ rpki-client -vvf rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435323938.roa File: 3230322e34332e37352e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: qjaeT/lH6o0NKAX2ymHlChwcp5ZbxTwAapf5Zrh8P8Y= Subject key identifier: 18:12:EC:86:39:BF:B2:56:3B:39:2E:1F:AC:6A:5F:41:F8:19:15:A2 Certificate issuer: /CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Certificate serial: 785493E879E202C5E025B41BA666A73F17FD1B62 Authority key identifier: 4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435323938.roa Signing time: Sun 03 May 2026 02:39:47 +0000 ROA not before: Sun 03 May 2026 02:34:47 +0000 ROA not after: Sun 02 May 2027 02:39:47 +0000 asID: 45298 IP address blocks: 202.43.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:54:93:e8:79:e2:02:c5:e0:25:b4:1b:a6:66:a7:3f:17:fd:1b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Validity Not Before: May 3 02:34:47 2026 GMT Not After : May 2 02:39:47 2027 GMT Subject: CN=1812EC8639BFB2563B392E1FAC6A5F41F81915A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:79:e2:17:f9:cb:2a:b3:65:e6:b3:b5:21:ff: 49:26:43:bf:00:65:ff:1d:0f:b5:1b:9c:9c:6f:52: f5:00:a0:f9:a2:1c:ca:f1:e5:61:9b:a4:a3:4b:3f: f4:64:2f:87:ef:81:d4:1a:2d:2e:19:98:3f:07:b6: 88:32:8a:77:d2:77:9e:5e:26:ba:0c:83:a1:46:33: cb:0f:2e:8b:03:f8:b4:1c:d3:05:c1:00:60:9c:0e: df:76:bd:bc:2f:fb:b0:8b:c6:c2:44:65:47:73:db: c9:fd:06:99:eb:1e:ad:88:81:44:aa:64:93:d0:68: e7:0e:db:2c:f7:f5:6b:6d:80:89:c9:4c:74:48:8f: 01:93:b6:fb:6f:c3:9e:9b:b5:4e:33:c7:91:70:e6: 84:27:1d:db:ea:44:72:29:e2:be:03:f8:73:13:00: 44:9a:ab:e9:63:5e:83:27:39:6a:7c:37:68:98:d8: a0:d7:b1:b8:03:34:4b:ba:42:9a:15:90:a8:78:55: d6:d5:65:85:a4:73:c6:f2:c2:f9:6f:b6:d3:ef:0a: 58:8d:c9:51:48:df:af:a5:e2:e9:e7:b4:a9:b0:50: 1a:9b:6f:20:ea:70:2e:91:7b:d0:4e:11:fc:e4:c7: 7d:cc:08:93:4f:79:e3:ec:e6:2d:61:43:e6:a4:7f: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:12:EC:86:39:BF:B2:56:3B:39:2E:1F:AC:6A:5F:41:F8:19:15:A2 X509v3 Authority Key Identifier: keyid:4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37352e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.75.0/24 Signature Algorithm: sha256WithRSAEncryption a8:21:30:72:cb:70:a5:bd:78:10:69:95:a5:14:02:2b:73:92: 71:59:e4:d8:54:b4:e9:a3:c0:0a:8f:c5:9c:a4:98:55:30:1d: ec:d9:4b:ad:e4:a5:96:e7:df:48:75:8b:3e:27:82:09:dc:95: 77:58:71:dd:75:27:78:34:de:e2:61:3f:4b:91:98:23:87:51: 51:a8:b0:96:f3:3e:a2:86:4f:b7:35:09:bc:1f:b0:c9:e9:9d: 81:57:a3:34:4b:87:d4:c4:5d:b9:8c:39:01:80:4d:28:1a:4e: ed:c7:e6:cf:08:fa:97:b3:b3:80:7f:fe:9d:a9:c3:53:5d:82: 9b:9d:b5:97:99:e3:36:7a:d5:8f:90:b3:77:4f:90:6a:17:7b: ff:0f:02:f9:d1:62:b2:2d:45:72:79:04:c8:be:56:3a:05:12: cb:07:e6:91:79:eb:d5:f5:7f:47:0a:34:5c:cb:55:4b:59:d0: d9:05:1c:12:49:c1:d3:5a:c4:66:9e:40:28:04:e7:42:8f:2d: 9b:59:92:96:c2:6d:27:84:7a:c0:50:35:d9:0c:78:8d:a0:b9: ee:1a:52:a2:86:f3:14:7f:cf:0a:37:00:cf:9e:d8:c8:ad:99: 13:97:b7:1e:c2:77:44:98:b4:10:3d:f4:e3:9c:39:b4:26:94: 84:29:8e:b2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeFST6HniAsXgJbQbpmanPxf9G2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE0RUFFNkRGN0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NG MjcwRjdBMDAeFw0yNjA1MDMwMjM0NDdaFw0yNzA1MDIwMjM5NDdaMDMxMTAvBgNV BAMTKDE4MTJFQzg2MzlCRkIyNTYzQjM5MkUxRkFDNkE1RjQxRjgxOTE1QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjeeIX+csqs2Xms7Uh/0kmQ78A Zf8dD7UbnJxvUvUAoPmiHMrx5WGbpKNLP/RkL4fvgdQaLS4ZmD8HtogyinfSd55e JroMg6FGM8sPLosD+LQc0wXBAGCcDt92vbwv+7CLxsJEZUdz28n9BpnrHq2IgUSq ZJPQaOcO2yz39WttgInJTHRIjwGTtvtvw56btU4zx5Fw5oQnHdvqRHIp4r4D+HMT AESaq+ljXoMnOWp8N2iY2KDXsbgDNEu6QpoVkKh4VdbVZYWkc8bywvlvttPvCliN yVFI36+l4unntKmwUBqbbyDqcC6Re9BOEfzkx33MCJNPeePs5i1hQ+akfwrtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGBLshjm/slY7OS4frGpfQfgZFaIwHwYDVR0j BBgwFoAUSk6ubffr+NW0QE265IdIzPJw96AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjVlYzI1ZTQtOWFhOC00YmVmLTkwOTctYzBiZWMwYjI2NmE3LzAvNEE0RUFFNkRG N0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NGMjcwRjdBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QTRFQUU2REY3RUJGOEQ1QjQ0MDREQkFFNDg3NDhDQ0YyNzBG N0EwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMjM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0swDQYJKoZIhvcN AQELBQADggEBAKghMHLLcKW9eBBplaUUAitzknFZ5NhUtOmjwAqPxZykmFUwHezZ S63kpZbn30h1iz4nggnclXdYcd11J3g03uJhP0uRmCOHUVGosJbzPqKGT7c1Cbwf sMnpnYFXozRLh9TEXbmMOQGATSgaTu3H5s8I+pezs4B//p2pw1NdgpudtZeZ4zZ6 1Y+Qs3dPkGoXe/8PAvnRYrItRXJ5BMi+VjoFEssH5pF569X1f0cKNFzLVUtZ0NkF HBJJwdNaxGaeQCgE50KPLZtZkpbCbSeEesBQNdkMeI2gue4aUqKG8xR/zwo3AM+e 2MitmROXtx7Cd0SYtBA99OOcObQmlIQpjrI= -----END CERTIFICATE-----Generated at Wed May 13 04:50:47 2026 by rpki-client