$ rpki-client -vvf rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa File: 3232332e3136342e302e302f31362d3234203d3e2039373835.roa (raw, json) Hash identifier: zmwA1y/xC2vL0cjTkZM+ObOlDKLV7xKiwSOMXdyAr5Q= Subject key identifier: FE:69:28:57:F5:39:1A:88:49:DA:40:00:08:70:24:18:54:B7:C3:74 Certificate issuer: /CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Certificate serial: 47D80FB21388C32AD44F69F4C020B4A67C2E5DD9 Authority key identifier: 9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa Signing time: Sun 03 May 2026 02:40:20 +0000 ROA not before: Sun 03 May 2026 02:35:20 +0000 ROA not after: Sun 02 May 2027 02:40:20 +0000 asID: 9785 IP address blocks: 223.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d8:0f:b2:13:88:c3:2a:d4:4f:69:f4:c0:20:b4:a6:7c:2e:5d:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D Validity Not Before: May 3 02:35:20 2026 GMT Not After : May 2 02:40:20 2027 GMT Subject: CN=FE692857F5391A8849DA40000870241854B7C374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:23:09:04:24:9a:3f:3f:0d:e1:92:3c:34:0b: 2d:12:61:4a:2f:49:21:53:bb:67:fc:30:01:77:ca: 73:3a:6a:ff:1c:f5:68:ed:eb:91:fe:b4:6a:05:3d: 98:68:1f:36:a4:5e:51:d0:1c:10:4e:e0:cd:86:4f: 55:62:f3:3b:9a:dc:e7:dc:e0:1f:e3:37:12:57:05: a0:e8:bc:95:5f:89:98:78:23:0a:66:27:a4:61:da: e2:47:8e:b7:cf:3a:e1:82:61:d0:ae:67:47:45:0a: 49:1b:0f:3b:b0:c7:b9:e8:af:94:61:eb:87:80:e1: c9:84:b8:07:f8:01:4d:50:40:c8:7b:a1:1f:a9:84: 82:7e:c0:5a:38:fe:c6:89:1c:1b:51:a8:6e:af:3e: ee:27:ef:ba:e2:45:3a:54:2a:ab:26:a9:f9:a6:be: 9a:08:c2:0d:aa:22:db:df:0b:b6:47:83:c8:e2:3d: ea:05:74:38:83:4f:4c:c9:6f:d8:04:f3:34:42:7e: 87:4f:5a:bf:e0:11:9e:d9:ff:5a:41:73:6a:e0:b7: 1a:18:da:b3:c9:ee:c1:fb:bb:e0:52:98:96:12:d6: 5c:84:4b:a8:0c:2c:d9:e1:19:36:c0:f1:7b:26:c4: 47:de:7a:ed:49:92:50:cd:4e:29:01:bd:23:de:8d: 98:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:69:28:57:F5:39:1A:88:49:DA:40:00:08:70:24:18:54:B7:C3:74 X509v3 Authority Key Identifier: keyid:9D:D7:FD:1C:0A:74:FE:31:7E:DA:41:E4:D1:CD:C8:57:AF:C1:77:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9DD7FD1C0A74FE317EDA41E4D1CDC857AFC1779D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:ca:34:90:36:37:47:e0:99:d1:ac:b9:13:5c:7e:33:cd:f4: 04:fb:d3:62:a6:c7:b8:7d:c8:55:79:f7:fa:3d:a0:c3:b0:28: db:5e:94:46:5f:02:bd:ee:47:f7:5b:83:2b:2b:a1:d8:ac:22: eb:e7:bb:20:bd:36:5a:a8:cb:99:f4:85:3c:18:45:a7:87:2d: 69:28:a4:aa:b4:e8:1d:51:f5:a6:eb:d0:26:b4:6b:1a:1f:13: e7:f8:c6:d6:99:4a:8c:56:4d:1f:20:83:3a:c3:9a:b0:71:31: c5:a1:17:8e:5d:1b:c8:08:d2:94:10:67:31:1a:5f:65:4a:f5: 02:9b:cd:4e:99:27:04:35:75:67:c0:0c:82:9e:91:d1:91:c7: d5:e8:69:81:71:bf:0b:6e:2b:0e:f6:ab:f8:3e:99:e8:da:1b: 12:8f:76:64:01:51:47:93:0f:8c:41:59:12:7e:1e:68:ec:72: 3f:4f:6b:4c:1e:21:62:4d:d7:c3:ea:6d:cc:4e:f8:f3:f5:ba: af:df:87:a8:9d:06:78:bf:cf:5d:d0:63:bf:f6:73:84:76:22: bc:71:8d:fe:8a:83:8e:f6:d0:1d:8c:59:1c:0f:77:0d:e2:01: 12:8a:16:c1:63:dc:b7:41:ee:7c:39:15:b9:3e:28:25:8f:53: 0b:fc:7b:5a -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUR9gPshOIwyrUT2n0wCC0pnwuXdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREN0ZEMUMwQTc0RkUzMTdFREE0MUU0RDFDREM4NTdB RkMxNzc5RDAeFw0yNjA1MDMwMjM1MjBaFw0yNzA1MDIwMjQwMjBaMDMxMTAvBgNV BAMTKEZFNjkyODU3RjUzOTFBODg0OURBNDAwMDA4NzAyNDE4NTRCN0MzNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeIwkEJJo/Pw3hkjw0Cy0SYUov SSFTu2f8MAF3ynM6av8c9Wjt65H+tGoFPZhoHzakXlHQHBBO4M2GT1Vi8zua3Ofc 4B/jNxJXBaDovJVfiZh4IwpmJ6Rh2uJHjrfPOuGCYdCuZ0dFCkkbDzuwx7nor5Rh 64eA4cmEuAf4AU1QQMh7oR+phIJ+wFo4/saJHBtRqG6vPu4n77riRTpUKqsmqfmm vpoIwg2qItvfC7ZHg8jiPeoFdDiDT0zJb9gE8zRCfodPWr/gEZ7Z/1pBc2rgtxoY 2rPJ7sH7u+BSmJYS1lyES6gMLNnhGTbA8XsmxEfeeu1JklDNTikBvSPejZgJAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQU/mkoV/U5GohJ2kAACHAkGFS3w3QwHwYDVR0j BBgwFoAUndf9HAp0/jF+2kHk0c3IV6/Bd50wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjkwYzkwMDktYWQ1My00ZmE2LWExODMtMzRiMzQ1N2JlYTAzLzAvOUREN0ZEMUMw QTc0RkUzMTdFREE0MUU0RDFDREM4NTdBRkMxNzc5RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85REQ3RkQxQzBBNzRGRTMxN0VEQTQxRTREMUNEQzg1N0FGQzE3 NzlELmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMjMzMmUzMTM2MzQyZTMwMmUzMDJmMzEzNjJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfpDANBgkqhkiG9w0BAQsF AAOCAQEAWMo0kDY3R+CZ0ay5E1x+M830BPvTYqbHuH3IVXn3+j2gw7Ao216URl8C ve5H91uDKyuh2Kwi6+e7IL02WqjLmfSFPBhFp4ctaSikqrToHVH1puvQJrRrGh8T 5/jG1plKjFZNHyCDOsOasHExxaEXjl0byAjSlBBnMRpfZUr1ApvNTpknBDV1Z8AM gp6R0ZHH1ehpgXG/C24rDvar+D6Z6NobEo92ZAFRR5MPjEFZEn4eaOxyP09rTB4h Yk3Xw+ptzE748/W6r9+HqJ0GeL/PXdBjv/ZzhHYivHGN/oqDjvbQHYxZHA93DeIB EooWwWPct0HufDkVuT4oJY9TC/x7Wg== -----END CERTIFICATE-----Generated at Wed May 13 05:47:23 2026 by rpki-client