$ rpki-client -vvf rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37302e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37302e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: Vt03ZPNWazfwd63It0F0rmayCvDnnY8xSDn86EBO868= Subject key identifier: 0A:8B:5E:97:B1:C1:A3:C1:54:D0:3B:04:73:54:F6:5C:B3:E3:61:B4 Certificate issuer: /CN=B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E Certificate serial: 3C9DD39A4500A09F90D2A7860991F155D9E78A62 Authority key identifier: B1:6F:3B:47:BB:02:1C:61:D2:68:F0:A4:DB:EA:15:69:F0:9F:3E:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37302e302f32342d3234203d3e203233363935.roa Signing time: Sun 03 May 2026 02:42:01 +0000 ROA not before: Sun 03 May 2026 02:37:01 +0000 ROA not after: Sun 02 May 2027 02:42:01 +0000 asID: 23695 IP address blocks: 202.173.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.crl rsync://rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:9d:d3:9a:45:00:a0:9f:90:d2:a7:86:09:91:f1:55:d9:e7:8a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E Validity Not Before: May 3 02:37:01 2026 GMT Not After : May 2 02:42:01 2027 GMT Subject: CN=0A8B5E97B1C1A3C154D03B047354F65CB3E361B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:01:6d:16:e6:6c:e6:02:56:a8:ee:57:ce:c6: 8b:28:e3:68:da:66:78:9f:2e:15:3b:df:97:70:7f: 86:82:80:a9:74:83:26:b1:2e:94:a2:b4:38:8f:76: 63:6c:f1:da:32:3d:9b:19:ee:25:00:f1:12:d4:a1: 30:1e:66:2e:60:25:76:5f:88:06:ca:20:22:de:76: 9d:4c:f4:cd:ec:b0:d0:64:48:f2:2b:db:3d:36:74: 72:cb:d0:85:8c:97:80:e2:06:a5:9d:42:f6:f6:a0: 4b:9a:09:cf:19:9e:6e:8d:8c:36:3b:7d:b7:72:d0: 84:23:33:8e:a9:1f:cb:7d:5b:05:65:40:31:4f:ba: 73:5d:16:e0:be:9f:bb:fe:20:23:54:36:2b:83:b0: 26:bc:b4:b9:11:a9:ec:1f:74:68:14:aa:10:1d:31: 5d:02:ab:27:a1:d9:da:3f:dc:62:b8:b9:cb:72:ac: 94:fe:d4:9d:a7:39:8f:22:fa:dd:d4:08:ba:8a:f7: 78:4a:93:f0:96:95:3c:92:fd:89:db:10:ef:86:0c: fe:23:3d:8c:7e:2f:85:79:ae:ea:b7:58:d0:75:3d: 45:2d:33:49:fa:9f:57:87:62:9a:80:81:63:5a:01: e8:ef:7f:3d:86:ad:80:e6:d1:33:91:d6:a3:24:3f: 93:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8B:5E:97:B1:C1:A3:C1:54:D0:3B:04:73:54:F6:5C:B3:E3:61:B4 X509v3 Authority Key Identifier: keyid:B1:6F:3B:47:BB:02:1C:61:D2:68:F0:A4:DB:EA:15:69:F0:9F:3E:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B16F3B47BB021C61D268F0A4DBEA1569F09F3E5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37302e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.70.0/24 Signature Algorithm: sha256WithRSAEncryption 07:91:7b:37:4a:e1:d1:9e:b2:8c:90:8c:cf:51:43:95:35:b3: dd:6f:d5:a7:c8:4a:b7:2a:87:7d:b4:61:ed:9c:89:e4:8b:04: aa:b9:2f:ff:16:a8:39:7a:59:63:39:77:1b:be:23:b3:6f:fe: 25:c8:01:67:f1:e4:4d:24:a7:63:ad:21:6d:07:24:8c:94:00: bc:eb:55:88:04:f0:ff:0c:f4:ea:54:59:b0:29:9a:b4:96:7d: ff:e6:02:84:28:56:ac:b8:75:e5:49:0d:b0:57:ed:17:f2:24: bf:88:f7:33:30:8d:e8:cb:e7:07:01:c0:a7:0b:6d:2d:c3:c9: 40:a2:ed:91:d0:76:01:2e:d7:29:d3:4c:69:ee:29:b4:7f:ee: 83:0f:56:8c:84:b9:3b:8a:a0:29:be:e1:41:a5:8a:34:53:08: 42:0f:0b:f6:c7:c8:4c:6f:f0:56:8e:12:58:06:74:6d:b3:c2: 22:63:6b:5c:50:34:98:76:6a:c2:8b:38:28:9e:9f:35:df:ea: 9c:da:88:e3:69:5c:26:33:0b:d0:34:3e:72:26:94:84:f4:98: 4e:57:11:ce:38:21:91:74:b2:1c:f6:aa:45:ca:a8:93:f5:b2: 2c:c8:65:c2:38:7d:e1:b4:a2:16:f2:76:ba:2a:22:79:dd:73: c2:24:20:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPJ3TmkUAoJ+Q0qeGCZHxVdnnimIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE2RjNCNDdCQjAyMUM2MUQyNjhGMEE0REJFQTE1NjlG MDlGM0U1RTAeFw0yNjA1MDMwMjM3MDFaFw0yNzA1MDIwMjQyMDFaMDMxMTAvBgNV BAMTKDBBOEI1RTk3QjFDMUEzQzE1NEQwM0IwNDczNTRGNjVDQjNFMzYxQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkAW0W5mzmAlao7lfOxoso42ja ZnifLhU735dwf4aCgKl0gyaxLpSitDiPdmNs8doyPZsZ7iUA8RLUoTAeZi5gJXZf iAbKICLedp1M9M3ssNBkSPIr2z02dHLL0IWMl4DiBqWdQvb2oEuaCc8Znm6NjDY7 fbdy0IQjM46pH8t9WwVlQDFPunNdFuC+n7v+ICNUNiuDsCa8tLkRqewfdGgUqhAd MV0Cqyeh2do/3GK4uctyrJT+1J2nOY8i+t3UCLqK93hKk/CWlTyS/YnbEO+GDP4j PYx+L4V5ruq3WNB1PUUtM0n6n1eHYpqAgWNaAejvfz2GrYDm0TOR1qMkP5OHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCotel7HBo8FU0DsEc1T2XLPjYbQwHwYDVR0j BBgwFoAUsW87R7sCHGHSaPCk2+oVafCfPl4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmYwZjJiZDktNDJhZS00NDlhLThkNTctYjI2ZGEwNGQ3ZWUxLzAvQjE2RjNCNDdC QjAyMUM2MUQyNjhGMEE0REJFQTE1NjlGMDlGM0U1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTZGM0I0N0JCMDIxQzYxRDI2OEYwQTREQkVBMTU2OUYwOUYz RTVFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtRjANBgkqhkiG 9w0BAQsFAAOCAQEAB5F7N0rh0Z6yjJCMz1FDlTWz3W/Vp8hKtyqHfbRh7ZyJ5IsE qrkv/xaoOXpZYzl3G74js2/+JcgBZ/HkTSSnY60hbQckjJQAvOtViATw/wz06lRZ sCmatJZ9/+YChChWrLh15UkNsFftF/Ikv4j3MzCN6MvnBwHApwttLcPJQKLtkdB2 AS7XKdNMae4ptH/ugw9WjIS5O4qgKb7hQaWKNFMIQg8L9sfITG/wVo4SWAZ0bbPC ImNrXFA0mHZqwos4KJ6fNd/qnNqI42lcJjML0DQ+ciaUhPSYTlcRzjghkXSyHPaq Rcqok/WyLMhlwjh94bSiFvJ2uioied1zwiQghw== -----END CERTIFICATE-----Generated at Wed May 13 04:26:33 2026 by rpki-client