$ rpki-client -vvf rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa File: 3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa (raw, json) Hash identifier: zkpoPaCvym1nePddds0Q6RkGOhVKM8mr34gyM4UC8cI= Subject key identifier: B6:67:B0:5F:81:1A:8C:78:D8:93:C1:55:56:CE:9B:3E:D2:6B:4F:97 Certificate issuer: /CN=E00C0AD01CBF6EE9B4254305E7B340D64C5974D0 Certificate serial: 3053E792090FF1B9D1B28567D966FE8234FD4979 Authority key identifier: E0:0C:0A:D0:1C:BF:6E:E9:B4:25:43:05:E7:B3:40:D6:4C:59:74:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa Signing time: Sun 03 May 2026 02:44:05 +0000 ROA not before: Sun 03 May 2026 02:39:05 +0000 ROA not after: Sun 02 May 2027 02:44:05 +0000 asID: 139938 IP address blocks: 202.43.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.crl rsync://rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 06:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:53:e7:92:09:0f:f1:b9:d1:b2:85:67:d9:66:fe:82:34:fd:49:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E00C0AD01CBF6EE9B4254305E7B340D64C5974D0 Validity Not Before: May 3 02:39:05 2026 GMT Not After : May 2 02:44:05 2027 GMT Subject: CN=B667B05F811A8C78D893C15556CE9B3ED26B4F97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:06:c8:24:42:e6:35:9c:89:2f:3b:e3:93: c0:a6:2b:04:4c:13:45:50:6e:04:a9:c8:ba:d3:73: 15:97:81:d1:ce:ca:12:78:d8:ab:c8:7e:95:d9:1b: 06:94:62:bb:03:14:6b:cd:35:dd:34:66:6b:99:d1: 86:cd:ea:f8:d4:6b:4f:f4:41:8a:2c:66:83:66:3d: a7:58:86:69:d3:0d:c6:fa:02:e6:ea:51:b4:88:43: 94:79:2c:f9:82:87:40:c2:d6:b7:72:2c:47:e3:03: 60:49:e2:4f:f0:fb:f7:30:b9:d3:4c:08:55:32:88: b8:c1:fa:0a:a1:f1:8c:3d:e0:92:e3:c7:52:16:fb: 4b:50:dc:12:4f:9e:22:bb:27:ad:63:4e:dd:bf:ce: ce:32:d9:74:8d:f2:22:3e:9b:ff:ed:74:e8:21:f7: 57:a9:02:d6:00:7d:eb:9d:b0:9f:3b:96:b0:c7:00: 80:f4:2a:48:3e:4f:59:f5:50:48:b1:75:fc:a2:41: 71:5c:4f:ea:3d:14:27:d1:26:ac:51:6f:6c:4b:2a: 70:a3:a8:d4:c9:fd:9f:01:51:ea:66:12:09:08:44: aa:d9:20:cf:83:66:00:13:ae:40:b6:e6:c5:53:ab: c6:d4:9e:f2:a0:c0:9e:a4:a5:43:ba:22:fd:d5:53: a7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:B0:5F:81:1A:8C:78:D8:93:C1:55:56:CE:9B:3E:D2:6B:4F:97 X509v3 Authority Key Identifier: keyid:E0:0C:0A:D0:1C:BF:6E:E9:B4:25:43:05:E7:B3:40:D6:4C:59:74:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E00C0AD01CBF6EE9B4254305E7B340D64C5974D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.114.0/23 Signature Algorithm: sha256WithRSAEncryption a8:60:93:4d:0d:57:66:26:cc:fc:22:c7:9f:82:f8:11:e4:c2: 69:94:61:c5:ea:0a:af:2c:f7:50:59:98:cb:d3:f3:dd:92:1c: 75:04:80:c0:58:18:ac:e4:28:cd:70:1d:a4:cf:62:2b:12:45: ad:f3:3b:fd:1e:4d:e6:ad:fb:a6:62:2c:18:5f:f7:7c:b9:b7: 73:77:26:f9:8c:10:8a:43:aa:0b:00:77:dc:da:9e:5f:2d:7f: 7b:9f:02:b7:61:4f:f0:1a:4c:3b:5a:f1:5f:ea:ec:75:9a:4e: 5f:49:01:cf:27:34:b6:ac:f2:37:fa:63:90:c5:5e:04:b3:b4: 5e:88:af:88:91:eb:62:eb:09:57:44:e2:a6:ac:5a:55:da:ea: c2:49:a3:91:8f:ec:d0:6c:9f:9c:ec:11:1a:d6:d4:92:eb:56: 00:13:41:35:8d:b0:26:44:24:91:9c:1b:66:2f:74:29:20:e2: 20:4d:e7:db:72:91:5e:dc:17:91:21:a1:a0:b1:7f:6f:1c:51: 1d:aa:ad:71:fc:87:3b:f7:cc:bf:4d:c3:3b:30:dc:38:aa:12: 53:9f:0f:b4:03:e2:14:60:9b:fe:0f:b2:ce:6c:f2:8f:db:61: 52:e9:ff:02:e6:d3:e7:be:4e:cb:0f:f4:c5:df:2e:4a:e4:85: 41:1f:f0:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMFPnkgkP8bnRsoVn2Wb+gjT9SXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAwQzBBRDAxQ0JGNkVFOUI0MjU0MzA1RTdCMzQwRDY0 QzU5NzREMDAeFw0yNjA1MDMwMjM5MDVaFw0yNzA1MDIwMjQ0MDVaMDMxMTAvBgNV BAMTKEI2NjdCMDVGODExQThDNzhEODkzQzE1NTU2Q0U5QjNFRDI2QjRGOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnwwbIJELmNZyJLzvjk8CmKwRM E0VQbgSpyLrTcxWXgdHOyhJ42KvIfpXZGwaUYrsDFGvNNd00ZmuZ0YbN6vjUa0/0 QYosZoNmPadYhmnTDcb6AubqUbSIQ5R5LPmCh0DC1rdyLEfjA2BJ4k/w+/cwudNM CFUyiLjB+gqh8Yw94JLjx1IW+0tQ3BJPniK7J61jTt2/zs4y2XSN8iI+m//tdOgh 91epAtYAfeudsJ87lrDHAID0Kkg+T1n1UEixdfyiQXFcT+o9FCfRJqxRb2xLKnCj qNTJ/Z8BUepmEgkIRKrZIM+DZgATrkC25sVTq8bUnvKgwJ6kpUO6Iv3VU6flAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtmewX4EajHjYk8FVVs6bPtJrT5cwHwYDVR0j BBgwFoAU4AwK0By/bum0JUMF57NA1kxZdNAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzdjZDY4ZjQtNjlhNS00NzVmLWFlZTQtM2VmNGI4ZDMwMmRkLzAvRTAwQzBBRDAx Q0JGNkVFOUI0MjU0MzA1RTdCMzQwRDY0QzU5NzREMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMDBDMEFEMDFDQkY2RUU5QjQyNTQzMDVFN0IzNDBENjRDNTk3 NEQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzAzMjJlMzQzMzJlMzEzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByityMA0GCSqG SIb3DQEBCwUAA4IBAQCoYJNNDVdmJsz8IsefgvgR5MJplGHF6gqvLPdQWZjL0/Pd khx1BIDAWBis5CjNcB2kz2IrEkWt8zv9Hk3mrfumYiwYX/d8ubdzdyb5jBCKQ6oL AHfc2p5fLX97nwK3YU/wGkw7WvFf6ux1mk5fSQHPJzS2rPI3+mOQxV4Es7ReiK+I keti6wlXROKmrFpV2urCSaORj+zQbJ+c7BEa1tSS61YAE0E1jbAmRCSRnBtmL3Qp IOIgTefbcpFe3BeRIaGgsX9vHFEdqq1x/Ic798y/TcM7MNw4qhJTnw+0A+IUYJv+ D7LObPKP22FS6f8C5tPnvk7LD/TF3y5K5IVBH/Dd -----END CERTIFICATE-----Generated at Tue May 12 22:32:47 2026 by rpki-client