$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa File: 3230332e3136312e31392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: yowhmQACxswf/Peww6LGXxyyONQN5xqLKBxpY18BN1A= Subject key identifier: F6:99:8E:3A:37:66:83:B8:3A:F4:DE:A8:19:4D:AE:A8:EF:99:6E:29 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 41129897E82567908EA831E40D72439326462E8D Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:58 +0000 ROA not before: Sun 03 May 2026 02:42:58 +0000 ROA not after: Sun 02 May 2027 02:47:58 +0000 asID: 55685 IP address blocks: 203.161.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:12:98:97:e8:25:67:90:8e:a8:31:e4:0d:72:43:93:26:46:2e:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:58 2026 GMT Not After : May 2 02:47:58 2027 GMT Subject: CN=F6998E3A376683B83AF4DEA8194DAEA8EF996E29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d1:99:e3:8a:62:e9:5e:8c:29:95:37:c3:f7: 7c:36:3a:64:bb:d3:cb:14:cc:c0:85:07:51:1f:4e: 96:93:07:1c:90:cd:aa:22:20:cc:5b:1c:47:2c:e9: 50:d7:1f:73:9b:06:b1:e8:92:91:5c:5f:49:5a:bf: 91:4b:f1:5a:ac:9d:56:24:6b:9a:37:c5:2f:7a:2e: 45:99:b2:eb:c7:c9:9e:4a:0e:4e:0a:33:43:72:1e: 3e:c7:80:2a:6e:8e:ff:17:99:de:10:80:2b:b1:51: 13:66:53:3e:58:c0:37:05:6f:e9:79:e6:f9:f1:a4: cb:e3:86:d6:05:64:fb:76:a2:16:a7:c4:7d:31:f2: de:55:bd:b8:07:b9:77:a9:87:80:55:ec:44:ad:a2: ca:47:06:6d:88:c0:18:04:a8:c3:44:20:da:e5:1e: 0d:77:cf:a5:d4:0e:bd:15:07:3c:4b:ae:44:26:c8: e2:e6:e1:b8:8a:73:6c:75:c5:4e:ca:a8:57:55:f3: 0b:b3:27:b7:ea:95:ff:a4:41:fc:ee:9c:8d:c0:76: 21:a0:fe:7c:f9:d8:0c:86:02:ed:05:c7:9e:e3:de: 3d:f6:be:cb:6b:14:f1:f3:26:a6:d2:84:fd:24:1a: 04:c2:5d:a8:b7:1c:e6:36:0f:a9:96:91:e6:46:b6: b0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:99:8E:3A:37:66:83:B8:3A:F4:DE:A8:19:4D:AE:A8:EF:99:6E:29 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.19.0/24 Signature Algorithm: sha256WithRSAEncryption 42:9f:d2:af:41:b2:1d:bb:12:dc:7a:53:f4:da:6d:52:37:a6: 24:8d:6f:a1:f9:ff:06:dc:72:2b:83:9f:16:f8:69:9e:c1:6e: f2:05:c8:28:24:6e:d9:cc:17:dc:bc:1e:23:0f:31:5d:11:df: c9:56:4a:24:35:59:ce:17:76:63:fb:2c:d3:9a:20:ae:92:42: 9e:3c:4e:eb:20:76:d9:5c:14:7f:4e:4e:7e:72:50:14:fb:44: 5d:d9:cb:3f:7a:be:0c:7e:2b:c9:33:ca:1a:3e:b8:36:9b:0e: 22:0a:19:ee:01:ca:05:76:e7:87:d6:2d:5a:4d:05:41:30:11: 0d:e1:0d:51:40:bc:bc:50:d3:85:b4:2e:68:98:64:38:62:03: 91:40:db:e4:6a:af:ad:a8:4c:bf:20:10:58:84:4d:92:ac:b7: f8:07:89:05:3f:f7:7f:ba:81:08:0b:37:7f:81:5a:ef:fc:cb: 2a:88:f3:f2:ff:3d:aa:64:38:a8:6d:91:61:85:88:c3:87:c0: bc:95:d2:0c:a3:74:1b:07:91:ba:03:b7:b1:45:8b:f9:c2:aa: 02:07:0f:91:80:19:28:71:6e:52:7e:1f:b5:59:27:a3:9f:29: 0a:44:25:a2:10:d2:11:a2:49:2a:37:1a:86:3b:c0:6c:7f:9c: fb:5b:e7:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQRKYl+glZ5COqDHkDXJDkyZGLo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNThaFw0yNzA1MDIwMjQ3NThaMDMxMTAvBgNV BAMTKEY2OTk4RTNBMzc2NjgzQjgzQUY0REVBODE5NERBRUE4RUY5OTZFMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT0ZnjimLpXowplTfD93w2OmS7 08sUzMCFB1EfTpaTBxyQzaoiIMxbHEcs6VDXH3ObBrHokpFcX0lav5FL8VqsnVYk a5o3xS96LkWZsuvHyZ5KDk4KM0NyHj7HgCpujv8Xmd4QgCuxURNmUz5YwDcFb+l5 5vnxpMvjhtYFZPt2ohanxH0x8t5VvbgHuXeph4BV7EStospHBm2IwBgEqMNEINrl Hg13z6XUDr0VBzxLrkQmyOLm4biKc2x1xU7KqFdV8wuzJ7fqlf+kQfzunI3AdiGg /nz52AyGAu0Fx57j3j32vstrFPHzJqbShP0kGgTCXai3HOY2D6mWkeZGtrBvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9pmOOjdmg7g69N6oGU2uqO+ZbikwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuhEzANBgkqhkiG 9w0BAQsFAAOCAQEAQp/Sr0GyHbsS3HpT9NptUjemJI1vofn/BtxyK4OfFvhpnsFu 8gXIKCRu2cwX3LweIw8xXRHfyVZKJDVZzhd2Y/ss05ogrpJCnjxO6yB22VwUf05O fnJQFPtEXdnLP3q+DH4ryTPKGj64NpsOIgoZ7gHKBXbnh9YtWk0FQTARDeENUUC8 vFDThbQuaJhkOGIDkUDb5GqvrahMvyAQWIRNkqy3+AeJBT/3f7qBCAs3f4Fa7/zL Kojz8v89qmQ4qG2RYYWIw4fAvJXSDKN0GweRugO3sUWL+cKqAgcPkYAZKHFuUn4f tVkno58pCkQlohDSEaJJKjcahjvAbH+c+1vnEQ== -----END CERTIFICATE-----Generated at Wed May 13 01:41:26 2026 by rpki-client