$ rpki-client -vvf rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa File: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: CBM38ddIBA7ErC9KFszGB+2Go/rfydEsEM3u2nPHmFA= Subject key identifier: F5:1E:D3:DD:9F:CD:A5:E3:ED:48:5B:D1:08:A2:32:A5:95:86:4D:94 Certificate issuer: /CN=EFA0A80DF71CA377A289711EA4310F3117358BDA Certificate serial: 57803FB8F69631F62F794B79F4776B8F960BA77D Authority key identifier: EF:A0:A8:0D:F7:1C:A3:77:A2:89:71:1E:A4:31:0F:31:17:35:8B:DA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa Signing time: Sun 03 May 2026 02:52:39 +0000 ROA not before: Sun 03 May 2026 02:47:39 +0000 ROA not after: Sun 02 May 2027 02:52:39 +0000 asID: 24532 IP address blocks: 202.129.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.crl rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:80:3f:b8:f6:96:31:f6:2f:79:4b:79:f4:77:6b:8f:96:0b:a7:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFA0A80DF71CA377A289711EA4310F3117358BDA Validity Not Before: May 3 02:47:39 2026 GMT Not After : May 2 02:52:39 2027 GMT Subject: CN=F51ED3DD9FCDA5E3ED485BD108A232A595864D94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:42:78:7c:a7:d9:6f:2e:bc:62:b0:96:28:bd: df:44:4d:f6:f2:a8:e9:7a:91:fe:64:d1:2b:86:85: c2:16:c7:90:17:b5:4e:5c:75:4c:e2:7a:d1:0d:4c: 4b:e7:fa:d8:0f:d9:07:6e:96:0c:44:9a:15:83:46: f6:73:ab:e9:06:6d:40:96:29:c0:22:fa:8c:81:2f: 9c:d3:69:80:28:0b:b1:a3:e7:20:09:aa:2d:25:8d: 72:c2:2d:a8:a0:5b:d5:6b:64:a1:e2:4a:5d:bf:26: f6:d6:b3:eb:0f:9c:9e:da:66:c7:15:bb:8d:40:58: 0d:a5:f5:d6:2f:de:e5:c5:33:19:73:f0:35:da:52: 69:8c:10:39:39:e4:66:47:e2:cf:9a:91:15:ae:1b: 69:d6:6c:b9:4a:db:b3:ff:43:bf:01:64:5b:69:46: 26:7f:bd:d5:d1:09:92:ce:49:f3:16:cc:86:d9:ad: 21:67:1f:23:c0:73:91:d7:89:5e:f3:4b:a6:97:a3: 14:7a:df:90:60:04:95:b0:cf:f1:34:4e:c2:e5:2d: 71:bf:f1:d6:9f:6c:d9:de:90:e6:2c:85:c3:c6:ac: 85:29:48:30:21:87:40:51:84:6f:4e:a7:4d:3b:e4: af:55:5c:65:54:c6:f1:81:5b:3e:07:4f:2f:87:d3: dc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1E:D3:DD:9F:CD:A5:E3:ED:48:5B:D1:08:A2:32:A5:95:86:4D:94 X509v3 Authority Key Identifier: keyid:EF:A0:A8:0D:F7:1C:A3:77:A2:89:71:1E:A4:31:0F:31:17:35:8B:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/EFA0A80DF71CA377A289711EA4310F3117358BDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EFA0A80DF71CA377A289711EA4310F3117358BDA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.184.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:63:32:ac:6d:00:6c:f5:69:63:03:49:49:3f:4b:76:cd:8e: 9d:96:32:38:6b:34:6f:0e:57:05:47:5d:cc:4f:13:f7:3a:60: e2:7e:c4:f7:0f:f1:c3:8c:10:0a:60:65:7a:6d:3b:69:a3:20: 27:4a:f4:23:4e:1a:fb:61:ea:f1:e1:c2:a1:8e:a2:31:76:b5: 62:65:b9:fc:66:08:64:c4:4b:09:26:3f:2f:17:3d:97:ef:cb: ea:a6:30:c4:10:ac:10:9c:e8:8c:af:47:c9:60:54:c9:b9:4c: 2c:5d:2a:54:97:fb:c2:74:72:57:61:83:16:d8:72:f8:c7:df: 33:53:7f:a5:26:a4:1b:11:12:57:19:67:53:cf:42:68:9a:cf: ec:b3:b5:2c:63:2e:20:24:b6:26:15:0d:34:db:fd:d3:c4:13: 1a:00:3f:48:73:3c:1c:41:08:70:a8:1b:a0:b2:67:cb:37:3f: 8a:6a:62:d5:4b:f1:92:4f:f3:0b:b3:7c:ac:6b:c6:2e:be:12: ad:be:8c:12:4e:ff:4c:ce:1c:eb:5f:e9:91:7d:99:8f:7d:92: f8:b4:cb:c0:d8:21:85:e8:11:f8:f3:77:de:4b:d5:fd:fc:32: 6b:1f:18:7d:bd:89:99:8f:65:0b:77:95:f2:06:c1:16:a4:5c: f6:6b:47:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV4A/uPaWMfYveUt59Hdrj5YLp30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZBMEE4MERGNzFDQTM3N0EyODk3MTFFQTQzMTBGMzEx NzM1OEJEQTAeFw0yNjA1MDMwMjQ3MzlaFw0yNzA1MDIwMjUyMzlaMDMxMTAvBgNV BAMTKEY1MUVEM0REOUZDREE1RTNFRDQ4NUJEMTA4QTIzMkE1OTU4NjREOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNQnh8p9lvLrxisJYovd9ETfby qOl6kf5k0SuGhcIWx5AXtU5cdUzietENTEvn+tgP2QdulgxEmhWDRvZzq+kGbUCW KcAi+oyBL5zTaYAoC7Gj5yAJqi0ljXLCLaigW9VrZKHiSl2/JvbWs+sPnJ7aZscV u41AWA2l9dYv3uXFMxlz8DXaUmmMEDk55GZH4s+akRWuG2nWbLlK27P/Q78BZFtp RiZ/vdXRCZLOSfMWzIbZrSFnHyPAc5HXiV7zS6aXoxR635BgBJWwz/E0TsLlLXG/ 8dafbNnekOYshcPGrIUpSDAhh0BRhG9Op0075K9VXGVUxvGBWz4HTy+H09zjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9R7T3Z/NpePtSFvRCKIypZWGTZQwHwYDVR0j BBgwFoAU76CoDfcco3eiiXEepDEPMRc1i9owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTQzZTJlNjctYTE3MS00ZDllLWE5MzUtNDA2OTAyYjFlMTNiLzAvRUZBMEE4MERG NzFDQTM3N0EyODk3MTFFQTQzMTBGMzExNzM1OEJEQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRkEwQTgwREY3MUNBMzc3QTI4OTcxMUVBNDMxMEYzMTE3MzU4 QkRBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzAzMjJlMzEzMjM5MmUzMTM4MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzUzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoG4MA0GCSqG SIb3DQEBCwUAA4IBAQB8YzKsbQBs9WljA0lJP0t2zY6dljI4azRvDlcFR13MTxP3 OmDifsT3D/HDjBAKYGV6bTtpoyAnSvQjThr7Yerx4cKhjqIxdrViZbn8ZghkxEsJ Jj8vFz2X78vqpjDEEKwQnOiMr0fJYFTJuUwsXSpUl/vCdHJXYYMW2HL4x98zU3+l JqQbERJXGWdTz0Joms/ss7UsYy4gJLYmFQ002/3TxBMaAD9IczwcQQhwqBugsmfL Nz+KamLVS/GST/MLs3ysa8YuvhKtvowSTv9MzhzrX+mRfZmPfZL4tMvA2CGF6BH4 83feS9X9/DJrHxh9vYmZj2ULd5XyBsEWpFz2a0eO -----END CERTIFICATE-----Generated at Wed May 13 10:54:31 2026 by rpki-client