$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3133362e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: AEVg+7i58qruunXCeLGmzypDAO404wrt2O3S9y5evhc= Subject key identifier: ED:0C:08:13:AB:49:AB:51:35:C0:F0:18:78:AA:0B:BE:E6:69:5C:22 Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 6829E3DAC65578D1279FC126A0E157632B148AB6 Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa Signing time: Sun 03 May 2026 02:57:26 +0000 ROA not before: Sun 03 May 2026 02:52:26 +0000 ROA not after: Sun 02 May 2027 02:57:26 +0000 asID: 24206 IP address blocks: 203.84.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:29:e3:da:c6:55:78:d1:27:9f:c1:26:a0:e1:57:63:2b:14:8a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:26 2026 GMT Not After : May 2 02:57:26 2027 GMT Subject: CN=ED0C0813AB49AB5135C0F01878AA0BBEE6695C22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9f:5a:88:28:16:bf:a5:16:e4:f4:47:61:c7: f6:e8:e9:d5:f4:4d:9a:d1:b2:d4:27:f9:22:c0:ad: 30:d7:78:da:22:c8:88:9b:6b:07:82:78:5c:5c:83: 0d:e0:71:a3:61:ee:28:cc:13:95:bd:b6:9b:25:3a: 16:ba:ca:60:b6:8a:ab:2c:ef:12:38:df:27:99:2d: b4:58:7b:c5:89:1e:88:b3:8e:2e:68:cf:cc:64:d3: b5:c6:44:21:ca:48:68:1c:33:7c:51:43:58:8c:75: 2f:b2:2e:2a:27:07:e7:6a:c4:53:38:1a:14:85:8b: e6:03:c9:a5:15:82:07:44:08:91:a4:d3:90:57:a3: e3:78:26:c2:d0:a8:c1:83:b2:aa:d9:8d:dd:95:ff: 1b:31:39:16:97:d4:9e:c3:3e:ba:49:9b:f6:e8:c0: 78:e2:79:0b:af:e2:e4:e3:78:ff:ab:11:22:98:67: 80:df:82:0a:79:07:58:7f:31:ff:24:6d:c0:f2:cb: ed:f1:cc:fa:01:25:04:4b:a6:3e:7f:dd:e8:97:9c: 61:ac:1a:25:1b:27:99:06:46:03:89:f2:70:17:44: 78:db:4e:77:84:cf:eb:96:a2:64:f4:29:ec:7d:4b: b9:8a:cc:f3:8a:19:4b:93:fe:d1:5b:21:7b:db:4c: 06:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0C:08:13:AB:49:AB:51:35:C0:F0:18:78:AA:0B:BE:E6:69:5C:22 X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.136.0/24 Signature Algorithm: sha256WithRSAEncryption 63:10:f4:67:84:01:28:77:c4:40:30:2c:3c:ff:47:00:a3:1a: b7:43:4f:d1:88:8f:69:20:d9:e4:fe:6d:d9:54:99:e2:07:6a: 73:07:c5:7c:e6:b0:1f:f2:e8:71:76:d3:00:f6:82:6c:5e:3f: 3d:eb:74:c6:2f:7d:5e:e9:6a:99:be:af:02:8e:8c:26:ef:a8: df:bf:20:34:4a:b7:e2:42:29:5d:d8:37:ee:d0:9e:a5:c3:bd: 51:a4:ac:0a:6b:a1:a0:7c:f0:9f:17:fc:ba:e6:2c:0e:c5:e6: df:e1:6f:78:a4:67:1c:57:9a:a2:25:57:7f:29:95:41:ab:80: 5d:ec:2e:e4:32:5c:63:fe:23:31:b2:b6:29:da:a2:35:3e:cc: 51:3e:3f:47:50:ab:64:74:e8:b9:69:f2:e1:b6:88:02:e6:2b: 81:2f:24:5c:1f:95:6b:3a:f8:bd:7f:f9:ea:a2:0a:fa:c2:dc: 48:bb:2a:42:14:1e:0a:de:ca:9e:23:01:d9:7e:2b:d5:e9:a0: b1:66:3c:46:d0:cc:8b:72:8a:77:12:c7:f0:16:8f:92:bd:ca: 1c:ab:b0:fe:ea:b5:c3:99:f6:5e:56:bf:6f:0e:22:93:83:fe: 02:82:15:50:9b:79:8b:a1:e4:2e:0e:a2:3b:34:a1:47:20:92: bf:6f:9c:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaCnj2sZVeNEnn8EmoOFXYysUirYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMjZaFw0yNzA1MDIwMjU3MjZaMDMxMTAvBgNV BAMTKEVEMEMwODEzQUI0OUFCNTEzNUMwRjAxODc4QUEwQkJFRTY2OTVDMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMn1qIKBa/pRbk9Edhx/bo6dX0 TZrRstQn+SLArTDXeNoiyIibaweCeFxcgw3gcaNh7ijME5W9tpslOha6ymC2iqss 7xI43yeZLbRYe8WJHoizji5oz8xk07XGRCHKSGgcM3xRQ1iMdS+yLionB+dqxFM4 GhSFi+YDyaUVggdECJGk05BXo+N4JsLQqMGDsqrZjd2V/xsxORaX1J7DPrpJm/bo wHjieQuv4uTjeP+rESKYZ4Dfggp5B1h/Mf8kbcDyy+3xzPoBJQRLpj5/3eiXnGGs GiUbJ5kGRgOJ8nAXRHjbTneEz+uWomT0Kex9S7mKzPOKGUuT/tFbIXvbTAb5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7QwIE6tJq1E1wPAYeKoLvuZpXCIwHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUiDANBgkqhkiG 9w0BAQsFAAOCAQEAYxD0Z4QBKHfEQDAsPP9HAKMat0NP0YiPaSDZ5P5t2VSZ4gdq cwfFfOawH/LocXbTAPaCbF4/Pet0xi99Xulqmb6vAo6MJu+o378gNEq34kIpXdg3 7tCepcO9UaSsCmuhoHzwnxf8uuYsDsXm3+FveKRnHFeaoiVXfymVQauAXewu5DJc Y/4jMbK2KdqiNT7MUT4/R1CrZHTouWny4baIAuYrgS8kXB+Vazr4vX/56qIK+sLc SLsqQhQeCt7KniMB2X4r1emgsWY8RtDMi3KKdxLH8BaPkr3KHKuw/uq1w5n2Xla/ bw4ik4P+AoIVUJt5i6HkLg6iOzShRyCSv2+c5g== -----END CERTIFICATE-----Generated at Wed May 13 03:16:17 2026 by rpki-client