$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa File: 3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa (raw, json) Hash identifier: KKvEA+saL7OCLV4/t/DChshATtE9irWFXkl6IKtk9rE= Subject key identifier: 39:B9:C5:77:6E:4E:C2:C1:1C:55:A2:74:33:1D:B0:C2:61:A7:B3:35 Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 4855962791688F2BA6F271AF4749170D24792FC6 Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa Signing time: Sun 03 May 2026 02:57:31 +0000 ROA not before: Sun 03 May 2026 02:52:31 +0000 ROA not after: Sun 02 May 2027 02:57:31 +0000 asID: 138843 IP address blocks: 203.84.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:55:96:27:91:68:8f:2b:a6:f2:71:af:47:49:17:0d:24:79:2f:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:31 2026 GMT Not After : May 2 02:57:31 2027 GMT Subject: CN=39B9C5776E4EC2C11C55A274331DB0C261A7B335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a9:54:60:7e:67:da:37:06:c7:a2:9e:90:87: b2:85:84:95:84:1e:85:c8:25:64:2e:cf:88:81:6b: 71:ae:cd:da:ea:68:61:cd:71:73:72:28:82:ed:05: 3a:af:66:ba:c3:67:f7:3d:df:2b:32:f5:13:9e:8c: 23:23:40:b3:06:6b:fd:c3:d9:d4:66:fe:a3:83:1e: c3:69:2e:54:71:ae:8c:50:5b:d0:d0:9a:a5:59:d9: ca:5c:27:6d:54:40:35:e8:b2:b8:08:d6:19:02:96: 64:0a:6e:ba:b8:f0:ce:82:97:64:24:8f:2c:db:94: 86:03:a9:54:18:28:e6:fe:64:a7:1a:c0:30:cd:cb: c1:0a:ed:eb:01:0e:72:98:bc:90:0e:c5:13:af:b6: bf:3f:8d:67:45:dd:c2:fe:ed:96:10:fb:be:fa:3f: 11:d7:50:a2:06:f9:19:14:92:35:f2:6e:f9:18:1b: aa:8a:77:04:d2:61:31:7a:2a:23:00:ad:49:aa:a7: c4:80:ed:2a:3d:0a:2e:19:e3:11:05:87:aa:cd:df: 01:93:12:44:41:62:97:2f:6d:3e:1d:db:ce:cc:6f: 0c:c2:6c:4e:ec:2d:bf:3d:b1:7d:22:60:a2:ef:61: 61:5f:c7:d7:4f:ed:c0:51:75:b9:c0:67:cd:3b:3e: 33:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B9:C5:77:6E:4E:C2:C1:1C:55:A2:74:33:1D:B0:C2:61:A7:B3:35 X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133392e302f32342d3234203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.139.0/24 Signature Algorithm: sha256WithRSAEncryption 54:a2:55:68:7c:24:a0:df:fb:fb:17:bf:53:a6:be:1f:ee:5c: ec:f4:65:66:41:40:57:9b:e5:8a:87:0d:ab:3e:6f:ce:c5:d0: 6a:39:b8:44:51:87:29:ed:3f:25:72:09:29:bc:95:5e:69:63: e9:94:b6:7d:ae:07:f2:ae:df:fc:17:21:0e:7d:99:30:44:85: 6c:b8:95:bb:b3:51:ce:cc:dc:f5:ba:79:f2:e9:b6:49:95:26: 02:4a:e7:7c:a4:c5:ae:57:72:e6:90:74:c7:18:3e:f5:d3:b4: 58:39:18:24:68:73:2e:31:0b:e4:2d:1d:b3:c0:55:8a:8a:f3: 3a:d0:b7:c8:d3:bd:ca:45:cc:a4:40:88:a7:56:73:d4:af:a9: f4:94:fd:86:a8:10:01:77:0b:d9:83:4a:b2:36:23:79:51:0b: 2f:ad:7f:7a:c5:35:75:8c:3e:35:7e:00:32:91:b7:d1:70:cf: 31:f3:a7:4d:a6:0c:d8:0e:cd:60:b9:8f:0d:e3:19:3b:a5:00: 3c:17:80:97:2c:06:09:c6:88:a1:2f:39:71:5b:f7:b8:7d:ce: 67:b7:7c:23:71:85:81:eb:b6:ff:e6:70:93:e3:3d:5e:14:b0: 87:5b:f7:64:c5:49:d6:be:7d:85:84:4a:4d:24:bf:ce:84:18: d6:23:b7:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSFWWJ5Fojyum8nGvR0kXDSR5L8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMzFaFw0yNzA1MDIwMjU3MzFaMDMxMTAvBgNV BAMTKDM5QjlDNTc3NkU0RUMyQzExQzU1QTI3NDMzMURCMEMyNjFBN0IzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoqVRgfmfaNwbHop6Qh7KFhJWE HoXIJWQuz4iBa3GuzdrqaGHNcXNyKILtBTqvZrrDZ/c93ysy9ROejCMjQLMGa/3D 2dRm/qODHsNpLlRxroxQW9DQmqVZ2cpcJ21UQDXosrgI1hkClmQKbrq48M6Cl2Qk jyzblIYDqVQYKOb+ZKcawDDNy8EK7esBDnKYvJAOxROvtr8/jWdF3cL+7ZYQ+776 PxHXUKIG+RkUkjXybvkYG6qKdwTSYTF6KiMArUmqp8SA7So9Ci4Z4xEFh6rN3wGT EkRBYpcvbT4d287MbwzCbE7sLb89sX0iYKLvYWFfx9dP7cBRdbnAZ807PjOVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUObnFd25OwsEcVaJ0Mx2wwmGnszUwHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SLMA0GCSqG SIb3DQEBCwUAA4IBAQBUolVofCSg3/v7F79Tpr4f7lzs9GVmQUBXm+WKhw2rPm/O xdBqObhEUYcp7T8lcgkpvJVeaWPplLZ9rgfyrt/8FyEOfZkwRIVsuJW7s1HOzNz1 unny6bZJlSYCSud8pMWuV3LmkHTHGD7107RYORgkaHMuMQvkLR2zwFWKivM60LfI 073KRcykQIinVnPUr6n0lP2GqBABdwvZg0qyNiN5UQsvrX96xTV1jD41fgAykbfR cM8x86dNpgzYDs1guY8N4xk7pQA8F4CXLAYJxoihLzlxW/e4fc5nt3wjcYWB67b/ 5nCT4z1eFLCHW/dkxUnWvn2FhEpNJL/OhBjWI7fL -----END CERTIFICATE-----Generated at Wed May 13 04:20:04 2026 by rpki-client