$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e20313338303737.roa File: 3230332e38342e3134302e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: YwE5fGvWPY3YshdbLzQTeRk4XV9oJUzj/74z6hxtryo= Subject key identifier: 22:99:9F:4D:B0:EE:40:F0:FF:C5:41:2E:D1:99:F4:3D:CC:99:FA:2F Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 320955B901B6E82B847398A7E320B90962F99DA4 Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e20313338303737.roa Signing time: Sun 03 May 2026 02:57:35 +0000 ROA not before: Sun 03 May 2026 02:52:35 +0000 ROA not after: Sun 02 May 2027 02:57:35 +0000 asID: 138077 IP address blocks: 203.84.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:09:55:b9:01:b6:e8:2b:84:73:98:a7:e3:20:b9:09:62:f9:9d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:35 2026 GMT Not After : May 2 02:57:35 2027 GMT Subject: CN=22999F4DB0EE40F0FFC5412ED199F43DCC99FA2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:07:a1:cb:ec:65:63:43:22:7e:e1:53:77:5a: 25:ef:03:91:a2:db:8e:8c:1d:2d:2f:a6:2a:6b:0e: 92:4d:ce:bb:1c:54:5a:ae:4c:31:57:fd:76:ba:ad: ba:cd:98:28:f0:17:16:6d:f3:5b:14:f4:09:f9:2c: 5c:c7:5e:42:ad:25:07:48:44:95:1c:2c:e1:ae:03: 25:f4:5a:14:f6:0b:db:5f:4d:8d:81:f8:b9:a3:ba: 53:88:da:9d:6a:06:04:41:7b:4c:8c:95:e8:e4:a8: ee:59:5c:22:77:e7:9a:47:4f:ae:f3:21:22:94:f4: 15:88:1f:38:2c:8d:54:82:5f:13:d7:8f:d0:8a:cf: 8b:f9:ab:58:e9:92:13:d6:3d:64:d6:30:79:4d:87: 9c:df:a3:39:f2:64:14:db:e4:ed:4b:39:c6:32:f7: c1:71:91:23:c0:28:ef:48:48:04:82:c7:f1:ff:d8: 0b:60:de:b7:3f:4a:8e:c5:ce:aa:f7:21:3a:73:2d: 5b:94:66:2f:ad:15:f6:6e:ed:4e:e0:60:a2:b5:57: 7c:5e:01:4d:64:5a:de:f4:5b:f6:3c:16:12:89:3e: e4:11:bc:1b:83:14:b8:0a:e3:43:43:d8:44:a6:09: 46:9e:14:33:82:58:1f:55:0f:c8:36:d2:05:54:89: 57:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:99:9F:4D:B0:EE:40:F0:FF:C5:41:2E:D1:99:F4:3D:CC:99:FA:2F X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.140.0/24 Signature Algorithm: sha256WithRSAEncryption 77:e7:52:67:be:cf:40:06:8e:86:29:4a:cd:c5:7e:ca:1f:76: 32:b4:fb:f4:68:94:c0:22:e0:15:66:b1:6c:c4:cb:db:8d:2f: 4d:fa:65:93:53:58:ac:5f:f7:ef:68:07:eb:39:b7:7f:85:9d: 5f:d6:d5:0c:cf:da:25:d2:ad:40:80:c6:31:93:ed:d3:07:ff: e4:79:05:a4:59:b9:ab:91:99:6b:66:c1:6d:f5:fb:47:85:79: d4:fe:d6:27:eb:70:b1:89:4f:cd:2b:49:ca:ef:57:28:1a:d2: bd:4b:d7:77:99:d4:30:57:d5:8a:9e:9e:f7:a5:17:01:53:53: c3:65:da:6e:eb:50:25:39:29:d4:8b:36:35:c7:3b:53:d2:94: 1f:d8:f5:cc:4c:0b:69:75:c3:c9:2c:fe:fd:e1:44:0b:ee:f0: 9c:dc:81:3c:ae:ca:81:5a:6d:6d:7f:fe:bd:2a:b1:fb:01:a6: 1d:b5:8b:31:a8:b6:b6:be:df:58:07:9f:70:4f:5e:dd:70:5e: 7a:b1:fe:28:d4:d9:a8:33:fb:1c:9d:48:ec:93:fd:06:9d:fe: a0:c3:ee:36:e5:55:6c:1c:1d:99:11:08:d2:e9:0f:46:12:88: 55:4d:ae:70:de:4e:3f:82:c2:ba:af:7f:ff:3f:91:cf:07:14: 50:30:99:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMglVuQG26CuEc5in4yC5CWL5naQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMzVaFw0yNzA1MDIwMjU3MzVaMDMxMTAvBgNV BAMTKDIyOTk5RjREQjBFRTQwRjBGRkM1NDEyRUQxOTlGNDNEQ0M5OUZBMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChB6HL7GVjQyJ+4VN3WiXvA5Gi 246MHS0vpiprDpJNzrscVFquTDFX/Xa6rbrNmCjwFxZt81sU9An5LFzHXkKtJQdI RJUcLOGuAyX0WhT2C9tfTY2B+LmjulOI2p1qBgRBe0yMlejkqO5ZXCJ355pHT67z ISKU9BWIHzgsjVSCXxPXj9CKz4v5q1jpkhPWPWTWMHlNh5zfoznyZBTb5O1LOcYy 98FxkSPAKO9ISASCx/H/2Atg3rc/So7Fzqr3ITpzLVuUZi+tFfZu7U7gYKK1V3xe AU1kWt70W/Y8FhKJPuQRvBuDFLgK40ND2ESmCUaeFDOCWB9VD8g20gVUiVeZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIpmfTbDuQPD/xUEu0Zn0PcyZ+i8wHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SMMA0GCSqG SIb3DQEBCwUAA4IBAQB351Jnvs9ABo6GKUrNxX7KH3YytPv0aJTAIuAVZrFsxMvb jS9N+mWTU1isX/fvaAfrObd/hZ1f1tUMz9ol0q1AgMYxk+3TB//keQWkWbmrkZlr ZsFt9ftHhXnU/tYn63CxiU/NK0nK71coGtK9S9d3mdQwV9WKnp73pRcBU1PDZdpu 61AlOSnUizY1xztT0pQf2PXMTAtpdcPJLP794UQL7vCc3IE8rsqBWm1tf/69KrH7 AaYdtYsxqLa2vt9YB59wT17dcF56sf4o1NmoM/scnUjsk/0Gnf6gw+425VVsHB2Z EQjS6Q9GEohVTa5w3k4/gsK6r3//P5HPBxRQMJnU -----END CERTIFICATE-----Generated at Wed May 13 04:48:19 2026 by rpki-client