$ rpki-client -vvf rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/3230332e372e3137312e302f32342d3234203d3e203535363931.roa File: 3230332e372e3137312e302f32342d3234203d3e203535363931.roa (raw, json) Hash identifier: /oNv82I3Vm7TPqNqjll+3TrmIZVD8/SYFvS2zGG/dvA= Subject key identifier: B1:FF:9F:9E:C7:42:DD:F9:9A:A4:B1:CD:16:50:BF:C2:C2:A7:E2:03 Certificate issuer: /CN=AFCD2663DA10358FE9A71A940DC8F47E167CE296 Certificate serial: 59C9021493D8A14388A427FD839FD6DDEF3356B9 Authority key identifier: AF:CD:26:63:DA:10:35:8F:E9:A7:1A:94:0D:C8:F4:7E:16:7C:E2:96 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/3230332e372e3137312e302f32342d3234203d3e203535363931.roa Signing time: Sun 03 May 2026 03:03:09 +0000 ROA not before: Sun 03 May 2026 02:58:09 +0000 ROA not after: Sun 02 May 2027 03:03:09 +0000 asID: 55691 IP address blocks: 203.7.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.crl rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c9:02:14:93:d8:a1:43:88:a4:27:fd:83:9f:d6:dd:ef:33:56:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFCD2663DA10358FE9A71A940DC8F47E167CE296 Validity Not Before: May 3 02:58:09 2026 GMT Not After : May 2 03:03:09 2027 GMT Subject: CN=B1FF9F9EC742DDF99AA4B1CD1650BFC2C2A7E203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bf:0b:23:7c:03:bc:ad:74:6f:c2:7e:79:41: 4d:2f:f0:8f:47:1a:13:ed:65:69:3b:5f:a6:9a:45: b5:de:f9:8c:9a:f8:46:15:94:56:ec:47:c5:ed:62: d6:5f:4b:ca:0f:c5:88:3a:f0:f8:d0:eb:4e:6f:e4: 10:d8:5f:22:e7:94:ef:d7:58:0b:bd:d5:0e:19:19: 6b:aa:ab:0c:da:5a:96:8c:fa:16:c3:97:7f:9a:b2: 5a:82:ba:51:b0:d1:cb:8e:75:b0:a6:52:b9:cc:2f: 2f:e7:1f:08:00:b4:05:3d:ce:65:ee:fa:c4:75:6f: 90:08:8d:1b:6c:3e:c5:24:ea:2b:8f:b7:e5:18:bd: 42:36:97:61:f9:df:54:b0:ea:8f:a9:10:45:d0:de: 62:e9:f6:74:14:d5:44:02:e1:05:73:02:6c:68:5c: 71:c3:43:4d:85:55:ff:e2:f9:97:de:69:3f:02:b2: bd:ff:21:d4:79:d2:ae:7a:3a:68:32:2f:09:09:d8: c4:5a:e3:7d:fe:f5:c2:f9:33:21:30:09:73:9c:70: fe:84:6c:3b:cb:97:aa:55:be:09:66:c1:fc:0f:8d: 34:27:b7:3a:17:ab:7a:28:0d:f4:02:fa:7d:77:8c: 85:17:ae:f8:6a:24:bc:d3:77:43:6c:e8:f3:f6:11: 22:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FF:9F:9E:C7:42:DD:F9:9A:A4:B1:CD:16:50:BF:C2:C2:A7:E2:03 X509v3 Authority Key Identifier: keyid:AF:CD:26:63:DA:10:35:8F:E9:A7:1A:94:0D:C8:F4:7E:16:7C:E2:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/3230332e372e3137312e302f32342d3234203d3e203535363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.7.171.0/24 Signature Algorithm: sha256WithRSAEncryption ad:42:63:07:06:1d:9e:7d:61:0a:31:ab:0c:b2:e4:99:84:0c: cb:b4:f0:e9:42:32:9e:d0:a5:12:44:bf:5b:e1:bc:90:57:5f: c4:58:f5:b8:ed:a5:de:47:0c:9f:c6:9d:8b:21:84:f9:2f:af: 57:3e:cd:1e:04:8d:b7:6c:7a:21:57:45:26:12:38:f3:fc:4d: d5:19:91:6e:81:fe:ce:b4:f5:3c:8b:57:32:64:9e:42:3c:c3: 9e:d0:67:b8:4e:49:32:cd:2d:fb:51:80:5c:71:b9:29:e3:62: 9b:12:5a:ce:77:5a:49:ad:9d:6c:19:d4:17:4f:85:0c:80:6b: 66:92:f4:15:14:42:56:b1:c7:be:2e:5f:09:6a:60:c8:1a:f0: cf:e6:50:6c:24:f1:d6:10:bb:31:a4:6d:bf:aa:1f:0e:f9:58: 81:d4:0d:b0:89:68:43:e8:9e:85:48:7f:89:73:78:33:c4:8a: 69:67:ff:d1:a1:b3:9c:f0:44:3d:3a:83:04:6e:50:62:7d:29: 35:2d:96:f5:77:7b:0e:3a:07:b1:b7:0b:f4:3e:8c:b1:84:bf: dd:18:aa:9d:65:64:67:94:d5:7b:ab:41:28:c2:e9:a8:2b:7c: d4:ba:e8:41:0c:44:a8:c2:70:75:8e:d3:bc:58:6e:19:08:da: 3b:2b:1a:f0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWckCFJPYoUOIpCf9g5/W3e8zVrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZDRDI2NjNEQTEwMzU4RkU5QTcxQTk0MERDOEY0N0Ux NjdDRTI5NjAeFw0yNjA1MDMwMjU4MDlaFw0yNzA1MDIwMzAzMDlaMDMxMTAvBgNV BAMTKEIxRkY5RjlFQzc0MkRERjk5QUE0QjFDRDE2NTBCRkMyQzJBN0UyMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjvwsjfAO8rXRvwn55QU0v8I9H GhPtZWk7X6aaRbXe+Yya+EYVlFbsR8XtYtZfS8oPxYg68PjQ605v5BDYXyLnlO/X WAu91Q4ZGWuqqwzaWpaM+hbDl3+aslqCulGw0cuOdbCmUrnMLy/nHwgAtAU9zmXu +sR1b5AIjRtsPsUk6iuPt+UYvUI2l2H531Sw6o+pEEXQ3mLp9nQU1UQC4QVzAmxo XHHDQ02FVf/i+ZfeaT8Csr3/IdR50q56OmgyLwkJ2MRa433+9cL5MyEwCXOccP6E bDvLl6pVvglmwfwPjTQntzoXq3ooDfQC+n13jIUXrvhqJLzTd0Ns6PP2ESJdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsf+fnsdC3fmapLHNFlC/wsKn4gMwHwYDVR0j BBgwFoAUr80mY9oQNY/ppxqUDcj0fhZ84pYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzAwYWUwZjEtYjhjMC00NTJmLThlODktMWRmYzNmNTk0ZDRjLzAvQUZDRDI2NjNE QTEwMzU4RkU5QTcxQTk0MERDOEY0N0UxNjdDRTI5Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRkNEMjY2M0RBMTAzNThGRTlBNzFBOTQwREM4RjQ3RTE2N0NF Mjk2LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwMGFlMGYxLWI4YzAtNDUyZi04 ZTg5LTFkZmMzZjU5NGQ0Yy8wLzMyMzAzMzJlMzcyZTMxMzczMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM5MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLB6swDQYJKoZIhvcN AQELBQADggEBAK1CYwcGHZ59YQoxqwyy5JmEDMu08OlCMp7QpRJEv1vhvJBXX8RY 9bjtpd5HDJ/GnYshhPkvr1c+zR4EjbdseiFXRSYSOPP8TdUZkW6B/s609TyLVzJk nkI8w57QZ7hOSTLNLftRgFxxuSnjYpsSWs53WkmtnWwZ1BdPhQyAa2aS9BUUQlax x74uXwlqYMga8M/mUGwk8dYQuzGkbb+qHw75WIHUDbCJaEPonoVIf4lzeDPEimln /9Ghs5zwRD06gwRuUGJ9KTUtlvV3ew46B7G3C/Q+jLGEv90Yqp1lZGeU1XurQSjC 6agrfNS66EEMRKjCcHWO07xYbhkI2jsrGvA= -----END CERTIFICATE-----Generated at Wed May 13 00:53:57 2026 by rpki-client