$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 6MGBmPK2WFtBKIbJCI0fDWMe5+gA83zluQ1Gn75Ftu4= Subject key identifier: 7D:F9:D1:E5:A2:73:3D:96:CF:F9:0F:57:C5:B6:80:9D:C5:42:DD:FF Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 7BD40B36F28DBA8AD0CE579CCB4F0FD89779C0F8 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:55 +0000 ROA not before: Sun 03 May 2026 02:58:55 +0000 ROA not after: Sun 02 May 2027 03:03:55 +0000 asID: 18059 IP address blocks: 202.43.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d4:0b:36:f2:8d:ba:8a:d0:ce:57:9c:cb:4f:0f:d8:97:79:c0:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:55 2026 GMT Not After : May 2 03:03:55 2027 GMT Subject: CN=7DF9D1E5A2733D96CFF90F57C5B6809DC542DDFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c0:6d:71:2a:6b:dc:7d:c0:00:37:37:a2:a2: d5:cd:38:3d:ff:ac:93:a8:1a:86:93:7f:a3:f1:56: 25:70:10:14:4a:f1:cf:ad:3b:f1:37:cb:ed:f2:9f: a7:06:e6:9a:6a:d5:46:5e:b3:1e:7b:6d:73:be:82: dc:9f:74:a1:ad:6f:cd:5f:eb:d2:dc:7a:d0:7c:b2: 6c:5c:de:73:60:46:18:a2:ed:0d:65:04:1c:0d:87: 52:46:29:5d:25:c5:d4:b9:06:94:cf:b6:1e:4c:69: 93:41:6d:a7:31:e4:0e:43:d9:6d:74:90:ce:77:63: 98:6c:31:5a:32:81:22:2f:d3:b6:70:06:cb:94:e3: 92:1b:b4:58:7c:30:10:db:21:fb:44:4c:7c:79:f7: ef:4a:b3:39:af:b8:e1:6e:20:65:3c:c9:27:ad:db: aa:11:e0:a5:ab:3c:5c:16:bd:1f:01:0f:89:ac:f5: 84:6e:2e:04:31:71:18:e3:65:47:37:40:12:86:64: 95:7c:df:b8:d8:95:d6:97:e9:46:b0:55:22:96:69: 39:87:6b:4e:f5:b7:bc:d5:fb:17:84:94:5c:9b:ed: d3:77:8a:ba:2e:45:9b:c7:ee:33:c2:bd:c7:06:8f: 6d:dd:ea:ab:99:db:31:9f:d6:1d:7f:11:9f:97:b9: 45:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F9:D1:E5:A2:73:3D:96:CF:F9:0F:57:C5:B6:80:9D:C5:42:DD:FF X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.162.0/24 Signature Algorithm: sha256WithRSAEncryption 58:20:de:b9:f1:d3:e0:0f:78:89:9d:93:36:0d:2d:68:df:11: 6f:19:ad:44:01:33:b0:3b:22:45:1e:d4:27:e5:49:02:8e:36: 9b:60:02:ff:97:5d:89:d4:92:d3:65:c6:7b:a2:22:4d:2a:4f: d5:d5:63:3c:02:42:3b:c9:e4:7a:12:ba:eb:a5:a1:f1:03:9e: de:87:5b:72:fa:be:0e:cb:bf:4b:da:26:59:71:ff:50:bf:63: 4d:82:03:08:22:25:fb:3c:d9:89:e0:b8:be:bc:8f:31:31:be: 8c:a5:a0:25:14:af:8a:f4:c3:b6:bf:f9:f6:09:fb:76:be:f6: ca:7c:9c:15:50:c5:cf:36:ff:87:d9:1d:2b:d6:eb:23:35:e6: c4:d8:27:45:86:69:86:59:77:7b:27:c7:8c:42:22:ac:8e:bf: c3:c8:41:64:1e:47:66:42:75:46:09:a4:07:6e:62:a5:cf:26: 78:26:87:e7:25:a1:4c:ce:f3:23:11:7d:df:08:69:2a:23:88: 59:e7:5a:8a:be:fc:c3:ea:68:27:d0:63:85:b6:f2:21:71:18: 87:b5:af:3a:dc:6c:94:46:a0:d9:fe:6a:bb:97:ee:f4:f1:44: a4:91:5f:7a:ea:c9:9d:be:c9:10:a1:88:46:9e:d1:db:4b:be: b6:67:b7:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe9QLNvKNuorQzlecy08P2Jd5wPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTVaFw0yNzA1MDIwMzAzNTVaMDMxMTAvBgNV BAMTKDdERjlEMUU1QTI3MzNEOTZDRkY5MEY1N0M1QjY4MDlEQzU0MkRERkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKwG1xKmvcfcAANzeiotXNOD3/ rJOoGoaTf6PxViVwEBRK8c+tO/E3y+3yn6cG5ppq1UZesx57bXO+gtyfdKGtb81f 69LcetB8smxc3nNgRhii7Q1lBBwNh1JGKV0lxdS5BpTPth5MaZNBbacx5A5D2W10 kM53Y5hsMVoygSIv07ZwBsuU45IbtFh8MBDbIftETHx59+9KszmvuOFuIGU8ySet 26oR4KWrPFwWvR8BD4ms9YRuLgQxcRjjZUc3QBKGZJV837jYldaX6UawVSKWaTmH a071t7zV+xeElFyb7dN3irouRZvH7jPCvccGj23d6quZ2zGf1h1/EZ+XuUUFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUffnR5aJzPZbP+Q9XxbaAncVC3f8wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorojANBgkqhkiG 9w0BAQsFAAOCAQEAWCDeufHT4A94iZ2TNg0taN8RbxmtRAEzsDsiRR7UJ+VJAo42 m2AC/5ddidSS02XGe6IiTSpP1dVjPAJCO8nkehK666Wh8QOe3odbcvq+Dsu/S9om WXH/UL9jTYIDCCIl+zzZieC4vryPMTG+jKWgJRSvivTDtr/59gn7dr72ynycFVDF zzb/h9kdK9brIzXmxNgnRYZphll3eyfHjEIirI6/w8hBZB5HZkJ1RgmkB25ipc8m eCaH5yWhTM7zIxF93whpKiOIWedair78w+poJ9BjhbbyIXEYh7WvOtxslEag2f5q u5fu9PFEpJFfeurJnb7JEKGIRp7R20u+tme38Q== -----END CERTIFICATE-----Generated at Wed May 13 09:54:39 2026 by rpki-client