$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: qmKFwJsNY9Ob/jP4WVASxJskZdta52+vlev0HDQH8DA= Subject key identifier: 68:F4:AC:9A:91:9E:57:19:47:F6:11:05:64:E5:17:B2:D5:00:30:A1 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 27372AE35A47E312A68056829AF01A659D0D5423 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:45 +0000 ROA not before: Sun 03 May 2026 02:58:45 +0000 ROA not after: Sun 02 May 2027 03:03:45 +0000 asID: 18059 IP address blocks: 202.43.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:37:2a:e3:5a:47:e3:12:a6:80:56:82:9a:f0:1a:65:9d:0d:54:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:45 2026 GMT Not After : May 2 03:03:45 2027 GMT Subject: CN=68F4AC9A919E571947F6110564E517B2D50030A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:b9:21:38:fb:0c:d4:8d:fe:cc:7b:be:84: 85:93:73:8a:91:0e:d7:d5:09:12:70:7c:69:97:05: 8d:17:3e:b1:7d:95:6b:d8:b6:5d:d6:b2:0d:af:14: 1a:04:07:9e:11:16:f5:40:8a:3f:a1:05:29:6c:62: 93:ad:5b:33:a6:b9:d3:90:41:3f:5c:0a:72:52:ab: 06:76:f0:26:af:90:62:1c:dd:c9:6f:b1:b4:72:34: c0:68:78:60:e3:6f:1a:f7:92:51:1b:da:cd:ef:4d: 11:9f:23:29:32:08:fc:61:88:01:32:09:82:d7:4b: 9c:68:6f:35:04:7d:ef:a6:77:a7:e4:5d:4b:ef:16: 8d:04:45:a9:2c:b4:b2:0b:aa:db:c8:14:97:4d:a8: 99:2d:49:b5:97:e2:7a:f7:81:ca:ec:e7:a3:c1:8e: e5:01:87:18:3f:34:f9:3d:90:e8:2e:e5:52:93:89: 54:1d:e6:6f:d6:66:89:7d:62:de:34:45:8b:fe:db: 1b:88:23:4f:f2:02:4c:a3:21:96:7d:2c:ee:09:a3: 8b:c1:7a:df:05:f8:17:5a:55:60:51:5a:9f:2d:22: 53:aa:74:f5:f8:06:bb:ca:8e:c3:6f:7c:fb:d8:c3: eb:88:9c:68:d9:75:0e:7f:59:b4:fb:c1:71:88:03: b9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F4:AC:9A:91:9E:57:19:47:F6:11:05:64:E5:17:B2:D5:00:30:A1 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.164.0/24 Signature Algorithm: sha256WithRSAEncryption 44:38:7c:45:6c:b9:a6:c3:ac:ff:f5:7d:68:a0:b3:9e:60:52: c7:45:ba:a0:4a:e4:bf:14:c8:9a:a6:c1:89:b6:a6:45:4b:22: 82:57:d4:35:16:c1:8d:69:89:92:60:88:c3:78:58:24:a2:d8: e8:a2:1c:f8:5a:4d:e4:d0:3b:d5:46:50:55:c5:85:2a:1b:79: a7:4e:3a:a2:05:0a:89:6c:65:88:eb:5d:7a:06:3c:08:cb:b1: 57:0b:c9:14:df:3e:25:92:b2:bb:20:67:12:d5:f0:d7:ee:a5: 3b:ff:0a:07:bf:6f:4a:d3:84:da:41:0a:47:7d:62:25:94:26: 89:ce:d3:9a:eb:d4:a3:f2:ec:34:3d:64:a4:ea:a9:ad:e4:6b: 00:b2:d0:11:8a:dc:a0:56:d5:3c:05:3f:b0:55:06:c6:d5:8b: 72:eb:42:91:97:37:50:96:25:56:34:94:df:60:ee:0e:f6:1c: 9b:e6:d0:e9:0c:b0:74:00:cb:89:05:48:24:3f:65:ed:09:d0: 21:7c:af:0f:fc:04:76:94:f9:50:02:bc:09:28:38:ec:87:0e: b7:4d:6f:bf:74:9c:86:0b:df:de:75:8b:ac:ea:7a:3b:fe:78: 52:6a:b7:5a:6c:1c:fa:51:b7:a1:18:2b:7a:7d:aa:07:d9:28: 8d:3c:f8:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJzcq41pH4xKmgFaCmvAaZZ0NVCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NDVaFw0yNzA1MDIwMzAzNDVaMDMxMTAvBgNV BAMTKDY4RjRBQzlBOTE5RTU3MTk0N0Y2MTEwNTY0RTUxN0IyRDUwMDMwQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xbkhOPsM1I3+zHu+hIWTc4qR DtfVCRJwfGmXBY0XPrF9lWvYtl3Wsg2vFBoEB54RFvVAij+hBSlsYpOtWzOmudOQ QT9cCnJSqwZ28CavkGIc3clvsbRyNMBoeGDjbxr3klEb2s3vTRGfIykyCPxhiAEy CYLXS5xobzUEfe+md6fkXUvvFo0ERakstLILqtvIFJdNqJktSbWX4nr3gcrs56PB juUBhxg/NPk9kOgu5VKTiVQd5m/WZol9Yt40RYv+2xuII0/yAkyjIZZ9LO4Jo4vB et8F+BdaVWBRWp8tIlOqdPX4BrvKjsNvfPvYw+uInGjZdQ5/WbT7wXGIA7l1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaPSsmpGeVxlH9hEFZOUXstUAMKEwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpDANBgkqhkiG 9w0BAQsFAAOCAQEARDh8RWy5psOs//V9aKCznmBSx0W6oErkvxTImqbBibamRUsi glfUNRbBjWmJkmCIw3hYJKLY6KIc+FpN5NA71UZQVcWFKht5p046ogUKiWxliOtd egY8CMuxVwvJFN8+JZKyuyBnEtXw1+6lO/8KB79vStOE2kEKR31iJZQmic7TmuvU o/LsND1kpOqpreRrALLQEYrcoFbVPAU/sFUGxtWLcutCkZc3UJYlVjSU32DuDvYc m+bQ6QywdADLiQVIJD9l7QnQIXyvD/wEdpT5UAK8CSg47IcOt01vv3Schgvf3nWL rOp6O/54Umq3Wmwc+lG3oRgren2qB9kojTz4Fg== -----END CERTIFICATE-----Generated at Wed May 13 09:51:22 2026 by rpki-client