$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: UL4zhhQ/mTSbSeInAlnL6nRV/FwcIM7PBKrHQvsKnf8= Subject key identifier: 9E:FC:4F:D3:B0:16:63:CC:AE:8F:3F:8B:90:8B:18:86:C8:C4:39:93 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 735AFDE1318CA60119161C212C92C8D1820D49AA Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:28 +0000 ROA not before: Sun 03 May 2026 02:58:28 +0000 ROA not after: Sun 02 May 2027 03:03:28 +0000 asID: 18059 IP address blocks: 202.43.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5a:fd:e1:31:8c:a6:01:19:16:1c:21:2c:92:c8:d1:82:0d:49:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:28 2026 GMT Not After : May 2 03:03:28 2027 GMT Subject: CN=9EFC4FD3B01663CCAE8F3F8B908B1886C8C43993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c3:2b:11:7d:10:c0:46:9f:e8:25:39:43:7a: a4:e1:2e:46:23:6e:b9:d1:90:01:88:ba:c2:0a:33: 29:b5:14:d2:78:d1:48:9c:fd:4f:1d:75:ea:9d:93: 00:65:f9:fc:2a:fd:52:d8:aa:9b:57:9e:6a:0a:0c: ea:7a:25:c5:6e:b7:50:4a:b8:77:19:d9:26:df:2d: 65:42:a5:10:2d:9d:d8:59:f8:f4:24:b6:2f:2d:01: 64:d7:9a:32:3c:74:eb:3e:b2:d4:ef:50:03:07:50: 0f:9a:c8:5a:04:6c:04:2f:09:99:ee:32:ee:94:24: 9b:5e:05:72:e5:55:41:a9:f8:81:f7:f0:f9:45:f4: 98:9b:df:e7:18:a4:88:d2:e4:80:89:60:17:7b:49: 58:41:8e:f5:28:38:4b:78:e0:fb:49:e1:b9:0d:9b: 58:8d:0d:a4:ae:61:0f:44:55:00:93:54:22:75:56: 25:a2:d5:42:66:35:7d:9d:ed:48:6b:c6:68:49:59: 92:ce:02:7d:04:c9:c0:06:2a:f0:ab:00:44:1d:70: d2:ec:c4:1d:3a:ed:73:c5:c8:d9:88:d8:8d:fd:bd: 45:d0:bd:7c:70:da:6e:85:5d:3f:11:db:f4:93:f6: f4:1a:65:1a:cd:c8:e4:1a:bc:09:bf:cc:5c:ee:d4: 11:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:FC:4F:D3:B0:16:63:CC:AE:8F:3F:8B:90:8B:18:86:C8:C4:39:93 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.168.0/24 Signature Algorithm: sha256WithRSAEncryption b0:02:de:80:7b:1a:d8:6a:52:a7:b9:f1:79:d0:8f:21:4e:5b: 47:af:a2:50:4a:2d:f4:98:44:97:68:7e:3c:dd:e8:3f:75:10: c3:d8:24:43:3a:d3:a1:48:fc:d2:93:d9:2d:68:b3:5a:00:e5: c7:c7:2d:c8:6c:01:13:cd:16:46:df:6f:11:b5:2c:57:51:4a: 9f:d1:62:49:6f:2c:88:0c:a7:84:5e:8b:c4:08:27:2b:eb:61: 9e:42:0c:2e:4f:26:ee:c3:6b:6a:7c:65:2d:82:29:02:b0:20: 47:d2:47:55:d2:26:17:a2:0c:cf:ee:ec:42:8c:fe:fd:c1:77: 71:8d:14:4c:85:83:8d:99:4c:e9:2a:73:4c:dd:25:21:3d:27: 0e:73:ca:04:4a:71:7f:b7:03:eb:6c:cf:b7:64:d1:6b:63:5b: d8:0e:f0:ac:24:9d:4f:25:50:1f:06:45:a8:97:e5:c2:d2:b2: 79:82:27:4d:cc:d2:e4:01:c3:fe:e1:bb:23:73:53:a4:27:eb: 16:af:0d:ea:18:65:86:25:78:09:69:29:c7:2c:ba:21:fa:f5: ea:ad:ae:c2:53:72:ae:7f:58:27:9a:ab:c6:b4:a7:a5:92:30: 68:77:10:4a:e7:da:ea:4c:8f:8f:d7:03:7e:f2:a2:93:0e:44: 13:3a:5d:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc1r94TGMpgEZFhwhLJLI0YINSaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MjhaFw0yNzA1MDIwMzAzMjhaMDMxMTAvBgNV BAMTKDlFRkM0RkQzQjAxNjYzQ0NBRThGM0Y4QjkwOEIxODg2QzhDNDM5OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYwysRfRDARp/oJTlDeqThLkYj brnRkAGIusIKMym1FNJ40Uic/U8ddeqdkwBl+fwq/VLYqptXnmoKDOp6JcVut1BK uHcZ2SbfLWVCpRAtndhZ+PQkti8tAWTXmjI8dOs+stTvUAMHUA+ayFoEbAQvCZnu Mu6UJJteBXLlVUGp+IH38PlF9Jib3+cYpIjS5ICJYBd7SVhBjvUoOEt44PtJ4bkN m1iNDaSuYQ9EVQCTVCJ1ViWi1UJmNX2d7UhrxmhJWZLOAn0EycAGKvCrAEQdcNLs xB067XPFyNmI2I39vUXQvXxw2m6FXT8R2/ST9vQaZRrNyOQavAm/zFzu1BEFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnvxP07AWY8yujz+LkIsYhsjEOZMwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqDANBgkqhkiG 9w0BAQsFAAOCAQEAsALegHsa2GpSp7nxedCPIU5bR6+iUEot9JhEl2h+PN3oP3UQ w9gkQzrToUj80pPZLWizWgDlx8ctyGwBE80WRt9vEbUsV1FKn9FiSW8siAynhF6L xAgnK+thnkIMLk8m7sNranxlLYIpArAgR9JHVdImF6IMz+7sQoz+/cF3cY0UTIWD jZlM6SpzTN0lIT0nDnPKBEpxf7cD62zPt2TRa2Nb2A7wrCSdTyVQHwZFqJflwtKy eYInTczS5AHD/uG7I3NTpCfrFq8N6hhlhiV4CWkpxyy6Ifr16q2uwlNyrn9YJ5qr xrSnpZIwaHcQSufa6kyPj9cDfvKikw5EEzpdnQ== -----END CERTIFICATE-----Generated at Wed May 13 12:14:03 2026 by rpki-client