$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136392e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136392e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: RKPIRSTRJ6ovskZLy7e961DIA/8J6FLcVr0Iq/M/VKY= Subject key identifier: 05:3C:DF:5A:02:5B:BC:61:2D:7C:C5:89:B2:23:61:83:BF:52:2C:71 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 7298E3F6A7FE45397542E2FC4B7478310714FF78 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136392e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:49 +0000 ROA not before: Sun 03 May 2026 02:58:49 +0000 ROA not after: Sun 02 May 2027 03:03:49 +0000 asID: 18059 IP address blocks: 202.43.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:98:e3:f6:a7:fe:45:39:75:42:e2:fc:4b:74:78:31:07:14:ff:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:49 2026 GMT Not After : May 2 03:03:49 2027 GMT Subject: CN=053CDF5A025BBC612D7CC589B2236183BF522C71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:23:ad:05:42:47:12:14:dc:63:92:e9:2d:a7: e4:dc:55:ff:17:47:53:d6:b3:08:6c:31:7f:31:8c: bf:7d:1c:ee:ab:b3:95:87:e7:d6:00:ef:30:24:dd: 1f:ee:b9:27:45:2f:9e:c5:dd:42:b9:81:93:0d:85: df:5c:ea:80:3e:be:c5:ce:84:cb:29:a2:bc:a7:31: 62:09:ae:14:fb:b1:5c:80:12:f2:08:f0:6f:79:c4: 7f:a0:88:ba:79:07:00:1f:be:82:15:89:58:96:a3: 73:60:a3:a6:33:78:7b:fd:75:93:5b:8a:5c:8e:50: 36:05:18:20:ba:1f:06:46:2d:9b:47:08:e1:4a:59: e2:0b:e3:66:f1:80:8e:1a:e0:d3:e2:fd:32:83:26: 81:7a:4f:07:9a:e9:9a:75:86:6d:43:7e:19:ac:88: 5a:e3:76:b2:27:5b:c6:ed:40:ce:72:78:60:4f:42: a6:62:cc:e3:25:2d:9d:c4:4b:f6:34:22:05:d8:d6: 42:a8:f4:38:cd:86:39:70:3a:38:8e:4e:14:9c:60: f7:af:4c:87:5a:11:eb:6e:82:09:1d:43:27:6e:2e: 2f:56:fd:4e:61:b7:c2:97:e0:d3:77:ff:83:cc:b2: 9e:c1:cf:16:be:57:f7:8f:19:b2:f6:92:49:cd:10: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3C:DF:5A:02:5B:BC:61:2D:7C:C5:89:B2:23:61:83:BF:52:2C:71 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136392e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.169.0/24 Signature Algorithm: sha256WithRSAEncryption 47:06:e6:eb:0b:4a:cf:f9:e6:e6:fb:35:01:71:66:2e:f0:31: 93:61:3d:aa:54:5c:9e:d4:20:64:02:42:7e:48:35:90:e1:e5: e2:9d:5c:0d:4f:f4:16:88:e9:37:f6:b2:58:29:a2:32:00:8f: d8:b8:64:0b:06:ba:82:dd:81:a2:81:7c:13:c5:31:62:34:fa: 04:d1:25:32:fc:30:cd:55:96:43:b5:12:aa:74:88:28:99:72: 73:d7:d2:ef:57:6b:36:08:c4:6d:1b:dc:4f:44:e6:48:9f:9b: 26:0a:9c:7a:9f:98:5a:f3:99:e7:94:fe:0f:b1:ed:9e:00:43: 62:a8:a0:5a:79:90:3e:b2:ec:d0:a2:a9:fe:ae:fb:1c:7c:eb: 00:a8:e8:43:65:02:6c:05:4c:43:fa:ea:89:90:92:08:06:0f: 0d:2d:0e:16:6b:3c:20:2f:4a:a4:fe:60:f6:e7:45:2a:d1:a4: 3d:5e:7e:21:20:33:79:33:03:e1:83:29:30:d1:a1:52:73:29: 46:a8:a6:55:fb:6c:0b:b3:b6:21:e6:75:54:5c:b1:ba:4d:22: 39:a0:64:95:83:d5:ed:3a:eb:04:23:d9:0c:0a:99:af:23:df: f8:a3:57:05:53:93:74:c1:13:d5:62:52:08:ca:c2:87:f7:fb: 4b:00:d9:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcpjj9qf+RTl1QuL8S3R4MQcU/3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NDlaFw0yNzA1MDIwMzAzNDlaMDMxMTAvBgNV BAMTKDA1M0NERjVBMDI1QkJDNjEyRDdDQzU4OUIyMjM2MTgzQkY1MjJDNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPI60FQkcSFNxjkuktp+TcVf8X R1PWswhsMX8xjL99HO6rs5WH59YA7zAk3R/uuSdFL57F3UK5gZMNhd9c6oA+vsXO hMsporynMWIJrhT7sVyAEvII8G95xH+giLp5BwAfvoIViViWo3Ngo6YzeHv9dZNb ilyOUDYFGCC6HwZGLZtHCOFKWeIL42bxgI4a4NPi/TKDJoF6Twea6Zp1hm1Dfhms iFrjdrInW8btQM5yeGBPQqZizOMlLZ3ES/Y0IgXY1kKo9DjNhjlwOjiOThScYPev TIdaEetuggkdQyduLi9W/U5ht8KX4NN3/4PMsp7Bzxa+V/ePGbL2kknNENB7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBTzfWgJbvGEtfMWJsiNhg79SLHEwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqTANBgkqhkiG 9w0BAQsFAAOCAQEARwbm6wtKz/nm5vs1AXFmLvAxk2E9qlRcntQgZAJCfkg1kOHl 4p1cDU/0FojpN/ayWCmiMgCP2LhkCwa6gt2BooF8E8UxYjT6BNElMvwwzVWWQ7US qnSIKJlyc9fS71drNgjEbRvcT0TmSJ+bJgqcep+YWvOZ55T+D7HtngBDYqigWnmQ PrLs0KKp/q77HHzrAKjoQ2UCbAVMQ/rqiZCSCAYPDS0OFms8IC9KpP5g9udFKtGk PV5+ISAzeTMD4YMpMNGhUnMpRqimVftsC7O2IeZ1VFyxuk0iOaBklYPV7TrrBCPZ DAqZryPf+KNXBVOTdMET1WJSCMrCh/f7SwDZpg== -----END CERTIFICATE-----Generated at Wed May 13 11:22:16 2026 by rpki-client