$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: cZuE/x0rYAGnALYKePw6d17kuoj6BUOhuHiB5YSP8pA= Subject key identifier: 5E:11:2E:95:BC:7B:74:7F:79:8E:0F:70:1D:52:BD:67:24:50:9D:8E Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 33D317AC802AFCB575BC860324D6485DA151CA70 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:40 +0000 ROA not before: Sun 03 May 2026 02:58:40 +0000 ROA not after: Sun 02 May 2027 03:03:40 +0000 asID: 18059 IP address blocks: 202.43.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:d3:17:ac:80:2a:fc:b5:75:bc:86:03:24:d6:48:5d:a1:51:ca:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:40 2026 GMT Not After : May 2 03:03:40 2027 GMT Subject: CN=5E112E95BC7B747F798E0F701D52BD6724509D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:73:9a:5b:0f:28:05:57:d9:41:42:20:68:5a: 97:5c:46:f9:4e:f6:bb:35:35:44:00:31:15:76:8c: ef:7c:a6:e4:83:41:86:da:c7:fc:4a:b7:a2:c8:85: 67:c0:e0:6f:74:5a:1b:cc:97:47:de:87:ba:06:ee: 27:b1:b9:44:80:01:01:88:0a:36:d7:1f:8d:72:92: e3:7e:08:cb:f0:93:66:95:31:b5:41:d4:20:71:18: f2:37:fc:68:e2:74:ec:57:97:9a:9f:6d:42:c5:2c: c5:e7:57:0a:d7:68:e6:34:27:7f:fb:4c:86:7d:57: a0:14:1a:f3:c0:fb:bb:9d:97:4c:9f:51:ec:cc:5a: 9c:c3:4d:f9:60:ee:9c:a4:f5:3d:87:f7:75:3d:9d: b7:f3:f6:bc:c2:f5:a9:af:89:8a:5f:21:d2:0c:3c: d3:03:96:74:58:36:2f:45:7a:da:99:8e:eb:d6:d6: bf:f7:d0:c6:a8:98:ae:98:2a:a4:3c:b8:eb:8d:64: 28:cb:f6:77:b4:a0:00:1c:d1:e1:ac:64:f4:5a:4c: 74:b9:d4:ef:24:5b:e2:01:a0:6e:3a:fe:43:56:8d: 03:4b:a2:28:eb:ec:57:ab:43:7b:e6:fa:3b:62:2b: 03:9b:cd:20:d3:09:b0:d2:8c:a6:63:f3:a0:2e:8e: 86:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:11:2E:95:BC:7B:74:7F:79:8E:0F:70:1D:52:BD:67:24:50:9D:8E X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.172.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:43:ea:2f:29:50:c7:07:f7:e2:fd:73:04:f3:93:bd:b4:c0: 84:c1:f4:75:79:2a:8a:71:8e:f6:d8:74:df:97:7a:82:64:38: 43:53:fc:ca:04:cd:49:da:0a:44:23:db:0f:5c:b7:6f:15:3f: c8:f5:91:09:83:65:cc:0d:a2:55:a7:81:00:fb:85:c4:e0:f2: 76:5b:15:45:14:70:9c:90:13:da:ab:fb:0a:2e:46:e7:c1:2b: 34:ff:3b:fc:53:8e:52:61:07:d4:77:0e:ba:90:b2:af:bf:38: 0d:71:9a:82:cc:62:7e:26:60:a7:cc:cd:36:0c:3d:c7:c1:3d: 34:ae:d4:0e:12:f6:d2:fc:a5:ab:ba:3f:36:85:0f:1a:4b:25: fb:fb:4d:44:51:c5:4a:53:c6:60:b1:3e:c5:99:d2:cf:8d:88: 6a:49:4d:67:fe:88:f8:f0:37:70:4f:94:cb:17:e1:9b:00:cd: 2a:37:f2:c4:9b:87:f7:36:97:10:0a:36:d6:16:13:db:c5:34: 7f:0d:50:f2:89:f8:de:0a:75:96:de:05:dd:a7:ec:d1:92:20: 39:35:31:8f:52:38:a7:8a:4b:7f:88:b4:72:a4:f9:6b:d6:4e: 5d:8d:85:6f:3e:01:06:78:85:15:f7:ad:b3:6e:87:57:75:5c: c6:b4:4c:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM9MXrIAq/LV1vIYDJNZIXaFRynAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NDBaFw0yNzA1MDIwMzAzNDBaMDMxMTAvBgNV BAMTKDVFMTEyRTk1QkM3Qjc0N0Y3OThFMEY3MDFENTJCRDY3MjQ1MDlEOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSc5pbDygFV9lBQiBoWpdcRvlO 9rs1NUQAMRV2jO98puSDQYbax/xKt6LIhWfA4G90WhvMl0feh7oG7iexuUSAAQGI CjbXH41ykuN+CMvwk2aVMbVB1CBxGPI3/GjidOxXl5qfbULFLMXnVwrXaOY0J3/7 TIZ9V6AUGvPA+7udl0yfUezMWpzDTflg7pyk9T2H93U9nbfz9rzC9amviYpfIdIM PNMDlnRYNi9FetqZjuvW1r/30MaomK6YKqQ8uOuNZCjL9ne0oAAc0eGsZPRaTHS5 1O8kW+IBoG46/kNWjQNLoijr7FerQ3vm+jtiKwObzSDTCbDSjKZj86AujobXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXhEulbx7dH95jg9wHVK9ZyRQnY4wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorrDANBgkqhkiG 9w0BAQsFAAOCAQEAn0PqLylQxwf34v1zBPOTvbTAhMH0dXkqinGO9th035d6gmQ4 Q1P8ygTNSdoKRCPbD1y3bxU/yPWRCYNlzA2iVaeBAPuFxODydlsVRRRwnJAT2qv7 Ci5G58ErNP87/FOOUmEH1HcOupCyr784DXGagsxifiZgp8zNNgw9x8E9NK7UDhL2 0vylq7o/NoUPGksl+/tNRFHFSlPGYLE+xZnSz42IaklNZ/6I+PA3cE+UyxfhmwDN KjfyxJuH9zaXEAo21hYT28U0fw1Q8on43gp1lt4F3afs0ZIgOTUxj1I4p4pLf4i0 cqT5a9ZOXY2Fbz4BBniFFfets26HV3VcxrRMnA== -----END CERTIFICATE-----Generated at Wed May 13 09:54:56 2026 by rpki-client