$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139342e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: d8nf4jQpSNjaJTL9C+xw090BjbbtyodZIJm/9dt6ltQ= Subject key identifier: EF:3E:73:0E:BC:AC:0A:76:1A:DF:38:D4:BF:A4:3B:B6:7E:E5:47:70 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 2123281F48D4E18107A45093B97E7CAB035A122F Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139342e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:53 +0000 ROA not before: Sun 03 May 2026 02:58:53 +0000 ROA not after: Sun 02 May 2027 03:03:53 +0000 asID: 18059 IP address blocks: 202.78.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:23:28:1f:48:d4:e1:81:07:a4:50:93:b9:7e:7c:ab:03:5a:12:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:53 2026 GMT Not After : May 2 03:03:53 2027 GMT Subject: CN=EF3E730EBCAC0A761ADF38D4BFA43BB67EE54770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:14:cf:4e:6f:8b:1e:72:26:70:f8:9a:d4:10: fa:b0:51:96:f5:e9:26:6c:40:dd:80:b4:7d:d2:f1: 87:d0:01:2e:43:13:6f:d9:99:77:7c:44:79:6d:a6: bd:0e:2d:86:37:31:00:ad:5d:1b:84:f6:54:e6:82: 59:5b:6a:57:15:b6:4b:1d:1a:f8:58:e2:83:52:07: 63:4e:68:31:c6:7e:61:97:24:0f:5b:29:18:b8:d8: 1f:fc:d3:e4:3e:21:6d:7c:c2:2c:be:5b:0e:cc:15: 2f:f5:7e:00:03:06:37:2d:65:84:88:77:c9:fb:03: 9f:95:3a:16:a6:f3:34:fb:b7:5f:f6:f3:8e:d0:8e: 21:34:42:b2:59:61:43:5d:e2:2d:9a:81:a6:fd:85: b5:db:d0:e8:8f:45:4e:5d:59:e2:09:44:e6:e0:47: ec:11:7c:03:56:16:0e:44:24:a2:93:1b:c0:31:eb: 41:fd:a0:1d:2b:67:36:8d:35:ed:86:97:c4:b9:ca: 21:e0:5a:bb:da:9e:fe:81:d2:c2:0f:dd:96:0f:92: ab:3f:7b:52:2f:87:1a:ed:2f:68:38:6d:94:68:2d: 90:fb:30:e4:66:07:02:de:3d:52:c0:65:0f:69:64: 03:c7:b8:bb:05:f5:2e:6b:01:5d:22:18:18:e3:fe: a4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:3E:73:0E:BC:AC:0A:76:1A:DF:38:D4:BF:A4:3B:B6:7E:E5:47:70 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.194.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e7:08:63:63:77:0b:af:03:55:74:ce:f6:8d:12:f4:23:33: 06:ce:5d:ba:29:64:ba:60:a6:bc:de:2e:69:87:28:b1:71:55: e6:fc:79:c7:ef:78:08:4f:9d:06:72:91:9d:28:b4:8c:b4:5e: 2e:2c:26:a8:be:6b:ce:17:d6:8f:13:87:6e:1b:a8:50:93:a7: 51:0a:12:27:f4:e4:24:a4:c4:3f:21:10:c0:fa:dd:4f:51:6d: 0e:ca:10:86:56:9a:14:68:fd:a4:e8:4e:e7:ea:67:c9:08:01: 00:c1:c3:27:00:0d:18:61:6a:18:b5:08:64:01:6b:bb:aa:c4: 2b:d5:fb:b5:f1:f0:a5:46:2f:5c:d5:29:66:99:d4:0d:af:85: 71:c5:d3:c0:76:f3:2b:63:4b:67:a2:08:24:3e:7a:3a:a4:79: b1:8f:6b:fd:59:5a:f3:19:11:25:3d:7b:d5:5f:f0:07:59:da: 31:2a:14:b7:b8:71:29:eb:f3:3c:7a:13:a1:ac:97:b3:7f:b0: 96:ee:c2:ce:0b:12:dd:c9:59:e8:ee:28:cf:26:0d:67:c3:e6: 81:f7:2f:a2:99:14:3e:c0:0d:5b:ac:17:f3:a4:3f:be:18:fd: 6e:e8:10:45:e0:74:d2:df:11:34:9a:af:46:6c:a0:a7:cd:59: 8b:4c:62:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUISMoH0jU4YEHpFCTuX58qwNaEi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTNaFw0yNzA1MDIwMzAzNTNaMDMxMTAvBgNV BAMTKEVGM0U3MzBFQkNBQzBBNzYxQURGMzhENEJGQTQzQkI2N0VFNTQ3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6FM9Ob4seciZw+JrUEPqwUZb1 6SZsQN2AtH3S8YfQAS5DE2/ZmXd8RHltpr0OLYY3MQCtXRuE9lTmgllbalcVtksd GvhY4oNSB2NOaDHGfmGXJA9bKRi42B/80+Q+IW18wiy+Ww7MFS/1fgADBjctZYSI d8n7A5+VOham8zT7t1/2847QjiE0QrJZYUNd4i2agab9hbXb0OiPRU5dWeIJRObg R+wRfANWFg5EJKKTG8Ax60H9oB0rZzaNNe2Gl8S5yiHgWrvanv6B0sIP3ZYPkqs/ e1IvhxrtL2g4bZRoLZD7MORmBwLePVLAZQ9pZAPHuLsF9S5rAV0iGBjj/qSfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7z5zDrysCnYa3zjUv6Q7tn7lR3AwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOwjANBgkqhkiG 9w0BAQsFAAOCAQEAAucIY2N3C68DVXTO9o0S9CMzBs5duilkumCmvN4uaYcosXFV 5vx5x+94CE+dBnKRnSi0jLReLiwmqL5rzhfWjxOHbhuoUJOnUQoSJ/TkJKTEPyEQ wPrdT1FtDsoQhlaaFGj9pOhO5+pnyQgBAMHDJwANGGFqGLUIZAFru6rEK9X7tfHw pUYvXNUpZpnUDa+FccXTwHbzK2NLZ6IIJD56OqR5sY9r/Vla8xkRJT171V/wB1na MSoUt7hxKevzPHoToayXs3+wlu7CzgsS3clZ6O4ozyYNZ8PmgfcvopkUPsANW6wX 86Q/vhj9bugQReB00t8RNJqvRmygp81Zi0xi6w== -----END CERTIFICATE-----Generated at Wed May 13 11:22:27 2026 by rpki-client