$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: NanzPtdp0IkWKSb4tN5syMn/pL8yH6N2otSPsqlwI2I= Subject key identifier: C3:18:18:7A:33:A9:C0:1E:7C:CF:15:C1:0A:C9:CB:9B:B9:72:A4:ED Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 3FF16C9CEBD98DFB813710785EA2ED5ED1D53C23 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:39 +0000 ROA not before: Sun 03 May 2026 02:58:39 +0000 ROA not after: Sun 02 May 2027 03:03:39 +0000 asID: 18059 IP address blocks: 202.78.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f1:6c:9c:eb:d9:8d:fb:81:37:10:78:5e:a2:ed:5e:d1:d5:3c:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:39 2026 GMT Not After : May 2 03:03:39 2027 GMT Subject: CN=C318187A33A9C01E7CCF15C10AC9CB9BB972A4ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:95:68:40:77:b2:ae:be:d7:f7:0a:ad:48: 05:4d:33:2d:3f:e2:71:ed:39:8b:13:62:5d:00:18: fb:e3:2a:a3:88:0c:25:d8:f9:7b:83:64:a9:96:d0: 48:7e:37:82:80:f1:d9:5a:a5:04:49:a1:1d:29:dd: ff:90:9c:e9:db:d7:5e:21:a7:6d:f1:32:33:68:d2: ac:5c:99:bb:56:33:0e:dc:86:ec:92:b4:68:b2:fe: b0:ed:7d:0c:3c:0d:4d:0d:48:5e:94:23:b7:55:8d: 29:b9:72:1b:91:2b:e7:37:d2:eb:ce:9c:b3:ca:60: 00:99:29:6f:26:2d:4b:13:23:6e:31:0a:db:df:6a: 4d:f3:a1:69:0f:fb:3a:f6:4d:19:c5:75:fb:52:1e: 8b:21:18:ee:f9:12:6e:5a:22:3e:52:5b:0f:56:c8: c7:35:e2:e2:bc:78:df:d7:33:8f:e7:40:61:78:9e: 76:52:67:e1:04:f2:ce:8e:93:4b:80:1d:6b:74:3e: 48:dd:a6:1d:fe:a3:3b:8b:19:5b:24:30:0b:93:d7: 4a:31:29:e9:18:69:a5:8c:67:36:de:4e:2b:ec:b4: f4:41:76:9e:a4:68:dc:72:07:9d:e1:74:23:d0:08: 58:1a:22:1d:c9:77:5a:67:75:e5:92:12:e1:5f:fc: c5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:18:18:7A:33:A9:C0:1E:7C:CF:15:C1:0A:C9:CB:9B:B9:72:A4:ED X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.195.0/24 Signature Algorithm: sha256WithRSAEncryption ab:a5:c9:01:ad:43:88:c0:8b:2c:23:6d:e2:9a:1d:a5:c9:90: e6:10:7c:3f:b5:06:85:7e:39:9f:7a:cd:5c:ec:95:f3:45:ed: 1f:a0:c1:d5:c4:81:93:15:39:dd:da:4f:f8:f2:6f:a4:25:01: 88:48:6b:c5:70:f1:bd:8c:1c:1b:c4:87:a4:ec:f7:e3:b8:65: 9e:8c:68:56:3a:71:95:61:e7:20:2f:33:49:7d:5e:e0:05:ad: 3b:cf:21:ca:e7:46:ee:b1:5e:83:bb:26:64:20:7a:44:ac:c3: 53:c7:95:8e:88:3a:ce:f8:49:80:ca:1a:cb:a3:ac:5e:08:93: 2f:9b:1f:0f:92:85:37:18:ec:cb:8f:bb:5e:09:16:8c:93:76: 67:19:3b:66:35:6a:6d:61:f9:2e:cd:10:54:95:68:4a:60:2d: de:c9:33:78:47:61:3c:c4:3e:6f:e3:46:c7:b6:74:68:59:3e: 3e:c1:b4:d2:7d:ca:84:15:fe:0e:d5:69:ea:7e:e1:d5:34:50: d6:b5:7d:75:59:36:55:4b:be:bd:ee:79:ca:15:fe:a5:c1:20: 14:0f:9d:69:9f:bd:23:07:93:60:9e:75:12:c8:17:33:f7:7b: 19:c3:2c:06:85:25:f3:55:57:63:30:aa:55:1c:b3:ac:33:e3: d7:84:44:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP/FsnOvZjfuBNxB4XqLtXtHVPCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzlaFw0yNzA1MDIwMzAzMzlaMDMxMTAvBgNV BAMTKEMzMTgxODdBMzNBOUMwMUU3Q0NGMTVDMTBBQzlDQjlCQjk3MkE0RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjsZVoQHeyrr7X9wqtSAVNMy0/ 4nHtOYsTYl0AGPvjKqOIDCXY+XuDZKmW0Eh+N4KA8dlapQRJoR0p3f+QnOnb114h p23xMjNo0qxcmbtWMw7chuyStGiy/rDtfQw8DU0NSF6UI7dVjSm5chuRK+c30uvO nLPKYACZKW8mLUsTI24xCtvfak3zoWkP+zr2TRnFdftSHoshGO75Em5aIj5SWw9W yMc14uK8eN/XM4/nQGF4nnZSZ+EE8s6Ok0uAHWt0Pkjdph3+ozuLGVskMAuT10ox KekYaaWMZzbeTivstPRBdp6kaNxyB53hdCPQCFgaIh3Jd1pndeWSEuFf/MVPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwxgYejOpwB58zxXBCsnLm7lypO0wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOwzANBgkqhkiG 9w0BAQsFAAOCAQEAq6XJAa1DiMCLLCNt4podpcmQ5hB8P7UGhX45n3rNXOyV80Xt H6DB1cSBkxU53dpP+PJvpCUBiEhrxXDxvYwcG8SHpOz347hlnoxoVjpxlWHnIC8z SX1e4AWtO88hyudG7rFeg7smZCB6RKzDU8eVjog6zvhJgMoay6OsXgiTL5sfD5KF Nxjsy4+7XgkWjJN2Zxk7ZjVqbWH5Ls0QVJVoSmAt3skzeEdhPMQ+b+NGx7Z0aFk+ PsG00n3KhBX+DtVp6n7h1TRQ1rV9dVk2VUu+ve55yhX+pcEgFA+daZ+9IweTYJ51 EsgXM/d7GcMsBoUl81VXYzCqVRyzrDPj14REHg== -----END CERTIFICATE-----Generated at Wed May 13 10:54:23 2026 by rpki-client