$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139392e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139392e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: sEoEbNlfZi1J9SkZzdp3x2kFCrzB86SwmE/6ZcCifGA= Subject key identifier: 41:A0:47:56:E9:E1:7D:A9:1C:0E:BB:6C:7B:34:52:7B:9E:F4:B9:00 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 6211C5EA1D8570743D67524B53ED1E770EA8E08A Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139392e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:56 +0000 ROA not before: Sun 03 May 2026 02:58:56 +0000 ROA not after: Sun 02 May 2027 03:03:56 +0000 asID: 18059 IP address blocks: 202.78.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:11:c5:ea:1d:85:70:74:3d:67:52:4b:53:ed:1e:77:0e:a8:e0:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:56 2026 GMT Not After : May 2 03:03:56 2027 GMT Subject: CN=41A04756E9E17DA91C0EBB6C7B34527B9EF4B900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:82:52:40:b4:bb:55:10:88:b9:ac:33:f5:81: 84:69:e3:65:b6:2f:14:70:e8:83:47:76:70:3c:3e: db:49:be:4f:94:5c:39:17:0b:db:29:b0:fd:75:03: d6:31:60:b9:8d:18:5f:1b:a2:b1:d2:11:1a:53:a0: 15:6c:c4:49:af:a2:c2:81:56:60:7b:e5:fb:63:d8: 1e:0c:dd:c8:7c:77:11:fa:83:7d:ed:06:20:7a:af: d1:a6:50:84:cd:b6:23:d7:46:2d:b0:b5:ae:64:06: fa:67:7a:13:a3:7b:b2:fc:8a:d0:73:d0:ca:19:e7: bc:80:bf:67:96:09:28:fc:df:01:bb:c1:d8:ff:a9: 6a:53:6e:dd:56:4f:fa:55:49:1a:3b:92:31:b6:40: e3:fe:6a:1b:30:a6:0b:e4:07:6c:00:f4:40:8e:a6: 5f:75:fb:e5:f8:bd:10:dc:86:30:17:68:3d:7f:4a: bb:db:a9:4f:39:0f:a9:68:34:48:07:f7:8b:8f:3e: e0:37:1f:e0:83:82:0b:ae:76:1e:b7:72:77:0e:cf: c2:22:36:b4:b0:d2:4e:9b:b4:6b:42:9b:6c:4f:7c: 6e:28:5f:fb:d6:cc:68:37:de:66:f6:5c:40:db:28: b4:b8:49:35:93:68:bc:ae:4a:61:fd:f7:0f:27:80: 01:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A0:47:56:E9:E1:7D:A9:1C:0E:BB:6C:7B:34:52:7B:9E:F4:B9:00 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139392e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.199.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:63:32:d2:cf:1b:28:f1:af:9c:4f:5b:06:2f:23:ed:88:56: f9:c9:8b:08:d0:9f:43:ef:d6:3e:f7:25:c9:f2:f5:57:34:d8: 0f:9e:f0:51:9e:57:5c:e5:db:5f:44:1b:07:d0:db:4e:4b:13: e1:7e:e9:f1:db:b8:88:74:57:14:d1:f2:2d:46:59:a8:78:38: c3:3c:af:28:bc:c7:c8:7c:90:a6:48:32:f2:e5:62:ba:11:94: 8a:40:e4:ec:e2:43:5e:f6:20:4e:b7:17:f1:57:28:09:f9:b5: 57:ef:cc:ff:cd:79:38:36:7d:50:73:53:50:31:18:b5:cb:6b: 5b:ef:b9:b5:26:0b:5a:8b:43:8b:00:a8:4b:79:37:fc:88:22: 94:45:e1:a8:1e:c9:45:7d:c6:33:11:61:9b:28:15:85:48:d9: 53:34:be:61:e9:a0:b3:69:c6:8c:64:db:95:f7:48:88:50:04: 51:0b:87:8d:d7:68:73:00:f9:ed:34:5d:4c:ae:97:8e:d5:2c: 2d:74:b0:19:fa:5d:40:6d:98:ed:ea:a1:f5:1b:9a:b9:53:10: 8e:93:d1:8d:dc:ac:b7:6d:6e:65:d5:f6:ac:09:70:17:e0:c0: 7a:8e:8a:6d:fd:50:34:eb:db:6f:8a:43:68:ea:65:14:f2:d6: c3:5b:4d:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYhHF6h2FcHQ9Z1JLU+0edw6o4IowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTZaFw0yNzA1MDIwMzAzNTZaMDMxMTAvBgNV BAMTKDQxQTA0NzU2RTlFMTdEQTkxQzBFQkI2QzdCMzQ1MjdCOUVGNEI5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkglJAtLtVEIi5rDP1gYRp42W2 LxRw6INHdnA8PttJvk+UXDkXC9spsP11A9YxYLmNGF8borHSERpToBVsxEmvosKB VmB75ftj2B4M3ch8dxH6g33tBiB6r9GmUITNtiPXRi2wta5kBvpnehOje7L8itBz 0MoZ57yAv2eWCSj83wG7wdj/qWpTbt1WT/pVSRo7kjG2QOP+ahswpgvkB2wA9ECO pl91++X4vRDchjAXaD1/SrvbqU85D6loNEgH94uPPuA3H+CDgguudh63cncOz8Ii NrSw0k6btGtCm2xPfG4oX/vWzGg33mb2XEDbKLS4STWTaLyuSmH99w8ngAH9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQaBHVunhfakcDrtsezRSe570uQAwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOxzANBgkqhkiG 9w0BAQsFAAOCAQEADWMy0s8bKPGvnE9bBi8j7YhW+cmLCNCfQ+/WPvclyfL1VzTY D57wUZ5XXOXbX0QbB9DbTksT4X7p8du4iHRXFNHyLUZZqHg4wzyvKLzHyHyQpkgy 8uViuhGUikDk7OJDXvYgTrcX8VcoCfm1V+/M/815ODZ9UHNTUDEYtctrW++5tSYL WotDiwCoS3k3/IgilEXhqB7JRX3GMxFhmygVhUjZUzS+Yemgs2nGjGTblfdIiFAE UQuHjddocwD57TRdTK6XjtUsLXSwGfpdQG2Y7eqh9RuauVMQjpPRjdyst21uZdX2 rAlwF+DAeo6Kbf1QNOvbb4pDaOplFPLWw1tN6g== -----END CERTIFICATE-----Generated at Wed May 13 12:41:36 2026 by rpki-client