$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230302e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230302e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: r6JoUWcUUS5RA7zTCj2nIUqh8uGIed5EqJ0yWEFyowg= Subject key identifier: B1:0F:66:AD:B2:91:DE:F0:35:29:8B:19:52:C4:AE:66:30:3E:82:59 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 7E6240C2FAD8642AF9FB530F25ABAD928CFEB84D Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230302e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:50 +0000 ROA not before: Sun 03 May 2026 02:58:50 +0000 ROA not after: Sun 02 May 2027 03:03:50 +0000 asID: 18059 IP address blocks: 202.78.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:62:40:c2:fa:d8:64:2a:f9:fb:53:0f:25:ab:ad:92:8c:fe:b8:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:50 2026 GMT Not After : May 2 03:03:50 2027 GMT Subject: CN=B10F66ADB291DEF035298B1952C4AE66303E8259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:be:bd:f2:3c:71:fb:8a:18:c2:d3:ed:4e: 5a:31:a7:14:f3:9d:c0:4c:df:33:7f:15:17:04:e0: f2:4f:3e:6d:d3:8e:a0:ca:29:fd:a4:d3:5f:cb:53: ae:63:39:ba:88:8d:62:bc:3c:fd:e9:22:f4:c9:86: 60:49:e9:50:6d:2f:1a:07:c9:c2:4e:ef:51:f0:df: 0b:17:13:2c:b6:78:96:07:b3:4a:42:13:63:99:fc: 24:6c:fd:5a:80:f0:8b:77:e7:1f:14:91:4d:ac:e7: 89:b4:0b:5c:99:0d:78:dd:dd:8d:0e:fe:a7:f9:a2: 90:3f:12:39:09:9a:b8:8a:46:98:aa:17:ea:d5:08: 99:b2:c5:db:49:22:f7:6e:c4:3e:d1:fb:41:77:69: 41:d1:5f:88:f7:0f:55:e4:47:87:7c:88:61:79:70: 3d:42:5c:26:92:40:78:b0:50:55:18:94:39:c3:0b: 17:14:32:8a:5e:39:a0:de:d8:b6:86:64:e6:e0:70: 8f:35:91:c7:35:6a:b6:d0:92:47:88:20:f1:b1:72: ac:e8:1f:ae:40:2c:16:af:55:d3:e5:0d:a9:75:e6: 45:57:ba:7e:8e:c8:d2:11:b7:36:c9:71:91:02:77: 14:e0:c0:f6:bf:2f:32:ed:0b:3f:af:17:6c:1f:52: f4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0F:66:AD:B2:91:DE:F0:35:29:8B:19:52:C4:AE:66:30:3E:82:59 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230302e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.200.0/24 Signature Algorithm: sha256WithRSAEncryption 49:96:04:e8:df:e9:e2:d5:76:4a:eb:68:87:dd:05:73:85:c1: 72:65:96:7c:3a:d5:74:12:db:8e:f3:2e:8a:41:4a:8f:4d:d6: 47:6d:7c:ef:f4:89:ab:b4:0b:48:ff:1a:20:81:86:83:ce:76: 49:5b:a6:6c:79:e0:c3:c4:03:a6:a5:02:1a:0a:5e:54:45:01: 9c:33:76:3e:67:dc:ea:5c:c2:64:03:8b:e5:95:92:1a:57:ff: b3:f7:23:c5:70:32:1a:db:2a:04:dc:c3:83:61:43:68:28:d1: 01:4e:9a:81:46:bc:57:ae:e2:04:52:84:ad:1f:75:c8:a0:e8: 3f:2e:2b:f4:50:42:b5:cd:5e:c0:a8:aa:74:e1:d5:2f:d1:73: 72:9d:84:5c:e6:31:b6:50:27:c7:0b:4a:ef:dd:79:1b:09:8d: be:52:43:5b:da:ac:f7:30:ec:74:ed:e2:55:0b:13:5f:ca:da: e2:22:1d:64:fc:34:4e:fa:f7:92:84:b2:ab:c3:ea:8e:0a:2c: a0:0a:2c:c4:6f:b1:2e:38:b4:28:20:9b:21:30:c1:6a:de:6a: 7a:a2:36:41:73:19:e1:a8:ae:ed:bd:a6:39:cf:fd:06:3f:28: 83:a9:f0:23:15:5b:ac:52:48:0c:03:03:6b:f1:33:3a:05:14: 29:eb:8f:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfmJAwvrYZCr5+1MPJautkoz+uE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTBaFw0yNzA1MDIwMzAzNTBaMDMxMTAvBgNV BAMTKEIxMEY2NkFEQjI5MURFRjAzNTI5OEIxOTUyQzRBRTY2MzAzRTgyNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC64L698jxx+4oYwtPtTloxpxTz ncBM3zN/FRcE4PJPPm3TjqDKKf2k01/LU65jObqIjWK8PP3pIvTJhmBJ6VBtLxoH ycJO71Hw3wsXEyy2eJYHs0pCE2OZ/CRs/VqA8It35x8UkU2s54m0C1yZDXjd3Y0O /qf5opA/EjkJmriKRpiqF+rVCJmyxdtJIvduxD7R+0F3aUHRX4j3D1XkR4d8iGF5 cD1CXCaSQHiwUFUYlDnDCxcUMopeOaDe2LaGZObgcI81kcc1arbQkkeIIPGxcqzo H65ALBavVdPlDal15kVXun6OyNIRtzbJcZECdxTgwPa/LzLtCz+vF2wfUvQnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsQ9mrbKR3vA1KYsZUsSuZjA+glkwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOyDANBgkqhkiG 9w0BAQsFAAOCAQEASZYE6N/p4tV2Sutoh90Fc4XBcmWWfDrVdBLbjvMuikFKj03W R2187/SJq7QLSP8aIIGGg852SVumbHngw8QDpqUCGgpeVEUBnDN2Pmfc6lzCZAOL 5ZWSGlf/s/cjxXAyGtsqBNzDg2FDaCjRAU6agUa8V67iBFKErR91yKDoPy4r9FBC tc1ewKiqdOHVL9Fzcp2EXOYxtlAnxwtK7915GwmNvlJDW9qs9zDsdO3iVQsTX8ra 4iIdZPw0Tvr3koSyq8PqjgosoAosxG+xLji0KCCbITDBat5qeqI2QXMZ4aiu7b2m Oc/9Bj8og6nwIxVbrFJIDAMDa/EzOgUUKeuPqQ== -----END CERTIFICATE-----Generated at Wed May 13 07:59:43 2026 by rpki-client