$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230312e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: vl5tPn2AY5Eb1Svo7j+LiV0f+JGvXp3XAqtud2B4ZIo= Subject key identifier: 60:40:1A:FD:97:60:5D:8E:C2:10:A5:68:70:30:37:A9:9A:78:62:10 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 5C135126FE56CB3A6B13754FB2D735918A55D33F Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230312e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:35 +0000 ROA not before: Sun 03 May 2026 02:58:35 +0000 ROA not after: Sun 02 May 2027 03:03:35 +0000 asID: 18059 IP address blocks: 202.78.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:13:51:26:fe:56:cb:3a:6b:13:75:4f:b2:d7:35:91:8a:55:d3:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:35 2026 GMT Not After : May 2 03:03:35 2027 GMT Subject: CN=60401AFD97605D8EC210A568703037A99A786210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:cf:f4:4f:68:3d:94:83:ea:cf:b9:1d:c1: 42:1d:41:ee:76:4d:84:a4:e9:bd:0f:08:c7:13:b4: 17:28:b6:1a:e2:91:57:a3:48:b3:03:f1:cb:e5:be: 0e:f2:3d:8f:27:2c:b9:f2:ee:78:5b:d9:72:eb:95: 4f:36:34:07:0c:7e:d9:80:7a:0d:5c:3c:c1:d8:9b: 52:af:28:3c:ca:69:fc:a5:9e:a7:00:08:d6:a4:50: fe:a6:e8:0b:b3:cd:f3:1b:3b:01:65:dd:27:09:f3: e8:05:b3:c7:78:a4:d0:17:19:5e:4c:8c:60:db:c8: f9:ef:9e:b1:25:9f:50:17:19:c9:05:77:10:0e:a6: 6a:f4:46:ce:31:e0:ea:6c:d3:d4:27:c6:c5:92:90: aa:9d:aa:53:d4:86:ba:0b:d1:50:dd:9b:07:53:2e: d6:44:c5:d9:c7:8c:3e:2e:cc:a8:3f:36:57:ba:20: 95:b6:70:75:8e:f9:32:5f:f3:20:9e:85:85:9f:3a: 63:b6:b5:dd:91:ba:e9:3f:56:c5:4b:54:29:1d:99: fd:63:b3:3e:38:73:58:24:2e:4c:20:58:62:9a:68: 16:79:f0:78:f5:4d:58:86:09:13:56:34:34:15:1a: ce:7b:62:c1:fc:32:b8:f2:aa:bc:8e:c6:87:9f:f7: f8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:40:1A:FD:97:60:5D:8E:C2:10:A5:68:70:30:37:A9:9A:78:62:10 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.201.0/24 Signature Algorithm: sha256WithRSAEncryption 03:5c:5b:3c:41:2c:fc:7b:64:21:2d:c2:0f:96:b7:21:33:83: 7f:71:97:b4:8e:70:40:c9:95:2b:5e:c6:4e:52:c6:c6:de:4d: ed:20:35:8f:c9:79:b7:58:f7:46:56:d9:1f:b6:48:a2:ca:63: b5:40:a1:da:7c:a4:07:06:1f:5a:12:a1:18:72:4c:56:6a:f0: 21:a3:75:04:64:92:e6:b3:e8:de:72:18:08:a3:f7:3d:63:ab: 0e:9e:98:43:5f:d6:7f:53:3b:53:6f:ab:fd:17:b0:a8:b6:a9: d8:e9:da:0f:70:39:1b:e2:70:e9:3b:26:fa:54:72:bc:fa:20: 56:8d:1c:b8:3d:fb:5e:53:dd:1d:b0:57:1f:0e:02:5d:53:4c: 61:50:bf:22:fe:00:ac:5d:b2:80:fb:ef:86:e9:14:0f:0c:ce: a7:27:f6:7b:d0:a0:90:23:a0:7b:c7:4e:47:26:d4:b8:69:70: d1:f0:e1:7c:2b:fa:91:84:b1:4f:6c:dd:30:6a:46:5e:a9:54: ea:9e:78:8f:9b:dc:bb:02:88:4e:fb:bf:7b:e4:fa:5e:96:fd: c3:7c:e9:eb:ef:77:36:80:b0:b0:ff:93:58:52:94:4a:a1:15: af:3f:a3:e7:d0:66:22:be:78:4e:5a:6e:49:41:0a:01:75:5e: 5f:13:75:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXBNRJv5WyzprE3VPstc1kYpV0z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzVaFw0yNzA1MDIwMzAzMzVaMDMxMTAvBgNV BAMTKDYwNDAxQUZEOTc2MDVEOEVDMjEwQTU2ODcwMzAzN0E5OUE3ODYyMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHu8/0T2g9lIPqz7kdwUIdQe52 TYSk6b0PCMcTtBcothrikVejSLMD8cvlvg7yPY8nLLny7nhb2XLrlU82NAcMftmA eg1cPMHYm1KvKDzKafylnqcACNakUP6m6AuzzfMbOwFl3ScJ8+gFs8d4pNAXGV5M jGDbyPnvnrEln1AXGckFdxAOpmr0Rs4x4Ops09QnxsWSkKqdqlPUhroL0VDdmwdT LtZExdnHjD4uzKg/Nle6IJW2cHWO+TJf8yCehYWfOmO2td2Ruuk/VsVLVCkdmf1j sz44c1gkLkwgWGKaaBZ58Hj1TViGCRNWNDQVGs57YsH8MrjyqryOxoef9/iFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYEAa/ZdgXY7CEKVocDA3qZp4YhAwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOyTANBgkqhkiG 9w0BAQsFAAOCAQEAA1xbPEEs/HtkIS3CD5a3ITODf3GXtI5wQMmVK17GTlLGxt5N 7SA1j8l5t1j3RlbZH7ZIospjtUCh2nykBwYfWhKhGHJMVmrwIaN1BGSS5rPo3nIY CKP3PWOrDp6YQ1/Wf1M7U2+r/RewqLap2OnaD3A5G+Jw6Tsm+lRyvPogVo0cuD37 XlPdHbBXHw4CXVNMYVC/Iv4ArF2ygPvvhukUDwzOpyf2e9CgkCOge8dORybUuGlw 0fDhfCv6kYSxT2zdMGpGXqlU6p54j5vcuwKITvu/e+T6Xpb9w3zp6+93NoCwsP+T WFKUSqEVrz+j59BmIr54TlpuSUEKAXVeXxN1RA== -----END CERTIFICATE-----Generated at Wed May 13 10:23:00 2026 by rpki-client