$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: c9jeYTnhH1WyGneRLUDH//1Qe0HgwF+8BaKrEp6Q0l8= Subject key identifier: E3:76:12:FE:09:2A:95:F0:AA:49:92:AC:1F:47:10:03:70:8D:58:47 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 492E7241319CFB89067E7A7F2FF181713B984D05 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:53 +0000 ROA not before: Sun 03 May 2026 02:58:53 +0000 ROA not after: Sun 02 May 2027 03:03:53 +0000 asID: 18059 IP address blocks: 202.78.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2e:72:41:31:9c:fb:89:06:7e:7a:7f:2f:f1:81:71:3b:98:4d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:53 2026 GMT Not After : May 2 03:03:53 2027 GMT Subject: CN=E37612FE092A95F0AA4992AC1F471003708D5847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f2:80:cf:54:03:be:f9:3c:5f:93:37:85:a9: 6e:7e:e3:0c:e1:d6:97:5b:aa:de:fa:0b:58:bb:36: 27:47:98:4b:76:29:c8:26:25:0e:4c:dc:3a:fa:d2: 86:22:a9:77:ff:6e:61:62:0a:b6:c8:e9:2f:ee:cd: 88:eb:00:be:59:92:fc:df:21:7a:31:f1:46:bd:84: 03:a3:2d:1d:81:9c:2f:c0:e2:71:f8:72:ef:46:5d: 5d:97:7f:ae:34:85:1c:29:1c:f6:0e:bd:fa:a2:d9: 6d:0d:7d:f0:97:af:58:38:2c:f8:ef:89:92:2b:55: 0e:21:d8:74:77:0f:0e:da:a8:db:f1:01:b5:9f:0a: e0:c5:ec:a9:de:de:7c:4a:3a:62:32:a5:b7:67:82: c7:bb:99:17:d5:e2:79:f4:9b:90:1e:08:7c:8e:44: 07:ca:31:c1:84:3d:21:f8:db:91:b1:1f:14:ec:d0: e0:c0:5e:9c:85:1e:d7:ac:9b:be:7e:87:66:4f:13: b4:64:f1:c1:e4:49:7d:d8:8b:30:d3:0f:20:61:87: f7:26:16:35:91:73:fc:e4:41:f3:c4:6b:c9:e0:ba: 41:9a:e8:b6:39:24:66:2f:ab:c4:50:c2:18:32:ca: 8f:10:1f:2d:4c:9f:ab:8f:5a:29:7e:19:b0:a2:b0: f5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:76:12:FE:09:2A:95:F0:AA:49:92:AC:1F:47:10:03:70:8D:58:47 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.204.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:0a:62:e6:e9:14:95:08:f8:da:ce:06:49:2e:62:c1:ae:67: c6:1f:58:63:3e:15:94:47:b4:90:0c:0c:0b:4e:5d:4e:59:c4: 97:4e:dc:8c:40:83:3e:21:31:c0:89:64:f3:aa:50:3f:5b:d4: 95:60:03:53:e8:7f:38:ba:e3:e9:31:8d:07:c4:34:cb:76:29: 27:cd:92:aa:34:cc:d2:9e:1f:39:3b:bd:c0:cf:7a:81:32:61: 53:69:b3:da:b3:61:89:f3:de:ea:2b:a3:c3:83:52:73:35:02: a8:fd:81:a8:0f:2d:cd:88:8f:0b:4b:76:71:15:34:56:f5:f4: fb:ff:3e:ba:89:d8:55:ef:59:db:44:31:6e:ce:e8:07:ac:93: d2:26:40:88:3a:f1:59:5d:3e:59:20:7a:c6:ea:2a:ba:64:74: dd:b1:86:3d:59:48:57:f8:77:cb:d0:73:14:20:ed:46:48:66: 43:e4:cf:96:9c:e2:c0:5c:d3:f8:ff:ba:5d:58:98:19:a1:59: 36:65:00:65:69:bf:e1:b3:83:b4:00:a3:05:02:33:24:a3:a5: f8:1b:54:e0:b5:2e:0f:c5:23:b8:9c:6e:20:2a:d0:d8:6f:e4: c4:3c:c9:5f:e7:b1:fe:59:f5:24:91:b1:66:cf:78:4f:09:62: 2d:8a:a7:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSS5yQTGc+4kGfnp/L/GBcTuYTQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTNaFw0yNzA1MDIwMzAzNTNaMDMxMTAvBgNV BAMTKEUzNzYxMkZFMDkyQTk1RjBBQTQ5OTJBQzFGNDcxMDAzNzA4RDU4NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa8oDPVAO++TxfkzeFqW5+4wzh 1pdbqt76C1i7NidHmEt2KcgmJQ5M3Dr60oYiqXf/bmFiCrbI6S/uzYjrAL5Zkvzf IXox8Ua9hAOjLR2BnC/A4nH4cu9GXV2Xf640hRwpHPYOvfqi2W0NffCXr1g4LPjv iZIrVQ4h2HR3Dw7aqNvxAbWfCuDF7Kne3nxKOmIypbdngse7mRfV4nn0m5AeCHyO RAfKMcGEPSH425GxHxTs0ODAXpyFHtesm75+h2ZPE7Rk8cHkSX3YizDTDyBhh/cm FjWRc/zkQfPEa8ngukGa6LY5JGYvq8RQwhgyyo8QHy1Mn6uPWil+GbCisPU9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU43YS/gkqlfCqSZKsH0cQA3CNWEcwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzDANBgkqhkiG 9w0BAQsFAAOCAQEALwpi5ukUlQj42s4GSS5iwa5nxh9YYz4VlEe0kAwMC05dTlnE l07cjECDPiExwIlk86pQP1vUlWADU+h/OLrj6TGNB8Q0y3YpJ82SqjTM0p4fOTu9 wM96gTJhU2mz2rNhifPe6iujw4NSczUCqP2BqA8tzYiPC0t2cRU0VvX0+/8+uonY Ve9Z20Qxbs7oB6yT0iZAiDrxWV0+WSB6xuoqumR03bGGPVlIV/h3y9BzFCDtRkhm Q+TPlpziwFzT+P+6XViYGaFZNmUAZWm/4bODtACjBQIzJKOl+BtU4LUuD8UjuJxu ICrQ2G/kxDzJX+ex/ln1JJGxZs94TwliLYqnaQ== -----END CERTIFICATE-----Generated at Wed May 13 08:28:22 2026 by rpki-client