$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: xPk3V0Si1TzvWmxTZ2Nwsm4zpRh943IauQEY+blImDQ= Subject key identifier: C7:63:39:BC:E9:5B:3F:28:43:11:56:11:75:0E:D6:0E:6E:9C:81:80 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 657FEE721AE5AF9BB5EA8DF7C4BC89B6EE4CBDE7 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:51 +0000 ROA not before: Sun 03 May 2026 02:58:51 +0000 ROA not after: Sun 02 May 2027 03:03:51 +0000 asID: 18059 IP address blocks: 202.78.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7f:ee:72:1a:e5:af:9b:b5:ea:8d:f7:c4:bc:89:b6:ee:4c:bd:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:51 2026 GMT Not After : May 2 03:03:51 2027 GMT Subject: CN=C76339BCE95B3F2843115611750ED60E6E9C8180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9a:7e:59:d2:6a:e5:99:ae:a2:a8:68:8d:1b: fc:f4:7f:63:ba:4a:e6:80:7c:cc:67:1d:d4:b8:12: e5:65:f4:25:84:e9:f5:99:b5:db:aa:57:6b:fb:5a: d4:95:48:aa:1a:89:c2:71:b9:ec:70:3b:3f:6a:b3: 19:33:72:ba:fe:13:8d:87:83:69:78:03:2f:ca:68: e8:3b:3d:fe:1f:74:39:57:4a:ca:ab:4d:1f:91:21: e1:88:aa:c6:65:73:db:fe:7c:03:b6:d1:1e:a1:77: b1:12:3c:93:e4:9e:53:03:79:14:f5:04:bc:f2:b3: 46:48:11:1f:e3:e5:1e:e6:c0:cb:a0:7c:72:7e:b3: ef:98:b4:91:03:f0:5e:41:b0:a8:e5:cb:91:f7:fc: cc:42:cf:44:de:e7:6a:cd:24:f7:d3:3b:51:1c:0e: 30:bf:01:16:d7:69:b4:c6:33:2b:3d:43:74:bf:0d: a6:a5:e7:f7:b6:b9:e0:76:4e:1d:3b:be:5b:bc:d9: b7:d0:12:e2:ce:31:31:f1:af:b5:b9:34:9a:33:ab: 22:f6:4d:dc:43:9f:ac:16:72:0c:85:41:4d:24:9a: 46:bb:88:3a:aa:13:09:96:45:cc:d7:37:f9:24:a0: 7f:38:2e:c5:54:f9:d0:7b:c2:7e:8e:a6:ef:cc:1d: 67:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:63:39:BC:E9:5B:3F:28:43:11:56:11:75:0E:D6:0E:6E:9C:81:80 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.206.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c2:18:33:2e:ed:03:40:94:69:f0:ea:cc:5d:37:a5:97:b9: 64:53:43:83:1d:68:f9:13:2f:b4:9d:ef:94:34:5e:54:33:33: 64:71:ee:8e:41:7b:d3:0d:c0:52:35:a1:a7:e3:69:da:99:82: bb:d0:70:52:d3:21:22:26:86:b2:dd:04:51:13:8d:5b:03:82: 58:c6:eb:b4:87:72:72:98:22:d3:e6:65:92:28:23:6c:dc:8f: de:2b:ce:1c:25:15:09:96:9e:87:33:46:05:57:73:ec:1a:de: 4c:b7:8d:b3:dc:3c:84:4d:98:00:fe:1b:a5:e7:6a:b5:d7:ef: 7f:f2:5d:de:ca:d2:d6:96:09:97:15:f4:e1:99:a7:97:05:ac: bb:8d:c1:2f:c0:e9:3c:74:a6:ad:2b:76:89:e1:16:7c:e9:26: ae:e0:da:9e:3b:46:7d:5d:1a:89:3d:b7:b1:ef:6f:4f:4b:8e: d3:80:35:79:e5:1d:e1:96:91:c5:b0:d7:4a:cd:be:cd:12:56: 9e:95:43:55:38:58:f4:7d:c9:43:8b:22:fa:5c:74:36:fe:e6: 57:23:b3:ec:86:2f:5d:2b:66:8c:c7:b0:57:bd:ce:35:da:99: 2e:9a:7c:04:28:7f:a9:61:5c:f9:eb:51:00:b1:ec:df:cc:de: 6e:cc:4b:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZX/uchrlr5u16o33xLyJtu5MvecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NTFaFw0yNzA1MDIwMzAzNTFaMDMxMTAvBgNV BAMTKEM3NjMzOUJDRTk1QjNGMjg0MzExNTYxMTc1MEVENjBFNkU5QzgxODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjmn5Z0mrlma6iqGiNG/z0f2O6 SuaAfMxnHdS4EuVl9CWE6fWZtduqV2v7WtSVSKoaicJxuexwOz9qsxkzcrr+E42H g2l4Ay/KaOg7Pf4fdDlXSsqrTR+RIeGIqsZlc9v+fAO20R6hd7ESPJPknlMDeRT1 BLzys0ZIER/j5R7mwMugfHJ+s++YtJED8F5BsKjly5H3/MxCz0Te52rNJPfTO1Ec DjC/ARbXabTGMys9Q3S/Daal5/e2ueB2Th07vlu82bfQEuLOMTHxr7W5NJozqyL2 TdxDn6wWcgyFQU0kmka7iDqqEwmWRczXN/kkoH84LsVU+dB7wn6Opu/MHWdJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUx2M5vOlbPyhDEVYRdQ7WDm6cgYAwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzjANBgkqhkiG 9w0BAQsFAAOCAQEAJ8IYMy7tA0CUafDqzF03pZe5ZFNDgx1o+RMvtJ3vlDReVDMz ZHHujkF70w3AUjWhp+Np2pmCu9BwUtMhIiaGst0EURONWwOCWMbrtIdycpgi0+Zl kigjbNyP3ivOHCUVCZaehzNGBVdz7BreTLeNs9w8hE2YAP4bpedqtdfvf/Jd3srS 1pYJlxX04ZmnlwWsu43BL8DpPHSmrSt2ieEWfOkmruDanjtGfV0aiT23se9vT0uO 04A1eeUd4ZaRxbDXSs2+zRJWnpVDVThY9H3JQ4si+lx0Nv7mVyOz7IYvXStmjMew V73ONdqZLpp8BCh/qWFc+etRALHs38zebsxLmQ== -----END CERTIFICATE-----Generated at Wed May 13 08:35:19 2026 by rpki-client