$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: OM+TZiO7aPGFYkzCpjXk42tILt27KM42PPGoSyzim1Y= Subject key identifier: 06:BD:D3:97:78:6F:5F:65:41:10:DA:32:5D:7B:5F:56:4D:E2:96:F2 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 4A2E9D950C660E2E5616523B1ACF0FC720AD09C7 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:28 +0000 ROA not before: Sun 03 May 2026 02:58:28 +0000 ROA not after: Sun 02 May 2027 03:03:28 +0000 asID: 18059 IP address blocks: 202.78.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2e:9d:95:0c:66:0e:2e:56:16:52:3b:1a:cf:0f:c7:20:ad:09:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:28 2026 GMT Not After : May 2 03:03:28 2027 GMT Subject: CN=06BDD397786F5F654110DA325D7B5F564DE296F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:24:c2:52:bc:fb:13:00:ee:be:8d:95:c9:13: fb:9b:18:5a:7f:1e:49:f1:fd:e8:98:cf:61:54:c2: 53:60:29:7d:11:52:7f:7e:b0:9a:a6:ec:ec:60:9e: 98:a3:a1:47:36:cd:8d:33:37:d5:d7:8a:68:ae:fd: 31:1d:81:79:6e:f4:1d:c9:08:1a:c9:83:7c:42:93: a9:a7:54:3c:c1:07:a8:fd:e8:bf:48:21:2a:9e:e1: b5:ae:c5:e6:be:b6:33:2d:d5:bf:9d:b8:4d:ec:d7: 01:f0:fa:59:a6:03:24:8c:ec:8b:6f:f2:e7:dc:a3: a6:9e:10:c0:bf:66:b7:dc:76:f9:32:ac:50:ee:0f: e2:2b:ef:36:5f:74:5f:81:f3:50:e8:8a:16:3f:d0: c2:37:46:2c:3c:34:e2:a7:80:ae:35:fa:9d:96:2f: 0e:4a:96:2f:52:ac:3a:6f:1f:c5:1c:60:08:18:82: 0b:09:08:ea:61:56:9b:31:40:60:87:b8:15:e4:74: 47:ea:b2:40:d2:09:89:14:c4:2c:d3:98:4b:46:80: 9e:c9:2a:00:26:40:51:20:96:47:78:cf:f1:e3:49: 08:24:ea:57:1f:ce:b2:31:3f:9c:b3:2e:68:87:d9: 54:03:bd:6e:c2:f7:1e:b4:d2:9a:71:09:8f:09:2e: d6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BD:D3:97:78:6F:5F:65:41:10:DA:32:5D:7B:5F:56:4D:E2:96:F2 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.207.0/24 Signature Algorithm: sha256WithRSAEncryption 74:2a:91:36:7d:70:2b:11:9c:a0:45:77:f1:cb:d2:b3:67:fd: 35:09:f8:07:0e:40:4f:30:89:c0:e3:5a:c9:2f:6a:e2:fa:8d: 06:ee:5f:30:0b:5b:c3:73:d5:e6:d3:1d:b7:24:52:7c:97:c2: 3b:9d:51:83:c0:ee:b6:f3:b0:53:cd:53:a7:c6:99:38:ea:93: 88:87:ec:d2:30:fe:c9:c2:e0:7e:e3:75:db:1a:e0:20:97:fd: 39:83:e5:e4:03:58:84:12:ec:f4:01:b8:43:3f:3e:da:fa:b9: 1c:7f:13:ff:93:0a:0e:f4:67:f8:16:42:f9:01:f6:19:14:99: b2:a3:e0:ec:ff:39:5a:e0:bd:0b:68:17:d5:d3:c7:f2:76:03: ee:3c:a8:52:f4:c2:74:cf:74:7a:8d:19:38:0b:07:d0:f8:3b: 46:35:62:e0:23:cb:e6:b9:09:f1:75:d6:1e:95:89:3f:51:fa: ec:ff:ab:91:89:eb:8d:9f:b4:7e:a7:0e:d2:ad:ca:e6:e2:90: a1:25:79:58:99:b6:0b:93:e4:ef:57:60:e2:5d:c9:bd:b7:41: 9b:97:e7:1d:d4:12:38:cb:a1:3d:85:58:b3:14:5f:f6:0f:28: 39:ab:3a:76:b2:12:4f:fb:57:59:05:45:36:c2:19:17:cc:c6: 22:bf:c3:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSi6dlQxmDi5WFlI7Gs8PxyCtCccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MjhaFw0yNzA1MDIwMzAzMjhaMDMxMTAvBgNV BAMTKDA2QkREMzk3Nzg2RjVGNjU0MTEwREEzMjVEN0I1RjU2NERFMjk2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXJMJSvPsTAO6+jZXJE/ubGFp/ Hknx/eiYz2FUwlNgKX0RUn9+sJqm7OxgnpijoUc2zY0zN9XXimiu/TEdgXlu9B3J CBrJg3xCk6mnVDzBB6j96L9IISqe4bWuxea+tjMt1b+duE3s1wHw+lmmAySM7Itv 8ufco6aeEMC/ZrfcdvkyrFDuD+Ir7zZfdF+B81DoihY/0MI3Riw8NOKngK41+p2W Lw5Kli9SrDpvH8UcYAgYggsJCOphVpsxQGCHuBXkdEfqskDSCYkUxCzTmEtGgJ7J KgAmQFEglkd4z/HjSQgk6lcfzrIxP5yzLmiH2VQDvW7C9x600ppxCY8JLtZtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBr3Tl3hvX2VBENoyXXtfVk3ilvIwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzzANBgkqhkiG 9w0BAQsFAAOCAQEAdCqRNn1wKxGcoEV38cvSs2f9NQn4Bw5ATzCJwONayS9q4vqN Bu5fMAtbw3PV5tMdtyRSfJfCO51Rg8DutvOwU81Tp8aZOOqTiIfs0jD+ycLgfuN1 2xrgIJf9OYPl5ANYhBLs9AG4Qz8+2vq5HH8T/5MKDvRn+BZC+QH2GRSZsqPg7P85 WuC9C2gX1dPH8nYD7jyoUvTCdM90eo0ZOAsH0Pg7RjVi4CPL5rkJ8XXWHpWJP1H6 7P+rkYnrjZ+0fqcO0q3K5uKQoSV5WJm2C5Pk71dg4l3JvbdBm5fnHdQSOMuhPYVY sxRf9g8oOas6drIST/tXWQVFNsIZF8zGIr/DgA== -----END CERTIFICATE-----Generated at Wed May 13 07:56:14 2026 by rpki-client