$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233332e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: JTyVKElucKKBdQWJvW0M7oRG5Pn0dpLj4KoV0V81Mo4= Subject key identifier: B8:D7:49:F6:46:85:15:55:30:1B:49:FD:D0:AD:51:7C:6B:50:45:46 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 2D844602A53FE9912D0751FDFD109464B82185FD Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233332e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:27 +0000 ROA not before: Sun 03 May 2026 02:58:27 +0000 ROA not after: Sun 02 May 2027 03:03:27 +0000 asID: 18059 IP address blocks: 203.134.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:84:46:02:a5:3f:e9:91:2d:07:51:fd:fd:10:94:64:b8:21:85:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:27 2026 GMT Not After : May 2 03:03:27 2027 GMT Subject: CN=B8D749F646851555301B49FDD0AD517C6B504546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f2:c2:a8:2f:29:83:21:19:6e:8b:f3:b6:5c: ea:7c:62:78:cf:df:82:b7:0c:ec:d8:ed:7e:5a:b4: b1:54:7e:56:8d:41:9f:6d:0a:f0:7b:fd:7d:32:71: 06:ad:ce:bc:74:85:02:7e:ac:4f:71:ff:3e:a6:98: 18:d0:30:25:0f:d8:da:17:cc:72:8c:63:f4:de:8d: 97:b5:c0:e8:03:c9:47:f8:1c:d3:42:8a:c0:04:98: 19:2b:45:c5:8d:ea:f7:91:3e:c8:04:41:2e:93:50: 5a:ab:1f:90:4a:47:82:8f:36:9d:fb:59:67:9c:6a: f9:bb:9d:1a:a5:6f:23:4a:a4:a2:70:49:30:d2:ef: 0b:fe:0d:2c:4e:24:a5:a5:59:18:30:14:60:d9:ba: 63:dc:7d:b5:0b:df:42:1f:a0:3c:c8:30:da:f8:9b: b3:5d:b1:b7:ed:ba:2d:22:6c:43:02:31:67:b4:64: 40:cf:98:0a:ea:74:5c:dc:b5:d1:f3:29:7a:41:2c: bb:0e:6c:f5:12:1f:a4:49:08:3b:0b:5c:61:d2:10: 4a:c9:c6:83:e0:4d:b0:c3:60:1b:0e:63:74:26:05: ae:63:36:74:3f:80:bc:9f:9a:9d:39:62:ff:e0:22: ef:11:7b:f9:55:ad:1d:cd:f5:4d:94:93:46:93:33: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D7:49:F6:46:85:15:55:30:1B:49:FD:D0:AD:51:7C:6B:50:45:46 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.233.0/24 Signature Algorithm: sha256WithRSAEncryption 48:bb:73:81:b7:a1:2a:3a:c1:2a:c2:ce:18:88:78:48:ec:b1: 07:5d:07:5f:44:d9:0b:55:7c:51:a2:d4:fe:1d:f5:d2:68:0b: a8:4e:62:ef:11:a5:7c:f9:e3:b3:a8:68:81:da:10:e9:c8:b0: 9a:be:ea:5f:78:a9:78:68:f7:87:ed:10:71:55:b8:24:07:72: 31:7a:d9:32:6d:1c:eb:63:a9:e9:fa:1c:57:9c:0d:6b:a7:c7: ef:48:de:da:f3:33:c0:b7:88:2d:aa:08:06:d7:d3:3d:fd:04: e3:68:bb:a2:0c:7a:b6:1c:9f:83:59:92:c7:79:2b:72:2d:54: 74:77:93:21:f2:5f:73:d8:cd:14:b7:a3:32:de:36:1c:c7:50: b5:17:dc:d2:c6:52:57:99:e9:53:88:58:66:70:e2:31:cf:1a: bd:db:92:a1:26:68:67:91:6a:90:15:57:f3:fa:79:7d:14:4f: c3:db:a9:85:56:62:3d:75:33:de:84:35:b4:03:da:12:b1:9d: 93:fe:71:6f:82:d0:1d:94:32:23:55:d1:88:0e:bb:f5:f4:bc: 7a:7f:06:ed:d3:6f:b7:91:2c:35:cd:b2:75:49:90:1f:fa:60: 7a:97:56:6b:65:39:76:4c:a7:53:0a:e7:f8:81:af:2b:fc:43: c5:b6:07:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULYRGAqU/6ZEtB1H9/RCUZLghhf0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MjdaFw0yNzA1MDIwMzAzMjdaMDMxMTAvBgNV BAMTKEI4RDc0OUY2NDY4NTE1NTUzMDFCNDlGREQwQUQ1MTdDNkI1MDQ1NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY8sKoLymDIRlui/O2XOp8YnjP 34K3DOzY7X5atLFUflaNQZ9tCvB7/X0ycQatzrx0hQJ+rE9x/z6mmBjQMCUP2NoX zHKMY/TejZe1wOgDyUf4HNNCisAEmBkrRcWN6veRPsgEQS6TUFqrH5BKR4KPNp37 WWecavm7nRqlbyNKpKJwSTDS7wv+DSxOJKWlWRgwFGDZumPcfbUL30IfoDzIMNr4 m7Ndsbftui0ibEMCMWe0ZEDPmArqdFzctdHzKXpBLLsObPUSH6RJCDsLXGHSEErJ xoPgTbDDYBsOY3QmBa5jNnQ/gLyfmp05Yv/gIu8Re/lVrR3N9U2Uk0aTMw67AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuNdJ9kaFFVUwG0n90K1RfGtQRUYwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4bpMA0GCSqG SIb3DQEBCwUAA4IBAQBIu3OBt6EqOsEqws4YiHhI7LEHXQdfRNkLVXxRotT+HfXS aAuoTmLvEaV8+eOzqGiB2hDpyLCavupfeKl4aPeH7RBxVbgkB3IxetkybRzrY6np +hxXnA1rp8fvSN7a8zPAt4gtqggG19M9/QTjaLuiDHq2HJ+DWZLHeStyLVR0d5Mh 8l9z2M0Ut6My3jYcx1C1F9zSxlJXmelTiFhmcOIxzxq925KhJmhnkWqQFVfz+nl9 FE/D26mFVmI9dTPehDW0A9oSsZ2T/nFvgtAdlDIjVdGIDrv19Lx6fwbt02+3kSw1 zbJ1SZAf+mB6l1ZrZTl2TKdTCuf4ga8r/EPFtgf9 -----END CERTIFICATE-----Generated at Wed May 13 05:42:59 2026 by rpki-client