$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233342e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: kV+EzNKYLCd/wJ5MP8n/SVK+2GAPV3bNgWv0CV+6kxE= Subject key identifier: A1:CB:6B:5E:20:0F:EB:93:03:74:C0:89:BF:3A:5B:38:31:69:59:AC Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 30BF1E134CB91E676EE1D7B381E1C04FC0C70F90 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233342e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:38 +0000 ROA not before: Sun 03 May 2026 02:58:38 +0000 ROA not after: Sun 02 May 2027 03:03:38 +0000 asID: 18059 IP address blocks: 203.134.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:bf:1e:13:4c:b9:1e:67:6e:e1:d7:b3:81:e1:c0:4f:c0:c7:0f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:38 2026 GMT Not After : May 2 03:03:38 2027 GMT Subject: CN=A1CB6B5E200FEB930374C089BF3A5B38316959AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:11:f5:7e:1e:54:bf:fb:ba:a4:bc:30:c8:53: c9:bc:20:1d:66:a6:7b:7d:3c:2b:40:fc:9d:e4:76: fb:f3:d1:16:76:51:42:c8:72:90:c6:8f:5f:46:8b: f6:19:fd:8e:3f:a7:fa:39:f4:93:53:49:69:41:1c: 21:a2:3f:6c:28:4d:75:2c:8b:e8:49:b9:08:53:76: c6:ab:65:3f:5f:4f:c8:af:e0:b6:05:0b:fc:c3:88: ce:71:5e:d0:c2:83:e7:3c:81:9d:a7:63:d3:79:d2: cd:8c:28:2c:af:37:bb:55:79:78:d5:ed:36:82:75: a5:f9:62:43:e7:a9:b6:78:42:f7:07:93:ce:bd:b0: e9:38:d0:b7:97:f8:e8:d2:91:f4:6c:d1:9b:08:8c: f2:52:2a:8c:f5:6c:9a:25:d1:14:e7:27:95:29:35: 08:2c:87:9f:72:18:18:dc:f2:f3:22:a9:e0:6d:3e: f0:9e:68:8a:70:ec:37:31:51:3d:55:48:24:26:f0: 05:dc:d9:cf:5e:b0:ef:97:45:7e:01:b1:da:5d:90: 60:00:3e:2d:01:99:26:ef:a0:86:6b:9c:af:37:dd: c2:c3:98:74:c4:3f:3c:0a:1d:92:7f:9f:ec:85:55: fe:f3:2a:f7:9c:a8:57:1d:b0:15:b8:12:3f:33:06: f5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CB:6B:5E:20:0F:EB:93:03:74:C0:89:BF:3A:5B:38:31:69:59:AC X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.234.0/24 Signature Algorithm: sha256WithRSAEncryption 11:73:f7:ef:dd:42:55:9a:7c:00:d3:7d:de:ec:ae:7d:38:84: d3:4c:d5:31:9c:0c:d7:6b:e8:10:59:98:95:aa:90:91:99:b4: 49:4b:cc:b8:60:a3:59:be:2e:cb:c1:d7:3c:e8:2c:3b:4e:ff: d1:2e:70:70:21:db:c9:0b:23:2d:61:85:76:60:d6:ac:11:d3: 8d:b8:2c:79:64:92:27:2a:91:c1:82:55:f8:4c:6c:18:03:d0: fd:f1:65:f7:07:a7:82:77:21:b4:b8:b7:8a:c0:21:ab:0c:c0: 19:fb:f9:c0:31:0f:e4:1e:96:26:e8:eb:79:82:8d:15:9d:82: 18:d3:58:49:1e:5f:29:4e:53:d3:69:bf:8d:0f:27:a3:00:3a: 6d:18:6b:87:24:cd:b6:0f:38:90:c9:f1:43:0b:1f:e4:37:ad: 5e:a2:d0:c7:8f:78:e6:db:b3:e5:c8:f1:fc:88:38:c7:32:b3: 7e:cc:71:c6:51:f0:ea:5c:5e:a1:39:d0:d0:2c:18:40:8c:50: 71:81:76:1b:96:8d:1e:45:f7:7c:76:46:24:ee:99:e8:64:27: 6f:94:9e:28:38:61:34:ca:f1:6a:05:0c:70:31:30:d7:be:e2: 08:1d:26:46:65:92:3b:f5:76:53:16:56:9f:83:68:c7:9f:26: fc:b9:29:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUML8eE0y5Hmdu4dezgeHAT8DHD5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzhaFw0yNzA1MDIwMzAzMzhaMDMxMTAvBgNV BAMTKEExQ0I2QjVFMjAwRkVCOTMwMzc0QzA4OUJGM0E1QjM4MzE2OTU5QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGEfV+HlS/+7qkvDDIU8m8IB1m pnt9PCtA/J3kdvvz0RZ2UULIcpDGj19Gi/YZ/Y4/p/o59JNTSWlBHCGiP2woTXUs i+hJuQhTdsarZT9fT8iv4LYFC/zDiM5xXtDCg+c8gZ2nY9N50s2MKCyvN7tVeXjV 7TaCdaX5YkPnqbZ4QvcHk869sOk40LeX+OjSkfRs0ZsIjPJSKoz1bJol0RTnJ5Up NQgsh59yGBjc8vMiqeBtPvCeaIpw7DcxUT1VSCQm8AXc2c9esO+XRX4BsdpdkGAA Pi0BmSbvoIZrnK833cLDmHTEPzwKHZJ/n+yFVf7zKvecqFcdsBW4Ej8zBvXxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoctrXiAP65MDdMCJvzpbODFpWawwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4bqMA0GCSqG SIb3DQEBCwUAA4IBAQARc/fv3UJVmnwA033e7K59OITTTNUxnAzXa+gQWZiVqpCR mbRJS8y4YKNZvi7Lwdc86Cw7Tv/RLnBwIdvJCyMtYYV2YNasEdONuCx5ZJInKpHB glX4TGwYA9D98WX3B6eCdyG0uLeKwCGrDMAZ+/nAMQ/kHpYm6Ot5go0VnYIY01hJ Hl8pTlPTab+NDyejADptGGuHJM22DziQyfFDCx/kN61eotDHj3jm27PlyPH8iDjH MrN+zHHGUfDqXF6hOdDQLBhAjFBxgXYblo0eRfd8dkYk7pnoZCdvlJ4oOGE0yvFq BQxwMTDXvuIIHSZGZZI79XZTFlafg2jHnyb8uSnc -----END CERTIFICATE-----Generated at Wed May 13 02:20:26 2026 by rpki-client