$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: XR163o45Op45M4Gn4UMAuvxb7C0z4P0uiLKRAlMdpik= Subject key identifier: E7:64:25:FE:2D:AE:F1:06:6A:67:58:F0:13:C7:BA:60:78:CA:C3:9F Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 0C675470DBB78DC065B187A695BAAADC1C41ED0B Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:49 +0000 ROA not before: Sun 03 May 2026 02:58:49 +0000 ROA not after: Sun 02 May 2027 03:03:49 +0000 asID: 18059 IP address blocks: 203.134.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:67:54:70:db:b7:8d:c0:65:b1:87:a6:95:ba:aa:dc:1c:41:ed:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:49 2026 GMT Not After : May 2 03:03:49 2027 GMT Subject: CN=E76425FE2DAEF1066A6758F013C7BA6078CAC39F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:84:cb:df:95:f8:78:f9:42:b1:56:fd:4c:42: 1f:b1:cb:bb:64:e2:21:c5:dd:e0:b4:74:7c:e4:fb: 6c:57:0e:dc:7e:b8:af:34:f6:43:79:a4:07:43:62: 4d:b1:14:d8:95:cd:84:77:3f:b8:56:3c:20:9d:a2: 1e:70:12:89:0f:f7:2f:e0:7e:71:58:1f:d4:98:5b: 73:79:b6:ba:f2:95:68:cf:8b:80:4d:be:8f:de:90: b6:cb:24:88:10:1e:58:72:f4:98:f0:b2:98:93:73: 03:50:70:7e:7e:0b:6c:d2:44:07:95:41:4f:af:55: d3:10:ae:b7:ff:65:ae:a9:66:96:5a:f5:02:ac:55: 8d:e5:09:7e:63:24:e9:91:1a:85:ff:8b:59:c5:0c: b9:23:0c:21:88:30:98:f8:e3:75:64:b0:dd:73:d1: 26:a7:e5:16:c6:f7:85:5c:da:fb:15:55:a9:47:18: 34:f5:8b:75:44:92:e0:5e:fc:eb:68:51:7c:01:30: fa:cf:ff:7b:56:ff:08:0c:5f:42:8b:d1:a0:48:d4: 6e:1e:21:a0:ed:64:c4:0a:28:6d:0c:33:c2:06:98: d6:73:d2:4d:9f:57:d2:b7:aa:f7:aa:cb:ee:7d:52: 08:d5:df:a1:74:90:fa:ac:40:b7:56:15:a4:54:2c: 16:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:64:25:FE:2D:AE:F1:06:6A:67:58:F0:13:C7:BA:60:78:CA:C3:9F X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.236.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:30:87:a2:e5:61:93:e8:97:0f:3b:21:f2:47:49:ae:b1:b7: 6d:6b:56:1b:c8:2f:3c:d8:18:a2:63:ca:e4:56:41:07:2a:e1: 81:e3:1d:65:85:c0:ec:d4:d8:63:f7:04:a9:6d:59:ce:91:21: 76:93:10:e9:e1:e1:14:56:03:d8:7b:b4:21:d5:40:e6:3d:e0: 55:ab:41:9a:1d:9a:cc:cc:0d:fd:c5:77:70:c7:28:5b:28:f8: ad:e9:46:e4:fd:24:7a:ad:e3:fb:3d:fa:10:4e:c8:49:89:73: d4:6c:eb:82:cd:7e:16:2e:ca:e3:91:bd:45:9f:d8:8f:48:83: e3:af:d4:21:a7:61:0d:5b:a4:be:58:2c:9c:d4:2c:20:fb:e0: b2:29:d8:4b:85:75:5d:14:54:4c:5e:0e:e9:67:96:46:fc:18: 9e:a9:46:64:10:20:ea:79:25:21:d1:86:de:b8:6c:c2:92:89: dc:df:8c:93:42:db:f1:7f:96:d9:46:33:32:f0:35:44:b8:47: 89:4f:d4:7e:b0:38:1c:ee:29:b2:59:d2:e2:49:0f:1c:87:f4: eb:80:ba:e2:ac:75:d9:8d:17:8a:bf:f8:81:e9:92:4d:d6:65: 80:be:aa:24:05:75:73:26:b6:c0:86:33:b5:29:d8:05:94:12: ef:43:1e:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDGdUcNu3jcBlsYemlbqq3BxB7QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NDlaFw0yNzA1MDIwMzAzNDlaMDMxMTAvBgNV BAMTKEU3NjQyNUZFMkRBRUYxMDY2QTY3NThGMDEzQzdCQTYwNzhDQUMzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLhMvflfh4+UKxVv1MQh+xy7tk 4iHF3eC0dHzk+2xXDtx+uK809kN5pAdDYk2xFNiVzYR3P7hWPCCdoh5wEokP9y/g fnFYH9SYW3N5trrylWjPi4BNvo/ekLbLJIgQHlhy9JjwspiTcwNQcH5+C2zSRAeV QU+vVdMQrrf/Za6pZpZa9QKsVY3lCX5jJOmRGoX/i1nFDLkjDCGIMJj443VksN1z 0San5RbG94Vc2vsVValHGDT1i3VEkuBe/OtoUXwBMPrP/3tW/wgMX0KL0aBI1G4e IaDtZMQKKG0MM8IGmNZz0k2fV9K3qveqy+59UgjV36F0kPqsQLdWFaRULBbHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU52Ql/i2u8QZqZ1jwE8e6YHjKw58wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4bsMA0GCSqG SIb3DQEBCwUAA4IBAQANMIei5WGT6JcPOyHyR0musbdta1YbyC882BiiY8rkVkEH KuGB4x1lhcDs1Nhj9wSpbVnOkSF2kxDp4eEUVgPYe7Qh1UDmPeBVq0GaHZrMzA39 xXdwxyhbKPit6Ubk/SR6reP7PfoQTshJiXPUbOuCzX4WLsrjkb1Fn9iPSIPjr9Qh p2ENW6S+WCyc1Cwg++CyKdhLhXVdFFRMXg7pZ5ZG/BieqUZkECDqeSUh0YbeuGzC konc34yTQtvxf5bZRjMy8DVEuEeJT9R+sDgc7imyWdLiSQ8ch/TrgLrirHXZjReK v/iB6ZJN1mWAvqokBXVzJrbAhjO1KdgFlBLvQx53 -----END CERTIFICATE-----Generated at Wed May 13 03:56:34 2026 by rpki-client