$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: ew7BTN0Jg/xuHTz2pNxzpEMoX+oQVfT5oQxKjNVJ4qo= Subject key identifier: 68:BB:0B:92:66:D8:07:27:15:56:AD:82:A1:A5:33:23:CE:41:7E:4C Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 1F65E09B70B15378E710CD299809DC93DBF941E4 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:35 +0000 ROA not before: Sun 03 May 2026 02:58:35 +0000 ROA not after: Sun 02 May 2027 03:03:35 +0000 asID: 18059 IP address blocks: 203.134.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:65:e0:9b:70:b1:53:78:e7:10:cd:29:98:09:dc:93:db:f9:41:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:35 2026 GMT Not After : May 2 03:03:35 2027 GMT Subject: CN=68BB0B9266D807271556AD82A1A53323CE417E4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:17:91:e6:dd:ec:db:64:f2:79:30:79:74:e0: ea:24:bf:b8:b7:1a:b1:00:96:dd:b2:9b:c0:e5:b4: c0:ab:31:d3:a2:46:27:99:22:3b:41:3f:e1:73:0a: 5c:b9:b8:3d:56:e7:24:1d:c8:8c:0a:63:d9:6a:05: e5:c0:ff:9e:7e:22:05:03:f2:83:e3:d4:f2:6e:2e: c5:76:b4:15:dc:56:2c:28:90:8e:7f:84:ba:33:9c: e9:bd:ad:15:ce:ba:28:c8:22:32:07:9b:81:ea:57: 15:db:e2:fe:c8:e2:e7:06:d3:e4:27:c7:3e:b3:44: 48:13:19:e8:ce:0e:42:cf:5d:25:fb:7b:5c:63:00: d6:4e:2e:9f:2b:36:9b:71:dc:71:4e:04:52:40:04: 66:f0:08:10:24:97:0d:ea:fd:20:ad:b0:4e:c7:ac: c5:f7:4e:ca:a8:da:4b:fb:b9:03:98:a1:72:07:24: 4b:e0:4a:b8:c7:05:f7:3d:c6:35:ae:8b:be:be:0b: 40:05:0f:75:be:65:78:d1:f8:4b:4b:4b:84:98:39: 99:1a:4c:8b:e8:47:e0:30:ae:5d:10:7a:31:e7:66: f4:d2:01:25:4d:60:e5:1a:9e:ad:32:5d:e5:2f:be: 14:5e:53:52:52:7f:71:65:f3:01:8b:5c:67:e3:d1: 25:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BB:0B:92:66:D8:07:27:15:56:AD:82:A1:A5:33:23:CE:41:7E:4C X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.238.0/24 Signature Algorithm: sha256WithRSAEncryption 39:78:86:45:1f:9c:c0:51:6e:99:1b:57:36:d4:ba:04:28:b5: 1b:13:eb:fa:d2:b0:bc:57:cd:a0:bc:88:86:51:c5:8d:3e:94: 2c:b3:4b:04:42:93:17:a3:72:f6:72:e0:84:cd:37:8c:f3:54: 7a:27:bf:62:0f:b6:32:5e:13:07:c7:71:ba:4d:ce:d9:de:51: fd:aa:36:b1:a4:6a:e9:da:74:90:18:5c:82:30:b8:a4:5f:63: 55:f1:17:ac:cf:1f:67:72:52:6f:ca:87:41:54:9e:ba:85:37: 1d:fa:a9:0d:32:e2:5c:78:43:3d:9c:4a:d7:e9:ea:f7:3d:94: c4:71:96:cb:10:54:2f:ee:58:4d:9a:ee:e9:2c:71:2e:88:0f: e8:e0:e3:d1:89:13:03:d9:66:c7:8a:fb:10:b2:c6:10:c5:2f: 84:75:0f:0b:42:35:da:6e:bf:13:30:b5:41:f6:c1:c8:e7:e2: c7:21:8d:df:55:8d:c4:75:b0:01:a9:0e:7a:27:ce:05:28:47: 01:1a:62:83:02:99:a5:16:4c:a0:14:e6:b2:5a:f8:de:73:3a: a3:fc:86:c8:81:83:c1:c6:f3:7c:60:fb:f7:be:08:88:7d:ce: 1c:60:f3:44:f8:4d:39:af:8b:ea:4a:c9:29:fd:60:dd:59:d9: 76:29:4f:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH2Xgm3CxU3jnEM0pmAnck9v5QeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzVaFw0yNzA1MDIwMzAzMzVaMDMxMTAvBgNV BAMTKDY4QkIwQjkyNjZEODA3MjcxNTU2QUQ4MkExQTUzMzIzQ0U0MTdFNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYF5Hm3ezbZPJ5MHl04Ookv7i3 GrEAlt2ym8DltMCrMdOiRieZIjtBP+FzCly5uD1W5yQdyIwKY9lqBeXA/55+IgUD 8oPj1PJuLsV2tBXcViwokI5/hLoznOm9rRXOuijIIjIHm4HqVxXb4v7I4ucG0+Qn xz6zREgTGejODkLPXSX7e1xjANZOLp8rNptx3HFOBFJABGbwCBAklw3q/SCtsE7H rMX3Tsqo2kv7uQOYoXIHJEvgSrjHBfc9xjWui76+C0AFD3W+ZXjR+EtLS4SYOZka TIvoR+Awrl0QejHnZvTSASVNYOUanq0yXeUvvhReU1JSf3Fl8wGLXGfj0SV5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaLsLkmbYBycVVq2CoaUzI85BfkwwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4buMA0GCSqG SIb3DQEBCwUAA4IBAQA5eIZFH5zAUW6ZG1c21LoEKLUbE+v60rC8V82gvIiGUcWN PpQss0sEQpMXo3L2cuCEzTeM81R6J79iD7YyXhMHx3G6Tc7Z3lH9qjaxpGrp2nSQ GFyCMLikX2NV8Reszx9nclJvyodBVJ66hTcd+qkNMuJceEM9nErX6er3PZTEcZbL EFQv7lhNmu7pLHEuiA/o4OPRiRMD2WbHivsQssYQxS+EdQ8LQjXabr8TMLVB9sHI 5+LHIY3fVY3EdbABqQ56J84FKEcBGmKDApmlFkygFOayWvjeczqj/IbIgYPBxvN8 YPv3vgiIfc4cYPNE+E05r4vqSskp/WDdWdl2KU8c -----END CERTIFICATE-----Generated at Wed May 13 03:47:50 2026 by rpki-client