$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: df96YWKu427U+HPJiLnno+3fbVy36Hxa342nQy+ZfoU= Subject key identifier: 14:7A:BF:64:E6:03:13:22:BF:62:4C:57:C4:1A:9B:81:F2:A1:43:26 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 38D95A6294D021435F28A27E54001584E95EC126 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:16 +0000 ROA not before: Sun 03 May 2026 03:00:16 +0000 ROA not after: Sun 02 May 2027 03:05:16 +0000 asID: 38156 IP address blocks: 203.190.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d9:5a:62:94:d0:21:43:5f:28:a2:7e:54:00:15:84:e9:5e:c1:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:16 2026 GMT Not After : May 2 03:05:16 2027 GMT Subject: CN=147ABF64E6031322BF624C57C41A9B81F2A14326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cd:b5:01:34:cb:b8:61:dd:9e:9e:2f:db:ee: a1:6b:d6:7e:be:0a:78:d3:ab:f0:ac:fa:b7:76:b4: 80:38:8b:05:64:44:c5:1c:39:33:6f:d5:0a:8f:f9: f7:e2:25:49:ba:9e:df:c0:10:36:06:90:ca:06:0f: 4b:e0:88:d5:24:e3:dd:2d:d8:8e:04:0c:28:92:41: 31:4f:f6:f9:72:db:2e:bc:29:68:fb:be:0d:9b:ee: 26:73:df:e7:c8:94:71:4c:6b:83:53:33:8a:55:17: 8d:f0:a0:be:96:c5:6e:ad:e7:82:cc:b5:37:64:94: 04:df:44:56:57:3f:6e:b3:70:ba:9f:56:7b:dc:d7: a0:b1:bd:a7:37:46:13:b4:1c:ee:e3:ca:95:6e:b9: 13:30:11:9d:d9:4e:f8:69:e0:cc:e9:7f:15:42:f5: 0e:e6:3b:22:d0:b8:6c:5a:b2:6a:d9:ef:c3:ac:17: 4b:3f:c5:75:f2:09:aa:8f:85:d0:e4:c6:52:39:eb: bc:97:e5:57:e1:d1:d6:fb:9f:c5:a3:de:91:92:64: b3:1d:63:2a:5d:84:cb:a0:48:f6:d3:ab:27:aa:01: be:11:35:a0:dc:54:30:de:18:74:6b:01:de:ef:01: 5a:01:69:8e:08:32:b9:9e:1b:f6:d4:8b:78:9f:2c: bf:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7A:BF:64:E6:03:13:22:BF:62:4C:57:C4:1A:9B:81:F2:A1:43:26 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.113.0/24 Signature Algorithm: sha256WithRSAEncryption 06:c9:fa:e6:01:f9:d8:75:87:c9:e5:4f:eb:43:be:ba:4c:d5: c5:3b:d7:a5:26:26:c5:00:88:0f:29:95:c1:7c:ef:8c:41:19: 49:26:ba:8d:77:0d:63:24:02:7e:ac:fd:ec:4f:26:49:d3:03: 23:ab:27:1a:7d:f5:22:ef:b2:18:87:67:a5:29:84:ad:50:83: 7b:d6:71:04:12:aa:c7:0e:f3:e3:2b:be:fb:01:d0:94:89:0c: 98:c3:c9:63:c1:f3:2e:2f:b7:3a:d1:a2:65:b8:0d:de:5f:75: f0:07:d2:96:d7:b3:e0:f9:58:c6:e8:07:d7:e1:ee:e7:bf:ca: de:52:03:4e:75:21:1f:d6:e5:d4:9c:4a:46:53:03:04:23:6c: d0:95:fc:a6:c1:22:70:15:ca:8f:e1:b3:48:27:30:d3:5f:cd: 2e:89:ac:1d:ef:54:dd:ed:da:ad:17:eb:ba:01:6a:5f:d0:7b: 54:b3:34:db:e5:c5:f0:a2:d2:e6:10:d6:7f:79:97:81:71:c0: 50:0c:85:8c:e2:c2:b6:20:f2:33:2c:3a:30:76:df:86:7d:98: 91:6c:6b:c2:c1:46:3e:a3:b0:15:29:01:55:6e:19:b7:9b:58: e1:31:47:96:f7:c6:21:8d:6a:9f:39:4e:6c:c6:ff:a6:f5:aa: 04:90:72:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUONlaYpTQIUNfKKJ+VAAVhOlewSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTZaFw0yNzA1MDIwMzA1MTZaMDMxMTAvBgNV BAMTKDE0N0FCRjY0RTYwMzEzMjJCRjYyNEM1N0M0MUE5QjgxRjJBMTQzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtzbUBNMu4Yd2eni/b7qFr1n6+ CnjTq/Cs+rd2tIA4iwVkRMUcOTNv1QqP+ffiJUm6nt/AEDYGkMoGD0vgiNUk490t 2I4EDCiSQTFP9vly2y68KWj7vg2b7iZz3+fIlHFMa4NTM4pVF43woL6WxW6t54LM tTdklATfRFZXP26zcLqfVnvc16Cxvac3RhO0HO7jypVuuRMwEZ3ZTvhp4MzpfxVC 9Q7mOyLQuGxasmrZ78OsF0s/xXXyCaqPhdDkxlI567yX5Vfh0db7n8Wj3pGSZLMd YypdhMugSPbTqyeqAb4RNaDcVDDeGHRrAd7vAVoBaY4IMrmeG/bUi3ifLL/dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFHq/ZOYDEyK/YkxXxBqbgfKhQyYwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75xMA0GCSqG SIb3DQEBCwUAA4IBAQAGyfrmAfnYdYfJ5U/rQ766TNXFO9elJibFAIgPKZXBfO+M QRlJJrqNdw1jJAJ+rP3sTyZJ0wMjqycaffUi77IYh2elKYStUIN71nEEEqrHDvPj K777AdCUiQyYw8ljwfMuL7c60aJluA3eX3XwB9KW17Pg+VjG6AfX4e7nv8reUgNO dSEf1uXUnEpGUwMEI2zQlfymwSJwFcqP4bNIJzDTX80uiawd71Td7dqtF+u6AWpf 0HtUszTb5cXwotLmENZ/eZeBccBQDIWM4sK2IPIzLDowdt+GfZiRbGvCwUY+o7AV KQFVbhm3m1jhMUeW98YhjWqfOU5sxv+m9aoEkHL7 -----END CERTIFICATE-----Generated at Wed May 13 04:03:52 2026 by rpki-client