$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: 1zxciFrgfrpypZ13HHtfhkMtV3yJILY8QtbERuPSSxQ= Subject key identifier: F0:B3:47:04:83:B2:5D:3B:4B:20:47:D0:D1:CE:6F:5D:B9:DE:EA:48 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 3AB070CBB78A582D66BEF6D9C9067D7CE34E66D0 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:12 +0000 ROA not before: Sun 03 May 2026 03:00:12 +0000 ROA not after: Sun 02 May 2027 03:05:12 +0000 asID: 38156 IP address blocks: 203.190.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b0:70:cb:b7:8a:58:2d:66:be:f6:d9:c9:06:7d:7c:e3:4e:66:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:12 2026 GMT Not After : May 2 03:05:12 2027 GMT Subject: CN=F0B3470483B25D3B4B2047D0D1CE6F5DB9DEEA48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:92:7a:5f:98:25:77:61:2e:8f:2d:c3:d4:01: 8d:4a:37:ed:25:88:90:41:7c:49:d7:de:c3:62:94: 07:3c:6d:3e:79:dc:a2:20:ea:02:aa:a0:6f:fa:fc: fc:c7:95:53:cc:13:4a:c2:78:3e:17:46:26:49:67: de:f5:c4:c8:83:db:65:00:bb:1b:4f:6b:c0:15:5e: 93:f6:04:04:95:a4:48:e5:30:07:a3:11:60:ad:27: d7:92:46:ee:31:c6:b2:5e:f2:78:cd:63:3d:ae:a4: 23:f7:ec:e8:5e:c4:59:b3:3d:6c:ce:30:3b:eb:e7: c7:a1:02:5e:ac:3c:5d:bb:14:71:41:42:ca:33:59: 8d:35:b6:53:cf:44:29:73:42:9c:60:5c:5e:2d:24: 46:54:e4:ae:1d:3e:20:2a:48:d9:95:fe:32:d2:ed: 6c:f6:68:5d:ec:0f:0c:94:bb:7e:f8:f2:d3:90:a7: 18:43:97:fa:97:2b:84:4d:53:4e:21:f0:5f:10:c6: 93:f8:06:75:0c:2a:13:48:0a:64:ec:3f:5f:9e:7e: 3a:1f:08:27:ca:7c:8d:5a:4f:cf:09:c9:ee:b6:2c: 7f:ff:90:67:ca:6c:b4:22:c2:e9:27:79:f9:94:38: 98:25:be:0b:14:f4:a1:44:dd:1f:31:ac:66:c7:50: b1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B3:47:04:83:B2:5D:3B:4B:20:47:D0:D1:CE:6F:5D:B9:DE:EA:48 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.114.0/24 Signature Algorithm: sha256WithRSAEncryption 93:75:c9:31:5b:aa:13:ea:c8:c3:fb:b4:24:a1:68:c6:24:06: 7b:5e:ed:ba:c9:9c:dd:8a:f2:3d:d9:8c:ea:34:00:bb:0f:7d: cd:f8:bb:bd:82:d5:39:33:7f:4f:4b:fb:6c:1f:a4:ed:d4:3d: a9:d2:62:38:93:36:2e:bf:41:65:4c:af:1c:f7:63:ac:10:6c: b9:68:72:dd:06:8a:d4:0c:7a:6e:f6:b0:0d:d5:ab:ca:69:4a: b5:e7:ec:7e:35:99:11:32:21:33:84:8b:40:fc:fe:ff:b3:f9: e0:60:c1:d2:20:57:38:5b:11:13:7a:90:7b:02:9b:13:9c:a0: 65:64:4e:fc:97:0b:91:c4:0a:f7:6a:f0:e2:9d:a3:e3:a8:16: 6c:a1:ab:44:ac:50:20:b8:52:48:7b:36:75:0a:fe:f9:7c:45: f0:ab:70:12:51:30:cd:93:46:08:64:60:44:47:01:83:91:76: 89:11:4e:bf:eb:f7:46:7f:e0:0c:d8:85:33:b3:a8:70:f6:a8: d0:44:1a:23:44:47:a7:6d:e5:f0:33:b5:28:33:7c:69:41:af: 6d:83:36:f9:24:c1:4d:9a:3f:39:3b:c9:13:83:95:1b:7c:9d: dc:2e:12:44:da:5d:1e:6a:54:86:8c:ff:9d:3e:85:26:6b:85: 32:a5:06:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOrBwy7eKWC1mvvbZyQZ9fONOZtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTJaFw0yNzA1MDIwMzA1MTJaMDMxMTAvBgNV BAMTKEYwQjM0NzA0ODNCMjVEM0I0QjIwNDdEMEQxQ0U2RjVEQjlERUVBNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbknpfmCV3YS6PLcPUAY1KN+0l iJBBfEnX3sNilAc8bT553KIg6gKqoG/6/PzHlVPME0rCeD4XRiZJZ971xMiD22UA uxtPa8AVXpP2BASVpEjlMAejEWCtJ9eSRu4xxrJe8njNYz2upCP37OhexFmzPWzO MDvr58ehAl6sPF27FHFBQsozWY01tlPPRClzQpxgXF4tJEZU5K4dPiAqSNmV/jLS 7Wz2aF3sDwyUu3748tOQpxhDl/qXK4RNU04h8F8QxpP4BnUMKhNICmTsP1+efjof CCfKfI1aT88Jye62LH//kGfKbLQiwuknefmUOJglvgsU9KFE3R8xrGbHULEVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8LNHBIOyXTtLIEfQ0c5vXbne6kgwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75yMA0GCSqG SIb3DQEBCwUAA4IBAQCTdckxW6oT6sjD+7QkoWjGJAZ7Xu26yZzdivI92YzqNAC7 D33N+Lu9gtU5M39PS/tsH6Tt1D2p0mI4kzYuv0FlTK8c92OsEGy5aHLdBorUDHpu 9rAN1avKaUq15+x+NZkRMiEzhItA/P7/s/ngYMHSIFc4WxETepB7ApsTnKBlZE78 lwuRxAr3avDinaPjqBZsoatErFAguFJIezZ1Cv75fEXwq3ASUTDNk0YIZGBERwGD kXaJEU6/6/dGf+AM2IUzs6hw9qjQRBojREenbeXwM7UoM3xpQa9tgzb5JMFNmj85 O8kTg5UbfJ3cLhJE2l0ealSGjP+dPoUma4UypQa4 -----END CERTIFICATE-----Generated at Wed May 13 02:19:01 2026 by rpki-client