$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: /GkPi/+AOEhPufjKPy1+oO0pijIgfjVervEREyDjquk= Subject key identifier: 70:5A:93:B0:C2:50:9B:1B:3C:F1:58:D1:7F:32:E6:B0:46:9C:2A:60 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 3283B50091574DC3AB80FF31B65F5D1E1B0C8262 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:12 +0000 ROA not before: Sun 03 May 2026 03:00:12 +0000 ROA not after: Sun 02 May 2027 03:05:12 +0000 asID: 38156 IP address blocks: 203.190.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:83:b5:00:91:57:4d:c3:ab:80:ff:31:b6:5f:5d:1e:1b:0c:82:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:12 2026 GMT Not After : May 2 03:05:12 2027 GMT Subject: CN=705A93B0C2509B1B3CF158D17F32E6B0469C2A60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:95:98:f1:2b:b9:68:f9:77:3f:aa:98:a6:d5: 52:82:36:be:94:20:f3:a7:b7:f7:5d:c6:fc:b7:76: 8f:26:b8:f1:e8:59:80:d3:9c:f9:ba:63:ed:df:eb: e3:c9:66:c7:a8:92:df:01:89:ca:f1:b2:bd:a6:3e: 32:41:ca:94:92:a7:a6:56:39:cc:7b:81:71:d1:cb: 2b:e1:eb:f4:01:8d:1f:29:b7:3c:9b:cb:31:06:4a: c9:43:32:c1:0a:e1:33:ef:46:11:48:0c:9e:8d:38: de:eb:5a:b6:19:84:50:a5:b7:e5:bd:27:f0:30:0d: 9e:c0:09:7c:51:08:c1:43:d7:5b:7b:4b:e4:2e:e2: b2:6d:6a:2f:69:88:5a:58:80:27:f6:b8:fb:2c:5c: 00:b9:46:b6:4d:a4:b4:ef:7c:ea:6b:d5:37:8e:13: f1:47:bf:d3:c8:e0:7a:c7:6d:de:94:68:7b:49:57: b5:47:59:16:3a:9b:ac:ba:36:9e:cc:cc:f5:cd:23: 01:5b:07:ad:d9:63:66:a6:83:dd:07:f3:74:5b:57: 74:d5:ee:ad:ce:c0:6b:b7:e7:bd:5d:3d:ee:cb:c2: a3:22:30:98:30:38:a1:1d:b4:24:af:89:29:b6:83: d3:ea:10:58:7a:84:ca:0c:96:26:9d:91:c7:18:92: 0e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5A:93:B0:C2:50:9B:1B:3C:F1:58:D1:7F:32:E6:B0:46:9C:2A:60 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.116.0/24 Signature Algorithm: sha256WithRSAEncryption a1:17:77:15:db:e0:67:72:1c:df:7d:ea:3d:42:8f:9d:35:d5: f8:d0:12:06:76:ed:73:1c:32:52:13:8d:ae:da:36:80:e9:24: 13:6e:93:cc:c8:e3:b9:2a:95:5c:72:9d:4e:ab:78:fb:02:c8: 82:6a:e8:09:1a:71:5d:aa:65:e3:df:38:60:6f:cc:83:41:18: ec:bd:a8:9f:c0:55:68:f8:d3:40:21:e6:c4:99:f2:08:86:98: 7b:ff:d2:b4:c2:94:d3:c4:e4:25:ac:90:18:45:7a:a3:80:c6: 9b:6b:0f:e7:47:46:1c:47:f2:8f:f0:ab:d0:e6:93:3a:83:f5: 9f:00:19:5b:e0:6e:ac:56:9c:29:7f:4c:31:e5:58:f5:38:7e: 6f:6d:07:a8:77:9c:d9:f7:49:12:5a:65:29:93:0f:9a:13:37: f1:bb:cd:cc:9a:f0:0e:0c:ff:54:4b:64:18:7a:22:a1:5a:86: 28:e0:9d:75:8b:96:5d:d5:44:6b:97:d9:65:68:dc:6c:7c:00: 99:21:29:9f:87:b6:3c:a5:81:ed:47:d1:4a:20:2a:ed:da:f8: 2a:ef:2d:7e:d1:df:8a:41:19:35:53:3c:c5:c7:89:b0:ee:76: 84:b3:82:4d:48:8d:c2:07:be:65:9b:8c:fe:1f:ea:d6:56:b6: 8f:f4:05:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMoO1AJFXTcOrgP8xtl9dHhsMgmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTJaFw0yNzA1MDIwMzA1MTJaMDMxMTAvBgNV BAMTKDcwNUE5M0IwQzI1MDlCMUIzQ0YxNThEMTdGMzJFNkIwNDY5QzJBNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDelZjxK7lo+Xc/qpim1VKCNr6U IPOnt/ddxvy3do8muPHoWYDTnPm6Y+3f6+PJZseokt8Bicrxsr2mPjJBypSSp6ZW Ocx7gXHRyyvh6/QBjR8ptzybyzEGSslDMsEK4TPvRhFIDJ6NON7rWrYZhFClt+W9 J/AwDZ7ACXxRCMFD11t7S+Qu4rJtai9piFpYgCf2uPssXAC5RrZNpLTvfOpr1TeO E/FHv9PI4HrHbd6UaHtJV7VHWRY6m6y6Np7MzPXNIwFbB63ZY2amg90H83RbV3TV 7q3OwGu3571dPe7LwqMiMJgwOKEdtCSviSm2g9PqEFh6hMoMliadkccYkg6pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcFqTsMJQmxs88VjRfzLmsEacKmAwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy750MA0GCSqG SIb3DQEBCwUAA4IBAQChF3cV2+Bnchzffeo9Qo+dNdX40BIGdu1zHDJSE42u2jaA 6SQTbpPMyOO5KpVccp1Oq3j7AsiCaugJGnFdqmXj3zhgb8yDQRjsvaifwFVo+NNA IebEmfIIhph7/9K0wpTTxOQlrJAYRXqjgMabaw/nR0YcR/KP8KvQ5pM6g/WfABlb 4G6sVpwpf0wx5Vj1OH5vbQeod5zZ90kSWmUpkw+aEzfxu83MmvAODP9US2QYeiKh WoYo4J11i5Zd1URrl9llaNxsfACZISmfh7Y8pYHtR9FKICrt2vgq7y1+0d+KQRk1 UzzFx4mw7naEs4JNSI3CB75lm4z+H+rWVraP9AV1 -----END CERTIFICATE-----Generated at Wed May 13 04:16:53 2026 by rpki-client