$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: Yg8Yec064Brwf9x/NAfoSbhCfddxi4fn/8a7jii/RNk= Subject key identifier: E8:6A:2A:61:D9:1B:F9:30:68:83:C7:8A:F4:D2:C8:74:08:A4:AB:23 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 5095EAE8AE69645EEB4AA6016BD008E743D6B407 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:15 +0000 ROA not before: Sun 03 May 2026 03:00:15 +0000 ROA not after: Sun 02 May 2027 03:05:15 +0000 asID: 38156 IP address blocks: 203.190.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:95:ea:e8:ae:69:64:5e:eb:4a:a6:01:6b:d0:08:e7:43:d6:b4:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:15 2026 GMT Not After : May 2 03:05:15 2027 GMT Subject: CN=E86A2A61D91BF9306883C78AF4D2C87408A4AB23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:a4:a3:87:1b:2c:d9:c7:8d:21:cf:e9:96: 8f:5b:49:52:51:21:df:b2:a4:b4:e8:a3:7e:fd:a4: cc:f9:82:3b:c1:43:fb:96:d3:0a:ba:b0:75:2d:9b: 0e:48:c8:48:93:90:91:4c:e6:6b:92:0c:6f:fd:d8: 03:e9:4e:de:ad:d3:fc:0a:ed:22:7b:a2:43:d1:44: fc:c7:33:4c:b0:16:36:8f:76:8e:eb:d9:6f:fb:99: ec:ae:4a:22:53:b9:16:8c:99:77:04:b9:2d:78:22: 6a:2b:2f:a2:27:6c:33:29:8c:b7:20:e6:9e:da:e4: 64:50:d1:4e:83:d3:2e:06:3b:ed:bb:43:54:34:90: 15:e2:b1:87:43:8a:be:b4:21:8c:16:f2:f1:4f:18: 17:a8:9a:9e:37:02:9b:83:79:7e:23:49:e1:ad:bc: 25:00:86:2e:d4:ac:23:d3:71:cd:d0:6d:26:c7:0e: 24:92:27:f0:c8:ff:b2:7a:9d:16:a9:f9:f3:85:c4: 77:6a:63:0e:38:63:f9:b8:b9:21:8e:ed:99:f4:9c: b5:5f:96:45:46:f7:4a:d9:12:12:36:cc:b0:20:58: ad:53:15:d6:ad:26:90:c5:ef:e9:49:ad:dd:d1:9e: aa:e7:2f:ab:ae:3b:d9:bc:58:d2:bc:48:78:67:61: 73:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6A:2A:61:D9:1B:F9:30:68:83:C7:8A:F4:D2:C8:74:08:A4:AB:23 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.117.0/24 Signature Algorithm: sha256WithRSAEncryption 17:ad:32:3e:db:bf:1b:86:32:ec:26:9b:55:41:18:4d:83:d7: 11:f3:d8:5a:17:fe:00:74:ab:24:5a:77:5f:41:ed:da:3c:9b: 2b:eb:e4:78:6e:ef:e2:3f:b1:1a:2e:f6:77:4d:41:bc:af:55: 5c:0b:7a:cf:24:a5:f2:8e:a4:af:5f:3d:43:80:6b:a7:21:35: 2c:6f:88:39:a7:01:02:9c:b2:68:19:e6:19:fe:90:b1:23:eb: 47:e6:c0:97:bc:47:3b:1d:3e:27:c4:ed:06:13:34:90:16:ff: f3:fa:c8:a4:f4:51:09:20:b7:7e:ae:7c:e1:e6:f3:f6:a0:69: 59:b4:ec:6e:85:85:55:98:56:8c:bb:6f:7a:91:4f:9c:35:32: 60:77:08:7e:9f:05:96:8b:d0:72:ba:5b:11:29:82:ab:f2:22: 34:af:3d:f2:96:5a:91:62:ed:3a:72:3a:61:ba:39:d0:93:53: af:c4:47:20:bc:ea:3c:fa:64:6e:0b:b2:29:5b:2e:6e:d3:37: 42:f1:08:58:2d:92:90:ae:85:11:75:0d:f6:49:1a:b5:2e:9f: c3:40:9e:cf:2f:15:aa:6c:3e:74:d5:ae:bb:4a:49:6d:94:cf: 9e:26:9d:48:c5:c0:c0:aa:60:06:5e:98:4c:a3:1d:63:13:f9: 5f:75:ae:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUJXq6K5pZF7rSqYBa9AI50PWtAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTVaFw0yNzA1MDIwMzA1MTVaMDMxMTAvBgNV BAMTKEU4NkEyQTYxRDkxQkY5MzA2ODgzQzc4QUY0RDJDODc0MDhBNEFCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6dKSjhxss2ceNIc/plo9bSVJR Id+ypLToo379pMz5gjvBQ/uW0wq6sHUtmw5IyEiTkJFM5muSDG/92APpTt6t0/wK 7SJ7okPRRPzHM0ywFjaPdo7r2W/7meyuSiJTuRaMmXcEuS14ImorL6InbDMpjLcg 5p7a5GRQ0U6D0y4GO+27Q1Q0kBXisYdDir60IYwW8vFPGBeomp43ApuDeX4jSeGt vCUAhi7UrCPTcc3QbSbHDiSSJ/DI/7J6nRap+fOFxHdqYw44Y/m4uSGO7Zn0nLVf lkVG90rZEhI2zLAgWK1TFdatJpDF7+lJrd3RnqrnL6uuO9m8WNK8SHhnYXPlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6GoqYdkb+TBog8eK9NLIdAikqyMwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy751MA0GCSqG SIb3DQEBCwUAA4IBAQAXrTI+278bhjLsJptVQRhNg9cR89haF/4AdKskWndfQe3a PJsr6+R4bu/iP7EaLvZ3TUG8r1VcC3rPJKXyjqSvXz1DgGunITUsb4g5pwECnLJo GeYZ/pCxI+tH5sCXvEc7HT4nxO0GEzSQFv/z+sik9FEJILd+rnzh5vP2oGlZtOxu hYVVmFaMu296kU+cNTJgdwh+nwWWi9ByulsRKYKr8iI0rz3yllqRYu06cjphujnQ k1OvxEcgvOo8+mRuC7IpWy5u0zdC8QhYLZKQroURdQ32SRq1Lp/DQJ7PLxWqbD50 1a67SkltlM+eJp1IxcDAqmAGXphMox1jE/lfda7S -----END CERTIFICATE-----Generated at Wed May 13 04:26:17 2026 by rpki-client