$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: GpjHek9a827cy//pNFDcORXn2t6JzxU+p9J93Ct0LZo= Subject key identifier: 60:56:C1:45:65:4A:DB:4D:3F:B0:46:6E:7C:16:EF:BF:2A:74:F8:BC Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 2743A2AF2A6AF226D064593BD6F1220AE902B954 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:06 +0000 ROA not before: Sun 03 May 2026 03:00:06 +0000 ROA not after: Sun 02 May 2027 03:05:06 +0000 asID: 38156 IP address blocks: 203.190.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:43:a2:af:2a:6a:f2:26:d0:64:59:3b:d6:f1:22:0a:e9:02:b9:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:06 2026 GMT Not After : May 2 03:05:06 2027 GMT Subject: CN=6056C145654ADB4D3FB0466E7C16EFBF2A74F8BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2c:fc:22:72:c9:4f:15:5c:20:f6:b2:ae:8f: da:1f:45:3f:42:fa:51:78:3b:36:de:f2:b3:61:40: 35:1e:8a:79:f6:99:9f:83:c2:42:73:0f:2f:8b:66: c6:5c:f1:fc:7c:c6:58:0b:9e:06:6e:39:0c:0e:dc: ad:42:04:3a:ff:1e:fc:07:2b:3b:06:b1:b4:de:21: fd:19:13:b3:4e:8c:15:ed:9d:aa:50:a6:98:58:8e: 25:d8:a3:d9:46:b2:8e:cd:e1:56:c5:97:a9:b7:86: 13:b3:61:fd:a5:1d:75:48:fc:49:ec:d8:23:b7:c7: b9:c2:34:f3:6e:a0:be:46:96:20:13:86:15:93:44: 84:26:77:5a:c4:54:e3:d9:66:eb:41:25:c9:94:d5: 36:42:0b:1f:ab:35:6d:cc:7c:92:68:e5:c5:81:71: d8:52:3e:7c:b8:33:16:4d:7a:11:c9:47:1f:c6:68: 3b:71:46:c8:53:28:29:20:16:5b:98:9b:a0:28:d6: 52:e8:27:8e:1f:59:d3:98:fe:fb:f2:d6:50:f1:6c: 50:bd:de:c9:a5:65:56:98:49:f8:bb:df:bb:31:b4: 05:36:b9:ae:be:33:32:4a:33:a7:02:b8:55:5f:91: 18:53:59:7a:d2:45:68:2b:26:16:26:fd:e3:30:0e: 83:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:56:C1:45:65:4A:DB:4D:3F:B0:46:6E:7C:16:EF:BF:2A:74:F8:BC X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.118.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:8e:71:a6:94:b0:12:63:a8:24:00:25:96:32:bd:e4:01:b9: e9:d1:9f:97:10:44:53:fa:7b:e5:27:ff:0f:8b:89:25:f0:03: 14:37:50:4e:aa:da:79:fd:99:80:9e:60:40:c6:97:6b:6c:bb: a7:df:a8:c7:1f:ea:26:e1:45:d5:91:6d:49:69:db:36:5b:61: 8a:51:3b:d4:df:7b:d5:6a:73:4d:71:64:88:27:44:a1:cd:cd: 8b:1b:29:e4:5a:cf:27:de:18:72:90:91:88:23:e6:cf:3d:90: f9:f0:34:14:5b:20:32:9c:50:ae:61:6e:cf:4d:01:13:f8:a0: 81:df:9d:3c:39:55:25:c8:7b:d2:c5:75:e5:de:f2:e4:49:dd: a3:67:25:0f:3e:e4:65:02:20:c8:e7:9b:59:43:f7:68:2a:42: 3d:90:ef:7e:ac:ac:3a:37:53:18:97:2c:68:ee:88:1a:3e:3f: 15:4e:a0:79:55:25:42:3d:1f:bc:b3:5b:c2:03:48:26:07:ea: a7:68:9a:4e:5b:fe:eb:bd:c3:f7:4a:31:73:82:38:e8:e5:7a: 58:5a:b6:fe:b5:a6:a5:90:75:3b:fc:d8:77:4e:bb:5e:8f:c9: 2c:c9:16:dd:4b:56:44:0d:b5:05:08:f8:4f:85:e3:07:e8:02: e7:dc:0a:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ0Oirypq8ibQZFk71vEiCukCuVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMDZaFw0yNzA1MDIwMzA1MDZaMDMxMTAvBgNV BAMTKDYwNTZDMTQ1NjU0QURCNEQzRkIwNDY2RTdDMTZFRkJGMkE3NEY4QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXLPwicslPFVwg9rKuj9ofRT9C +lF4Ozbe8rNhQDUeinn2mZ+DwkJzDy+LZsZc8fx8xlgLngZuOQwO3K1CBDr/HvwH KzsGsbTeIf0ZE7NOjBXtnapQpphYjiXYo9lGso7N4VbFl6m3hhOzYf2lHXVI/Ens 2CO3x7nCNPNuoL5GliAThhWTRIQmd1rEVOPZZutBJcmU1TZCCx+rNW3MfJJo5cWB cdhSPny4MxZNehHJRx/GaDtxRshTKCkgFluYm6Ao1lLoJ44fWdOY/vvy1lDxbFC9 3smlZVaYSfi737sxtAU2ua6+MzJKM6cCuFVfkRhTWXrSRWgrJhYm/eMwDoPlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYFbBRWVK200/sEZufBbvvyp0+LwwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy752MA0GCSqG SIb3DQEBCwUAA4IBAQBbjnGmlLASY6gkACWWMr3kAbnp0Z+XEERT+nvlJ/8Pi4kl 8AMUN1BOqtp5/ZmAnmBAxpdrbLun36jHH+om4UXVkW1Jads2W2GKUTvU33vVanNN cWSIJ0Shzc2LGynkWs8n3hhykJGII+bPPZD58DQUWyAynFCuYW7PTQET+KCB3508 OVUlyHvSxXXl3vLkSd2jZyUPPuRlAiDI55tZQ/doKkI9kO9+rKw6N1MYlyxo7oga Pj8VTqB5VSVCPR+8s1vCA0gmB+qnaJpOW/7rvcP3SjFzgjjo5XpYWrb+taalkHU7 /Nh3Trtej8ksyRbdS1ZEDbUFCPhPheMH6ALn3ApT -----END CERTIFICATE-----Generated at Wed May 13 04:02:44 2026 by rpki-client