$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: e7mQPN3Z6KC/Ik9Qm59+I1SvLwjeilQ2SD4cxlIQDBE= Subject key identifier: 54:04:81:4E:26:7E:92:C0:F7:2A:8E:DF:DD:2A:CF:B7:74:13:E7:CF Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 6343ED599A1A56F4F1A4ED14D732536578FD7E34 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:15 +0000 ROA not before: Sun 03 May 2026 03:00:15 +0000 ROA not after: Sun 02 May 2027 03:05:15 +0000 asID: 38156 IP address blocks: 203.190.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:ed:59:9a:1a:56:f4:f1:a4:ed:14:d7:32:53:65:78:fd:7e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:15 2026 GMT Not After : May 2 03:05:15 2027 GMT Subject: CN=5404814E267E92C0F72A8EDFDD2ACFB77413E7CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:91:df:74:f6:0b:c5:2f:80:65:dc:f0:f9:c9: f5:0f:d1:69:ba:4e:4e:f7:40:49:3b:99:60:3b:6d: 52:7f:69:93:18:1f:1b:11:9f:7c:c9:32:fc:97:8e: 3e:e5:c2:49:28:e5:e0:60:66:d4:8c:c3:b7:7d:c7: 8d:9c:a0:a0:cd:02:39:d7:21:19:06:88:f0:77:49: 6c:fe:6a:ed:be:2d:56:63:d4:44:b0:cf:ed:e1:16: b8:a9:07:13:c5:8f:ad:d4:bb:5e:66:e6:1b:02:b1: 9b:3b:79:75:dc:7f:55:b9:0b:89:d0:ae:ed:6c:ff: 24:35:a2:ac:ca:41:50:a0:08:11:62:5d:49:7f:12: 59:10:19:12:6e:e4:06:04:11:c9:69:d7:ce:6d:7b: 71:21:b4:a9:a3:4b:d3:36:9d:d6:0d:55:c6:41:ea: c7:a3:2d:8c:de:65:57:43:f6:ef:7b:ba:3d:4e:53: 9f:64:ca:d5:c1:33:cd:fb:42:92:74:af:c5:97:0d: 61:c4:7a:04:d5:e9:3d:a9:b1:5f:fe:3e:ed:aa:cc: 4f:38:2d:a1:9c:c2:da:83:38:09:db:c8:ad:0d:e5: aa:ab:98:cd:bc:83:e3:cb:7b:6f:02:8c:d2:18:24: b0:25:ef:a9:b7:41:6f:b0:c8:2a:72:c2:a5:18:c5: d4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:04:81:4E:26:7E:92:C0:F7:2A:8E:DF:DD:2A:CF:B7:74:13:E7:CF X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.119.0/24 Signature Algorithm: sha256WithRSAEncryption a5:69:26:33:db:d5:f2:49:f6:72:79:f0:2d:a0:ed:12:18:86: bb:ec:38:a7:f1:43:51:a2:e0:11:50:0a:b6:49:93:1b:a2:d2: cb:a4:3b:aa:49:8c:f1:80:ac:7d:f0:59:55:f4:ad:2e:6d:56: 51:a7:bf:aa:47:0a:02:24:d5:82:05:4d:41:db:5d:43:51:6b: ee:51:c3:70:0e:68:c5:b3:a8:c4:09:2e:5a:13:86:9e:64:17: d1:0a:29:c8:a0:5e:20:80:22:62:47:20:0b:55:93:79:e7:75: 91:05:60:66:64:bb:39:4e:f7:c5:cb:d7:e5:38:f0:c1:65:a2: 84:97:8a:ba:f6:87:da:21:73:2f:90:c2:f6:3d:52:8c:e5:8f: 5c:57:29:7e:68:61:b6:3d:c5:a1:17:1e:9b:dc:d0:cd:d3:0b: 97:52:e2:13:33:41:93:1a:6b:9a:0e:70:8c:f2:00:57:35:39: dc:b4:93:57:c3:b9:0d:2b:f5:24:ec:72:14:ac:b6:68:98:22: 7f:6e:f9:12:69:11:85:32:b6:6e:cc:24:55:68:dd:39:8e:35: b4:9e:f0:32:b6:9c:21:be:bb:43:b5:60:d6:9b:98:c2:39:85: 50:d4:e9:a0:0e:41:6c:d0:f6:a1:c5:38:12:d6:88:b0:5e:92: ef:9f:0f:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY0PtWZoaVvTxpO0U1zJTZXj9fjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTVaFw0yNzA1MDIwMzA1MTVaMDMxMTAvBgNV BAMTKDU0MDQ4MTRFMjY3RTkyQzBGNzJBOEVERkREMkFDRkI3NzQxM0U3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCukd909gvFL4Bl3PD5yfUP0Wm6 Tk73QEk7mWA7bVJ/aZMYHxsRn3zJMvyXjj7lwkko5eBgZtSMw7d9x42coKDNAjnX IRkGiPB3SWz+au2+LVZj1ESwz+3hFripBxPFj63Uu15m5hsCsZs7eXXcf1W5C4nQ ru1s/yQ1oqzKQVCgCBFiXUl/ElkQGRJu5AYEEclp185te3EhtKmjS9M2ndYNVcZB 6sejLYzeZVdD9u97uj1OU59kytXBM837QpJ0r8WXDWHEegTV6T2psV/+Pu2qzE84 LaGcwtqDOAnbyK0N5aqrmM28g+PLe28CjNIYJLAl76m3QW+wyCpywqUYxdT1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVASBTiZ+ksD3Ko7f3SrPt3QT588wHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy753MA0GCSqG SIb3DQEBCwUAA4IBAQClaSYz29XySfZyefAtoO0SGIa77Din8UNRouARUAq2SZMb otLLpDuqSYzxgKx98FlV9K0ubVZRp7+qRwoCJNWCBU1B211DUWvuUcNwDmjFs6jE CS5aE4aeZBfRCinIoF4ggCJiRyALVZN553WRBWBmZLs5TvfFy9flOPDBZaKEl4q6 9ofaIXMvkML2PVKM5Y9cVyl+aGG2PcWhFx6b3NDN0wuXUuITM0GTGmuaDnCM8gBX NTnctJNXw7kNK/Uk7HIUrLZomCJ/bvkSaRGFMrZuzCRVaN05jjW0nvAytpwhvrtD tWDWm5jCOYVQ1OmgDkFs0PahxTgS1oiwXpLvnw/+ -----END CERTIFICATE-----Generated at Wed May 13 04:02:36 2026 by rpki-client