$ rpki-client -vvf rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3230322e34362e3135362e302f32322d3234203d3e203633343930.roa File: 3230322e34362e3135362e302f32322d3234203d3e203633343930.roa (raw, json) Hash identifier: nyADTvjCRlTj9e8fj9mC1v9a/bZDx0y80bWakXf5ms4= Subject key identifier: 5A:5C:6D:B5:05:F9:52:9A:FC:32:80:71:1B:10:51:CA:43:C1:A8:46 Certificate issuer: /CN=CA6A68BCE209C28338FC3C0AA659AE591EF6D325 Certificate serial: 7A5D2840BE2D8D11816B851BE5A005D41A00A826 Authority key identifier: CA:6A:68:BC:E2:09:C2:83:38:FC:3C:0A:A6:59:AE:59:1E:F6:D3:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3230322e34362e3135362e302f32322d3234203d3e203633343930.roa Signing time: Sun 03 May 2026 03:06:37 +0000 ROA not before: Sun 03 May 2026 03:01:37 +0000 ROA not after: Sun 02 May 2027 03:06:37 +0000 asID: 63490 IP address blocks: 202.46.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.crl rsync://rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5d:28:40:be:2d:8d:11:81:6b:85:1b:e5:a0:05:d4:1a:00:a8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA6A68BCE209C28338FC3C0AA659AE591EF6D325 Validity Not Before: May 3 03:01:37 2026 GMT Not After : May 2 03:06:37 2027 GMT Subject: CN=5A5C6DB505F9529AFC3280711B1051CA43C1A846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:eb:21:f1:10:19:34:73:b8:26:47:2f:ff: 33:4d:99:c5:d5:65:b3:e2:7f:6e:37:93:f8:d0:50: 1b:54:66:96:3b:e7:9f:b7:57:25:cf:a4:9c:2a:fe: 3b:08:54:7a:0e:d5:c0:92:65:35:11:31:82:7d:2b: ce:f1:d6:1a:72:d1:d6:c5:ca:d6:b3:23:ad:c9:fe: 1b:da:73:e4:ed:90:8c:80:b5:6b:c1:e6:38:ab:8c: 5c:2a:d1:06:5a:64:a6:7d:09:04:a5:5c:03:16:03: f0:64:8d:88:fc:56:e2:cf:86:fd:6d:9e:33:e0:88: bc:70:d9:db:92:cc:ea:60:06:cd:4c:9c:d4:ab:dd: 03:e4:69:ed:2f:03:bb:32:d4:39:2a:86:fc:0b:43: 48:c9:4b:90:96:de:8e:94:2e:1c:ec:9e:ee:48:41: 96:e9:e6:9e:d1:71:80:45:c0:a8:7d:6e:83:27:22: b9:6c:22:d2:54:94:eb:56:cb:e9:a1:48:d4:c3:30: fc:d6:db:b4:95:56:a6:a5:aa:c6:6e:92:0f:c2:d3: 0c:91:eb:25:8a:59:04:56:80:9c:9d:30:c6:a7:99: 53:f3:21:bc:a9:d1:62:30:7d:51:92:0a:2f:7a:e8: 59:94:6f:f3:e4:a9:a7:4c:90:40:d9:45:9a:66:2b: db:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5C:6D:B5:05:F9:52:9A:FC:32:80:71:1B:10:51:CA:43:C1:A8:46 X509v3 Authority Key Identifier: keyid:CA:6A:68:BC:E2:09:C2:83:38:FC:3C:0A:A6:59:AE:59:1E:F6:D3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA6A68BCE209C28338FC3C0AA659AE591EF6D325.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3230322e34362e3135362e302f32322d3234203d3e203633343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.46.156.0/22 Signature Algorithm: sha256WithRSAEncryption 16:3b:3b:7f:62:35:d0:2d:21:16:84:0b:0d:82:aa:8a:96:6c: ed:35:06:39:95:3a:46:7b:a4:10:0b:b8:01:f9:96:a1:57:0b: 78:f5:5b:37:19:ce:0c:d2:c5:19:0a:67:5f:2a:3c:32:9e:3e: 71:fd:d9:d4:b7:07:82:bc:6e:a6:8c:39:5d:82:b7:43:20:2a: e6:44:03:43:1e:55:24:50:6b:fe:1c:63:c8:c7:7e:bf:2c:f0: f2:12:36:94:3f:b4:a3:72:2e:ae:73:1c:5d:b0:b9:38:19:a1: b8:6a:9e:cc:c2:6d:ab:ea:b6:15:28:5d:c7:a2:2d:69:54:0c: 7b:37:5e:e9:36:43:4a:ff:03:3e:41:ba:aa:ff:37:52:ef:10: ec:af:d8:60:10:05:14:04:e9:c4:67:22:dd:e1:7b:96:78:d7: 1e:56:4c:d7:22:c4:60:25:04:8a:26:bc:9c:82:50:13:18:d6: 70:f4:d1:bf:dc:3e:b0:3b:15:48:42:68:9e:31:5f:09:24:e1: 12:8e:e4:fc:c7:07:f4:94:f6:8b:52:bf:5a:4b:48:de:bf:ec: f1:2c:77:9a:91:11:28:a8:e5:c1:34:5a:a2:61:8c:1c:37:33: b6:71:80:68:88:37:3c:c1:f4:a7:0d:2d:8c:5d:60:58:e8:57: 08:c6:0a:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUel0oQL4tjRGBa4Ub5aAF1BoAqCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2QTY4QkNFMjA5QzI4MzM4RkMzQzBBQTY1OUFFNTkx RUY2RDMyNTAeFw0yNjA1MDMwMzAxMzdaFw0yNzA1MDIwMzA2MzdaMDMxMTAvBgNV BAMTKDVBNUM2REI1MDVGOTUyOUFGQzMyODA3MTFCMTA1MUNBNDNDMUE4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCn+sh8RAZNHO4Jkcv/zNNmcXV ZbPif243k/jQUBtUZpY755+3VyXPpJwq/jsIVHoO1cCSZTURMYJ9K87x1hpy0dbF ytazI63J/hvac+TtkIyAtWvB5jirjFwq0QZaZKZ9CQSlXAMWA/BkjYj8VuLPhv1t njPgiLxw2duSzOpgBs1MnNSr3QPkae0vA7sy1DkqhvwLQ0jJS5CW3o6ULhzsnu5I QZbp5p7RcYBFwKh9boMnIrlsItJUlOtWy+mhSNTDMPzW27SVVqalqsZukg/C0wyR 6yWKWQRWgJydMManmVPzIbyp0WIwfVGSCi966FmUb/PkqadMkEDZRZpmK9s3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWlxttQX5Upr8MoBxGxBRykPBqEYwHwYDVR0j BBgwFoAUympovOIJwoM4/DwKplmuWR720yUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzllMzYwNTYtZjA5Ny00OWE3LWJkMjMtM2Q3MTFlODlmMzA1LzAvQ0E2QTY4QkNF MjA5QzI4MzM4RkMzQzBBQTY1OUFFNTkxRUY2RDMyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTZBNjhCQ0UyMDlDMjgzMzhGQzNDMEFBNjU5QUU1OTFFRjZE MzI1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5ZTM2MDU2LWYwOTctNDlhNy1i ZDIzLTNkNzExZTg5ZjMwNS8wLzMyMzAzMjJlMzQzNjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsounDANBgkqhkiG 9w0BAQsFAAOCAQEAFjs7f2I10C0hFoQLDYKqipZs7TUGOZU6RnukEAu4AfmWoVcL ePVbNxnODNLFGQpnXyo8Mp4+cf3Z1LcHgrxupow5XYK3QyAq5kQDQx5VJFBr/hxj yMd+vyzw8hI2lD+0o3IurnMcXbC5OBmhuGqezMJtq+q2FShdx6ItaVQMezde6TZD Sv8DPkG6qv83Uu8Q7K/YYBAFFATpxGci3eF7lnjXHlZM1yLEYCUEiia8nIJQExjW cPTRv9w+sDsVSEJonjFfCSThEo7k/McH9JT2i1K/WktI3r/s8Sx3mpERKKjlwTRa omGMHDcztnGAaIg3PMH0pw0tjF1gWOhXCMYKUg== -----END CERTIFICATE-----Generated at Wed May 13 13:25:02 2026 by rpki-client