$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: j5BLx6WlCj15S72NoJPLMtGfDUSlbjQauQKo2KLCvtY= Subject key identifier: A7:F3:64:60:86:53:EC:B0:4E:A8:CA:EA:BE:77:B9:75:4E:67:3B:B0 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 0903C55CB0741BCB8605873F73D870F794B0AE26 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:47 +0000 ROA not before: Sun 03 May 2026 03:03:47 +0000 ROA not after: Sun 02 May 2027 03:08:47 +0000 asID: 24525 IP address blocks: 203.153.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:03:c5:5c:b0:74:1b:cb:86:05:87:3f:73:d8:70:f7:94:b0:ae:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:47 2026 GMT Not After : May 2 03:08:47 2027 GMT Subject: CN=A7F364608653ECB04EA8CAEABE77B9754E673BB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1b:12:0b:b7:7f:89:fc:47:46:cd:75:8f:d7: c9:dc:6e:60:50:28:70:a3:c9:fc:5b:16:8a:e8:94: 96:b7:54:e4:39:0a:e5:8e:62:39:5e:e4:5f:d4:96: 10:70:22:0d:0a:d0:c9:83:71:84:9a:da:1d:39:f9: f5:07:2f:ab:d6:de:c7:c3:c1:31:8e:f3:83:f5:e3: 80:a7:64:68:5b:09:ed:39:9b:16:5b:01:d1:65:66: 7f:6b:6e:65:bd:bb:5c:3f:6b:4a:a9:2f:07:36:40: e6:c8:2c:f8:8d:43:68:67:1b:09:1b:d0:0e:d1:79: ca:59:2f:ee:95:c7:cd:de:ad:b3:34:00:66:0c:b6: fd:36:77:f4:4c:1d:b0:ad:eb:d2:c6:3b:fd:27:47: 0b:cf:ad:8e:e0:7b:51:98:41:46:e6:46:ee:e8:d8: 54:1b:be:79:3e:64:df:52:7f:f8:5e:df:45:eb:9f: c5:1f:34:d3:c3:e0:81:7d:97:29:3d:86:76:78:d8: c3:6b:68:2d:c3:12:88:12:94:af:2f:39:c9:cf:9f: a4:05:78:0f:0f:97:20:63:cd:f0:ba:79:d0:e2:66: c5:04:16:76:74:72:f5:df:66:96:7c:79:d2:10:93: 21:d6:11:a9:94:1a:dd:33:05:71:5e:6e:6b:01:f1: eb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F3:64:60:86:53:EC:B0:4E:A8:CA:EA:BE:77:B9:75:4E:67:3B:B0 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/22 Signature Algorithm: sha256WithRSAEncryption 92:41:79:55:c4:82:7f:76:63:c5:92:0c:24:a6:ca:70:50:06: d6:63:5e:97:b9:28:e4:b0:63:6f:ed:93:46:4b:5f:df:76:e5: 1e:1e:67:6e:ab:2a:e1:ac:2b:33:f6:f1:37:1e:41:31:60:27: f3:d2:7f:e6:17:41:a8:17:56:27:ec:65:21:72:c2:d3:d7:1b: d6:f9:d3:a0:58:34:ec:30:01:1a:56:c9:1f:1c:a1:50:b7:0e: 16:e0:23:16:b3:de:7e:8d:fa:25:f4:47:1a:14:14:c2:ab:45: a4:24:32:ec:a9:35:1a:43:1d:c2:7e:1a:68:0e:e0:ae:37:71: 8e:df:fd:33:7b:0e:72:ff:96:f0:73:36:eb:f4:2c:98:df:c9: 45:8e:2d:20:24:01:59:09:0c:c5:9a:6c:f6:98:b9:b4:53:c7: ed:9a:38:a5:61:63:29:a8:64:c1:d1:fc:1b:b2:99:59:bf:68: 12:80:ea:c8:c5:47:a5:3e:36:8d:5b:8d:9f:e1:9f:d0:4f:fa: 29:72:09:f6:0d:83:29:a2:da:4a:b0:d3:9a:63:7e:b3:33:da: 4d:96:07:fc:8a:a5:5d:54:76:38:cf:39:8e:9f:da:38:5e:31: d1:3f:c7:2e:96:f6:1e:ab:66:f2:18:f2:0b:4a:0d:9d:53:c8: b0:89:99:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCQPFXLB0G8uGBYc/c9hw95SwriYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNDdaFw0yNzA1MDIwMzA4NDdaMDMxMTAvBgNV BAMTKEE3RjM2NDYwODY1M0VDQjA0RUE4Q0FFQUJFNzdCOTc1NEU2NzNCQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeGxILt3+J/EdGzXWP18ncbmBQ KHCjyfxbForolJa3VOQ5CuWOYjle5F/UlhBwIg0K0MmDcYSa2h05+fUHL6vW3sfD wTGO84P144CnZGhbCe05mxZbAdFlZn9rbmW9u1w/a0qpLwc2QObILPiNQ2hnGwkb 0A7RecpZL+6Vx83erbM0AGYMtv02d/RMHbCt69LGO/0nRwvPrY7ge1GYQUbmRu7o 2FQbvnk+ZN9Sf/he30Xrn8UfNNPD4IF9lyk9hnZ42MNraC3DEogSlK8vOcnPn6QF eA8PlyBjzfC6edDiZsUEFnZ0cvXfZpZ8edIQkyHWEamUGt0zBXFebmsB8etzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUp/NkYIZT7LBOqMrqvne5dU5nO7AwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZGDANBgkqhkiG 9w0BAQsFAAOCAQEAkkF5VcSCf3ZjxZIMJKbKcFAG1mNel7ko5LBjb+2TRktf33bl Hh5nbqsq4awrM/bxNx5BMWAn89J/5hdBqBdWJ+xlIXLC09cb1vnToFg07DABGlbJ HxyhULcOFuAjFrPefo36JfRHGhQUwqtFpCQy7Kk1GkMdwn4aaA7grjdxjt/9M3sO cv+W8HM26/QsmN/JRY4tICQBWQkMxZps9pi5tFPH7Zo4pWFjKahkwdH8G7KZWb9o EoDqyMVHpT42jVuNn+Gf0E/6KXIJ9g2DKaLaSrDTmmN+szPaTZYH/IqlXVR2OM85 jp/aOF4x0T/HLpb2Hqtm8hjyC0oNnVPIsImZCg== -----END CERTIFICATE-----Generated at Wed May 13 01:35:54 2026 by rpki-client