$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: IRxjdiZ2WL2MGXmHXp5uHI3mDETCG4SFLwcS1xz+z38= Subject key identifier: 2D:19:A5:AE:45:8B:6D:2B:08:51:BF:3B:A9:16:08:7E:76:8B:AB:96 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 5A4C66261E24851A6676B07963838AB1311D225A Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:55 +0000 ROA not before: Sun 03 May 2026 03:03:55 +0000 ROA not after: Sun 02 May 2027 03:08:55 +0000 asID: 24525 IP address blocks: 203.153.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4c:66:26:1e:24:85:1a:66:76:b0:79:63:83:8a:b1:31:1d:22:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:55 2026 GMT Not After : May 2 03:08:55 2027 GMT Subject: CN=2D19A5AE458B6D2B0851BF3BA916087E768BAB96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d5:0a:98:53:a6:96:9b:5b:13:22:4e:d3:94: 50:d5:f4:f7:bd:f6:40:3e:7b:7a:14:e2:8c:51:aa: fb:2c:0c:b0:c4:50:c6:ca:f9:d3:68:a0:ab:f3:90: 6e:a7:0d:9c:29:ed:3e:85:55:1f:81:6c:42:74:dc: 25:28:f5:98:12:1e:3d:c2:f9:49:f9:d1:4b:bd:ba: 28:d4:36:68:41:ab:dc:75:27:82:86:7b:f2:7e:8f: de:8e:94:04:39:1d:77:8c:e6:2e:ca:89:ef:71:96: 04:f5:f3:58:66:1f:29:6b:80:f7:b5:00:68:04:96: c5:17:60:60:4f:a5:c8:dd:25:94:d2:6e:9c:fd:f8: f6:ff:a8:39:2e:31:a3:3c:58:dc:14:7b:5f:df:ca: 02:e9:90:8e:7f:d9:56:32:93:d3:aa:ef:6f:59:05: a4:ce:09:30:e7:f8:79:ed:d1:1f:b2:2d:7d:f4:21: 13:cb:3e:db:c6:fb:3a:f2:6d:45:4c:b2:3b:06:21: a8:1d:3b:dd:05:96:e6:af:df:80:a7:0e:b0:2d:da: f9:fb:48:8d:14:c4:00:a8:a4:1f:4d:d9:1a:63:87: af:d6:b4:f9:9a:79:e0:53:7b:68:24:45:14:c6:e2: c3:64:0c:67:99:a2:26:59:82:d6:94:c2:ad:da:93: 81:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:19:A5:AE:45:8B:6D:2B:08:51:BF:3B:A9:16:08:7E:76:8B:AB:96 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.25.0/24 Signature Algorithm: sha256WithRSAEncryption 81:8f:52:43:75:b2:b5:49:d7:50:e9:8c:c5:de:d6:77:de:02: 32:fb:e2:ba:ce:f5:37:07:c0:22:33:be:6e:86:52:26:fc:29: 92:2d:6a:0d:54:83:67:9a:fa:8f:96:9d:51:9f:e5:58:1a:f3: 8b:d0:be:0e:f5:a7:db:28:40:5c:be:f1:9e:36:cd:91:fb:6a: f8:87:ec:dc:f7:0e:c8:75:87:8d:43:10:d4:57:1c:18:cb:91: 36:e5:24:41:c6:4c:d5:23:54:18:2d:f2:a8:26:7f:5a:e3:7a: 20:12:cb:08:08:67:19:39:7b:d3:98:fa:23:82:cd:35:aa:7a: e8:26:05:ed:a8:70:c8:59:f6:b6:4e:ba:42:24:66:1e:9c:bd: 8f:73:cc:9a:9b:ae:da:a2:d1:1c:37:92:6d:70:0f:8a:63:37: 25:63:5e:68:76:82:32:26:33:89:23:38:b3:c6:25:e8:df:4f: 45:c3:50:03:8f:14:e0:89:b8:07:3a:c1:4b:f0:92:f9:0f:27: ba:5f:df:17:89:bb:3d:59:c3:b2:1b:95:66:be:a5:f5:d2:27: a4:79:28:a6:96:46:a0:3e:38:d4:29:ae:8f:4f:b7:84:35:f9: eb:4b:65:33:67:e4:65:ee:f7:71:be:ab:b6:bf:26:bf:a3:de: ca:80:04:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWkxmJh4khRpmdrB5Y4OKsTEdIlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTVaFw0yNzA1MDIwMzA4NTVaMDMxMTAvBgNV BAMTKDJEMTlBNUFFNDU4QjZEMkIwODUxQkYzQkE5MTYwODdFNzY4QkFCOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV1QqYU6aWm1sTIk7TlFDV9Pe9 9kA+e3oU4oxRqvssDLDEUMbK+dNooKvzkG6nDZwp7T6FVR+BbEJ03CUo9ZgSHj3C +Un50Uu9uijUNmhBq9x1J4KGe/J+j96OlAQ5HXeM5i7Kie9xlgT181hmHylrgPe1 AGgElsUXYGBPpcjdJZTSbpz9+Pb/qDkuMaM8WNwUe1/fygLpkI5/2VYyk9Oq729Z BaTOCTDn+Hnt0R+yLX30IRPLPtvG+zrybUVMsjsGIagdO90Fluav34CnDrAt2vn7 SI0UxACopB9N2Rpjh6/WtPmaeeBTe2gkRRTG4sNkDGeZoiZZgtaUwq3ak4ExAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULRmlrkWLbSsIUb87qRYIfnaLq5YwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGTANBgkqhkiG 9w0BAQsFAAOCAQEAgY9SQ3WytUnXUOmMxd7Wd94CMvvius71NwfAIjO+boZSJvwp ki1qDVSDZ5r6j5adUZ/lWBrzi9C+DvWn2yhAXL7xnjbNkftq+Ifs3PcOyHWHjUMQ 1FccGMuRNuUkQcZM1SNUGC3yqCZ/WuN6IBLLCAhnGTl705j6I4LNNap66CYF7ahw yFn2tk66QiRmHpy9j3PMmpuu2qLRHDeSbXAPimM3JWNeaHaCMiYziSM4s8Yl6N9P RcNQA48U4Im4BzrBS/CS+Q8nul/fF4m7PVnDshuVZr6l9dInpHkoppZGoD441Cmu j0+3hDX560tlM2fkZe73cb6rtr8mv6PeyoAEPw== -----END CERTIFICATE-----Generated at Wed May 13 06:19:29 2026 by rpki-client