$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: KurRhK76/gVwdWa/6cBzf+xOYbSREKYzrvsHjaFdFFg= Subject key identifier: 59:AD:2C:EE:FE:24:3B:AD:07:36:58:88:57:F1:E8:D1:AD:D3:77:26 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 671AB15B3704C92C61E67A7701DC54EAEA8AD6B2 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:52 +0000 ROA not before: Sun 03 May 2026 03:03:52 +0000 ROA not after: Sun 02 May 2027 03:08:52 +0000 asID: 24525 IP address blocks: 203.153.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:1a:b1:5b:37:04:c9:2c:61:e6:7a:77:01:dc:54:ea:ea:8a:d6:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:52 2026 GMT Not After : May 2 03:08:52 2027 GMT Subject: CN=59AD2CEEFE243BAD0736588857F1E8D1ADD37726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5b:85:26:11:5c:de:9f:ab:61:82:6d:c3:43: 90:64:3d:6c:1e:6f:24:aa:9f:13:b1:76:13:6e:82: dd:5f:f4:86:08:f5:41:a8:7e:64:fa:55:1d:a1:ee: 78:c1:2b:54:7a:64:a3:38:ac:20:7e:7e:c6:c0:f3: 98:b0:8b:a6:ad:74:f2:6f:e9:3a:70:4c:7a:cb:ae: 57:17:60:12:15:57:a5:11:72:41:39:32:40:97:2b: b4:b1:50:58:0b:65:46:95:cd:c7:a4:d0:cc:3b:10: 40:e0:82:35:ca:0c:07:79:34:80:ef:74:d5:4f:3d: b2:84:8d:26:c6:8f:c0:57:f7:d0:9e:dd:48:91:c5: ed:e0:e7:f2:5f:de:9a:d0:f3:ab:68:74:c8:79:39: 1d:13:f7:82:1f:52:02:9f:4c:e5:44:62:69:17:29: 52:dc:dc:fb:ce:82:7c:7a:6f:92:c8:03:23:5c:70: 8e:26:2e:0d:1d:c8:14:be:08:a2:21:32:26:1d:f5: e9:8e:d3:2c:1d:12:fc:8a:37:8f:0a:38:a5:89:01: 00:11:0b:68:b3:94:26:d6:a5:fe:c5:22:b7:fb:8a: bb:6e:d9:5b:72:ba:b3:56:1e:c8:84:40:0a:3d:37: 24:b5:90:79:f3:04:2e:7e:5d:f7:a4:66:51:7c:26: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AD:2C:EE:FE:24:3B:AD:07:36:58:88:57:F1:E8:D1:AD:D3:77:26 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/22 Signature Algorithm: sha256WithRSAEncryption a7:83:41:a5:e6:00:05:96:19:85:b9:32:70:1b:90:77:e7:76: 44:ca:35:ee:e4:bb:85:43:0c:34:f1:6b:02:1c:bf:ec:7e:d8: 8d:20:e7:37:64:03:57:49:e9:35:df:f9:31:da:1c:ae:ce:e2: a5:3e:f2:d4:9e:3c:99:18:6f:24:c8:f2:38:9e:f2:17:9d:34: 0e:71:cd:a4:5d:bf:9d:5c:16:de:a7:d2:93:71:8e:c0:3e:70: 88:cd:82:ad:fb:59:1d:24:d5:bb:2f:88:d0:4c:f6:1d:cf:eb: c8:f4:ee:be:c4:5a:91:75:c2:3a:7e:6c:77:e0:96:a4:48:c9: 84:7a:f6:89:67:f7:0f:b5:46:7f:37:be:44:e4:fb:cb:da:1a: 5b:70:ef:0d:28:42:94:fe:d4:e7:6d:56:56:0d:20:af:2a:f1: 58:37:a9:52:91:b1:d5:dc:c2:f1:ca:6b:6e:62:2a:1a:95:95: 17:20:7a:f0:a6:e5:49:d5:e5:54:8f:ee:cd:8c:67:6f:5d:84: e4:6d:bb:a7:30:52:f2:60:e2:4c:42:2d:50:ce:e4:3c:64:1b: fa:ec:84:03:bd:ce:bc:37:78:e6:04:8e:e5:fd:41:e8:01:2a: 1a:fa:82:99:cb:d0:41:28:fd:a2:f9:90:e2:32:37:8d:84:d4: f5:07:33:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZxqxWzcEySxh5np3AdxU6uqK1rIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTJaFw0yNzA1MDIwMzA4NTJaMDMxMTAvBgNV BAMTKDU5QUQyQ0VFRkUyNDNCQUQwNzM2NTg4ODU3RjFFOEQxQUREMzc3MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTW4UmEVzen6thgm3DQ5BkPWwe bySqnxOxdhNugt1f9IYI9UGofmT6VR2h7njBK1R6ZKM4rCB+fsbA85iwi6atdPJv 6TpwTHrLrlcXYBIVV6URckE5MkCXK7SxUFgLZUaVzcek0Mw7EEDggjXKDAd5NIDv dNVPPbKEjSbGj8BX99Ce3UiRxe3g5/Jf3prQ86todMh5OR0T94IfUgKfTOVEYmkX KVLc3PvOgnx6b5LIAyNccI4mLg0dyBS+CKIhMiYd9emO0ywdEvyKN48KOKWJAQAR C2izlCbWpf7FIrf7irtu2VtyurNWHsiEQAo9NyS1kHnzBC5+XfekZlF8JipHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWa0s7v4kO60HNliIV/Ho0a3TdyYwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAp4NBpeYABZYZhbkycBuQd+d2RMo17uS7hUMMNPFrAhy/7H7Y jSDnN2QDV0npNd/5Mdocrs7ipT7y1J48mRhvJMjyOJ7yF500DnHNpF2/nVwW3qfS k3GOwD5wiM2CrftZHSTVuy+I0Ez2Hc/ryPTuvsRakXXCOn5sd+CWpEjJhHr2iWf3 D7VGfze+ROT7y9oaW3DvDShClP7U521WVg0gryrxWDepUpGx1dzC8cprbmIqGpWV FyB68KblSdXlVI/uzYxnb12E5G27pzBS8mDiTEItUM7kPGQb+uyEA73OvDd45gSO 5f1B6AEqGvqCmcvQQSj9ovmQ4jI3jYTU9Qcz8A== -----END CERTIFICATE-----Generated at Wed May 13 04:54:15 2026 by rpki-client