$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: qj+PgbKGRDTBdMNd7g4IwbGe6WwM94IFp98yB/XhtwU= Subject key identifier: BC:C5:CA:01:56:4D:8A:D1:2E:8C:A1:DB:3F:04:22:B2:1F:DD:2B:B3 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 4DD7DEB63269B5D76F7CB8A8BA86A109EC8B3B28 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:36 +0000 ROA not before: Sun 03 May 2026 03:03:36 +0000 ROA not after: Sun 02 May 2027 03:08:36 +0000 asID: 24525 IP address blocks: 203.153.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d7:de:b6:32:69:b5:d7:6f:7c:b8:a8:ba:86:a1:09:ec:8b:3b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:36 2026 GMT Not After : May 2 03:08:36 2027 GMT Subject: CN=BCC5CA01564D8AD12E8CA1DB3F0422B21FDD2BB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:6c:aa:a8:00:b6:57:85:02:51:7d:73:bf: a4:8d:ea:45:95:fa:c6:67:e0:a8:7b:40:02:b9:78: 60:9b:e1:73:c6:39:f6:8f:52:86:1f:c5:cb:84:e3: af:6a:6c:14:ca:0f:d8:79:e3:2a:fa:eb:b3:b2:a5: e5:8e:e4:3e:d1:2b:23:e0:64:a1:ed:25:55:fa:ad: 6b:0e:da:fc:0c:e2:68:d2:48:f4:6c:d0:b5:e7:3b: f4:20:aa:6b:a2:09:ec:29:2e:7b:6d:12:d7:49:c0: bf:54:a8:9c:80:2d:d7:25:27:23:21:77:59:58:74: 6f:c3:ed:4c:fc:9f:ee:2b:20:a8:4a:b3:ed:95:7a: 8a:ba:02:fd:04:c9:4d:c3:66:4e:a7:75:d9:04:38: 50:d2:a8:b2:97:12:47:16:2d:ae:5f:ee:1d:a5:8c: fd:9b:3d:5c:b2:29:9c:8f:6c:c5:aa:41:44:86:da: 53:0e:42:78:13:9b:25:c5:47:d2:02:26:e2:e5:83: 1e:fa:da:30:eb:c0:ff:e5:21:37:39:95:02:73:05: 7b:d3:1a:d4:38:a2:3c:ee:3b:26:04:d7:67:a7:6a: 85:f2:a6:30:09:07:fe:27:44:63:87:e4:1c:71:1e: 88:3e:85:5f:0d:a5:e5:59:dd:a6:d5:5f:cf:b2:33: 20:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C5:CA:01:56:4D:8A:D1:2E:8C:A1:DB:3F:04:22:B2:1F:DD:2B:B3 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/24 Signature Algorithm: sha256WithRSAEncryption 79:b6:eb:04:ae:09:a0:cd:2c:42:54:ce:4b:77:15:62:45:f2: 72:8b:07:f9:f7:81:d7:24:18:6c:60:4e:67:b0:18:9d:31:fd: 4d:cb:ba:ee:fe:3b:8b:39:a5:2a:ea:16:5a:e9:7c:33:44:6b: a6:16:39:42:e7:30:db:64:d1:c0:64:34:24:36:63:83:07:c6: 03:bf:a6:39:47:99:c9:21:ed:f9:c3:7f:85:21:91:e1:22:58: 68:c2:85:26:b6:23:7f:e6:13:77:07:ac:8c:6e:d3:94:31:f7: 55:12:4b:db:39:28:30:b9:06:a8:ab:1e:77:a0:80:3c:c4:7e: f3:bd:ed:85:f8:08:87:24:98:7e:69:cf:af:67:4c:23:0b:f4: e4:7d:7f:64:44:67:98:61:cc:25:02:c9:9b:72:0b:76:e6:5e: 77:42:47:e2:fe:6b:33:4d:b0:39:e0:4a:a8:d2:5b:3d:3f:31: c7:ff:e7:9a:a3:11:e0:d7:12:3f:57:c9:d3:b5:01:28:ef:04: 59:2a:eb:6a:c6:08:f5:a1:75:10:c9:e4:de:ad:c8:bf:de:34: b7:a5:22:8b:1f:38:58:2c:55:ea:ff:01:f5:5d:18:aa:a8:0d: e7:cc:b9:d6:99:c0:37:5f:b5:dd:72:bf:47:73:8a:87:96:77: 43:8e:98:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTdfetjJptddvfLiouoahCeyLOygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzMzZaFw0yNzA1MDIwMzA4MzZaMDMxMTAvBgNV BAMTKEJDQzVDQTAxNTY0RDhBRDEyRThDQTFEQjNGMDQyMkIyMUZERDJCQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfWGyqqAC2V4UCUX1zv6SN6kWV +sZn4Kh7QAK5eGCb4XPGOfaPUoYfxcuE469qbBTKD9h54yr667OypeWO5D7RKyPg ZKHtJVX6rWsO2vwM4mjSSPRs0LXnO/QgqmuiCewpLnttEtdJwL9UqJyALdclJyMh d1lYdG/D7Uz8n+4rIKhKs+2Veoq6Av0EyU3DZk6nddkEOFDSqLKXEkcWLa5f7h2l jP2bPVyyKZyPbMWqQUSG2lMOQngTmyXFR9ICJuLlgx762jDrwP/lITc5lQJzBXvT GtQ4ojzuOyYE12enaoXypjAJB/4nRGOH5BxxHog+hV8NpeVZ3abVX8+yMyD7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvMXKAVZNitEujKHbPwQish/dK7MwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAebbrBK4JoM0sQlTOS3cVYkXycosH+feB1yQYbGBOZ7AYnTH9 Tcu67v47izmlKuoWWul8M0RrphY5Qucw22TRwGQ0JDZjgwfGA7+mOUeZySHt+cN/ hSGR4SJYaMKFJrYjf+YTdwesjG7TlDH3VRJL2zkoMLkGqKsed6CAPMR+873thfgI hySYfmnPr2dMIwv05H1/ZERnmGHMJQLJm3ILduZed0JH4v5rM02wOeBKqNJbPT8x x//nmqMR4NcSP1fJ07UBKO8EWSrrasYI9aF1EMnk3q3Iv940t6Uiix84WCxV6v8B 9V0YqqgN58y51pnAN1+13XK/R3OKh5Z3Q46Yfg== -----END CERTIFICATE-----Generated at Wed May 13 05:38:13 2026 by rpki-client