$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e33312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: lYdthc2e5HM7DIqFDEqXEht/hH8PLxzK+pYszoa20E4= Subject key identifier: E0:68:F2:3A:E5:E2:DF:40:F3:61:CE:19:62:58:14:CE:B4:D4:2B:8F Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 7F569EA7F93D082617028E1AF68D89CC508A8989 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:36 +0000 ROA not before: Sun 03 May 2026 03:03:36 +0000 ROA not after: Sun 02 May 2027 03:08:36 +0000 asID: 24525 IP address blocks: 203.153.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:56:9e:a7:f9:3d:08:26:17:02:8e:1a:f6:8d:89:cc:50:8a:89:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:36 2026 GMT Not After : May 2 03:08:36 2027 GMT Subject: CN=E068F23AE5E2DF40F361CE19625814CEB4D42B8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0e:ba:36:d6:61:96:37:2b:99:41:4c:04:4b: bd:24:3c:40:d6:a8:3d:64:4e:f1:e6:d8:92:d1:e7: 2a:74:5a:c7:45:e7:65:88:bf:77:31:22:4c:0d:b7: 47:2d:e0:f9:03:9c:6a:e7:65:fc:2a:bf:63:09:f5: cd:9c:ed:a5:83:f8:6f:40:c1:fa:92:08:de:6f:17: 0e:c6:fa:c3:c9:c6:61:cc:fd:5a:ac:fd:08:ef:88: f0:b4:8c:ac:4c:4d:1c:21:2c:92:00:bc:cc:15:b4: 1f:95:0f:c7:d1:4f:bf:16:74:8f:b0:87:3a:76:00: da:e4:c9:77:63:ac:cd:11:e5:b4:ee:10:1c:eb:36: cb:0d:22:02:9f:89:83:73:c3:a2:f9:d1:8c:c6:a8: e2:ed:8c:fc:14:88:5b:1b:52:5c:34:ca:3d:c2:44: 3f:d9:97:df:6a:f4:36:b7:a3:d4:55:89:39:78:ea: 1a:71:87:94:49:f0:f2:9d:e2:5f:5c:47:b8:e4:34: 81:87:c7:b7:df:99:03:16:ea:9a:96:3e:0c:d1:73: 0e:31:bd:ab:b0:7b:cf:31:99:1e:a4:ff:ae:49:84: b3:05:31:57:a8:3b:7a:f2:f1:11:3d:1b:60:fc:62: 51:c4:de:09:0a:c6:18:ad:00:68:4a:88:4b:55:e2: 4f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:68:F2:3A:E5:E2:DF:40:F3:61:CE:19:62:58:14:CE:B4:D4:2B:8F X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.31.0/24 Signature Algorithm: sha256WithRSAEncryption b6:18:10:0d:59:39:32:0f:29:89:c3:01:08:a5:d7:b6:f7:09: 68:8d:94:90:b7:93:2e:85:56:48:19:1a:92:8c:61:58:84:74: 89:87:da:bb:42:ab:75:11:c3:20:29:3f:bd:81:35:96:c6:93: 1a:b0:b6:64:f8:29:8b:af:74:d9:f2:f9:c2:ac:93:ad:9f:de: cc:90:b8:58:c3:0a:44:ad:2a:9c:69:5d:44:56:41:aa:70:6b: 0b:8e:14:51:d3:cb:2c:98:c4:f0:06:44:8e:ff:d5:77:42:8b: 71:c1:7b:c1:29:8d:a7:e7:12:f4:4b:6b:92:a3:dc:9d:a9:2d: ee:9e:14:23:de:12:d5:ae:9a:92:66:e2:c5:88:fb:13:6a:11: 15:36:eb:56:25:e3:5e:5b:74:b3:1c:f6:6b:00:2f:71:92:d8: c6:42:f0:03:69:06:06:7b:be:8c:be:25:9b:5a:15:c4:ac:a4: c9:36:0c:93:3b:50:9e:96:41:c4:81:8b:8f:6b:68:f0:d8:39: 80:9f:37:38:9a:cb:56:57:96:9d:0c:57:dd:1c:8d:ed:b5:60: 01:de:4a:e4:3f:b6:aa:56:52:dd:f3:b3:27:48:37:19:7e:97: b4:06:e8:02:ac:db:d1:c9:3f:f1:19:99:45:f1:28:b7:09:ff: f5:62:fd:77 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf1aep/k9CCYXAo4a9o2JzFCKiYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzMzZaFw0yNzA1MDIwMzA4MzZaMDMxMTAvBgNV BAMTKEUwNjhGMjNBRTVFMkRGNDBGMzYxQ0UxOTYyNTgxNENFQjRENDJCOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZDro21mGWNyuZQUwES70kPEDW qD1kTvHm2JLR5yp0WsdF52WIv3cxIkwNt0ct4PkDnGrnZfwqv2MJ9c2c7aWD+G9A wfqSCN5vFw7G+sPJxmHM/Vqs/QjviPC0jKxMTRwhLJIAvMwVtB+VD8fRT78WdI+w hzp2ANrkyXdjrM0R5bTuEBzrNssNIgKfiYNzw6L50YzGqOLtjPwUiFsbUlw0yj3C RD/Zl99q9Da3o9RViTl46hpxh5RJ8PKd4l9cR7jkNIGHx7ffmQMW6pqWPgzRcw4x vauwe88xmR6k/65JhLMFMVeoO3ry8RE9G2D8YlHE3gkKxhitAGhKiEtV4k+nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4GjyOuXi30DzYc4ZYlgUzrTUK48wHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHzANBgkqhkiG 9w0BAQsFAAOCAQEAthgQDVk5Mg8picMBCKXXtvcJaI2UkLeTLoVWSBkakoxhWIR0 iYfau0KrdRHDICk/vYE1lsaTGrC2ZPgpi6902fL5wqyTrZ/ezJC4WMMKRK0qnGld RFZBqnBrC44UUdPLLJjE8AZEjv/Vd0KLccF7wSmNp+cS9EtrkqPcnakt7p4UI94S 1a6akmbixYj7E2oRFTbrViXjXlt0sxz2awAvcZLYxkLwA2kGBnu+jL4lm1oVxKyk yTYMkztQnpZBxIGLj2to8Ng5gJ83OJrLVleWnQxX3RyN7bVgAd5K5D+2qlZS3fOz J0g3GX6XtAboAqzb0ck/8RmZRfEotwn/9WL9dw== -----END CERTIFICATE-----Generated at Wed May 13 05:57:19 2026 by rpki-client