$ rpki-client -vvf rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa File: 3230322e34332e36342e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: kd5X3aWuvmW67I45MCTvzwAMaeTd4OMwLlRd3nUpm7I= Subject key identifier: A6:16:82:6F:C7:D3:96:99:CD:62:CB:12:7E:6B:99:76:7C:90:7D:18 Certificate issuer: /CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Certificate serial: 7956F9AAC7FB424F528336FDAB33C9604C30347F Authority key identifier: 17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa Signing time: Sun 03 May 2026 03:11:28 +0000 ROA not before: Sun 03 May 2026 03:06:28 +0000 ROA not after: Sun 02 May 2027 03:11:28 +0000 asID: 45323 IP address blocks: 202.43.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:56:f9:aa:c7:fb:42:4f:52:83:36:fd:ab:33:c9:60:4c:30:34:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Validity Not Before: May 3 03:06:28 2026 GMT Not After : May 2 03:11:28 2027 GMT Subject: CN=A616826FC7D39699CD62CB127E6B99767C907D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e2:d6:0d:dc:9a:8a:4e:4b:7a:0d:52:9c:6c: 14:0c:6b:0a:2d:7b:7e:14:47:d0:0f:2b:ed:d5:c2: aa:6c:80:23:78:b5:14:c1:68:3e:34:24:49:04:8c: ec:1a:ba:20:e1:87:f8:b4:27:c1:de:60:b4:1e:f8: 7c:15:38:95:92:d3:15:8e:31:ea:ea:f3:f3:0b:80: 38:c1:a4:cb:5c:75:41:54:a6:31:8f:6c:b6:f7:7f: 68:53:1b:41:1c:e7:a0:7a:b1:b6:67:3e:80:0f:7f: d9:dc:69:f0:c6:03:ca:dc:9a:ea:6d:67:42:73:9c: e4:f9:a8:6f:e9:51:df:af:a4:22:75:fa:23:38:4a: 3e:17:f4:90:ea:69:0a:67:c5:97:db:0c:7b:4c:62: 89:79:34:9f:46:46:bd:62:30:b9:68:cb:74:8b:51: 60:ca:c8:61:de:ae:ff:dc:dc:db:2f:fe:0a:c5:35: 30:f6:21:d8:8c:51:1d:7b:bf:0b:34:73:f8:4c:a7: 9e:b8:a2:38:e3:65:24:00:47:74:b0:23:93:1d:91: 08:1c:f4:68:38:a2:e1:ed:c2:36:f0:ea:be:3f:79: d0:e9:e2:04:b9:b1:1b:81:c5:1e:59:50:60:95:06: bc:b3:2c:ff:5a:92:39:a4:4e:0d:0e:2e:df:4f:69: 19:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:16:82:6F:C7:D3:96:99:CD:62:CB:12:7E:6B:99:76:7C:90:7D:18 X509v3 Authority Key Identifier: keyid:17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36342e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.64.0/24 Signature Algorithm: sha256WithRSAEncryption 39:8d:f1:d3:17:58:9f:6a:e0:93:a5:bd:a7:6e:e2:bf:83:55: 9a:4e:ca:26:1e:03:62:b2:57:ee:39:4a:be:8e:98:05:8f:d7: 73:2c:06:3b:d7:4d:c7:8f:98:1a:b7:1f:d6:6e:30:d2:be:9b: 19:23:05:89:27:54:14:f4:60:ee:61:fa:9f:88:88:22:4f:bd: 55:b5:af:c9:6e:41:8a:74:ca:19:26:c8:ee:35:ca:a5:2e:e3: 10:2b:39:29:60:85:44:ae:15:8e:6f:61:c9:ad:2a:36:7f:9d: 64:f9:15:5d:a1:67:01:b3:c1:ae:e7:ef:57:49:8d:65:c8:ff: 4e:40:a5:00:f8:84:87:fc:92:c2:a8:93:ae:e2:e9:ce:ad:de: 38:13:5b:be:dd:16:20:63:55:fa:b1:e0:07:32:14:b5:20:15: b3:2d:2d:3a:7d:ca:80:51:c6:24:82:ad:82:d3:05:c8:6b:12: 41:27:4e:8e:0f:76:e6:08:1b:f5:a2:d5:20:0a:bd:a2:0f:35: 7c:64:7d:aa:41:b0:a1:b3:b7:d6:46:03:7c:26:9f:12:7f:3d: 0f:88:f1:38:80:3d:0c:05:ad:34:5d:a0:51:27:56:c8:4a:56: 6a:ff:4d:d6:a2:40:e7:72:ac:3e:4a:5d:60:72:04:e6:19:b2: 5c:f7:57:b1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeVb5qsf7Qk9Sgzb9qzPJYEwwNH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc1RjRCOTRGRTYwOENBRjNBREUyRkI2QzVFNzU0NTNB QjJERDAyNDAeFw0yNjA1MDMwMzA2MjhaFw0yNzA1MDIwMzExMjhaMDMxMTAvBgNV BAMTKEE2MTY4MjZGQzdEMzk2OTlDRDYyQ0IxMjdFNkI5OTc2N0M5MDdEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm4tYN3JqKTkt6DVKcbBQMawot e34UR9APK+3VwqpsgCN4tRTBaD40JEkEjOwauiDhh/i0J8HeYLQe+HwVOJWS0xWO Merq8/MLgDjBpMtcdUFUpjGPbLb3f2hTG0Ec56B6sbZnPoAPf9ncafDGA8rcmupt Z0JznOT5qG/pUd+vpCJ1+iM4Sj4X9JDqaQpnxZfbDHtMYol5NJ9GRr1iMLloy3SL UWDKyGHerv/c3Nsv/grFNTD2IdiMUR17vws0c/hMp564ojjjZSQAR3SwI5MdkQgc 9Gg4ouHtwjbw6r4/edDp4gS5sRuBxR5ZUGCVBryzLP9akjmkTg0OLt9PaRljAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUphaCb8fTlpnNYssSfmuZdnyQfRgwHwYDVR0j BBgwFoAUF19LlP5gjK863i+2xedUU6st0CQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGNmMDBmOGEtNWNiZC00NjBmLWJmYzYtYmQ4OTQyYjY1MzdjLzAvMTc1RjRCOTRG RTYwOENBRjNBREUyRkI2QzVFNzU0NTNBQjJERDAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNzVGNEI5NEZFNjA4Q0FGM0FERTJGQjZDNUU3NTQ1M0FCMkRE MDI0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzQzMzJlMzYzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0AwDQYJKoZIhvcN AQELBQADggEBADmN8dMXWJ9q4JOlvadu4r+DVZpOyiYeA2KyV+45Sr6OmAWP13Ms BjvXTcePmBq3H9ZuMNK+mxkjBYknVBT0YO5h+p+IiCJPvVW1r8luQYp0yhkmyO41 yqUu4xArOSlghUSuFY5vYcmtKjZ/nWT5FV2hZwGzwa7n71dJjWXI/05ApQD4hIf8 ksKok67i6c6t3jgTW77dFiBjVfqx4AcyFLUgFbMtLTp9yoBRxiSCrYLTBchrEkEn To4PduYIG/Wi1SAKvaIPNXxkfapBsKGzt9ZGA3wmnxJ/PQ+I8TiAPQwFrTRdoFEn VshKVmr/TdaiQOdyrD5KXWByBOYZslz3V7E= -----END CERTIFICATE-----Generated at Wed May 13 00:33:59 2026 by rpki-client