$ rpki-client -vvf rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36352e302f32342d3234203d3e203435333233.roa File: 3230322e34332e36352e302f32342d3234203d3e203435333233.roa (raw, json) Hash identifier: c6hdy6h3i1f1rLa2ErTUO1eTi9ZbUz781ZUqD68CELk= Subject key identifier: 96:AB:71:A4:3B:C9:A9:BF:0F:90:A2:77:E3:C6:19:78:2F:82:7B:45 Certificate issuer: /CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Certificate serial: 016F00AED06E189FBFB011962EF309248FA12197 Authority key identifier: 17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36352e302f32342d3234203d3e203435333233.roa Signing time: Sun 03 May 2026 03:11:27 +0000 ROA not before: Sun 03 May 2026 03:06:27 +0000 ROA not after: Sun 02 May 2027 03:11:27 +0000 asID: 45323 IP address blocks: 202.43.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:6f:00:ae:d0:6e:18:9f:bf:b0:11:96:2e:f3:09:24:8f:a1:21:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024 Validity Not Before: May 3 03:06:27 2026 GMT Not After : May 2 03:11:27 2027 GMT Subject: CN=96AB71A43BC9A9BF0F90A277E3C619782F827B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ee:67:4a:c6:d2:1c:a3:86:d2:c9:5b:0e:c1: 36:44:96:17:3c:c2:d3:54:18:2b:f3:90:e7:86:d3: b6:b3:39:47:ba:c3:70:3a:74:c8:65:08:38:37:f3: 2f:78:82:ca:1c:a7:b5:f0:52:e0:d2:70:23:53:56: e3:d4:d2:24:9b:7e:65:64:48:e4:56:ab:9a:8d:b9: 17:5f:49:9c:13:82:19:3f:45:0f:de:1f:65:49:ca: 59:97:88:52:b8:cc:40:d4:03:67:b6:92:a0:f6:38: 33:47:e8:e5:fb:0c:96:c7:10:ae:6f:95:d4:38:1d: 39:b6:3c:0c:ba:5a:56:d2:10:ef:6b:55:c7:4d:96: 59:af:0d:0b:83:b7:37:4a:91:42:51:56:42:d2:d9: 8f:68:d2:c0:53:09:80:5f:df:17:04:45:2e:8c:6e: 9f:b7:98:72:11:b4:ad:d2:09:83:d1:63:8f:df:7d: 1c:30:05:5f:0d:41:6b:87:78:00:c3:69:5e:08:b2: 76:56:a7:cc:eb:de:d4:34:23:c0:17:23:9a:cf:27: 06:06:df:1f:f9:20:42:8c:49:96:1c:91:2f:8a:6f: 89:cb:70:69:92:24:ce:11:f7:e0:5b:88:73:48:56: af:f0:19:b1:db:8f:14:03:c9:a5:ad:54:4e:c4:50: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AB:71:A4:3B:C9:A9:BF:0F:90:A2:77:E3:C6:19:78:2F:82:7B:45 X509v3 Authority Key Identifier: keyid:17:5F:4B:94:FE:60:8C:AF:3A:DE:2F:B6:C5:E7:54:53:AB:2D:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/175F4B94FE608CAF3ADE2FB6C5E75453AB2DD024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/3230322e34332e36352e302f32342d3234203d3e203435333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.65.0/24 Signature Algorithm: sha256WithRSAEncryption 13:35:a9:bc:cd:c7:20:9a:6d:9c:50:4c:cb:da:7a:25:be:8d: 7c:7e:52:11:7b:01:74:00:76:70:53:6f:8a:25:56:8d:01:0e: d4:e4:86:e6:b6:08:de:f6:5d:ee:f2:f4:e4:1e:17:97:62:a7: 86:c1:6b:64:af:a2:bb:dc:44:27:51:36:d7:60:ed:27:ad:bf: c6:93:dc:ab:1d:af:f5:f4:b8:4d:b7:0f:4a:fe:79:04:e9:a5: be:11:19:2c:71:60:c0:b5:b0:0c:ed:17:64:43:11:c8:b1:30: 63:e3:0c:39:42:24:07:a4:d0:43:84:98:53:44:f2:87:b0:48: f9:50:da:0d:cc:00:fd:11:ce:89:b0:1f:14:31:2d:b2:83:a5: f8:b8:16:b9:4b:73:4b:25:5a:13:f8:ab:96:44:38:73:22:e4: a7:38:81:46:9a:ad:41:5b:94:6e:ba:b3:a0:5b:f7:8e:36:28: 36:63:2d:54:7f:89:d8:aa:22:93:fc:59:d6:ce:c4:90:e9:6d: e1:d5:b1:c2:ed:bd:9b:01:a6:8c:9d:56:b4:9d:6c:3f:58:34: 8e:67:12:bb:94:de:ad:56:ab:d3:24:f2:60:f7:a6:de:de:ed: aa:7d:0f:8f:14:28:94:d5:ad:bf:73:39:bf:72:47:b6:84:c6: 6c:08:01:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAW8ArtBuGJ+/sBGWLvMJJI+hIZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc1RjRCOTRGRTYwOENBRjNBREUyRkI2QzVFNzU0NTNB QjJERDAyNDAeFw0yNjA1MDMwMzA2MjdaFw0yNzA1MDIwMzExMjdaMDMxMTAvBgNV BAMTKDk2QUI3MUE0M0JDOUE5QkYwRjkwQTI3N0UzQzYxOTc4MkY4MjdCNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa7mdKxtIco4bSyVsOwTZElhc8 wtNUGCvzkOeG07azOUe6w3A6dMhlCDg38y94gsocp7XwUuDScCNTVuPU0iSbfmVk SORWq5qNuRdfSZwTghk/RQ/eH2VJylmXiFK4zEDUA2e2kqD2ODNH6OX7DJbHEK5v ldQ4HTm2PAy6WlbSEO9rVcdNllmvDQuDtzdKkUJRVkLS2Y9o0sBTCYBf3xcERS6M bp+3mHIRtK3SCYPRY4/ffRwwBV8NQWuHeADDaV4IsnZWp8zr3tQ0I8AXI5rPJwYG 3x/5IEKMSZYckS+Kb4nLcGmSJM4R9+BbiHNIVq/wGbHbjxQDyaWtVE7EUJfZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlqtxpDvJqb8PkKJ348YZeC+Ce0UwHwYDVR0j BBgwFoAUF19LlP5gjK863i+2xedUU6st0CQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGNmMDBmOGEtNWNiZC00NjBmLWJmYzYtYmQ4OTQyYjY1MzdjLzAvMTc1RjRCOTRG RTYwOENBRjNBREUyRkI2QzVFNzU0NTNBQjJERDAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNzVGNEI5NEZFNjA4Q0FGM0FERTJGQjZDNUU3NTQ1M0FCMkRE MDI0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjZjAwZjhhLTVjYmQtNDYwZi1i ZmM2LWJkODk0MmI2NTM3Yy8wLzMyMzAzMjJlMzQzMzJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKK0EwDQYJKoZIhvcN AQELBQADggEBABM1qbzNxyCabZxQTMvaeiW+jXx+UhF7AXQAdnBTb4olVo0BDtTk hua2CN72Xe7y9OQeF5dip4bBa2SvorvcRCdRNtdg7Setv8aT3Ksdr/X0uE23D0r+ eQTppb4RGSxxYMC1sAztF2RDEcixMGPjDDlCJAek0EOEmFNE8oewSPlQ2g3MAP0R zomwHxQxLbKDpfi4FrlLc0slWhP4q5ZEOHMi5Kc4gUaarUFblG66s6Bb9442KDZj LVR/idiqIpP8WdbOxJDpbeHVscLtvZsBpoydVrSdbD9YNI5nEruU3q1Wq9Mk8mD3 pt7e7ap9D48UKJTVrb9zOb9yR7aExmwIAVs= -----END CERTIFICATE-----Generated at Wed May 13 00:34:28 2026 by rpki-client