$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa File: 3230322e38372e3234382e302f32312d3234203d3e203234323031.roa (raw, json) Hash identifier: VxgiDdOeTdoccsaOMR0a2e8pGcsjFYPyxSS+V6ZCUrY= Subject key identifier: 76:66:1D:3F:C8:F5:56:CF:E1:A5:9C:B9:68:A1:3D:EC:41:EF:B9:D1 Certificate issuer: /CN=2116A6F5F0642D2E606A3ACFF738E48F344FB967 Certificate serial: 51173EAB46FB54202D70BFC37B3E375236DF0506 Authority key identifier: 21:16:A6:F5:F0:64:2D:2E:60:6A:3A:CF:F7:38:E4:8F:34:4F:B9:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa Signing time: Sun 03 May 2026 03:16:28 +0000 ROA not before: Sun 03 May 2026 03:11:28 +0000 ROA not after: Sun 02 May 2027 03:16:28 +0000 asID: 24201 IP address blocks: 202.87.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.crl rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:17:3e:ab:46:fb:54:20:2d:70:bf:c3:7b:3e:37:52:36:df:05:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2116A6F5F0642D2E606A3ACFF738E48F344FB967 Validity Not Before: May 3 03:11:28 2026 GMT Not After : May 2 03:16:28 2027 GMT Subject: CN=76661D3FC8F556CFE1A59CB968A13DEC41EFB9D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:7c:fa:58:71:e6:c7:25:f0:f9:e2:20:c3: 41:a9:2a:5b:d5:e6:c6:d8:b7:25:46:09:b2:3a:4c: 42:24:ce:7d:c1:f4:63:93:b5:d0:1d:61:e5:12:48: bf:55:ee:38:4a:90:0d:cd:f9:66:47:91:91:b0:9e: f0:26:6f:ca:a3:85:17:d9:4d:78:01:c6:f7:22:cd: 88:6b:bb:1f:d0:d1:88:d4:4f:85:a6:76:4a:e2:d9: 17:eb:c0:95:b3:9d:f6:83:cd:fd:8a:df:a2:36:46: af:27:bf:49:84:1f:eb:fd:bf:80:d6:12:e6:64:f5: 67:b7:ef:82:66:30:88:cc:f6:70:f1:95:32:d2:f4: c9:3c:87:2d:77:79:c6:39:a5:e6:07:4a:7c:71:2b: a2:71:85:37:52:b6:f4:1e:40:0d:85:be:11:3f:a3: 49:0a:5e:c5:76:68:78:89:4d:74:2f:d0:5b:fd:b9: 94:b9:fc:53:19:b9:ef:41:cc:3c:e3:6a:0c:7c:23: 72:23:e6:bc:89:e5:93:d6:19:a5:89:0a:d5:80:2c: 30:49:ad:8a:78:4e:4a:38:9a:23:41:18:68:bc:62: 9b:5b:b8:78:88:ee:ad:1f:fa:86:4d:64:40:48:bb: 0e:63:b2:10:3c:5a:20:56:84:d4:a5:9f:8d:2e:f4: 97:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:66:1D:3F:C8:F5:56:CF:E1:A5:9C:B9:68:A1:3D:EC:41:EF:B9:D1 X509v3 Authority Key Identifier: keyid:21:16:A6:F5:F0:64:2D:2E:60:6A:3A:CF:F7:38:E4:8F:34:4F:B9:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.248.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:9b:fa:93:48:e5:ee:d1:67:86:7c:41:ab:f6:e4:58:31:a7: ee:8d:fe:03:3b:e6:d5:8f:95:d2:28:47:80:d7:d2:44:9c:d6: 21:14:02:b5:8b:5c:f4:79:dd:59:b8:37:37:27:6d:0b:aa:44: 28:04:eb:c7:64:25:b4:f5:41:1c:07:e4:80:ee:9e:c7:80:eb: 82:7e:2f:dd:ec:98:40:e7:02:90:e1:90:36:f5:de:49:c9:26: 83:5e:4d:84:d8:f2:e1:10:72:24:9c:c2:09:a7:91:6d:43:be: 81:84:87:05:8b:9f:31:ab:66:fc:a6:83:6f:9c:0c:76:db:e4: 94:70:ac:bf:b9:a9:be:4d:00:94:56:58:76:31:c0:54:8c:02: 35:d4:53:83:38:91:cb:ea:25:a9:24:ab:48:f1:a2:91:de:7b: 42:79:15:bc:48:43:7e:a6:53:a1:41:7a:b6:6e:a2:3c:79:ee: 8e:dd:27:1f:ef:46:87:36:25:8c:ea:6e:00:1f:37:eb:fc:bf: c3:fb:1c:6d:f6:f2:64:b1:99:ac:59:c8:16:44:2b:80:a5:5c: 92:9b:a1:ac:64:d1:78:5a:d2:be:2f:b7:3c:d2:46:b9:38:0a: 4c:38:be:f7:3b:8d:32:7d:95:0d:97:61:16:be:3d:ac:5b:92: 8f:ea:ab:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUURc+q0b7VCAtcL/Dez43UjbfBQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjExNkE2RjVGMDY0MkQyRTYwNkEzQUNGRjczOEU0OEYz NDRGQjk2NzAeFw0yNjA1MDMwMzExMjhaFw0yNzA1MDIwMzE2MjhaMDMxMTAvBgNV BAMTKDc2NjYxRDNGQzhGNTU2Q0ZFMUE1OUNCOTY4QTEzREVDNDFFRkI5RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC52Xz6WHHmxyXw+eIgw0GpKlvV 5sbYtyVGCbI6TEIkzn3B9GOTtdAdYeUSSL9V7jhKkA3N+WZHkZGwnvAmb8qjhRfZ TXgBxvcizYhrux/Q0YjUT4Wmdkri2RfrwJWznfaDzf2K36I2Rq8nv0mEH+v9v4DW EuZk9We374JmMIjM9nDxlTLS9Mk8hy13ecY5peYHSnxxK6JxhTdStvQeQA2FvhE/ o0kKXsV2aHiJTXQv0Fv9uZS5/FMZue9BzDzjagx8I3Ij5ryJ5ZPWGaWJCtWALDBJ rYp4Tko4miNBGGi8YptbuHiI7q0f+oZNZEBIuw5jshA8WiBWhNSln40u9JcfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdmYdP8j1Vs/hpZy5aKE97EHvudEwHwYDVR0j BBgwFoAUIRam9fBkLS5gajrP9zjkjzRPuWcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjBhOTI5YzYtMWUyNS00OTRhLWIwZjktNTVmYzRmYzk0ZmJjLzAvMjExNkE2RjVG MDY0MkQyRTYwNkEzQUNGRjczOEU0OEYzNDRGQjk2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMTE2QTZGNUYwNjQyRDJFNjA2QTNBQ0ZGNzM4RTQ4RjM0NEZC OTY3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YwYTkyOWM2LTFlMjUtNDk0YS1i MGY5LTU1ZmM0ZmM5NGZiYy8wLzMyMzAzMjJlMzgzNzJlMzIzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pX+DANBgkqhkiG 9w0BAQsFAAOCAQEAX5v6k0jl7tFnhnxBq/bkWDGn7o3+Azvm1Y+V0ihHgNfSRJzW IRQCtYtc9HndWbg3NydtC6pEKATrx2QltPVBHAfkgO6ex4Drgn4v3eyYQOcCkOGQ NvXeSckmg15NhNjy4RByJJzCCaeRbUO+gYSHBYufMatm/KaDb5wMdtvklHCsv7mp vk0AlFZYdjHAVIwCNdRTgziRy+olqSSrSPGikd57QnkVvEhDfqZToUF6tm6iPHnu jt0nH+9GhzYljOpuAB836/y/w/scbfbyZLGZrFnIFkQrgKVckpuhrGTReFrSvi+3 PNJGuTgKTDi+9zuNMn2VDZdhFr49rFuSj+qrTA== -----END CERTIFICATE-----Generated at Wed May 13 06:19:15 2026 by rpki-client