$ rpki-client -vvf rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa File: 3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa (raw, json) Hash identifier: Lw1DMZ5kJp5ICeFivj5ZZ60njB9OoQuGFsGq8+auMdU= Subject key identifier: 39:F8:F7:78:FA:A6:BC:48:01:A5:96:40:89:52:8E:80:6A:CD:51:25 Certificate issuer: /CN=D67DDCB46CF40B52641F71BF7756DFA29F4159A2 Certificate serial: 5B91959917750C7220282407212FA234167784ED Authority key identifier: D6:7D:DC:B4:6C:F4:0B:52:64:1F:71:BF:77:56:DF:A2:9F:41:59:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa Signing time: Sun 03 May 2026 03:19:20 +0000 ROA not before: Sun 03 May 2026 03:14:20 +0000 ROA not after: Sun 02 May 2027 03:19:20 +0000 asID: 24207 IP address blocks: 203.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.crl rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:91:95:99:17:75:0c:72:20:28:24:07:21:2f:a2:34:16:77:84:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D67DDCB46CF40B52641F71BF7756DFA29F4159A2 Validity Not Before: May 3 03:14:20 2026 GMT Not After : May 2 03:19:20 2027 GMT Subject: CN=39F8F778FAA6BC4801A5964089528E806ACD5125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:56:04:02:85:b6:52:63:39:55:dd:dc:ec:03: ab:cf:3c:01:4a:5d:ae:e2:ef:fa:d4:21:bd:43:27: e4:a4:2a:a0:b5:87:e8:06:44:15:fb:1e:30:35:5a: 3c:70:66:da:5c:32:2e:fa:9c:50:77:b3:ea:a2:c6: 4c:dc:24:bd:8b:02:94:3d:37:3c:14:64:be:66:b9: 3f:ee:0f:a6:38:6d:c7:3e:55:6a:2b:c0:9d:91:b7: ba:6e:fd:f8:12:ad:df:91:df:c4:d1:b6:1d:62:93: 2d:d6:19:6a:62:28:94:b8:16:68:53:fc:e8:fa:55: 58:1b:f3:c2:6b:3a:a2:ce:45:70:a3:89:d5:e4:97: a8:fc:72:87:dd:75:5f:0a:48:08:87:61:c7:25:31: 67:62:ae:a8:73:94:5f:ab:a0:52:78:d8:2f:f6:dc: 5d:4f:a4:e5:6f:43:72:7a:79:b8:32:d6:67:d9:dc: 36:ff:3f:9b:8f:af:f4:4a:b9:52:d0:49:47:8e:92: a1:a4:c3:8a:ce:80:90:08:73:34:e6:6e:dd:ad:3d: 56:ae:fe:3d:15:75:4a:89:a0:50:d4:b4:66:be:70: 8a:91:d0:68:c3:6c:0e:e5:e5:00:9d:a7:36:93:2f: b6:6c:d5:bb:07:eb:df:cf:0e:c1:8c:da:cb:b1:5d: 4d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F8:F7:78:FA:A6:BC:48:01:A5:96:40:89:52:8E:80:6A:CD:51:25 X509v3 Authority Key Identifier: keyid:D6:7D:DC:B4:6C:F4:0B:52:64:1F:71:BF:77:56:DF:A2:9F:41:59:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:1f:53:e6:f2:ba:38:b8:53:e9:14:b8:c2:18:6e:f3:11:96: 29:89:eb:47:44:1a:f7:53:bb:ec:b6:20:28:7d:fb:de:4b:7b: 6d:da:d1:6e:a9:03:34:02:1a:6d:0e:bb:fb:a2:00:da:5d:7f: c4:3f:1d:2c:53:72:09:57:56:81:83:70:8b:e9:62:be:35:66: 00:c6:2e:c0:2b:2a:b9:50:ea:ed:e5:b4:2e:10:51:22:a6:68: 72:73:75:76:bb:60:e5:ac:67:7b:81:7f:3d:50:76:ca:8a:16: a7:29:ea:cd:e9:16:a4:21:4c:08:77:70:e1:2e:d9:c6:72:ab: 70:22:35:a9:0e:70:85:19:50:16:00:37:15:bf:9d:87:5d:f0: af:90:a6:83:bb:2c:ef:ab:cf:5e:22:e5:f1:4e:2d:12:ff:15: 4d:b6:31:80:77:74:d9:ed:e3:33:77:0c:b3:78:fa:b7:0f:2e: e0:31:4d:15:fb:f9:00:0c:eb:68:62:f6:4e:3d:5f:e8:02:5e: 46:d6:c1:3c:4d:a7:05:29:dd:60:08:da:20:cb:6b:f0:a6:d6: 6a:9c:36:ef:cf:45:0e:93:2e:97:57:84:38:10:18:31:b3:41: d3:2f:60:06:3d:8f:51:62:02:31:7d:7a:44:58:d5:ca:94:68: ea:9d:ab:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW5GVmRd1DHIgKCQHIS+iNBZ3hO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY3RERDQjQ2Q0Y0MEI1MjY0MUY3MUJGNzc1NkRGQTI5 RjQxNTlBMjAeFw0yNjA1MDMwMzE0MjBaFw0yNzA1MDIwMzE5MjBaMDMxMTAvBgNV BAMTKDM5RjhGNzc4RkFBNkJDNDgwMUE1OTY0MDg5NTI4RTgwNkFDRDUxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoVgQChbZSYzlV3dzsA6vPPAFK Xa7i7/rUIb1DJ+SkKqC1h+gGRBX7HjA1WjxwZtpcMi76nFB3s+qixkzcJL2LApQ9 NzwUZL5muT/uD6Y4bcc+VWorwJ2Rt7pu/fgSrd+R38TRth1iky3WGWpiKJS4FmhT /Oj6VVgb88JrOqLORXCjidXkl6j8cofddV8KSAiHYcclMWdirqhzlF+roFJ42C/2 3F1PpOVvQ3J6ebgy1mfZ3Db/P5uPr/RKuVLQSUeOkqGkw4rOgJAIczTmbt2tPVau /j0VdUqJoFDUtGa+cIqR0GjDbA7l5QCdpzaTL7Zs1bsH69/PDsGM2suxXU3ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOfj3ePqmvEgBpZZAiVKOgGrNUSUwHwYDVR0j BBgwFoAU1n3ctGz0C1JkH3G/d1bfop9BWaIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmM3ZTgwODEtNjNhZi00OWU3LTk2NDYtNzZjMjVhNWU5N2NhLzAvRDY3RERDQjQ2 Q0Y0MEI1MjY0MUY3MUJGNzc1NkRGQTI5RjQxNTlBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENjdERENCNDZDRjQwQjUyNjQxRjcxQkY3NzU2REZBMjlGNDE1 OUEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzIzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy5lwMA0GCSqG SIb3DQEBCwUAA4IBAQAcH1Pm8ro4uFPpFLjCGG7zEZYpietHRBr3U7vstiAoffve S3tt2tFuqQM0AhptDrv7ogDaXX/EPx0sU3IJV1aBg3CL6WK+NWYAxi7AKyq5UOrt 5bQuEFEipmhyc3V2u2DlrGd7gX89UHbKihanKerN6RakIUwId3DhLtnGcqtwIjWp DnCFGVAWADcVv52HXfCvkKaDuyzvq89eIuXxTi0S/xVNtjGAd3TZ7eMzdwyzePq3 Dy7gMU0V+/kADOtoYvZOPV/oAl5G1sE8TacFKd1gCNogy2vwptZqnDbvz0UOky6X V4Q4EBgxs0HTL2AGPY9RYgIxfXpEWNXKlGjqnaul -----END CERTIFICATE-----Generated at Wed May 13 05:14:40 2026 by rpki-client