$ rpki-client -vvf rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3232322e3136352e3139322e302f31382d3234203d3e203234323037.roa File: 3232322e3136352e3139322e302f31382d3234203d3e203234323037.roa (raw, json) Hash identifier: XrQbHF8ES5i2bpLQRbTUE7Wl3M4ZUVmyaoRlPolZS6Y= Subject key identifier: 93:68:60:32:35:90:9A:2C:52:65:2D:B1:6C:45:99:8E:44:17:BB:BF Certificate issuer: /CN=D67DDCB46CF40B52641F71BF7756DFA29F4159A2 Certificate serial: 395C6F72DB2D743750EFB6405E93A8397A7A22D1 Authority key identifier: D6:7D:DC:B4:6C:F4:0B:52:64:1F:71:BF:77:56:DF:A2:9F:41:59:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3232322e3136352e3139322e302f31382d3234203d3e203234323037.roa Signing time: Sun 03 May 2026 03:19:21 +0000 ROA not before: Sun 03 May 2026 03:14:21 +0000 ROA not after: Sun 02 May 2027 03:19:21 +0000 asID: 24207 IP address blocks: 222.165.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.crl rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:5c:6f:72:db:2d:74:37:50:ef:b6:40:5e:93:a8:39:7a:7a:22:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D67DDCB46CF40B52641F71BF7756DFA29F4159A2 Validity Not Before: May 3 03:14:21 2026 GMT Not After : May 2 03:19:21 2027 GMT Subject: CN=9368603235909A2C52652DB16C45998E4417BBBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:2f:83:1c:0e:f5:3e:18:dd:3b:76:26:62: 82:27:65:63:f2:84:2f:c3:9d:d3:97:6a:79:37:cb: f7:0f:25:26:67:bc:73:56:d3:5b:c3:c4:df:2d:50: ed:ef:4a:3f:7f:70:cd:74:b8:b6:bf:04:5b:c8:2f: 4c:a1:1f:4a:e1:85:87:e4:25:b3:17:98:b6:9a:59: 1b:c3:db:bb:31:78:32:eb:44:d2:93:5f:c9:ae:5b: 72:da:c6:aa:00:b1:d5:ef:94:1d:23:cc:bd:22:e9: 8a:7b:e3:a7:b5:a5:1a:d1:c7:b8:b5:3e:6e:f3:f3: b6:9c:e4:0b:c5:63:98:bb:84:be:e3:ea:5e:d7:f0: b5:85:57:5c:9b:10:ab:7b:c2:67:0a:f2:8a:81:ec: 21:e8:f7:38:ce:65:5d:0f:1e:25:3c:b7:15:4b:91: d0:ee:6c:c2:c0:f9:a8:b1:ff:9b:b0:64:1e:2d:07: d1:1b:bc:fa:6d:35:19:b4:90:fb:47:14:c5:10:8f: 91:35:19:26:18:c4:77:c3:be:5e:c4:c3:21:f5:15: cf:e4:40:74:d4:17:15:e8:55:98:99:94:e9:34:bb: 01:2b:22:d9:ed:9a:ba:df:c0:e8:91:08:5b:ca:38: 3f:bf:97:e1:80:73:f5:79:16:24:48:cd:dc:66:b7: cf:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:68:60:32:35:90:9A:2C:52:65:2D:B1:6C:45:99:8E:44:17:BB:BF X509v3 Authority Key Identifier: keyid:D6:7D:DC:B4:6C:F4:0B:52:64:1F:71:BF:77:56:DF:A2:9F:41:59:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D67DDCB46CF40B52641F71BF7756DFA29F4159A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3232322e3136352e3139322e302f31382d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 222.165.192.0/18 Signature Algorithm: sha256WithRSAEncryption a8:1d:46:5c:10:02:83:2b:53:ed:90:ae:a4:78:62:e4:21:23: d4:bf:65:d7:a6:40:ce:87:d9:c5:48:58:d3:d5:48:f5:2c:47: b7:f0:44:7c:aa:b4:7d:a9:67:95:48:db:2f:37:df:87:17:a7: 32:c0:ec:74:0d:f4:43:f4:cb:6a:74:ce:e2:54:2f:b1:20:23: 97:c3:df:be:a6:24:1c:81:34:bc:51:55:e9:42:5c:cc:14:6b: f2:a7:3f:96:0f:1c:25:73:2d:9a:1f:0c:e6:8c:51:28:e1:46: 96:ba:9b:b1:0a:7c:65:88:b4:3f:5d:64:98:c9:36:3f:eb:65: 57:e7:79:70:30:e8:7a:a6:af:10:d6:e5:a0:4f:64:1c:35:89: 14:c3:b3:fb:99:fe:31:54:37:ea:09:d3:20:c2:21:04:26:f5: 16:c5:88:9d:0a:38:49:3e:bd:28:4c:3c:84:64:7f:f8:4e:a7: a2:5e:da:8d:72:90:9e:c3:f3:e7:02:40:94:85:d3:4f:0a:ed: cb:7b:fd:3a:14:07:1d:37:a0:1e:2f:39:e9:76:42:94:e2:d7: a9:84:ba:ac:47:92:2f:83:c4:11:a6:ea:17:dc:bc:57:1f:21: eb:2f:25:ba:24:12:c5:f5:d1:20:2d:21:cd:58:f0:3f:54:d2: 95:f5:2c:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOVxvctstdDdQ77ZAXpOoOXp6ItEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY3RERDQjQ2Q0Y0MEI1MjY0MUY3MUJGNzc1NkRGQTI5 RjQxNTlBMjAeFw0yNjA1MDMwMzE0MjFaFw0yNzA1MDIwMzE5MjFaMDMxMTAvBgNV BAMTKDkzNjg2MDMyMzU5MDlBMkM1MjY1MkRCMTZDNDU5OThFNDQxN0JCQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31S+DHA71PhjdO3YmYoInZWPy hC/DndOXank3y/cPJSZnvHNW01vDxN8tUO3vSj9/cM10uLa/BFvIL0yhH0rhhYfk JbMXmLaaWRvD27sxeDLrRNKTX8muW3LaxqoAsdXvlB0jzL0i6Yp746e1pRrRx7i1 Pm7z87ac5AvFY5i7hL7j6l7X8LWFV1ybEKt7wmcK8oqB7CHo9zjOZV0PHiU8txVL kdDubMLA+aix/5uwZB4tB9EbvPptNRm0kPtHFMUQj5E1GSYYxHfDvl7EwyH1Fc/k QHTUFxXoVZiZlOk0uwErItntmrrfwOiRCFvKOD+/l+GAc/V5FiRIzdxmt8/nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk2hgMjWQmixSZS2xbEWZjkQXu78wHwYDVR0j BBgwFoAU1n3ctGz0C1JkH3G/d1bfop9BWaIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmM3ZTgwODEtNjNhZi00OWU3LTk2NDYtNzZjMjVhNWU5N2NhLzAvRDY3RERDQjQ2 Q0Y0MEI1MjY0MUY3MUJGNzc1NkRGQTI5RjQxNTlBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENjdERENCNDZDRjQwQjUyNjQxRjcxQkY3NzU2REZBMjlGNDE1 OUEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzIzMjJlMzEzNjM1MmUzMTM5MzIyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG3qXAMA0GCSqG SIb3DQEBCwUAA4IBAQCoHUZcEAKDK1PtkK6keGLkISPUv2XXpkDOh9nFSFjT1Uj1 LEe38ER8qrR9qWeVSNsvN9+HF6cywOx0DfRD9MtqdM7iVC+xICOXw9++piQcgTS8 UVXpQlzMFGvypz+WDxwlcy2aHwzmjFEo4UaWupuxCnxliLQ/XWSYyTY/62VX53lw MOh6pq8Q1uWgT2QcNYkUw7P7mf4xVDfqCdMgwiEEJvUWxYidCjhJPr0oTDyEZH/4 TqeiXtqNcpCew/PnAkCUhdNPCu3Le/06FAcdN6AeLznpdkKU4tephLqsR5Ivg8QR puoX3LxXHyHrLyW6JBLF9dEgLSHNWPA/VNKV9Syz -----END CERTIFICATE-----Generated at Wed May 13 05:48:15 2026 by rpki-client