$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa File: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (raw, json) Hash identifier: 8ZVpWuFxO9temB8Ho9FZTNXvwZzEzY2CqMkIIHYcFZs= Subject key identifier: 89:DA:CE:6E:AF:9F:3C:B3:33:13:B2:63:86:5A:2E:D6:40:1F:42:A6 Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 7B06E46ABEA89FECC01EF180E3316C9EFA62E1D5 Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa Signing time: Sun 03 May 2026 02:16:25 +0000 ROA not before: Sun 03 May 2026 02:11:25 +0000 ROA not after: Sun 02 May 2027 02:16:25 +0000 asID: 9422 IP address blocks: 202.154.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:06:e4:6a:be:a8:9f:ec:c0:1e:f1:80:e3:31:6c:9e:fa:62:e1:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:25 2026 GMT Not After : May 2 02:16:25 2027 GMT Subject: CN=89DACE6EAF9F3CB33313B263865A2ED6401F42A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d7:21:54:92:ad:e9:52:fc:ff:ac:89:02:8e: a6:7c:fa:bd:8b:1d:33:70:bc:86:20:c2:94:29:f9: 80:ae:a8:14:8a:d8:61:8d:da:26:f7:80:db:5f:a5: 50:12:9a:f4:d2:1c:2a:51:16:9c:e5:b3:37:0e:0f: 72:92:11:c8:2b:e3:55:90:16:13:7d:10:a7:a9:92: 2f:d0:d5:74:d4:1c:f5:b8:a7:99:11:f0:35:cd:c5: 0f:e7:39:8e:11:cf:22:2b:79:ef:c8:fb:f2:d7:13: d4:79:ee:62:ad:5e:fd:da:3d:8c:82:31:55:85:03: 34:62:e8:54:1f:fc:6b:14:5d:55:37:80:6d:d2:2e: 3f:9c:af:aa:b4:01:cd:71:1f:a3:38:85:3e:39:8b: ac:0d:07:01:9f:d6:33:c2:ff:a1:0a:36:07:17:75: 66:6d:3f:98:38:1a:94:e4:d1:80:7e:b1:4d:0d:a0: 83:4a:33:d9:c7:51:80:71:59:a4:15:06:ec:6a:07: 65:d7:8e:0d:a8:70:4c:d0:be:50:91:7a:5e:eb:d4: 0e:68:ec:27:4c:23:2d:ab:8d:90:56:37:56:f8:e0: 30:64:ac:70:a7:5a:48:0f:d4:55:db:27:be:bf:09: 29:ff:aa:0e:c2:6b:cc:2b:70:f1:cc:5c:5c:b2:ba: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DA:CE:6E:AF:9F:3C:B3:33:13:B2:63:86:5A:2E:D6:40:1F:42:A6 X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.184.0/21 Signature Algorithm: sha256WithRSAEncryption 00:64:05:3d:4b:47:af:e6:a5:b0:5e:ab:ab:9a:67:98:84:ad: 54:40:fd:dc:15:96:4c:36:20:1d:5e:e9:e0:7a:44:99:ec:32: 48:06:66:0c:e5:a6:5e:87:a5:15:54:a4:41:ce:bf:59:08:09: 83:b4:b5:2d:f4:81:25:93:dc:10:20:ec:63:b4:5f:5f:d3:93: fe:5a:96:26:e1:1f:bc:0c:75:ef:5d:2f:b6:9e:a3:25:66:9c: 82:0c:a5:dc:99:d4:c9:0e:10:c5:b3:e7:a9:77:d6:b9:ad:d5: 75:36:d4:59:d4:0c:92:59:d8:a7:ee:dd:b9:b8:c1:8c:5f:8b: f3:4d:5c:e4:9b:54:e9:3a:00:7c:a1:5b:1b:ba:8c:8f:8e:27: 33:4d:b4:45:69:08:a0:3b:26:fe:f9:11:1a:d9:b9:c8:e7:75: 6d:ed:ad:6b:1a:63:fd:e9:7e:8e:ef:aa:3f:9e:ee:97:71:3c: 9d:b8:12:51:86:92:81:93:e9:11:da:e0:a0:1c:12:d1:6b:51: 2a:ac:2c:ae:7e:8b:94:e3:26:5c:59:0e:2b:4d:97:81:4f:b4: 47:dd:98:81:62:37:fb:c0:b8:34:e8:79:03:fb:d2:93:86:21: 41:d6:52:bc:11:9b:8d:57:b0:91:cb:f0:89:3c:45:70:a5:a5: 19:58:c8:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUewbkar6on+zAHvGA4zFsnvpi4dUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjVaFw0yNzA1MDIwMjE2MjVaMDMxMTAvBgNV BAMTKDg5REFDRTZFQUY5RjNDQjMzMzEzQjI2Mzg2NUEyRUQ2NDAxRjQyQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt1yFUkq3pUvz/rIkCjqZ8+r2L HTNwvIYgwpQp+YCuqBSK2GGN2ib3gNtfpVASmvTSHCpRFpzlszcOD3KSEcgr41WQ FhN9EKepki/Q1XTUHPW4p5kR8DXNxQ/nOY4RzyIree/I+/LXE9R57mKtXv3aPYyC MVWFAzRi6FQf/GsUXVU3gG3SLj+cr6q0Ac1xH6M4hT45i6wNBwGf1jPC/6EKNgcX dWZtP5g4GpTk0YB+sU0NoINKM9nHUYBxWaQVBuxqB2XXjg2ocEzQvlCRel7r1A5o 7CdMIy2rjZBWN1b44DBkrHCnWkgP1FXbJ76/CSn/qg7Ca8wrcPHMXFyyutMhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUidrObq+fPLMzE7Jjhlou1kAfQqYwHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzEzNTM0MmUzMTM4MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8qauDANBgkqhkiG 9w0BAQsFAAOCAQEAAGQFPUtHr+alsF6rq5pnmIStVED93BWWTDYgHV7p4HpEmewy SAZmDOWmXoelFVSkQc6/WQgJg7S1LfSBJZPcECDsY7RfX9OT/lqWJuEfvAx1710v tp6jJWacggyl3JnUyQ4QxbPnqXfWua3VdTbUWdQMklnYp+7dubjBjF+L801c5JtU 6ToAfKFbG7qMj44nM020RWkIoDsm/vkRGtm5yOd1be2taxpj/el+ju+qP57ul3E8 nbgSUYaSgZPpEdrgoBwS0WtRKqwsrn6LlOMmXFkOK02XgU+0R92YgWI3+8C4NOh5 A/vSk4YhQdZSvBGbjVewkcvwiTxFcKWlGVjIjg== -----END CERTIFICATE-----Generated at Mon May 4 20:06:28 2026 by rpki-client