$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa File: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: RJW8cxc5knQFd6ZsJTxIJMJPLrpi1nPKGRB3o32Vvrg= Subject key identifier: 5F:95:CA:4D:3E:9A:13:DB:81:EA:EC:1B:C2:38:BC:22:6F:45:23:2C Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 0E6AF2FF3455623009F8708BC305F29F7DBABF25 Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa Signing time: Sun 03 May 2026 02:16:25 +0000 ROA not before: Sun 03 May 2026 02:11:25 +0000 ROA not after: Sun 02 May 2027 02:16:25 +0000 asID: 9422 IP address blocks: 202.43.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6a:f2:ff:34:55:62:30:09:f8:70:8b:c3:05:f2:9f:7d:ba:bf:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:25 2026 GMT Not After : May 2 02:16:25 2027 GMT Subject: CN=5F95CA4D3E9A13DB81EAEC1BC238BC226F45232C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:51:3f:ee:54:fc:4a:c0:17:73:4f:01:2d:d7: bc:56:bd:fd:88:f7:73:e7:99:4e:ec:93:d6:97:d2: b7:08:81:63:ea:29:cc:b9:cc:95:10:f6:b2:d5:5a: 56:c9:67:80:e3:01:e4:c5:d5:34:02:a5:8b:f6:38: 3a:6f:d2:0f:8a:50:ad:50:e6:a5:39:83:29:b5:96: eb:ef:aa:79:7a:c3:f2:13:cf:3d:77:b4:d6:88:e1: 9b:ca:6b:04:5e:95:4e:d0:ed:ff:f6:d7:c2:e8:71: 3a:37:39:e2:fb:a4:00:90:34:77:2e:58:1f:73:08: 6d:09:3f:69:63:55:c2:04:41:cc:91:0c:58:39:f7: 24:14:5b:91:9b:76:af:0a:18:b8:4d:2b:82:4f:2a: df:26:bd:55:85:67:63:97:99:93:d9:01:28:ce:b1: e7:13:f8:bb:a9:92:e4:c3:e4:7f:3c:2a:a4:95:f7: d0:8e:78:a2:6c:59:b1:23:22:d0:aa:ca:5b:25:7e: b8:37:a6:1a:47:16:66:fb:21:7f:66:bf:7c:0a:0e: 1f:29:31:99:e1:fb:95:06:e6:1a:49:a4:ae:7b:db: 91:2c:81:cb:73:1d:bb:c2:0e:26:d9:76:3a:87:5b: 0d:15:0f:1d:a8:79:3b:b4:00:87:70:a1:cd:18:53: ef:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:95:CA:4D:3E:9A:13:DB:81:EA:EC:1B:C2:38:BC:22:6F:45:23:2C X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.228.0/22 Signature Algorithm: sha256WithRSAEncryption a5:09:ac:df:3f:d7:a4:2c:07:7a:e0:e8:6f:3e:15:81:79:95: a7:cc:73:d2:ce:6c:72:24:73:b8:a6:76:1c:38:1a:da:28:b4: 5b:59:a3:da:9a:8c:9a:92:16:45:3c:ff:b7:15:3e:af:b8:12: 2a:95:80:32:28:71:e3:1c:ee:28:d6:93:6a:42:35:3e:1a:04: 33:50:5a:fe:fb:de:83:5c:1e:2e:67:e2:00:87:aa:71:70:62: ea:38:47:a7:16:59:df:df:41:c3:7b:ff:18:5d:b1:76:2c:a1: 27:82:94:e3:a3:82:99:4f:f0:fa:0b:7f:dd:d8:32:f6:5f:29: af:71:04:d7:96:c1:e1:54:eb:79:d4:4d:39:f5:eb:1c:91:88: 20:3c:fa:4c:fd:d1:83:d4:34:07:f1:d9:73:b7:37:a0:5b:0e: 71:db:21:5a:b1:12:74:aa:b3:c4:ea:ba:73:b6:15:99:e0:86: 74:0f:10:c7:9a:b8:05:5a:65:fc:ae:8b:d0:6c:0c:33:08:94: 57:59:36:81:a5:da:7d:aa:10:a3:12:29:d8:e9:1e:d2:e5:ee: dd:81:52:14:27:1b:08:e8:5b:e0:0b:6a:90:d2:bd:3e:8e:8b: c3:90:a8:82:07:e7:d7:de:32:cb:40:7a:4f:0c:5c:ef:13:9d: ce:9b:4c:bd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDmry/zRVYjAJ+HCLwwXyn326vyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjVaFw0yNzA1MDIwMjE2MjVaMDMxMTAvBgNV BAMTKDVGOTVDQTREM0U5QTEzREI4MUVBRUMxQkMyMzhCQzIyNkY0NTIzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHUT/uVPxKwBdzTwEt17xWvf2I 93PnmU7sk9aX0rcIgWPqKcy5zJUQ9rLVWlbJZ4DjAeTF1TQCpYv2ODpv0g+KUK1Q 5qU5gym1luvvqnl6w/ITzz13tNaI4ZvKawRelU7Q7f/218LocTo3OeL7pACQNHcu WB9zCG0JP2ljVcIEQcyRDFg59yQUW5Gbdq8KGLhNK4JPKt8mvVWFZ2OXmZPZASjO secT+LupkuTD5H88KqSV99COeKJsWbEjItCqylslfrg3phpHFmb7IX9mv3wKDh8p MZnh+5UG5hpJpK5725EsgctzHbvCDibZdjqHWw0VDx2oeTu0AIdwoc0YU+9lAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUX5XKTT6aE9uB6uwbwji8Im9FIywwHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzQzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKK+QwDQYJKoZIhvcN AQELBQADggEBAKUJrN8/16QsB3rg6G8+FYF5lafMc9LObHIkc7imdhw4GtootFtZ o9qajJqSFkU8/7cVPq+4EiqVgDIoceMc7ijWk2pCNT4aBDNQWv773oNcHi5n4gCH qnFwYuo4R6cWWd/fQcN7/xhdsXYsoSeClOOjgplP8PoLf93YMvZfKa9xBNeWweFU 63nUTTn16xyRiCA8+kz90YPUNAfx2XO3N6BbDnHbIVqxEnSqs8TqunO2FZnghnQP EMeauAVaZfyui9BsDDMIlFdZNoGl2n2qEKMSKdjpHtLl7t2BUhQnGwjoW+ALapDS vT6Oi8OQqIIH59feMstAek8MXO8Tnc6bTL0= -----END CERTIFICATE-----Generated at Mon May 4 20:06:15 2026 by rpki-client