$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: VyZCGD4/ia6B2aQpXKsGZ7eKNs5gWuCe7O3yjsO9xpA= Subject key identifier: 65:24:2F:9A:6B:B7:7F:92:8F:CB:84:77:27:6E:98:05:DE:09:8C:17 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 4907F4990153D9DB19E8844953D7BFC8F685A889 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:43 +0000 ROA not before: Sun 03 May 2026 02:33:43 +0000 ROA not after: Sun 02 May 2027 02:38:43 +0000 asID: 17727 IP address blocks: 202.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:07:f4:99:01:53:d9:db:19:e8:84:49:53:d7:bf:c8:f6:85:a8:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:43 2026 GMT Not After : May 2 02:38:43 2027 GMT Subject: CN=65242F9A6BB77F928FCB8477276E9805DE098C17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7d:8e:57:ca:2a:92:42:70:b2:0d:55:e6:28: 4f:82:2d:8f:35:73:1e:db:31:13:dc:55:d9:91:ee: 20:cc:77:0d:0c:71:9c:11:d3:05:bc:b6:19:6e:61: 4f:7f:49:c2:4c:86:2a:5f:d6:49:d0:6b:3b:14:f7: 6e:1a:d2:af:ad:76:21:2d:42:9b:7e:ab:75:a6:35: 14:1d:51:94:29:bb:bd:be:f8:06:00:82:c7:2a:ed: d9:7f:50:26:06:6b:66:84:78:a5:df:c8:b1:cf:d2: 0a:f5:e3:97:26:94:1b:3e:e5:02:2f:4e:d9:f1:e3: 68:98:d6:44:89:c1:ec:50:78:23:3b:ce:00:e7:d5: 98:18:5f:c4:78:77:df:4e:bc:2d:8e:08:28:7e:68: 05:e4:84:3b:2d:c9:90:e2:67:af:23:9b:27:9b:83: 84:e1:48:eb:7d:40:c4:b3:cd:54:3c:d4:7b:dd:96: 33:8e:35:2c:21:34:b6:0a:cf:37:a3:e5:d7:5d:b9: 2d:e2:a8:38:74:08:49:87:4c:cc:b7:d0:89:17:ed: be:f1:91:74:93:9c:ef:9d:4b:77:f2:95:51:f0:b8: 00:3c:97:f2:0c:9d:8b:11:77:98:d9:04:65:71:e3: 09:44:74:fb:72:df:7a:c7:46:0c:71:b5:e4:73:8c: 3b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:24:2F:9A:6B:B7:7F:92:8F:CB:84:77:27:6E:98:05:DE:09:8C:17 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption 83:b9:87:9d:85:0f:92:55:57:e8:4b:74:20:44:04:91:c1:26: 48:2c:45:e0:10:06:5d:1b:d6:ba:4e:21:9d:18:2b:5d:3a:da: c9:ca:fe:fa:a2:2e:4a:5f:9f:e1:b6:88:3a:7e:8b:bc:35:02: 6f:17:94:c4:78:1c:af:71:17:e7:f3:80:79:94:2e:f3:4e:dd: 77:53:a9:16:80:8a:d7:e1:36:24:c5:48:4c:12:24:dd:d0:77: ac:93:3f:e9:ec:bd:16:59:14:ba:05:43:e7:e1:24:49:71:2b: 5b:9d:66:f0:6b:d5:a1:c2:53:d8:5b:73:0a:39:c7:33:51:a4: 9a:f4:c2:04:7e:19:97:d3:71:5a:d4:4a:44:9e:6c:4e:88:c1: 17:a3:9b:d2:58:72:42:c4:ac:a4:d1:15:49:50:ff:a3:57:f9: 9b:41:5e:ff:d5:c3:a4:7c:1e:17:9f:8e:76:41:b1:cd:ad:81: 54:b2:8c:b0:04:e4:f9:b6:96:8c:f7:a5:cd:39:dd:19:dc:2c: 42:79:12:34:d1:d8:ef:eb:51:46:7e:3c:17:62:44:d9:e7:f8: 7f:1f:51:15:8a:b8:08:20:29:5d:b7:62:07:da:56:e9:8e:eb: df:6c:91:98:e3:5c:ae:38:f6:15:0a:25:b1:ea:81:2f:ba:95: 51:51:05:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSQf0mQFT2dsZ6IRJU9e/yPaFqIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzNDNaFw0yNzA1MDIwMjM4NDNaMDMxMTAvBgNV BAMTKDY1MjQyRjlBNkJCNzdGOTI4RkNCODQ3NzI3NkU5ODA1REUwOThDMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQfY5XyiqSQnCyDVXmKE+CLY81 cx7bMRPcVdmR7iDMdw0McZwR0wW8thluYU9/ScJMhipf1knQazsU924a0q+tdiEt Qpt+q3WmNRQdUZQpu72++AYAgscq7dl/UCYGa2aEeKXfyLHP0gr145cmlBs+5QIv Ttnx42iY1kSJwexQeCM7zgDn1ZgYX8R4d99OvC2OCCh+aAXkhDstyZDiZ68jmyeb g4ThSOt9QMSzzVQ81HvdljOONSwhNLYKzzej5ddduS3iqDh0CEmHTMy30IkX7b7x kXSTnO+dS3fylVHwuAA8l/IMnYsRd5jZBGVx4wlEdPty33rHRgxxteRzjDvNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZSQvmmu3f5KPy4R3J26YBd4JjBcwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ojANBgkqhkiG 9w0BAQsFAAOCAQEAg7mHnYUPklVX6Et0IEQEkcEmSCxF4BAGXRvWuk4hnRgrXTra ycr++qIuSl+f4baIOn6LvDUCbxeUxHgcr3EX5/OAeZQu807dd1OpFoCK1+E2JMVI TBIk3dB3rJM/6ey9FlkUugVD5+EkSXErW51m8GvVocJT2FtzCjnHM1GkmvTCBH4Z l9NxWtRKRJ5sTojBF6Ob0lhyQsSspNEVSVD/o1f5m0Fe/9XDpHweF5+OdkGxza2B VLKMsATk+baWjPelzTndGdwsQnkSNNHY7+tRRn48F2JE2ef4fx9RFYq4CCApXbdi B9pW6Y7r32yRmONcrjj2FQolseqBL7qVUVEF8Q== -----END CERTIFICATE-----Generated at Thu May 7 04:31:15 2026 by rpki-client