$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136352e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: JtamlHbf9sisZ7DJs3/6v1DOHvmA7ZEdBcWE6YlF4dU= Subject key identifier: 42:07:7F:54:F9:FC:9A:94:8F:B7:36:06:B6:DF:E8:22:30:BC:82:EE Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 7FC80DA00DEC063B65DA05AE73FA9BA3024823EC Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:40 +0000 ROA not before: Sun 03 May 2026 02:33:40 +0000 ROA not after: Sun 02 May 2027 02:38:40 +0000 asID: 17727 IP address blocks: 202.59.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c8:0d:a0:0d:ec:06:3b:65:da:05:ae:73:fa:9b:a3:02:48:23:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:40 2026 GMT Not After : May 2 02:38:40 2027 GMT Subject: CN=42077F54F9FC9A948FB73606B6DFE82230BC82EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:74:0e:81:6d:2d:39:33:59:5e:83:43:61:bc: 14:71:b5:11:9a:b4:9e:f6:6e:29:c0:d7:00:12:e1: 79:c0:63:9b:e7:6b:26:56:7c:a3:78:85:83:ba:de: 1e:53:86:6b:7d:8a:03:5b:28:16:0d:38:d7:ed:cc: df:f9:bf:a2:fb:9d:6d:fc:30:68:73:63:fd:0c:35: 8a:23:3a:61:a7:f0:21:d8:c0:3a:d8:1e:b2:84:fb: d4:a1:f2:c2:a3:98:8a:73:35:51:a5:49:e4:b3:57: 2f:1e:dd:de:ea:fd:6a:01:aa:da:3d:24:cb:fa:e7: 0e:1a:8e:15:c5:59:e7:42:70:10:e9:f4:d2:b7:8b: 54:b9:df:09:1b:99:53:95:ef:82:39:2e:af:b9:df: 65:2c:82:8f:da:01:6f:b9:2f:9f:21:99:3b:2f:35: dc:0e:71:d3:be:94:37:c6:22:6b:42:30:d5:38:58: 7c:56:51:79:42:7b:f2:d3:05:e1:f0:d4:f1:9f:41: 33:c6:06:d5:0d:d7:be:1f:d5:32:1a:cb:37:a4:0d: 40:ce:08:16:9f:bf:84:d1:c4:1b:f8:c1:04:47:0c: 0f:a0:33:25:23:32:5e:61:e5:0c:ca:dc:9c:c2:28: 5a:c1:ec:c7:15:44:5a:b6:88:be:22:29:0f:1f:04: cb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:07:7F:54:F9:FC:9A:94:8F:B7:36:06:B6:DF:E8:22:30:BC:82:EE X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.165.0/24 Signature Algorithm: sha256WithRSAEncryption 65:25:1f:4a:2c:1e:d1:f3:60:30:08:86:91:eb:79:07:0a:57: bb:ec:fe:85:ce:b4:94:57:b7:1c:d7:4a:69:20:34:36:ff:02: 3a:c8:e1:7a:99:de:33:6e:b1:c2:2a:77:05:d7:af:1e:99:83: bf:c7:c9:1d:71:60:19:fe:d8:f7:1c:29:de:fa:7b:22:23:d8: 84:0e:5b:e4:ca:ae:7a:91:8e:d7:3c:8b:87:e4:c4:ba:24:45: dc:e6:12:74:51:82:01:08:fa:6e:14:aa:71:ef:53:4c:0e:61: 88:22:97:f4:8f:52:64:97:82:82:de:e2:c3:9a:a8:5d:72:1c: 12:60:a1:36:81:7f:66:8d:01:1d:47:4d:56:26:49:96:0c:b7: 7d:8f:0a:21:bb:6d:a2:77:ac:dc:d4:74:ed:77:df:4d:d3:bd: 97:d8:9a:b2:92:2b:73:25:80:f3:db:2c:f1:7e:3a:53:e2:c8: 32:b8:f7:35:7c:e4:82:50:a5:3e:63:d6:4d:b2:39:cc:39:c7: 95:77:77:09:da:35:d5:98:58:ab:cb:85:0b:46:a4:3c:65:3c: 54:63:46:d2:51:e7:6f:b1:b3:0f:4d:a2:6f:1c:2f:a4:1e:54: 51:1b:4a:4e:bd:bb:90:52:85:b5:ec:37:ad:be:ef:20:bc:df: de:ba:05:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf8gNoA3sBjtl2gWuc/qbowJII+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzNDBaFw0yNzA1MDIwMjM4NDBaMDMxMTAvBgNV BAMTKDQyMDc3RjU0RjlGQzlBOTQ4RkI3MzYwNkI2REZFODIyMzBCQzgyRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHdA6BbS05M1leg0NhvBRxtRGa tJ72binA1wAS4XnAY5vnayZWfKN4hYO63h5Thmt9igNbKBYNONftzN/5v6L7nW38 MGhzY/0MNYojOmGn8CHYwDrYHrKE+9Sh8sKjmIpzNVGlSeSzVy8e3d7q/WoBqto9 JMv65w4ajhXFWedCcBDp9NK3i1S53wkbmVOV74I5Lq+532Usgo/aAW+5L58hmTsv NdwOcdO+lDfGImtCMNU4WHxWUXlCe/LTBeHw1PGfQTPGBtUN174f1TIayzekDUDO CBafv4TRxBv4wQRHDA+gMyUjMl5h5QzK3JzCKFrB7McVRFq2iL4iKQ8fBMsjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQgd/VPn8mpSPtzYGtt/oIjC8gu4wHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pTANBgkqhkiG 9w0BAQsFAAOCAQEAZSUfSiwe0fNgMAiGket5BwpXu+z+hc60lFe3HNdKaSA0Nv8C OsjhepneM26xwip3BdevHpmDv8fJHXFgGf7Y9xwp3vp7IiPYhA5b5MquepGO1zyL h+TEuiRF3OYSdFGCAQj6bhSqce9TTA5hiCKX9I9SZJeCgt7iw5qoXXIcEmChNoF/ Zo0BHUdNViZJlgy3fY8KIbttones3NR07XffTdO9l9iaspIrcyWA89ss8X46U+LI Mrj3NXzkglClPmPWTbI5zDnHlXd3Cdo11ZhYq8uFC0akPGU8VGNG0lHnb7GzD02i bxwvpB5UURtKTr27kFKFtew3rb7vILzf3roF1A== -----END CERTIFICATE-----Generated at Thu May 7 04:31:13 2026 by rpki-client