$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: vQZ1Qt4ZFtaMVjshsTJFEHAfBgZia7CLR/l4NQNdqi0= Subject key identifier: 7B:02:6D:85:6D:58:8F:AC:A1:E2:92:50:2F:7B:6E:B4:63:CC:8F:88 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 3DE4A2D2A2B336B2ADE69FB4A627C0985CBCEDED Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:33 +0000 ROA not before: Sun 03 May 2026 02:33:33 +0000 ROA not after: Sun 02 May 2027 02:38:33 +0000 asID: 17727 IP address blocks: 202.59.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e4:a2:d2:a2:b3:36:b2:ad:e6:9f:b4:a6:27:c0:98:5c:bc:ed:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:33 2026 GMT Not After : May 2 02:38:33 2027 GMT Subject: CN=7B026D856D588FACA1E292502F7B6EB463CC8F88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:28:3b:b1:ea:9e:b7:e5:e5:f8:0a:08:a3: 0d:b1:6a:63:8a:ea:b4:7a:0d:67:3b:f0:1f:91:1f: e5:d9:8c:37:c7:7c:4d:62:e8:b5:ee:e6:53:d2:31: 83:f3:69:5a:64:9f:a5:96:40:7e:79:f3:b1:2b:f6: 1b:5a:1d:44:6c:76:c8:6b:75:99:8b:c9:4f:0c:5e: 96:21:11:64:eb:f8:0d:5b:6d:83:91:ac:cb:ec:72: 93:b2:a4:9c:2b:48:e7:4b:8c:6e:ca:c7:13:88:50: a8:6c:b4:08:39:32:6c:3a:34:8f:19:0c:2c:f4:a6: 23:c8:64:58:38:65:1a:50:6c:0a:10:15:6f:27:8b: 6e:72:64:ec:75:81:3a:03:7a:41:c4:6e:7e:37:54: 7e:e3:f0:3d:ae:69:ce:37:ab:84:09:4a:3a:da:00: 42:96:6c:be:d2:22:ff:51:89:ee:16:e7:0a:5f:5a: 5e:63:4c:d2:a3:e5:ab:9d:a2:d7:9f:e3:f0:94:81: f1:8c:7f:99:49:24:a0:e4:9a:7c:33:91:64:3f:1d: ef:f2:98:b7:a7:15:f9:d9:75:4c:80:fe:61:27:5d: 83:42:35:1c:61:f6:51:d0:de:48:69:4e:67:d4:a4: 09:50:29:0a:0b:56:3b:ae:16:dd:7e:38:29:6a:cb: d3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:02:6D:85:6D:58:8F:AC:A1:E2:92:50:2F:7B:6E:B4:63:CC:8F:88 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.170.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:59:90:f0:ca:62:19:44:16:40:3a:90:b9:17:b5:c9:c2:4b: b3:f0:01:61:4d:4c:18:f0:6f:ef:38:0d:5d:f3:bf:1f:93:94: 89:25:22:f4:11:dd:9e:be:17:de:04:3e:0d:55:cc:40:29:f5: 65:42:d8:e0:63:bd:23:56:1f:d4:45:6e:a7:a6:db:85:0b:9f: 40:cc:58:87:c5:29:a0:e4:4e:14:a8:74:ce:a3:75:da:da:4f: 9e:46:fa:18:f1:29:09:62:81:9c:26:7d:4a:9b:f6:4c:86:87: bf:68:09:42:63:af:63:03:d4:08:cc:a3:61:a4:69:5b:94:9d: dd:af:93:af:69:47:dd:c1:76:84:d8:fd:cc:36:7c:f1:22:c8: 2e:c6:78:7e:de:24:bf:65:c6:11:60:e8:ba:f2:c5:ec:57:51: 25:a8:45:48:bb:27:d1:fa:18:16:88:89:de:60:aa:79:c3:46: cd:f1:70:b1:59:4b:e7:d0:0e:a0:3e:c7:41:df:28:87:10:51: b8:ab:bb:b3:17:e5:03:5b:5b:de:be:f7:56:cb:a2:93:26:0f: 55:0e:6c:a1:52:c4:dd:b8:13:ed:03:f5:d4:2a:1e:72:5d:12: 58:51:c9:73:36:8b:83:37:ff:03:79:ef:24:cb:14:d8:35:0c: c2:39:b4:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPeSi0qKzNrKt5p+0pifAmFy87e0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzNaFw0yNzA1MDIwMjM4MzNaMDMxMTAvBgNV BAMTKDdCMDI2RDg1NkQ1ODhGQUNBMUUyOTI1MDJGN0I2RUI0NjNDQzhGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCeSg7seqet+Xl+AoIow2xamOK 6rR6DWc78B+RH+XZjDfHfE1i6LXu5lPSMYPzaVpkn6WWQH5587Er9htaHURsdshr dZmLyU8MXpYhEWTr+A1bbYORrMvscpOypJwrSOdLjG7KxxOIUKhstAg5Mmw6NI8Z DCz0piPIZFg4ZRpQbAoQFW8ni25yZOx1gToDekHEbn43VH7j8D2uac43q4QJSjra AEKWbL7SIv9Rie4W5wpfWl5jTNKj5audotef4/CUgfGMf5lJJKDkmnwzkWQ/He/y mLenFfnZdUyA/mEnXYNCNRxh9lHQ3khpTmfUpAlQKQoLVjuuFt1+OClqy9NvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUewJthW1Yj6yh4pJQL3tutGPMj4gwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qjANBgkqhkiG 9w0BAQsFAAOCAQEATlmQ8MpiGUQWQDqQuRe1ycJLs/ABYU1MGPBv7zgNXfO/H5OU iSUi9BHdnr4X3gQ+DVXMQCn1ZULY4GO9I1Yf1EVup6bbhQufQMxYh8UpoOROFKh0 zqN12tpPnkb6GPEpCWKBnCZ9Spv2TIaHv2gJQmOvYwPUCMyjYaRpW5Sd3a+Tr2lH 3cF2hNj9zDZ88SLILsZ4ft4kv2XGEWDouvLF7FdRJahFSLsn0foYFoiJ3mCqecNG zfFwsVlL59AOoD7HQd8ohxBRuKu7sxflA1tb3r73VsuikyYPVQ5soVLE3bgT7QP1 1Coecl0SWFHJczaLgzf/A3nvJMsU2DUMwjm0Sg== -----END CERTIFICATE-----Generated at Thu May 7 04:31:22 2026 by rpki-client