$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: b2mbmeQgog6pCtDt+4sZEuSnNm45gw5Fc6f5DexhBtY= Subject key identifier: 3C:44:2A:99:93:F2:20:F7:22:40:84:E0:44:FF:BC:27:43:14:7E:75 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 3FB2EB4AB2990A115A12611F994DCA84E2551C46 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:30 +0000 ROA not before: Sun 03 May 2026 02:33:30 +0000 ROA not after: Sun 02 May 2027 02:38:30 +0000 asID: 17727 IP address blocks: 202.59.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b2:eb:4a:b2:99:0a:11:5a:12:61:1f:99:4d:ca:84:e2:55:1c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:30 2026 GMT Not After : May 2 02:38:30 2027 GMT Subject: CN=3C442A9993F220F7224084E044FFBC2743147E75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:91:55:8e:3b:c9:96:ec:9c:92:b1:22:ac: 02:ac:62:45:8f:f4:e0:cf:e2:67:4b:d5:de:64:94: 13:5b:06:65:74:46:23:b3:ef:97:33:d5:d4:fe:9a: 12:01:4e:ce:dc:95:bc:5b:eb:a4:cf:15:34:4e:fc: 75:8f:89:d3:a5:3a:f7:ab:34:60:d6:77:db:33:92: 6f:ba:cf:58:83:fb:c7:91:d4:04:ad:4e:1c:bb:b3: 2e:59:4e:0a:c5:36:ef:15:7d:74:4b:d8:94:e9:11: ff:73:43:b0:9c:e2:be:89:b8:62:41:18:98:a8:93: af:63:9b:c7:8e:bf:75:23:be:51:e3:61:9a:da:3d: c8:62:a4:b1:ef:d3:22:5c:b8:ab:31:c2:1c:84:18: 04:e1:f8:f2:34:c4:b1:c4:98:0c:2c:e2:6b:50:1e: b7:45:e3:be:65:4f:04:3c:c3:bd:1d:a7:9a:27:0d: 93:b2:ac:bd:13:e4:35:b9:3f:c9:83:13:48:6e:1a: a0:ef:3c:37:9d:84:0b:a7:b6:10:b0:7f:59:e2:98: ec:27:3f:c1:f4:c9:03:80:42:a1:ab:d7:0c:e8:6e: 8f:fc:3c:f3:1c:48:fe:d0:aa:63:86:dd:2d:54:e0: 18:41:5d:29:ae:e1:fc:7a:c6:4e:41:d0:ce:20:58: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:44:2A:99:93:F2:20:F7:22:40:84:E0:44:FF:BC:27:43:14:7E:75 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.171.0/24 Signature Algorithm: sha256WithRSAEncryption 78:95:f6:88:0e:d8:3a:22:92:8c:9d:97:3e:3d:ce:d2:18:dc: 52:ff:6d:1c:9b:c9:d1:ba:3e:bd:d7:95:27:fa:84:2a:5d:2e: 30:a2:c5:43:a1:0d:57:c6:6c:3a:94:e9:14:18:0b:73:f8:83: 97:ae:84:07:a3:a7:89:9f:f9:0e:4f:16:ca:d2:30:9b:25:d1: ef:8e:d9:7e:36:13:e2:6b:be:62:3b:42:23:75:3c:4e:2a:c5: bb:91:05:d5:90:1c:ae:91:f5:1a:16:8e:98:14:3e:fe:da:47: 44:c7:c0:46:52:31:32:de:ee:7c:ca:22:4e:b5:f7:f4:b8:da: 93:c4:1a:2c:22:54:76:51:69:b3:0d:ac:7e:d7:8c:40:28:9c: 8a:fb:74:7f:82:02:f7:5e:4d:a6:d2:64:71:0f:a0:17:6d:6f: d2:33:57:2f:ae:01:a1:fa:76:48:5e:fc:7e:45:8f:f2:e3:12: 61:8e:14:00:2e:47:03:87:2b:63:3e:f3:e1:3f:22:5d:55:47: 29:72:c1:08:6d:34:0c:49:dc:ca:e8:bf:fd:53:53:2f:b0:22: 54:d6:53:de:f4:c0:cc:c1:c5:4a:b8:8b:44:fc:9b:15:c4:e4: 8b:92:1f:88:79:84:e6:da:e5:27:92:0e:82:86:07:e5:1c:b8: a4:22:15:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP7LrSrKZChFaEmEfmU3KhOJVHEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzBaFw0yNzA1MDIwMjM4MzBaMDMxMTAvBgNV BAMTKDNDNDQyQTk5OTNGMjIwRjcyMjQwODRFMDQ0RkZCQzI3NDMxNDdFNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqApFVjjvJluyckrEirAKsYkWP 9ODP4mdL1d5klBNbBmV0RiOz75cz1dT+mhIBTs7clbxb66TPFTRO/HWPidOlOver NGDWd9szkm+6z1iD+8eR1AStThy7sy5ZTgrFNu8VfXRL2JTpEf9zQ7Cc4r6JuGJB GJiok69jm8eOv3UjvlHjYZraPchipLHv0yJcuKsxwhyEGATh+PI0xLHEmAws4mtQ HrdF475lTwQ8w70dp5onDZOyrL0T5DW5P8mDE0huGqDvPDedhAunthCwf1nimOwn P8H0yQOAQqGr1wzobo/8PPMcSP7QqmOG3S1U4BhBXSmu4fx6xk5B0M4gWKehAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPEQqmZPyIPciQITgRP+8J0MUfnUwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qzANBgkqhkiG 9w0BAQsFAAOCAQEAeJX2iA7YOiKSjJ2XPj3O0hjcUv9tHJvJ0bo+vdeVJ/qEKl0u MKLFQ6ENV8ZsOpTpFBgLc/iDl66EB6OniZ/5Dk8WytIwmyXR747ZfjYT4mu+YjtC I3U8TirFu5EF1ZAcrpH1GhaOmBQ+/tpHRMfARlIxMt7ufMoiTrX39Ljak8QaLCJU dlFpsw2sfteMQCicivt0f4IC915NptJkcQ+gF21v0jNXL64Bofp2SF78fkWP8uMS YY4UAC5HA4crYz7z4T8iXVVHKXLBCG00DEncyui//VNTL7AiVNZT3vTAzMHFSriL RPybFcTki5IfiHmE5trlJ5IOgoYH5Ry4pCIVhA== -----END CERTIFICATE-----Generated at Thu May 7 04:30:38 2026 by rpki-client