$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: Rg2fRKQj2cS4FPG233+qeOSfhKJTCtuILvG3KY3dYfA= Subject key identifier: F4:75:E5:39:37:67:BA:D6:20:52:EF:0F:08:3D:DA:46:7B:79:1B:99 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 6926BDAE9EAB4478E0BB99630350EFB90DF3817E Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:33 +0000 ROA not before: Sun 03 May 2026 02:33:33 +0000 ROA not after: Sun 02 May 2027 02:38:33 +0000 asID: 17727 IP address blocks: 202.59.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:26:bd:ae:9e:ab:44:78:e0:bb:99:63:03:50:ef:b9:0d:f3:81:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:33 2026 GMT Not After : May 2 02:38:33 2027 GMT Subject: CN=F475E5393767BAD62052EF0F083DDA467B791B99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:20:91:15:3a:44:18:fb:07:65:4a:0b:35:40: 2c:0a:ad:2e:04:85:cc:a0:e6:d8:f8:fe:f4:b5:1e: 44:d7:0e:a4:4a:4b:4f:79:77:72:dc:be:c2:0b:a4: c7:cc:40:34:a7:ad:c7:87:9d:e6:ab:27:21:7f:7d: a0:e6:db:96:35:fb:f8:97:b8:9c:9c:90:37:41:73: b3:26:e0:93:7d:ed:d4:77:11:8d:17:f8:a0:c3:90: fa:d3:38:ff:97:ea:7c:41:15:72:18:fd:97:4e:fb: 4d:05:d0:19:31:db:05:23:7d:19:6d:bf:0f:a0:23: f1:d1:35:71:0e:ff:8b:de:87:5b:39:26:bc:d7:75: 9f:93:f8:20:de:f3:0d:96:36:1d:5e:33:92:fe:5d: 92:84:9b:f2:3f:3b:28:14:50:0d:61:02:a3:cc:1c: 78:e6:1c:47:57:9f:7e:63:62:23:d1:b4:56:b6:2a: d3:b9:4f:68:ce:56:e0:56:b3:8e:ac:4c:19:94:71: 3b:43:26:fc:f0:4a:e7:ab:ba:e9:d0:bc:a4:f5:7e: 11:97:63:d8:92:08:5b:a2:b4:9a:d8:8e:6c:ce:ee: 6f:81:7c:65:20:18:b1:5c:ee:68:4f:9c:d1:a5:15: f4:a5:39:d2:a9:f8:d2:fe:37:5a:a6:27:0c:ff:43: 33:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:75:E5:39:37:67:BA:D6:20:52:EF:0F:08:3D:DA:46:7B:79:1B:99 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.172.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:fb:b2:fe:9b:97:84:f5:8d:0e:38:7f:43:77:77:fd:8e:ce: b7:1d:87:32:ad:3b:4b:06:46:6c:b0:72:21:4f:68:66:fe:74: b5:b4:1f:aa:de:00:d6:91:02:cc:54:b0:02:58:ab:93:3a:a8: 01:17:77:9c:76:85:3b:d5:2a:ba:42:e2:6a:72:07:91:6b:3f: a2:0d:9b:d3:6f:ea:dc:e7:b7:96:c3:79:6b:98:38:e3:ba:f0: df:c8:f2:ab:41:22:ea:f6:77:7f:17:d0:9b:cc:9f:b9:42:3a: 67:a1:5b:38:cf:5e:67:cc:57:73:f8:15:e4:23:2f:03:c4:6c: ce:0c:8d:72:43:c0:09:7e:3e:62:ba:ae:dd:38:47:f8:f0:06: c1:a5:28:d9:c2:98:91:7d:d2:53:05:da:22:31:60:de:81:1e: 22:9d:2d:db:be:09:b1:8d:a8:ec:77:d6:dd:14:1c:fb:af:e0: a7:6f:0d:40:25:73:ec:d5:43:a0:aa:ee:ef:bb:66:ff:9d:07: 41:41:5f:28:7f:28:81:56:50:df:13:69:86:91:49:44:47:bf: 94:66:f3:e2:1c:64:48:8d:46:ba:15:9e:80:94:25:64:e2:d3: 1f:a7:8c:81:9a:cf:d5:7a:51:f8:d7:bf:28:67:b9:fc:db:54: e3:a7:c5:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaSa9rp6rRHjgu5ljA1DvuQ3zgX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzNaFw0yNzA1MDIwMjM4MzNaMDMxMTAvBgNV BAMTKEY0NzVFNTM5Mzc2N0JBRDYyMDUyRUYwRjA4M0REQTQ2N0I3OTFCOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBIJEVOkQY+wdlSgs1QCwKrS4E hcyg5tj4/vS1HkTXDqRKS095d3LcvsILpMfMQDSnrceHnearJyF/faDm25Y1+/iX uJyckDdBc7Mm4JN97dR3EY0X+KDDkPrTOP+X6nxBFXIY/ZdO+00F0Bkx2wUjfRlt vw+gI/HRNXEO/4veh1s5JrzXdZ+T+CDe8w2WNh1eM5L+XZKEm/I/OygUUA1hAqPM HHjmHEdXn35jYiPRtFa2KtO5T2jOVuBWs46sTBmUcTtDJvzwSueruunQvKT1fhGX Y9iSCFuitJrYjmzO7m+BfGUgGLFc7mhPnNGlFfSlOdKp+NL+N1qmJwz/QzNRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9HXlOTdnutYgUu8PCD3aRnt5G5kwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rDANBgkqhkiG 9w0BAQsFAAOCAQEAW/uy/puXhPWNDjh/Q3d3/Y7Otx2HMq07SwZGbLByIU9oZv50 tbQfqt4A1pECzFSwAlirkzqoARd3nHaFO9UqukLianIHkWs/og2b02/q3Oe3lsN5 a5g447rw38jyq0Ei6vZ3fxfQm8yfuUI6Z6FbOM9eZ8xXc/gV5CMvA8RszgyNckPA CX4+Yrqu3ThH+PAGwaUo2cKYkX3SUwXaIjFg3oEeIp0t274JsY2o7HfW3RQc+6/g p28NQCVz7NVDoKru77tm/50HQUFfKH8ogVZQ3xNphpFJREe/lGbz4hxkSI1GuhWe gJQlZOLTH6eMgZrP1XpR+Ne/KGe5/NtU46fFSg== -----END CERTIFICATE-----Generated at Thu May 7 04:30:48 2026 by rpki-client