$ rpki-client -vvf rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138322e302f32332d3233203d3e203234353330.roa File: 3131392e31302e3138322e302f32332d3233203d3e203234353330.roa (raw, json) Hash identifier: P1NOd8bnXDoe1Us3SAeiUo7ByuV/RRZY5l/EMzT/C1k= Subject key identifier: A2:86:E8:99:71:B1:04:C5:71:3A:D7:26:E6:B0:B9:8C:A5:28:D0:15 Certificate issuer: /CN=108BD2ED0D3114613C2725256398C38B9DBAD520 Certificate serial: 5693FFF93649A9A6CEDFED9EF3C5DC08F61ED755 Authority key identifier: 10:8B:D2:ED:0D:31:14:61:3C:27:25:25:63:98:C3:8B:9D:BA:D5:20 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/108BD2ED0D3114613C2725256398C38B9DBAD520.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138322e302f32332d3233203d3e203234353330.roa Signing time: Sun 03 May 2026 02:10:41 +0000 ROA not before: Sun 03 May 2026 02:05:41 +0000 ROA not after: Sun 02 May 2027 02:10:41 +0000 asID: 24530 IP address blocks: 119.10.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/108BD2ED0D3114613C2725256398C38B9DBAD520.crl rsync://rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/108BD2ED0D3114613C2725256398C38B9DBAD520.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/108BD2ED0D3114613C2725256398C38B9DBAD520.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:93:ff:f9:36:49:a9:a6:ce:df:ed:9e:f3:c5:dc:08:f6:1e:d7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108BD2ED0D3114613C2725256398C38B9DBAD520 Validity Not Before: May 3 02:05:41 2026 GMT Not After : May 2 02:10:41 2027 GMT Subject: CN=A286E89971B104C5713AD726E6B0B98CA528D015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:b0:f7:4c:cb:23:d9:8a:47:81:95:be:61: 94:97:63:f9:db:d4:34:7d:51:74:55:8b:2d:9c:05: 0d:4d:fd:4e:9f:3f:c2:63:24:57:56:2d:37:0f:db: 98:6e:20:4f:80:b8:2a:18:2b:4b:2a:5d:2e:69:eb: 42:17:22:57:f8:1e:60:f7:78:88:43:af:36:92:69: 9c:64:6c:00:ff:42:9a:ac:0d:af:23:56:86:70:9c: 4d:78:99:4c:94:32:7c:58:b7:3e:15:5c:09:95:43: 7a:3a:a7:e8:9f:20:e4:1a:d8:70:6c:78:cf:ff:3d: 9d:33:92:6f:93:5b:93:1c:58:ec:9a:75:e8:c9:4d: 16:41:79:c6:c2:50:b8:cf:be:99:94:d5:f1:4a:7b: 0c:f9:19:bb:fe:ce:9c:68:fc:dc:bc:46:da:cc:67: c1:26:54:57:a1:7c:9d:f7:d4:bc:f6:78:f7:b1:f9: d2:3a:3a:d9:a8:14:4c:c4:51:11:8b:0d:f2:64:a3: 5e:0b:36:4b:db:f3:b2:5d:fd:69:62:01:97:b0:2e: 17:91:cb:ff:de:e7:65:86:8a:ef:09:a1:f8:e2:8b: a7:ee:3d:c6:de:dc:84:86:d6:b9:72:8d:ea:c4:1f: f1:29:fb:ed:ce:6f:a4:c5:bf:f1:84:5f:74:f1:d3: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:86:E8:99:71:B1:04:C5:71:3A:D7:26:E6:B0:B9:8C:A5:28:D0:15 X509v3 Authority Key Identifier: keyid:10:8B:D2:ED:0D:31:14:61:3C:27:25:25:63:98:C3:8B:9D:BA:D5:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/108BD2ED0D3114613C2725256398C38B9DBAD520.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/108BD2ED0D3114613C2725256398C38B9DBAD520.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138322e302f32332d3233203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 99:9d:61:7e:f8:7a:f0:8d:e0:ae:e1:0b:40:ac:08:49:dd:47: b5:ee:f9:0f:66:98:fb:0f:10:09:12:c4:b9:de:f6:26:9d:2b: f8:a4:1e:7b:cc:31:87:1a:24:16:66:24:5a:32:d3:b6:b3:a0: 6f:f3:9d:00:81:af:f3:fd:60:ab:bb:b4:c3:aa:55:f4:44:8e: 87:d1:1c:23:0f:b7:76:45:6d:f2:9e:a9:2a:6d:3d:e9:75:b6: 6a:86:e5:86:16:9d:1f:6d:4e:51:7d:af:72:0c:f6:ed:38:ed: 8c:69:1b:ee:4f:05:e6:15:1f:ae:96:a9:90:4b:61:01:61:5d: a2:05:96:14:c0:a9:90:3b:c0:96:5c:c6:be:06:d2:8e:e8:be: 9a:33:b3:18:da:56:2d:93:28:4f:ac:b4:d8:7f:54:c9:4c:85: 1e:fb:02:51:58:88:41:e1:32:c6:01:70:18:af:20:9c:ab:b0: d1:25:de:79:0f:b8:9a:49:a1:b6:24:17:45:c1:11:f0:a4:89: 81:04:5f:8e:a7:e4:b8:7e:58:a1:e4:5b:21:e1:57:7b:db:c9: 27:03:93:bb:f7:e5:59:d3:4b:89:e5:7c:c1:5b:03:a6:2f:c9: 88:80:19:21:aa:a6:92:31:1f:d2:1b:cd:f5:5d:3d:c6:d5:75: 60:b3:61:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVpP/+TZJqabO3+2e88XcCPYe11UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4QkQyRUQwRDMxMTQ2MTNDMjcyNTI1NjM5OEMzOEI5 REJBRDUyMDAeFw0yNjA1MDMwMjA1NDFaFw0yNzA1MDIwMjEwNDFaMDMxMTAvBgNV BAMTKEEyODZFODk5NzFCMTA0QzU3MTNBRDcyNkU2QjBCOThDQTUyOEQwMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19rD3TMsj2YpHgZW+YZSXY/nb 1DR9UXRViy2cBQ1N/U6fP8JjJFdWLTcP25huIE+AuCoYK0sqXS5p60IXIlf4HmD3 eIhDrzaSaZxkbAD/QpqsDa8jVoZwnE14mUyUMnxYtz4VXAmVQ3o6p+ifIOQa2HBs eM//PZ0zkm+TW5McWOyadejJTRZBecbCULjPvpmU1fFKewz5Gbv+zpxo/Ny8RtrM Z8EmVFehfJ331Lz2ePex+dI6OtmoFEzEURGLDfJko14LNkvb87Jd/WliAZewLheR y//e52WGiu8Jofjii6fuPcbe3ISG1rlyjerEH/Ep++3Ob6TFv/GEX3Tx055pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoobomXGxBMVxOtcm5rC5jKUo0BUwHwYDVR0j BBgwFoAUEIvS7Q0xFGE8JyUlY5jDi5261SAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQyMzQ0YmUtZjlmYi00NjM0LTkyZDYtODk0ZGQ1MzhjYWRmLzAvMTA4QkQyRUQw RDMxMTQ2MTNDMjcyNTI1NjM5OEMzOEI5REJBRDUyMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDhCRDJFRDBEMzExNDYxM0MyNzI1MjU2Mzk4QzM4QjlEQkFE NTIwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzODMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXcKtjANBgkqhkiG 9w0BAQsFAAOCAQEAmZ1hfvh68I3gruELQKwISd1Hte75D2aY+w8QCRLEud72Jp0r +KQee8wxhxokFmYkWjLTtrOgb/OdAIGv8/1gq7u0w6pV9ESOh9EcIw+3dkVt8p6p Km096XW2aoblhhadH21OUX2vcgz27TjtjGkb7k8F5hUfrpapkEthAWFdogWWFMCp kDvAllzGvgbSjui+mjOzGNpWLZMoT6y02H9UyUyFHvsCUViIQeEyxgFwGK8gnKuw 0SXeeQ+4mkmhtiQXRcER8KSJgQRfjqfkuH5YoeRbIeFXe9vJJwOTu/flWdNLieV8 wVsDpi/JiIAZIaqmkjEf0hvN9V09xtV1YLNhyA== -----END CERTIFICATE-----Generated at Wed May 13 11:04:07 2026 by rpki-client