$ rpki-client -vvf rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa File: 3132352e36322e39322e302f32322d3234203d3e20313338383032.roa (raw, json) Hash identifier: fIe5ivOarf67OW2F9hXTn+7dCpQiLZXrcOnnAzgWfZQ= Subject key identifier: 45:81:4B:21:3C:98:CD:8D:B2:56:FD:CB:DE:7F:28:C4:B9:72:F7:61 Certificate issuer: /CN=71645BDB97FEBD6E0D4F53A08CBF24077C24E403 Certificate serial: 41EC7DE27226FF49646CC7670F0D82AEBAC5D013 Authority key identifier: 71:64:5B:DB:97:FE:BD:6E:0D:4F:53:A0:8C:BF:24:07:7C:24:E4:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa Signing time: Sun 03 May 2026 02:11:17 +0000 ROA not before: Sun 03 May 2026 02:06:17 +0000 ROA not after: Sun 02 May 2027 02:11:17 +0000 asID: 138802 IP address blocks: 125.62.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.crl rsync://rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ec:7d:e2:72:26:ff:49:64:6c:c7:67:0f:0d:82:ae:ba:c5:d0:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71645BDB97FEBD6E0D4F53A08CBF24077C24E403 Validity Not Before: May 3 02:06:17 2026 GMT Not After : May 2 02:11:17 2027 GMT Subject: CN=45814B213C98CD8DB256FDCBDE7F28C4B972F761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:49:f4:cf:81:4f:6d:4c:e1:69:59:fc:62: 12:eb:2e:57:7c:18:6e:4f:56:ba:5b:6d:c8:17:99: bc:db:1c:eb:3a:30:3c:b7:39:6f:b5:c4:18:7d:91: f1:1c:e4:fb:c7:6f:c7:e7:ef:ff:f8:2a:b9:3a:8f: bc:ab:5d:c3:87:de:22:68:07:57:c5:68:aa:cb:de: 38:93:ed:81:37:e0:64:ba:e5:e2:3f:38:7b:f6:9e: a5:6d:20:da:8f:61:a0:cc:a5:fd:2d:dd:c2:39:00: a0:12:a4:f3:bb:c5:34:6d:df:28:e2:06:3a:9a:29: 0a:d7:7b:fa:22:62:20:87:43:eb:d2:c6:5b:4c:f0: 42:ba:e0:6a:d5:f1:d1:4d:8c:cc:45:84:4f:6a:17: 28:5c:40:14:56:0a:9c:b7:bc:cd:7c:5a:d9:4f:46: b4:32:80:60:cb:85:f1:a2:37:f2:a8:c0:97:f1:27: aa:b2:7e:c1:17:94:63:69:e8:e7:fa:c2:d3:54:90: 6f:98:1a:3e:55:9b:58:5a:f9:58:bb:ab:dd:29:75: 11:86:6a:c0:1e:a4:16:fd:c1:0a:54:c4:22:9e:e9: 2f:13:90:4d:95:0a:df:2a:0e:18:ed:e0:f2:dc:83: dc:ae:58:23:d4:50:81:b8:87:09:1f:76:40:8a:23: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:81:4B:21:3C:98:CD:8D:B2:56:FD:CB:DE:7F:28:C4:B9:72:F7:61 X509v3 Authority Key Identifier: keyid:71:64:5B:DB:97:FE:BD:6E:0D:4F:53:A0:8C:BF:24:07:7C:24:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71645BDB97FEBD6E0D4F53A08CBF24077C24E403.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.62.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:be:e2:90:98:3b:ff:e0:89:34:90:b5:d1:c9:3d:f1:13:bd: 25:8a:19:b1:1e:44:39:3f:1b:38:0f:b4:62:17:6d:47:c5:a9: 41:de:32:1a:5e:62:ae:ce:c8:6b:e8:44:3b:26:f4:b0:f4:34: 79:41:de:f5:0e:d6:8b:d1:26:ef:17:a8:f4:e8:8f:59:5f:78: 7e:86:bc:f3:f5:f1:a5:e7:7f:e1:f2:a3:54:71:b1:ac:da:89: b5:ba:aa:f9:89:e2:ef:ad:0d:b1:cd:1d:54:ad:d1:bd:f2:9c: 5d:e6:4e:32:cf:0f:f1:8b:00:8e:d5:36:5b:5f:5b:50:2b:23: 14:ee:28:c5:4c:97:79:9a:c0:59:9d:e5:c4:81:4d:3e:c7:c2: ad:89:c2:59:d1:ab:82:2c:43:eb:07:4c:96:c5:c2:c8:3c:96: 4f:31:41:47:4e:90:2d:63:2c:30:49:81:b2:1b:85:56:58:a5: a8:ec:54:52:d9:8f:ad:ee:c6:a0:56:58:8d:30:c0:35:16:f1: b6:dc:84:6b:09:6a:42:e5:d3:98:47:f3:35:50:33:86:7b:ce: 48:c3:47:61:cf:3c:65:70:f6:3b:d8:5d:2e:ba:99:70:d2:9e: 10:61:c0:dd:8c:83:47:9c:81:39:23:94:ee:fe:6a:b3:cb:4b: 95:ca:11:8b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQex94nIm/0lkbMdnDw2CrrrF0BMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE2NDVCREI5N0ZFQkQ2RTBENEY1M0EwOENCRjI0MDc3 QzI0RTQwMzAeFw0yNjA1MDMwMjA2MTdaFw0yNzA1MDIwMjExMTdaMDMxMTAvBgNV BAMTKDQ1ODE0QjIxM0M5OENEOERCMjU2RkRDQkRFN0YyOEM0Qjk3MkY3NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DUn0z4FPbUzhaVn8YhLrLld8 GG5PVrpbbcgXmbzbHOs6MDy3OW+1xBh9kfEc5PvHb8fn7//4Krk6j7yrXcOH3iJo B1fFaKrL3jiT7YE34GS65eI/OHv2nqVtINqPYaDMpf0t3cI5AKASpPO7xTRt3yji BjqaKQrXe/oiYiCHQ+vSxltM8EK64GrV8dFNjMxFhE9qFyhcQBRWCpy3vM18WtlP RrQygGDLhfGiN/KowJfxJ6qyfsEXlGNp6Of6wtNUkG+YGj5Vm1ha+Vi7q90pdRGG asAepBb9wQpUxCKe6S8TkE2VCt8qDhjt4PLcg9yuWCPUUIG4hwkfdkCKIyWHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURYFLITyYzY2yVv3L3n8oxLly92EwHwYDVR0j BBgwFoAUcWRb25f+vW4NT1OgjL8kB3wk5AMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDU5YWNiOTctNmU4Ny00ZTMxLWE1NjktYTI2NjBkZjRmMmI4LzAvNzE2NDVCREI5 N0ZFQkQ2RTBENEY1M0EwOENCRjI0MDc3QzI0RTQwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MTY0NUJEQjk3RkVCRDZFMEQ0RjUzQTA4Q0JGMjQwNzdDMjRF NDAzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzMxMzIzNTJlMzYzMjJlMzkzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAn0+XDANBgkqhkiG 9w0BAQsFAAOCAQEAHb7ikJg7/+CJNJC10ck98RO9JYoZsR5EOT8bOA+0YhdtR8Wp Qd4yGl5irs7Ia+hEOyb0sPQ0eUHe9Q7Wi9Em7xeo9OiPWV94foa88/Xxped/4fKj VHGxrNqJtbqq+Yni760Nsc0dVK3RvfKcXeZOMs8P8YsAjtU2W19bUCsjFO4oxUyX eZrAWZ3lxIFNPsfCrYnCWdGrgixD6wdMlsXCyDyWTzFBR06QLWMsMEmBshuFVlil qOxUUtmPre7GoFZYjTDANRbxttyEawlqQuXTmEfzNVAzhnvOSMNHYc88ZXD2O9hd LrqZcNKeEGHA3YyDR5yBOSOU7v5qs8tLlcoRiw== -----END CERTIFICATE-----Generated at Wed May 13 02:59:55 2026 by rpki-client