$ rpki-client -vvf rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230322e302f32342d3234203d3e203436303239.roa File: 3131372e3132312e3230322e302f32342d3234203d3e203436303239.roa (raw, json) Hash identifier: G6layxH6VqJ35uHJZhmjgga72kPwjzbEYW/yD2TBIJU= Subject key identifier: 61:C3:FC:E1:D8:3F:53:EF:16:F5:6D:83:B3:80:26:68:52:7F:92:C6 Certificate issuer: /CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Certificate serial: 1885A886F95221A5A114B71043E5F5C0BCAAAE5C Authority key identifier: 2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230322e302f32342d3234203d3e203436303239.roa Signing time: Sun 03 May 2026 02:14:59 +0000 ROA not before: Sun 03 May 2026 02:09:59 +0000 ROA not after: Sun 02 May 2027 02:14:59 +0000 asID: 46029 IP address blocks: 117.121.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:85:a8:86:f9:52:21:a5:a1:14:b7:10:43:e5:f5:c0:bc:aa:ae:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Validity Not Before: May 3 02:09:59 2026 GMT Not After : May 2 02:14:59 2027 GMT Subject: CN=61C3FCE1D83F53EF16F56D83B3802668527F92C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:89:05:c9:67:c6:60:bc:e8:3d:ed:9e:94:a1: 4b:5f:b2:e3:de:dd:37:a8:ce:34:9a:e2:14:65:5c: d8:7a:b7:60:d3:20:4e:3b:ab:f5:a5:87:73:b8:26: dc:cc:6d:de:c2:7d:d5:d2:de:da:3c:c3:f5:01:c8: 7e:87:8a:f3:7e:a5:d4:b7:89:19:97:df:2c:30:9a: e1:2f:b3:d1:61:08:a5:29:2d:b5:60:e9:ae:79:df: 74:39:7d:9a:ca:10:1d:10:44:d1:4b:55:d6:e5:08: e5:4b:f6:03:a7:05:93:2d:b4:13:b3:b2:eb:82:4f: 6b:86:a6:ef:1e:bc:fb:95:d1:29:3b:61:5f:d2:b6: 2e:44:5f:df:3e:35:e5:04:70:d5:03:81:c0:da:ed: fb:2f:ef:a3:0c:4b:3f:7e:5b:79:e0:d2:96:88:4d: 4e:84:47:6c:5c:41:a7:2c:83:b4:c5:67:e4:ea:2f: 8c:8f:ce:b5:88:1a:37:b5:33:bd:ca:1a:00:f4:49: f5:2b:95:1b:e7:d1:1f:83:ac:e4:dc:c1:91:cd:19: a2:c0:cc:cb:f0:ad:7f:3c:f1:ad:e3:0a:14:09:7c: 1a:dd:9b:25:27:40:c6:e1:28:44:4d:7c:09:1d:60: a9:ec:fa:95:6f:97:fc:87:0c:12:1c:3c:dd:76:2f: 23:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C3:FC:E1:D8:3F:53:EF:16:F5:6D:83:B3:80:26:68:52:7F:92:C6 X509v3 Authority Key Identifier: keyid:2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230322e302f32342d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.202.0/24 Signature Algorithm: sha256WithRSAEncryption a0:5e:01:95:58:2a:b2:27:2c:04:a3:8d:4e:ef:49:b8:d7:0f: 2e:0f:fe:f6:42:8d:1b:72:58:a4:2d:2e:e1:39:ea:09:8d:93: e0:af:62:ee:16:a5:61:45:f5:14:ab:8f:41:73:12:4c:b6:86: 89:f8:c9:d9:52:bf:2b:eb:e6:95:ea:1d:67:10:36:a3:cb:0e: 1f:f4:32:9d:12:e2:c8:bb:2b:78:b1:a0:a5:65:4b:4c:ca:f8: cd:34:80:d3:5a:78:35:47:1c:f1:7a:ba:06:ab:e2:a2:9b:3e: 22:69:5c:76:78:c4:06:22:85:ae:76:62:6b:69:bc:e6:2f:6b: a7:20:62:78:1f:38:9a:66:1a:bf:f2:32:a6:8f:75:be:9c:0f: b0:8f:75:ad:a8:27:48:d4:6a:fe:d2:d5:e3:ca:9c:5b:c2:66: 0f:30:43:fe:ee:70:3b:e0:1b:bc:0c:26:39:2b:13:32:96:73: 6b:3a:5b:52:65:4c:ce:15:a1:e2:a6:3a:24:72:f5:e5:0a:74: 19:bd:80:be:39:a7:4e:a2:bd:6e:73:a5:96:35:65:51:43:59: 9f:1f:4c:1e:e0:6f:bb:88:ab:29:48:9a:52:5e:7f:df:3e:f0: 7d:f2:90:bd:00:a3:1a:a7:0b:39:0b:32:bb:6f:c7:e2:5b:63: 6a:52:05:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGIWohvlSIaWhFLcQQ+X1wLyqrlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjkyNTZC RUFFQTBBMzAeFw0yNjA1MDMwMjA5NTlaFw0yNzA1MDIwMjE0NTlaMDMxMTAvBgNV BAMTKDYxQzNGQ0UxRDgzRjUzRUYxNkY1NkQ4M0IzODAyNjY4NTI3RjkyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyiQXJZ8ZgvOg97Z6UoUtfsuPe 3TeozjSa4hRlXNh6t2DTIE47q/Wlh3O4JtzMbd7CfdXS3to8w/UByH6HivN+pdS3 iRmX3ywwmuEvs9FhCKUpLbVg6a5533Q5fZrKEB0QRNFLVdblCOVL9gOnBZMttBOz suuCT2uGpu8evPuV0Sk7YV/Sti5EX98+NeUEcNUDgcDa7fsv76MMSz9+W3ng0paI TU6ER2xcQacsg7TFZ+TqL4yPzrWIGje1M73KGgD0SfUrlRvn0R+DrOTcwZHNGaLA zMvwrX888a3jChQJfBrdmyUnQMbhKERNfAkdYKns+pVvl/yHDBIcPN12LyNDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYcP84dg/U+8W9W2Ds4AmaFJ/ksYwHwYDVR0j BBgwFoAULPBiTJcFKhiLEsLY39aSVr6uoKMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTUzYjA2N2MtZWNjOS00ZGNhLTk4N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5 NzA1MkExODhCMTJDMkQ4REZENjkyNTZCRUFFQTBBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0YwNjI0Qzk3MDUyQTE4OEIxMkMyRDhERkQ2OTI1NkJFQUVB MEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnKMA0GCSqG SIb3DQEBCwUAA4IBAQCgXgGVWCqyJywEo41O70m41w8uD/72Qo0bclikLS7hOeoJ jZPgr2LuFqVhRfUUq49BcxJMtoaJ+MnZUr8r6+aV6h1nEDajyw4f9DKdEuLIuyt4 saClZUtMyvjNNIDTWng1RxzxeroGq+Kimz4iaVx2eMQGIoWudmJrabzmL2unIGJ4 HziaZhq/8jKmj3W+nA+wj3WtqCdI1Gr+0tXjypxbwmYPMEP+7nA74Bu8DCY5KxMy lnNrOltSZUzOFaHipjokcvXlCnQZvYC+OadOor1uc6WWNWVRQ1mfH0we4G+7iKsp SJpSXn/fPvB98pC9AKMapws5CzK7b8fiW2NqUgWx -----END CERTIFICATE-----Generated at Wed May 13 03:23:48 2026 by rpki-client