$ rpki-client -vvf rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230332e302f32342d3234203d3e203436303239.roa File: 3131372e3132312e3230332e302f32342d3234203d3e203436303239.roa (raw, json) Hash identifier: khNOf5qfeVAtCDmI+P0qU0wtTsenc+owEXE7IuCFTL4= Subject key identifier: F1:BD:1D:8F:E9:CD:AB:80:AA:D5:87:E9:BC:FC:5C:97:48:E6:82:C3 Certificate issuer: /CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Certificate serial: 5D98962BD88487E67B03B6E47DB6EE04D147EFD5 Authority key identifier: 2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230332e302f32342d3234203d3e203436303239.roa Signing time: Sun 03 May 2026 02:14:59 +0000 ROA not before: Sun 03 May 2026 02:09:59 +0000 ROA not after: Sun 02 May 2027 02:14:59 +0000 asID: 46029 IP address blocks: 117.121.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:98:96:2b:d8:84:87:e6:7b:03:b6:e4:7d:b6:ee:04:d1:47:ef:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Validity Not Before: May 3 02:09:59 2026 GMT Not After : May 2 02:14:59 2027 GMT Subject: CN=F1BD1D8FE9CDAB80AAD587E9BCFC5C9748E682C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b9:b9:14:5b:18:2c:20:fd:09:43:d2:63:04: b2:e3:10:77:de:da:1f:5c:d0:3a:a7:cd:4d:d0:29: 82:53:95:35:9e:67:21:02:60:91:3f:e9:19:7b:45: f7:1b:38:6a:ba:f3:2d:0b:14:f7:03:95:48:5e:60: 7f:f7:c6:78:eb:c4:d3:7b:09:b5:4b:09:d0:98:61: ab:39:ca:3e:1d:53:85:0d:3d:9b:41:13:7d:e5:1b: 90:65:90:93:db:f4:dc:3f:38:c5:d7:3a:e4:ff:0e: 0a:67:8b:0f:bb:87:34:70:d2:ef:4b:77:a7:e0:46: cd:3a:10:f8:0f:42:30:19:8a:b0:e5:45:0a:09:3e: 3a:d3:0d:e2:b7:1f:83:c7:b9:41:dd:35:40:c6:65: d8:22:66:d3:a3:a2:5e:ad:af:35:2e:3b:4a:fb:82: f1:c9:a5:7a:10:41:01:69:af:db:12:9a:54:95:b1: 1e:d4:35:28:de:ab:e9:ac:7b:ea:17:55:2f:13:ea: e0:46:74:e0:7e:9a:bc:a5:25:07:c3:85:a4:69:0e: 39:b0:f2:b3:68:76:41:5c:27:41:5b:39:aa:75:dd: 43:da:47:56:d3:ef:14:2d:b7:e1:1b:a8:68:df:fb: c3:e3:9a:da:d9:f2:b5:63:08:38:e6:b4:7f:dd:23: 1b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BD:1D:8F:E9:CD:AB:80:AA:D5:87:E9:BC:FC:5C:97:48:E6:82:C3 X509v3 Authority Key Identifier: keyid:2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230332e302f32342d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.203.0/24 Signature Algorithm: sha256WithRSAEncryption a8:13:4a:61:f2:4a:80:10:e3:03:c5:59:88:5a:c1:85:4b:fa: 8f:16:37:9d:ee:b2:84:b4:c0:ba:5b:21:15:42:59:3c:0c:e0: 44:11:d1:aa:20:ee:5e:fc:f3:1d:63:51:65:d1:2d:55:cc:15: d1:9b:e1:5d:41:da:93:52:29:32:79:06:8d:d9:8b:8e:ea:a9: f8:7b:32:96:8b:e5:2f:24:5a:13:7a:91:84:4d:92:e3:87:5d: 63:b5:11:50:84:f5:aa:34:52:ae:a3:a0:d4:9b:75:52:c0:1f: 11:17:35:96:05:51:88:2f:04:9e:37:8d:cc:7f:f6:62:e3:bd: 2d:1b:96:80:56:2f:ef:31:8d:15:b2:71:fa:f5:cf:27:95:0f: cc:89:a3:7d:5a:50:2c:17:92:b8:28:58:e9:7a:f4:22:00:6f: 40:1d:b1:de:d6:37:a8:6c:21:6d:45:8f:e7:9b:01:eb:89:f8: 3d:41:89:00:4d:93:2a:55:4b:90:60:fc:4d:3c:39:67:6e:7d: 5e:23:0b:1a:3c:13:4c:f7:63:53:4d:d3:4c:47:b6:2c:16:ef: db:73:41:21:46:0c:c7:d0:25:6a:96:04:58:b4:f0:21:3e:93: e5:fd:cf:80:b3:de:b7:9b:d0:d5:cd:4f:5e:72:ee:42:25:19: fa:2f:bb:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXZiWK9iEh+Z7A7bkfbbuBNFH79UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjkyNTZC RUFFQTBBMzAeFw0yNjA1MDMwMjA5NTlaFw0yNzA1MDIwMjE0NTlaMDMxMTAvBgNV BAMTKEYxQkQxRDhGRTlDREFCODBBQUQ1ODdFOUJDRkM1Qzk3NDhFNjgyQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ubkUWxgsIP0JQ9JjBLLjEHfe 2h9c0DqnzU3QKYJTlTWeZyECYJE/6Rl7RfcbOGq68y0LFPcDlUheYH/3xnjrxNN7 CbVLCdCYYas5yj4dU4UNPZtBE33lG5BlkJPb9Nw/OMXXOuT/Dgpniw+7hzRw0u9L d6fgRs06EPgPQjAZirDlRQoJPjrTDeK3H4PHuUHdNUDGZdgiZtOjol6trzUuO0r7 gvHJpXoQQQFpr9sSmlSVsR7UNSjeq+mse+oXVS8T6uBGdOB+mrylJQfDhaRpDjmw 8rNodkFcJ0FbOap13UPaR1bT7xQtt+EbqGjf+8PjmtrZ8rVjCDjmtH/dIxv1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8b0dj+nNq4Cq1YfpvPxcl0jmgsMwHwYDVR0j BBgwFoAULPBiTJcFKhiLEsLY39aSVr6uoKMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTUzYjA2N2MtZWNjOS00ZGNhLTk4N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5 NzA1MkExODhCMTJDMkQ4REZENjkyNTZCRUFFQTBBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0YwNjI0Qzk3MDUyQTE4OEIxMkMyRDhERkQ2OTI1NkJFQUVB MEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnLMA0GCSqG SIb3DQEBCwUAA4IBAQCoE0ph8kqAEOMDxVmIWsGFS/qPFjed7rKEtMC6WyEVQlk8 DOBEEdGqIO5e/PMdY1Fl0S1VzBXRm+FdQdqTUikyeQaN2YuO6qn4ezKWi+UvJFoT epGETZLjh11jtRFQhPWqNFKuo6DUm3VSwB8RFzWWBVGILwSeN43Mf/Zi470tG5aA Vi/vMY0VsnH69c8nlQ/MiaN9WlAsF5K4KFjpevQiAG9AHbHe1jeobCFtRY/nmwHr ifg9QYkATZMqVUuQYPxNPDlnbn1eIwsaPBNM92NTTdNMR7YsFu/bc0EhRgzH0CVq lgRYtPAhPpPl/c+As963m9DVzU9ecu5CJRn6L7sO -----END CERTIFICATE-----Generated at Wed May 13 03:16:55 2026 by rpki-client