$ rpki-client -vvf rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230342e302f32342d3234203d3e203436303239.roa File: 3131372e3132312e3230342e302f32342d3234203d3e203436303239.roa (raw, json) Hash identifier: 9xyVMpzGgMxzPTr0/YEPxhsOk4K0WU7VoWYP2UAihTY= Subject key identifier: 48:67:DC:FA:FF:A7:B8:CE:65:30:1E:20:F6:76:E8:06:BB:2C:13:1D Certificate issuer: /CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Certificate serial: 3BB832299923272A2249EABB17F8578118043AE6 Authority key identifier: 2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230342e302f32342d3234203d3e203436303239.roa Signing time: Sun 03 May 2026 02:14:58 +0000 ROA not before: Sun 03 May 2026 02:09:58 +0000 ROA not after: Sun 02 May 2027 02:14:58 +0000 asID: 46029 IP address blocks: 117.121.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b8:32:29:99:23:27:2a:22:49:ea:bb:17:f8:57:81:18:04:3a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Validity Not Before: May 3 02:09:58 2026 GMT Not After : May 2 02:14:58 2027 GMT Subject: CN=4867DCFAFFA7B8CE65301E20F676E806BB2C131D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:f1:f3:4a:4d:fc:be:42:fd:99:90:31:f6: e9:b8:3e:b6:97:88:36:b8:26:36:d3:50:a7:0c:d0: c5:13:e1:62:13:a3:22:72:fe:9c:11:1f:f6:78:05: df:04:1c:70:ff:65:11:f1:d2:43:ba:39:79:02:16: 71:0b:b0:2c:aa:24:12:c4:b4:d0:43:d1:57:c6:dd: 0c:d1:98:32:ef:df:6b:14:f7:6a:0d:cf:18:33:f6: 79:0c:5b:01:52:81:b4:fd:2c:76:cb:a2:9e:8a:2a: 76:15:35:0b:35:78:79:fa:75:d5:93:e9:42:b6:40: 9d:49:91:98:a8:3d:98:e7:b1:d8:2c:9f:d3:3a:72: 68:ac:f7:9b:d0:33:d4:e8:b0:6f:80:93:4b:8e:85: df:be:01:ce:e4:e8:b3:df:12:97:b0:ac:a0:cc:21: 81:4a:99:2d:d1:0b:17:35:34:c4:dc:a9:04:1e:2a: 15:5f:ca:0d:b8:46:58:48:96:9a:1b:8b:29:e6:33: fe:d3:98:e0:6e:86:de:e5:25:c6:50:05:39:2a:5a: f8:0e:c7:9d:a9:6a:25:c9:0b:cd:ce:1d:a4:6e:a0: 8b:a0:72:76:bd:70:37:0e:de:1e:35:d1:d7:fe:80: e9:8f:e8:b9:0e:7c:46:57:e6:44:85:c2:01:ce:6c: 1b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:67:DC:FA:FF:A7:B8:CE:65:30:1E:20:F6:76:E8:06:BB:2C:13:1D X509v3 Authority Key Identifier: keyid:2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230342e302f32342d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.204.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:40:2f:66:49:82:80:a1:15:46:57:be:8e:3c:6e:0d:f3:3d: 0e:ce:22:bc:e6:51:70:b7:9a:c9:9e:86:6a:48:25:32:e8:bb: 93:be:2e:0c:63:db:68:f9:36:36:0a:97:90:1d:f8:de:1a:f5: 70:8f:41:6d:59:3c:2f:d7:aa:d7:f8:d3:3d:35:91:51:d8:1a: 88:79:9c:80:58:1a:44:c9:58:c0:ed:1f:6d:5a:5f:87:eb:ae: eb:42:b5:6d:b7:ae:5e:51:53:ab:a0:af:17:4e:b6:84:48:d8: e7:01:f7:2d:96:c5:26:16:39:3a:28:95:30:03:7f:a6:0e:a8: 1f:fc:61:a1:ca:9f:aa:a1:c6:b7:33:8b:06:39:aa:99:2a:7b: 02:24:6c:62:60:1c:e1:64:b1:9a:32:65:5a:db:ed:fc:00:b5: d0:45:ca:d1:2c:cb:6a:e5:52:79:ac:b5:12:d1:5c:be:25:46: 49:e6:02:48:4a:6b:fe:5b:05:fb:dd:c0:67:4b:9f:1c:07:5c: 88:55:c3:b4:5a:ea:f2:08:ae:4f:d0:7f:8b:0e:08:98:d3:c2: 1a:1c:19:9b:e9:37:b4:b0:01:4a:8c:df:2d:3a:a8:21:74:79: cd:ee:c7:bd:b6:9c:ca:06:4b:30:65:25:a4:4a:df:f4:f8:f6: 48:3b:f5:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO7gyKZkjJyoiSeq7F/hXgRgEOuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjkyNTZC RUFFQTBBMzAeFw0yNjA1MDMwMjA5NThaFw0yNzA1MDIwMjE0NThaMDMxMTAvBgNV BAMTKDQ4NjdEQ0ZBRkZBN0I4Q0U2NTMwMUUyMEY2NzZFODA2QkIyQzEzMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCap/HzSk38vkL9mZAx9um4PraX iDa4JjbTUKcM0MUT4WIToyJy/pwRH/Z4Bd8EHHD/ZRHx0kO6OXkCFnELsCyqJBLE tNBD0VfG3QzRmDLv32sU92oNzxgz9nkMWwFSgbT9LHbLop6KKnYVNQs1eHn6ddWT 6UK2QJ1JkZioPZjnsdgsn9M6cmis95vQM9TosG+Ak0uOhd++Ac7k6LPfEpewrKDM IYFKmS3RCxc1NMTcqQQeKhVfyg24RlhIlpobiynmM/7TmOBuht7lJcZQBTkqWvgO x52paiXJC83OHaRuoIugcna9cDcO3h410df+gOmP6LkOfEZX5kSFwgHObBvRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSGfc+v+nuM5lMB4g9nboBrssEx0wHwYDVR0j BBgwFoAULPBiTJcFKhiLEsLY39aSVr6uoKMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTUzYjA2N2MtZWNjOS00ZGNhLTk4N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5 NzA1MkExODhCMTJDMkQ4REZENjkyNTZCRUFFQTBBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0YwNjI0Qzk3MDUyQTE4OEIxMkMyRDhERkQ2OTI1NkJFQUVB MEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnMMA0GCSqG SIb3DQEBCwUAA4IBAQA9QC9mSYKAoRVGV76OPG4N8z0OziK85lFwt5rJnoZqSCUy 6LuTvi4MY9to+TY2CpeQHfjeGvVwj0FtWTwv16rX+NM9NZFR2BqIeZyAWBpEyVjA 7R9tWl+H667rQrVtt65eUVOroK8XTraESNjnAfctlsUmFjk6KJUwA3+mDqgf/GGh yp+qoca3M4sGOaqZKnsCJGxiYBzhZLGaMmVa2+38ALXQRcrRLMtq5VJ5rLUS0Vy+ JUZJ5gJISmv+WwX73cBnS58cB1yIVcO0WuryCK5P0H+LDgiY08IaHBmb6Te0sAFK jN8tOqghdHnN7se9tpzKBkswZSWkSt/0+PZIO/Wn -----END CERTIFICATE-----Generated at Wed May 13 02:51:18 2026 by rpki-client