$ rpki-client -vvf rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230362e302f32342d3234203d3e203436303239.roa File: 3131372e3132312e3230362e302f32342d3234203d3e203436303239.roa (raw, json) Hash identifier: JklHOE9UnXIvsKlW/PC+ZLgav3mgVpKETno9/XOSONo= Subject key identifier: 45:65:9C:78:13:54:68:C5:4E:58:4A:C6:AA:2E:A4:02:D2:71:47:41 Certificate issuer: /CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Certificate serial: 2B3F8C6F191C5351BD90C343750232F860195E91 Authority key identifier: 2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230362e302f32342d3234203d3e203436303239.roa Signing time: Sun 03 May 2026 02:15:00 +0000 ROA not before: Sun 03 May 2026 02:10:00 +0000 ROA not after: Sun 02 May 2027 02:15:00 +0000 asID: 46029 IP address blocks: 117.121.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:3f:8c:6f:19:1c:53:51:bd:90:c3:43:75:02:32:f8:60:19:5e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Validity Not Before: May 3 02:10:00 2026 GMT Not After : May 2 02:15:00 2027 GMT Subject: CN=45659C78135468C54E584AC6AA2EA402D2714741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2b:fa:f3:a7:f4:5d:b5:1a:ba:87:38:6e:60: 43:b8:a7:47:a9:65:01:49:05:7e:04:a7:34:06:54: 6a:5e:2b:66:eb:65:70:48:5a:39:f0:cc:56:54:bc: 46:8f:7c:c6:b3:34:73:1f:a8:8b:7b:ac:92:9d:59: 7f:30:f9:48:a4:bb:38:47:c1:f3:29:16:95:1f:05: 8c:00:81:5f:43:a5:0b:0e:4f:a1:f0:d3:66:54:58: 0f:da:f9:ee:9b:8d:75:94:20:1a:45:c8:e3:b2:6d: ff:eb:5a:05:47:1d:f6:2d:d2:13:2e:73:be:df:b5: ee:98:75:27:9d:32:96:a6:0d:47:12:3b:e2:5d:8e: 62:06:57:77:f4:55:24:ae:de:11:1e:30:fa:96:d9: d2:b8:31:b9:53:a8:68:34:df:de:f4:ed:68:58:45: e0:d4:4b:14:68:09:e1:87:bc:36:d2:fe:1e:a4:44: 9c:a2:a9:4d:b6:f2:29:aa:91:08:ee:2c:fa:68:16: f1:1f:cf:b8:c5:d3:d7:3f:a5:47:ed:d4:03:06:75: 20:91:3f:86:0f:2d:72:6d:f5:56:ca:96:39:29:1c: d0:2d:e5:5d:46:04:59:91:28:01:9d:c3:62:86:40: c6:d8:1b:5a:2c:06:cc:fb:92:34:69:41:9a:47:84: 3e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:65:9C:78:13:54:68:C5:4E:58:4A:C6:AA:2E:A4:02:D2:71:47:41 X509v3 Authority Key Identifier: keyid:2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230362e302f32342d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.206.0/24 Signature Algorithm: sha256WithRSAEncryption 53:8e:97:a7:6a:05:b3:82:b9:26:64:ae:01:b4:d6:0d:e7:a4: c9:3a:4c:35:4b:dd:d5:c8:a2:f0:3b:b6:8c:ca:63:47:b1:c6: a9:90:96:e3:24:3a:84:6a:90:4d:4c:c9:fe:4e:5e:c1:80:60: f9:3b:36:aa:b0:82:a6:c2:27:83:8e:be:f0:c2:b8:70:6b:e0: 73:4c:30:43:64:e8:9a:72:ff:29:61:3a:cb:a7:d2:d6:34:f4: 60:f0:56:c6:d6:39:d5:c6:9f:d6:6c:45:df:a5:d2:86:0e:59: 7b:30:47:e4:07:e1:2a:11:1e:cb:68:b3:13:f5:da:7a:2a:0c: 8b:96:02:67:42:5e:75:5f:f9:76:4e:64:d7:41:29:f4:3f:33: 09:fc:60:b8:66:b0:55:48:47:15:99:44:d3:7c:dc:c2:96:74: 06:c7:09:9f:ca:da:69:20:37:2d:bc:dc:ef:91:85:0d:93:7a: 34:c1:95:dc:36:03:96:35:b1:1c:aa:94:2b:04:50:8d:51:fa: 97:ee:74:ec:5c:58:89:1d:25:6a:d6:b9:eb:22:44:a2:dc:05: f0:ef:d5:82:c8:b4:67:e2:9b:3f:f2:d5:68:b2:cd:67:b9:68: 15:8f:36:40:0a:d8:3d:7b:85:2a:24:59:b2:b3:2b:4f:0f:7b: c9:77:9b:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKz+MbxkcU1G9kMNDdQIy+GAZXpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjkyNTZC RUFFQTBBMzAeFw0yNjA1MDMwMjEwMDBaFw0yNzA1MDIwMjE1MDBaMDMxMTAvBgNV BAMTKDQ1NjU5Qzc4MTM1NDY4QzU0RTU4NEFDNkFBMkVBNDAyRDI3MTQ3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaK/rzp/RdtRq6hzhuYEO4p0ep ZQFJBX4EpzQGVGpeK2brZXBIWjnwzFZUvEaPfMazNHMfqIt7rJKdWX8w+UikuzhH wfMpFpUfBYwAgV9DpQsOT6Hw02ZUWA/a+e6bjXWUIBpFyOOybf/rWgVHHfYt0hMu c77fte6YdSedMpamDUcSO+JdjmIGV3f0VSSu3hEeMPqW2dK4MblTqGg039707WhY ReDUSxRoCeGHvDbS/h6kRJyiqU228imqkQjuLPpoFvEfz7jF09c/pUft1AMGdSCR P4YPLXJt9VbKljkpHNAt5V1GBFmRKAGdw2KGQMbYG1osBsz7kjRpQZpHhD4JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURWWceBNUaMVOWErGqi6kAtJxR0EwHwYDVR0j BBgwFoAULPBiTJcFKhiLEsLY39aSVr6uoKMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTUzYjA2N2MtZWNjOS00ZGNhLTk4N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5 NzA1MkExODhCMTJDMkQ4REZENjkyNTZCRUFFQTBBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0YwNjI0Qzk3MDUyQTE4OEIxMkMyRDhERkQ2OTI1NkJFQUVB MEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnOMA0GCSqG SIb3DQEBCwUAA4IBAQBTjpenagWzgrkmZK4BtNYN56TJOkw1S93VyKLwO7aMymNH scapkJbjJDqEapBNTMn+Tl7BgGD5OzaqsIKmwieDjr7wwrhwa+BzTDBDZOiacv8p YTrLp9LWNPRg8FbG1jnVxp/WbEXfpdKGDll7MEfkB+EqER7LaLMT9dp6KgyLlgJn Ql51X/l2TmTXQSn0PzMJ/GC4ZrBVSEcVmUTTfNzClnQGxwmfytppIDctvNzvkYUN k3o0wZXcNgOWNbEcqpQrBFCNUfqX7nTsXFiJHSVq1rnrIkSi3AXw79WCyLRn4ps/ 8tVoss1nuWgVjzZACtg9e4UqJFmysytPD3vJd5sp -----END CERTIFICATE-----Generated at Wed May 13 03:16:50 2026 by rpki-client