$ rpki-client -vvf rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa File: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (raw, json) Hash identifier: wZnkGHXuoZIhhXDMd29VyKe8jWbDQIfBiqevRGFYhXw= Subject key identifier: 3A:F0:92:BA:53:FE:40:93:9C:B6:C3:98:54:4E:38:39:C4:D8:96:B6 Certificate issuer: /CN=4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83 Certificate serial: 5D0540D3F3B7EBA0F9A58CFE68571D34C6B8E8C4 Authority key identifier: 4F:D9:C4:CB:62:40:81:CE:C4:77:48:A0:AB:67:BE:27:BC:DF:8B:83 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa Signing time: Sun 03 May 2026 02:15:04 +0000 ROA not before: Sun 03 May 2026 02:10:04 +0000 ROA not after: Sun 02 May 2027 02:15:04 +0000 asID: 38148 IP address blocks: 122.200.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.crl rsync://rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:05:40:d3:f3:b7:eb:a0:f9:a5:8c:fe:68:57:1d:34:c6:b8:e8:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83 Validity Not Before: May 3 02:10:04 2026 GMT Not After : May 2 02:15:04 2027 GMT Subject: CN=3AF092BA53FE40939CB6C398544E3839C4D896B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:d9:cc:84:86:d9:14:23:62:81:8b:f6:09: c8:bf:42:52:b5:ce:a5:ef:03:e5:68:62:9d:56:67: 71:3c:dd:9b:37:e9:44:99:fa:c5:2e:ab:a7:9a:f7: 38:23:27:f0:ec:4c:33:7d:64:81:6f:6a:f8:95:26: 6a:8c:86:5f:01:77:f4:25:c6:d3:41:14:f0:2a:c8: 86:9c:62:80:b6:10:32:fc:b0:d7:eb:3b:79:15:08: d0:7e:f7:5b:f5:b9:5a:e9:3b:1c:7d:c0:bc:e0:cf: bf:39:8e:ab:4d:7f:4b:bc:37:a0:82:95:2a:42:c6: 0b:2b:9c:b0:d1:a9:ed:52:d9:7f:bd:51:21:2b:0e: db:af:32:b2:cd:86:64:a9:cf:ad:b4:3d:76:c9:79: 0b:a6:d9:d7:bf:f5:95:22:5b:1a:75:25:8d:4e:96: 63:47:04:d4:96:c1:dc:4e:e9:35:53:52:e7:2e:33: 3b:69:31:b2:9a:92:81:ba:5a:97:bd:66:80:4a:c1: bb:69:e0:d0:44:a2:12:04:03:0f:75:b2:dd:22:48: 81:28:4a:0c:53:f4:7e:00:62:b3:b4:1c:4a:86:86: aa:17:54:f4:a7:14:b9:10:b7:5c:ec:2e:69:3a:2b: d6:50:d7:be:2a:4c:ca:8f:b6:a7:ac:86:f7:b0:f0: 0c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F0:92:BA:53:FE:40:93:9C:B6:C3:98:54:4E:38:39:C4:D8:96:B6 X509v3 Authority Key Identifier: keyid:4F:D9:C4:CB:62:40:81:CE:C4:77:48:A0:AB:67:BE:27:BC:DF:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4FD9C4CB624081CEC47748A0AB67BE27BCDF8B83.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.200.144.0/21 Signature Algorithm: sha256WithRSAEncryption 66:bb:86:13:45:22:3e:78:78:ec:23:78:94:6f:63:59:25:cb: ba:f6:8b:c3:aa:11:c0:22:7b:41:23:62:c9:cb:6e:39:a2:f3: 51:36:57:05:cc:5d:da:99:06:c4:85:1d:19:d5:2b:be:0f:27: a5:06:00:2b:f3:0e:3d:9b:29:1e:a8:4e:cd:2c:44:60:2a:7c: 45:12:1d:8a:c8:3d:be:78:d5:b1:09:5c:7e:21:ee:de:ea:88: bd:6c:58:7f:10:7a:61:96:ad:0b:47:4d:18:66:ed:cc:00:a9: 06:57:f6:56:ee:60:ef:73:ae:41:53:a3:d3:ec:f1:97:13:34: 3d:d2:43:25:a8:4d:88:e8:26:db:6d:84:35:4f:5c:a1:90:79: 6f:5f:55:73:cc:05:4b:2b:82:94:b6:3c:a1:dc:1e:92:86:de: 86:9e:d7:cb:86:75:f3:0d:c0:a1:5c:05:f2:35:71:5b:40:85: 5f:f3:1f:4b:29:f9:d5:99:8a:ca:b9:50:ce:2a:50:bb:d7:c0: 74:aa:3e:49:47:f8:b8:4a:b2:f8:af:77:05:fc:75:75:7e:c1: 9e:8a:31:19:9a:35:ee:44:3b:77:3e:f1:35:99:1e:3b:ac:be: 00:14:72:9d:4c:a4:3b:94:be:14:93:ce:c9:a0:be:f3:01:d1: 74:f2:8b:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXQVA0/O366D5pYz+aFcdNMa46MQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZEOUM0Q0I2MjQwODFDRUM0Nzc0OEEwQUI2N0JFMjdC Q0RGOEI4MzAeFw0yNjA1MDMwMjEwMDRaFw0yNzA1MDIwMjE1MDRaMDMxMTAvBgNV BAMTKDNBRjA5MkJBNTNGRTQwOTM5Q0I2QzM5ODU0NEUzODM5QzREODk2QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuQNnMhIbZFCNigYv2Cci/QlK1 zqXvA+VoYp1WZ3E83Zs36USZ+sUuq6ea9zgjJ/DsTDN9ZIFvaviVJmqMhl8Bd/Ql xtNBFPAqyIacYoC2EDL8sNfrO3kVCNB+91v1uVrpOxx9wLzgz785jqtNf0u8N6CC lSpCxgsrnLDRqe1S2X+9USErDtuvMrLNhmSpz620PXbJeQum2de/9ZUiWxp1JY1O lmNHBNSWwdxO6TVTUucuMztpMbKakoG6Wpe9ZoBKwbtp4NBEohIEAw91st0iSIEo SgxT9H4AYrO0HEqGhqoXVPSnFLkQt1zsLmk6K9ZQ174qTMqPtqeshvew8AylAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOvCSulP+QJOctsOYVE44OcTYlrYwHwYDVR0j BBgwFoAUT9nEy2JAgc7Ed0igq2e+J7zfi4MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTU5MmMyNzQtMTFkYi00MTI3LWJhYmItYWVhZTk5Mjg0YjAwLzAvNEZEOUM0Q0I2 MjQwODFDRUM0Nzc0OEEwQUI2N0JFMjdCQ0RGOEI4My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RkQ5QzRDQjYyNDA4MUNFQzQ3NzQ4QTBBQjY3QkUyN0JDREY4 QjgzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1OTJjMjc0LTExZGItNDEyNy1i YWJiLWFlYWU5OTI4NGIwMC8wLzMxMzIzMjJlMzIzMDMwMmUzMTM0MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDesiQMA0GCSqG SIb3DQEBCwUAA4IBAQBmu4YTRSI+eHjsI3iUb2NZJcu69ovDqhHAIntBI2LJy245 ovNRNlcFzF3amQbEhR0Z1Su+DyelBgAr8w49mykeqE7NLERgKnxFEh2KyD2+eNWx CVx+Ie7e6oi9bFh/EHphlq0LR00YZu3MAKkGV/ZW7mDvc65BU6PT7PGXEzQ90kMl qE2I6CbbbYQ1T1yhkHlvX1VzzAVLK4KUtjyh3B6Sht6GntfLhnXzDcChXAXyNXFb QIVf8x9LKfnVmYrKuVDOKlC718B0qj5JR/i4SrL4r3cF/HV1fsGeijEZmjXuRDt3 PvE1mR47rL4AFHKdTKQ7lL4Uk87JoL7zAdF08ot4 -----END CERTIFICATE-----Generated at Wed May 13 10:23:15 2026 by rpki-client