$ rpki-client -vvf rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32342d3234203d3e203538333639.roa File: 3131362e3139372e3132382e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: leLR1kmk3+uQSfFWQ/r8i37J3Gs7Z9Ab06Ys3RPudGQ= Subject key identifier: 8C:8C:90:DF:F1:55:3B:45:6C:EB:31:56:78:7B:FF:DD:40:CA:B9:A3 Certificate issuer: /CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Certificate serial: 346B42FB492A55FF15907CCA5B0EDB7F15B806CF Authority key identifier: 4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:15:28 +0000 ROA not before: Sun 03 May 2026 02:10:28 +0000 ROA not after: Sun 02 May 2027 02:15:28 +0000 asID: 58369 IP address blocks: 116.197.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6b:42:fb:49:2a:55:ff:15:90:7c:ca:5b:0e:db:7f:15:b8:06:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Validity Not Before: May 3 02:10:28 2026 GMT Not After : May 2 02:15:28 2027 GMT Subject: CN=8C8C90DFF1553B456CEB3156787BFFDD40CAB9A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:02:27:72:e0:23:7b:9c:4b:5c:62:d5:6b:7a: 8d:5e:a7:09:02:4e:aa:2b:3a:ab:73:d8:96:d1:6d: 55:12:1f:3d:19:1b:5c:eb:f5:79:ba:b5:d2:be:36: 2a:bd:d2:42:d9:66:77:c5:cf:9d:bb:9f:8b:3d:95: 5d:a8:50:8a:1f:d9:d2:61:0b:57:11:cc:37:7d:54: 1a:4e:1a:24:fd:00:ce:19:e1:ee:51:f6:67:c4:60: a6:19:54:fc:4f:80:2c:9d:ca:e5:d0:ac:21:3c:21: c1:65:75:d0:76:9c:45:a0:5e:7f:f1:54:69:fc:28: 3a:d9:99:2c:a3:47:c1:60:ac:c3:55:0a:1f:ad:a9: 1e:7e:12:99:54:62:f4:17:7e:cb:61:7b:de:6e:7e: 61:3c:b2:5a:5c:b1:ed:d3:47:f9:d5:cf:36:19:ab: 90:65:0b:d8:e7:83:ca:45:64:f5:7c:64:e0:d4:4b: 44:02:72:a7:b4:19:77:c1:af:bd:96:26:d4:21:5e: 99:a4:e7:cd:30:dc:97:7d:3a:ed:4f:fe:df:47:a3: b3:c1:d1:c9:7f:81:72:7f:9b:56:5b:30:83:4e:c7: 31:e8:c6:35:90:91:3d:01:26:22:ae:b9:4f:6f:92: dc:2c:ad:61:47:e7:6b:84:35:65:de:08:84:9d:52: 6a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8C:90:DF:F1:55:3B:45:6C:EB:31:56:78:7B:FF:DD:40:CA:B9:A3 X509v3 Authority Key Identifier: keyid:4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.128.0/24 Signature Algorithm: sha256WithRSAEncryption 16:11:05:91:71:74:ab:bb:27:5f:7c:ca:3b:2b:f8:f2:fa:d4: dc:10:5e:1f:de:d7:ca:10:05:71:9d:56:ef:db:32:4f:9a:73: df:cc:73:27:d4:dc:6c:2e:22:90:1c:5e:4d:a3:32:73:59:3c: 1d:e4:d4:a8:04:6a:b8:3d:b6:6f:9a:8a:86:8d:67:ba:c9:4a: fd:88:8a:18:aa:6f:a6:08:26:78:c1:4b:e0:59:7b:ee:76:6a: f5:6c:fd:f1:3f:6a:37:52:f7:0c:91:f6:38:43:e1:77:2a:0e: 63:34:c4:73:ca:d9:94:b6:59:1d:13:8b:82:22:75:81:84:fd: d2:23:da:46:a4:f3:29:80:d9:43:f9:f0:fc:cf:a5:3f:51:07: 24:97:db:2e:01:11:b5:1b:39:a5:ee:d0:0a:02:ec:5a:2b:9d: f3:c5:13:07:af:72:f4:31:25:38:7b:c3:1e:af:5a:8e:89:3d: e7:e8:9a:03:c5:98:13:39:c7:a2:05:56:0c:2b:18:76:52:f2: 6a:d7:93:e8:44:2a:82:c6:99:a2:28:bc:6a:48:1d:e6:97:0e: 7e:5d:9f:3e:62:f5:6b:e2:ca:d6:fb:7c:6b:3e:e9:d2:3a:bf: 27:62:64:be:c6:2e:99:d3:8b:16:0e:47:1b:c7:95:64:e6:8d: 46:67:b6:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNGtC+0kqVf8VkHzKWw7bfxW4Bs8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM1RDUyMzA5NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0 MkY5RDUzNzAeFw0yNjA1MDMwMjEwMjhaFw0yNzA1MDIwMjE1MjhaMDMxMTAvBgNV BAMTKDhDOEM5MERGRjE1NTNCNDU2Q0VCMzE1Njc4N0JGRkRENDBDQUI5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSAidy4CN7nEtcYtVreo1epwkC TqorOqtz2JbRbVUSHz0ZG1zr9Xm6tdK+Niq90kLZZnfFz527n4s9lV2oUIof2dJh C1cRzDd9VBpOGiT9AM4Z4e5R9mfEYKYZVPxPgCydyuXQrCE8IcFlddB2nEWgXn/x VGn8KDrZmSyjR8FgrMNVCh+tqR5+EplUYvQXfsthe95ufmE8slpcse3TR/nVzzYZ q5BlC9jng8pFZPV8ZODUS0QCcqe0GXfBr72WJtQhXpmk580w3Jd9Ou1P/t9Ho7PB 0cl/gXJ/m1ZbMINOxzHoxjWQkT0BJiKuuU9vktwsrWFH52uENWXeCISdUmq9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjIyQ3/FVO0Vs6zFWeHv/3UDKuaMwHwYDVR0j BBgwFoAUTF1SMJcGH9Qg74mHLvVdfUL51TcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTZhODExODItN2NlYi00NjVjLWE1YjUtYTE0ZWM3MzliZjk5LzAvNEM1RDUyMzA5 NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0MkY5RDUzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QzVENTIzMDk3MDYxRkQ0MjBFRjg5ODcyRUY1NUQ3RDQyRjlE NTM3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdMWAMA0GCSqG SIb3DQEBCwUAA4IBAQAWEQWRcXSruydffMo7K/jy+tTcEF4f3tfKEAVxnVbv2zJP mnPfzHMn1NxsLiKQHF5NozJzWTwd5NSoBGq4PbZvmoqGjWe6yUr9iIoYqm+mCCZ4 wUvgWXvudmr1bP3xP2o3UvcMkfY4Q+F3Kg5jNMRzytmUtlkdE4uCInWBhP3SI9pG pPMpgNlD+fD8z6U/UQckl9suARG1Gzml7tAKAuxaK53zxRMHr3L0MSU4e8Mer1qO iT3n6JoDxZgTOceiBVYMKxh2UvJq15PoRCqCxpmiKLxqSB3mlw5+XZ8+YvVr4srW +3xrPunSOr8nYmS+xi6Z04sWDkcbx5Vk5o1GZ7ax -----END CERTIFICATE-----Generated at Wed May 13 08:51:41 2026 by rpki-client