$ rpki-client -vvf rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa File: 32372e3132332e3232302e302f32322d3232203d3e203538333639.roa (raw, json) Hash identifier: ZuBtdlZGO6hYxxBfJVGPD91ppbnzg5uEDdu9f1s4N38= Subject key identifier: 89:A2:C2:B7:E1:C1:B4:4E:60:C3:50:06:C1:ED:46:E7:6F:06:CA:C8 Certificate issuer: /CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Certificate serial: 43ED0E283AB1AF335BAFBF0B018C912B4C3C6A05 Authority key identifier: 4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa Signing time: Sun 03 May 2026 02:15:34 +0000 ROA not before: Sun 03 May 2026 02:10:34 +0000 ROA not after: Sun 02 May 2027 02:15:34 +0000 asID: 58369 IP address blocks: 27.123.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ed:0e:28:3a:b1:af:33:5b:af:bf:0b:01:8c:91:2b:4c:3c:6a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Validity Not Before: May 3 02:10:34 2026 GMT Not After : May 2 02:15:34 2027 GMT Subject: CN=89A2C2B7E1C1B44E60C35006C1ED46E76F06CAC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:57:6d:7a:bf:f8:2c:79:dd:e7:a3:51:03:b4: 41:32:a2:84:97:2f:8c:72:7c:13:08:09:6a:28:05: 0b:fc:c3:45:24:78:68:9b:33:c5:06:4f:df:49:4b: b9:60:7e:b7:c1:a6:bf:38:e1:2f:45:c7:a8:50:5f: 8e:ed:36:42:46:05:a8:91:7b:35:fd:dd:ea:26:53: 34:90:bf:2f:45:4d:c9:43:66:2c:9c:24:2b:35:b8: 14:89:df:c2:fb:7c:61:1d:ca:ba:1d:03:53:5e:fe: 36:7e:7b:fa:82:92:c8:45:26:03:59:d4:16:39:fc: 5f:de:7c:d7:6f:f5:83:79:52:a6:ad:1b:81:1b:a5: 66:bd:73:56:9b:a6:cb:75:a4:5c:a7:ea:13:ae:ae: fb:fc:67:e8:23:57:5b:76:be:4a:97:c7:8c:b3:c9: 6f:2c:27:4a:21:59:da:b3:48:d5:f2:ba:83:62:78: de:bd:39:30:80:2a:15:67:8d:0d:56:bd:48:41:08: 73:58:a1:81:4b:f8:dd:89:4e:ad:bc:cf:d8:da:34: 32:bc:79:71:4c:82:69:e8:73:b3:d3:e1:2c:93:ac: 5e:d4:79:77:18:c9:d2:bb:0e:61:6f:1e:9e:bb:39: 38:c0:31:86:71:c5:1a:32:68:7e:02:b7:6a:c0:89: 85:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A2:C2:B7:E1:C1:B4:4E:60:C3:50:06:C1:ED:46:E7:6F:06:CA:C8 X509v3 Authority Key Identifier: keyid:4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3232203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:84:0c:8e:38:ca:dd:05:f3:8d:30:e8:e2:ea:13:30:9e:af: f5:85:21:a0:20:e3:a0:cf:33:15:92:9f:8f:83:99:81:0a:a5: ba:5a:7b:3a:fd:d2:20:f8:8e:e5:31:0f:ab:18:ec:63:12:69: 6b:4c:23:85:b5:74:3a:85:b8:72:c9:a3:b9:40:00:b1:63:e8: f0:8f:32:01:09:63:43:5c:04:0c:5d:da:ba:a2:3e:37:5e:96: 77:6f:ac:74:02:aa:05:33:f7:32:dc:d2:5e:db:9f:a7:b6:e3: 3e:0e:b6:25:d6:60:24:fb:db:b5:28:aa:48:95:58:dc:41:3d: 31:6b:bb:00:90:f5:46:30:af:23:68:5d:d5:b8:c0:ad:2f:16: 4b:13:65:0c:73:f5:7a:5e:a0:f8:d2:22:7b:3a:12:3f:d3:58: 9a:60:f4:cb:73:97:91:63:9a:91:00:86:4f:d1:8f:67:8f:85: da:c6:fc:d2:e9:da:5a:70:85:24:72:c8:fe:db:e4:5a:c6:22: eb:bd:79:32:b1:03:dc:7c:b3:91:fa:63:45:25:dc:12:7f:15: bf:82:44:40:57:3b:65:a0:17:f3:4c:c7:25:12:c9:27:1f:9d: db:3b:f9:fa:ca:bc:ab:ad:33:fa:d1:74:79:7e:22:c4:bc:f2: bf:1e:3b:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ+0OKDqxrzNbr78LAYyRK0w8agUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM1RDUyMzA5NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0 MkY5RDUzNzAeFw0yNjA1MDMwMjEwMzRaFw0yNzA1MDIwMjE1MzRaMDMxMTAvBgNV BAMTKDg5QTJDMkI3RTFDMUI0NEU2MEMzNTAwNkMxRUQ0NkU3NkYwNkNBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZV216v/gsed3no1EDtEEyooSX L4xyfBMICWooBQv8w0UkeGibM8UGT99JS7lgfrfBpr844S9Fx6hQX47tNkJGBaiR ezX93eomUzSQvy9FTclDZiycJCs1uBSJ38L7fGEdyrodA1Ne/jZ+e/qCkshFJgNZ 1BY5/F/efNdv9YN5UqatG4EbpWa9c1abpst1pFyn6hOurvv8Z+gjV1t2vkqXx4yz yW8sJ0ohWdqzSNXyuoNieN69OTCAKhVnjQ1WvUhBCHNYoYFL+N2JTq28z9jaNDK8 eXFMgmnoc7PT4SyTrF7UeXcYydK7DmFvHp67OTjAMYZxxRoyaH4Ct2rAiYUTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiaLCt+HBtE5gw1AGwe1G528GysgwHwYDVR0j BBgwFoAUTF1SMJcGH9Qg74mHLvVdfUL51TcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTZhODExODItN2NlYi00NjVjLWE1YjUtYTE0ZWM3MzliZjk5LzAvNEM1RDUyMzA5 NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0MkY5RDUzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QzVENTIzMDk3MDYxRkQ0MjBFRjg5ODcyRUY1NUQ3RDQyRjlE NTM3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAht73DANBgkqhkiG 9w0BAQsFAAOCAQEAj4QMjjjK3QXzjTDo4uoTMJ6v9YUhoCDjoM8zFZKfj4OZgQql ulp7Ov3SIPiO5TEPqxjsYxJpa0wjhbV0OoW4csmjuUAAsWPo8I8yAQljQ1wEDF3a uqI+N16Wd2+sdAKqBTP3MtzSXtufp7bjPg62JdZgJPvbtSiqSJVY3EE9MWu7AJD1 RjCvI2hd1bjArS8WSxNlDHP1el6g+NIiezoSP9NYmmD0y3OXkWOakQCGT9GPZ4+F 2sb80unaWnCFJHLI/tvkWsYi6715MrED3HyzkfpjRSXcEn8Vv4JEQFc7ZaAX80zH JRLJJx+d2zv5+sq8q60z+tF0eX4ixLzyvx475w== -----END CERTIFICATE-----Generated at Wed May 13 04:53:25 2026 by rpki-client