$ rpki-client -vvf rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: B3xkIYe1uE+m/gmoUVK3/1y2dkEgqrogXiD2iPzjNLE= Subject key identifier: A9:68:76:82:66:1F:7E:6D:2F:C8:FD:66:ED:6F:90:C6:76:D2:06:23 Certificate issuer: /CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Certificate serial: 79B6BE300193FD4E4FBC79A841AEFDF3D9E729CD Authority key identifier: 4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:15:28 +0000 ROA not before: Sun 03 May 2026 02:10:28 +0000 ROA not after: Sun 02 May 2027 02:15:28 +0000 asID: 58369 IP address blocks: 27.123.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b6:be:30:01:93:fd:4e:4f:bc:79:a8:41:ae:fd:f3:d9:e7:29:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C5D523097061FD420EF89872EF55D7D42F9D537 Validity Not Before: May 3 02:10:28 2026 GMT Not After : May 2 02:15:28 2027 GMT Subject: CN=A9687682661F7E6D2FC8FD66ED6F90C676D20623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:17:fe:fe:d6:68:5d:f0:d6:82:d0:3a:46:1c: 9d:0e:4f:78:c8:2d:7e:a5:27:33:f0:f7:b8:88:e5: 14:80:c0:0c:c8:70:59:47:b7:98:84:28:03:90:02: f1:e0:20:58:3b:c8:fc:49:c3:ae:89:c4:c4:ed:b2: 6e:46:ef:da:d2:be:81:9c:53:d4:b0:49:aa:db:44: 80:5a:b9:c8:c5:21:2a:6a:60:8a:06:34:62:f5:60: 6e:22:ce:65:c7:d5:dd:5d:a2:66:1d:d0:52:aa:9a: 59:0e:d7:29:fb:8c:47:5c:af:b6:76:25:31:45:0a: 66:85:25:d0:92:80:84:43:85:83:11:84:76:f3:c7: 60:07:9b:04:47:e4:15:26:57:89:4e:0c:21:dc:bd: f7:e6:e3:25:be:c0:f5:91:2c:d3:34:47:a7:6f:38: f1:0a:be:3e:4b:13:52:4b:bb:b2:7c:60:34:57:50: ec:c4:d9:4b:11:98:21:58:91:2e:95:0d:0d:3e:0f: 87:50:6b:58:eb:9a:02:0c:26:9c:51:e7:2a:16:58: 5b:93:e8:fd:e1:d6:d4:ab:89:de:2f:76:ef:a5:05: dd:12:d4:97:a5:54:1e:99:36:d7:98:e7:57:53:69: a9:f0:7c:1b:f0:2a:20:66:78:07:38:df:35:57:3a: ae:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:68:76:82:66:1F:7E:6D:2F:C8:FD:66:ED:6F:90:C6:76:D2:06:23 X509v3 Authority Key Identifier: keyid:4C:5D:52:30:97:06:1F:D4:20:EF:89:87:2E:F5:5D:7D:42:F9:D5:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/4C5D523097061FD420EF89872EF55D7D42F9D537.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4C5D523097061FD420EF89872EF55D7D42F9D537.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.221.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:09:10:e9:29:2f:15:73:09:fd:12:f2:cc:74:d8:69:5f:4c: 05:d4:a1:e2:79:89:a6:f3:e0:80:e9:8d:c0:62:c2:a5:e4:ca: d0:d8:50:e8:8e:c5:91:5f:e2:c6:cb:8d:18:f7:2f:05:17:3d: 9b:76:f4:fc:7b:21:0f:02:ed:8f:6c:3d:bc:1f:9a:69:9c:e4: 0b:80:b3:9f:7f:f7:4c:70:a5:28:b8:73:b2:c9:4a:92:8e:c4: c8:b2:02:bc:5e:47:a9:10:82:88:4e:9d:7f:2c:87:0d:7c:4f: dc:59:5e:d2:f1:46:c8:9e:06:29:fe:cb:ef:c8:e4:08:88:8d: 00:21:fa:bc:3a:52:71:dd:61:24:8b:a9:93:93:47:27:97:49: e8:e6:c6:06:d3:24:3e:7f:ce:4f:16:f4:d0:03:70:9b:78:8e: 53:da:12:d2:b0:68:12:a4:56:76:13:a3:9f:b2:96:53:a8:08: d0:b1:fc:fa:b7:22:52:2f:5b:ea:98:19:17:1c:19:93:13:e1: 0d:5c:99:12:fe:76:c8:02:37:1c:5f:de:df:8a:b3:ee:08:0c: 63:70:76:3d:ac:2c:03:e2:f0:47:98:9a:f0:c9:97:dc:9c:da: 0b:10:b3:1c:95:77:b6:64:47:8c:82:d0:29:ff:ea:e3:74:9c: 23:2a:d5:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeba+MAGT/U5PvHmoQa7989nnKc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM1RDUyMzA5NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0 MkY5RDUzNzAeFw0yNjA1MDMwMjEwMjhaFw0yNzA1MDIwMjE1MjhaMDMxMTAvBgNV BAMTKEE5Njg3NjgyNjYxRjdFNkQyRkM4RkQ2NkVENkY5MEM2NzZEMjA2MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzF/7+1mhd8NaC0DpGHJ0OT3jI LX6lJzPw97iI5RSAwAzIcFlHt5iEKAOQAvHgIFg7yPxJw66JxMTtsm5G79rSvoGc U9SwSarbRIBaucjFISpqYIoGNGL1YG4izmXH1d1domYd0FKqmlkO1yn7jEdcr7Z2 JTFFCmaFJdCSgIRDhYMRhHbzx2AHmwRH5BUmV4lODCHcvffm4yW+wPWRLNM0R6dv OPEKvj5LE1JLu7J8YDRXUOzE2UsRmCFYkS6VDQ0+D4dQa1jrmgIMJpxR5yoWWFuT 6P3h1tSrid4vdu+lBd0S1JelVB6ZNteY51dTaanwfBvwKiBmeAc43zVXOq7LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqWh2gmYffm0vyP1m7W+QxnbSBiMwHwYDVR0j BBgwFoAUTF1SMJcGH9Qg74mHLvVdfUL51TcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTZhODExODItN2NlYi00NjVjLWE1YjUtYTE0ZWM3MzliZjk5LzAvNEM1RDUyMzA5 NzA2MUZENDIwRUY4OTg3MkVGNTVEN0Q0MkY5RDUzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QzVENTIzMDk3MDYxRkQ0MjBFRjg5ODcyRUY1NUQ3RDQyRjlE NTM3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73TANBgkqhkiG 9w0BAQsFAAOCAQEAKgkQ6SkvFXMJ/RLyzHTYaV9MBdSh4nmJpvPggOmNwGLCpeTK 0NhQ6I7FkV/ixsuNGPcvBRc9m3b0/HshDwLtj2w9vB+aaZzkC4Czn3/3THClKLhz sslKko7EyLICvF5HqRCCiE6dfyyHDXxP3Fle0vFGyJ4GKf7L78jkCIiNACH6vDpS cd1hJIupk5NHJ5dJ6ObGBtMkPn/OTxb00ANwm3iOU9oS0rBoEqRWdhOjn7KWU6gI 0LH8+rciUi9b6pgZFxwZkxPhDVyZEv52yAI3HF/e34qz7ggMY3B2PawsA+LwR5ia 8MmX3JzaCxCzHJV3tmRHjILQKf/q43ScIyrVJg== -----END CERTIFICATE-----Generated at Wed May 13 05:58:06 2026 by rpki-client