$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa File: 3131342e3132392e31362e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: zaokcuHNDzcmimcaKDVhoGvkO70knqdLhKxQi56iB3c= Subject key identifier: D7:A1:B2:90:DD:35:61:99:35:8F:D9:D6:DA:47:44:EC:D8:13:D8:FB Certificate issuer: /CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Certificate serial: 078CC355CE5A3A5C343FC80C45A30705030059BF Authority key identifier: B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa Signing time: Sun 03 May 2026 02:17:06 +0000 ROA not before: Sun 03 May 2026 02:12:06 +0000 ROA not after: Sun 02 May 2027 02:17:06 +0000 asID: 38758 IP address blocks: 114.129.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8c:c3:55:ce:5a:3a:5c:34:3f:c8:0c:45:a3:07:05:03:00:59:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Validity Not Before: May 3 02:12:06 2026 GMT Not After : May 2 02:17:06 2027 GMT Subject: CN=D7A1B290DD356199358FD9D6DA4744ECD813D8FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:4c:07:42:18:b3:e7:e4:3a:af:a3:61:be: 2c:3b:b9:07:b7:3f:2d:00:d5:46:78:e4:da:da:30: 7a:09:38:7c:9e:ae:54:69:b8:31:78:b2:ee:83:0b: a8:01:99:a6:26:f1:f2:ea:dc:2b:d8:66:41:c5:9e: dd:01:68:d6:41:b2:4c:9f:04:67:45:cb:09:0e:71: 8c:56:5a:06:56:e0:57:58:93:a6:1b:9d:17:f3:cb: 34:11:44:c2:88:bd:17:b6:17:ae:60:bd:50:c8:9d: 42:9a:2b:b6:a1:fc:ae:86:5d:73:ff:a1:e2:55:4b: da:a6:ae:44:8a:b1:0d:6c:dd:f8:9b:4c:f7:3e:c8: f1:9c:32:38:6d:6b:f9:52:13:08:6c:9c:21:0a:f6: e7:65:0a:17:73:b0:0d:5e:cd:e8:81:18:b6:d3:5d: 57:8c:a5:fe:09:d3:41:da:34:c8:7f:ec:1a:4c:7e: ba:df:95:d5:38:88:e2:8c:b6:11:f7:98:58:65:e0: bf:58:ad:51:3a:af:59:40:36:fc:00:ef:de:80:66: 7f:21:41:27:3f:e8:8a:a1:ec:d5:4f:dd:38:ec:6a: fd:73:e5:7f:56:bb:aa:fb:cb:39:b2:4f:55:f6:fe: 9f:1e:75:7a:ac:0b:dc:d1:8d:65:80:ce:5f:58:37: aa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A1:B2:90:DD:35:61:99:35:8F:D9:D6:DA:47:44:EC:D8:13:D8:FB X509v3 Authority Key Identifier: keyid:B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.129.16.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:f1:c6:83:a0:1f:69:48:3d:0c:2b:1b:05:20:fd:f8:fc:33: 3c:33:14:9c:e2:48:69:ba:27:0d:ce:d3:83:87:2b:26:10:4a: 52:71:0c:0a:97:3f:42:2c:72:37:76:73:12:66:13:e7:18:61: cf:4f:d8:9d:ea:74:82:dc:7c:06:fb:bb:0f:f9:f4:4d:84:60: 48:4d:b3:55:42:59:75:0a:d5:81:ac:b1:1d:c1:4e:ce:87:fb: ba:0a:08:4d:7f:13:4c:57:0a:57:a3:02:b6:f1:04:ac:66:b9: ab:82:d3:79:16:85:ba:a1:cb:5f:a3:53:54:b1:56:44:10:4e: 3c:2f:13:7a:4b:0a:7e:ae:71:8d:fa:72:66:be:93:02:d5:0d: b8:b8:05:37:2a:b0:5a:6e:62:d0:92:0a:34:fc:aa:b7:cd:28: f2:e6:9c:c0:06:db:1a:ed:bd:12:23:cb:b1:e2:a7:50:e1:60: 2c:67:4b:58:2e:51:c3:d9:0f:7a:90:59:d5:20:4d:4f:bb:9c: d5:4a:45:d2:20:f1:ac:91:87:dd:18:5b:7f:39:81:01:b7:29: 89:1f:f5:8b:50:dd:b2:74:a0:d1:56:8f:a4:78:3f:c9:72:fc: d0:fd:5e:c8:fe:ef:e4:49:5c:26:a7:ef:dc:77:d7:6f:40:da: 00:01:79:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB4zDVc5aOlw0P8gMRaMHBQMAWb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhBMUE3ODUwRkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5 MjFDQjBFNzAeFw0yNjA1MDMwMjEyMDZaFw0yNzA1MDIwMjE3MDZaMDMxMTAvBgNV BAMTKEQ3QTFCMjkwREQzNTYxOTkzNThGRDlENkRBNDc0NEVDRDgxM0Q4RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9VkwHQhiz5+Q6r6Nhviw7uQe3 Py0A1UZ45NraMHoJOHyerlRpuDF4su6DC6gBmaYm8fLq3CvYZkHFnt0BaNZBskyf BGdFywkOcYxWWgZW4FdYk6YbnRfzyzQRRMKIvRe2F65gvVDInUKaK7ah/K6GXXP/ oeJVS9qmrkSKsQ1s3fibTPc+yPGcMjhta/lSEwhsnCEK9udlChdzsA1ezeiBGLbT XVeMpf4J00HaNMh/7BpMfrrfldU4iOKMthH3mFhl4L9YrVE6r1lANvwA796AZn8h QSc/6Iqh7NVP3Tjsav1z5X9Wu6r7yzmyT1X2/p8edXqsC9zRjWWAzl9YN6p/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU16GykN01YZk1j9nW2kdE7NgT2PswHwYDVR0j BBgwFoAUuKGnhQ/kYGZFzbmTYT8DJpIcsOcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI0ZTE5NWUtMTJkZS00YzNjLTkzZTUtNTIyZWU1NDAxOGQ2LzAvQjhBMUE3ODUw RkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5MjFDQjBFNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COEExQTc4NTBGRTQ2MDY2NDVDREI5OTM2MTNGMDMyNjkyMUNC MEU3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzEzNDJlMzEzMjM5MmUzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3KBEDANBgkqhkiG 9w0BAQsFAAOCAQEAGvHGg6AfaUg9DCsbBSD9+PwzPDMUnOJIabonDc7Tg4crJhBK UnEMCpc/QixyN3ZzEmYT5xhhz0/Ynep0gtx8Bvu7D/n0TYRgSE2zVUJZdQrVgayx HcFOzof7ugoITX8TTFcKV6MCtvEErGa5q4LTeRaFuqHLX6NTVLFWRBBOPC8TeksK fq5xjfpyZr6TAtUNuLgFNyqwWm5i0JIKNPyqt80o8uacwAbbGu29EiPLseKnUOFg LGdLWC5Rw9kPepBZ1SBNT7uc1UpF0iDxrJGH3RhbfzmBAbcpiR/1i1DdsnSg0VaP pHg/yXL80P1eyP7v5ElcJqfv3HfXb0DaAAF5Nw== -----END CERTIFICATE-----Generated at Wed May 13 00:20:52 2026 by rpki-client