$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa File: 3132302e32392e3135322e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: TmgfY35J3ejv4aaplxSsjZ2AmeTrspanURzc+GyKlb0= Subject key identifier: 31:10:EA:8E:2D:5A:98:97:93:3E:40:C2:67:6A:E2:44:0C:E9:87:19 Certificate issuer: /CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Certificate serial: 263EE90F29C602F8D728AD5DE1471E4BEBF1880A Authority key identifier: B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa Signing time: Sun 03 May 2026 02:17:04 +0000 ROA not before: Sun 03 May 2026 02:12:04 +0000 ROA not after: Sun 02 May 2027 02:17:04 +0000 asID: 38758 IP address blocks: 120.29.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3e:e9:0f:29:c6:02:f8:d7:28:ad:5d:e1:47:1e:4b:eb:f1:88:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Validity Not Before: May 3 02:12:04 2026 GMT Not After : May 2 02:17:04 2027 GMT Subject: CN=3110EA8E2D5A9897933E40C2676AE2440CE98719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:9a:10:7e:7c:bf:c4:cf:cf:1c:92:59:53: 43:e7:6e:32:30:2c:71:88:5f:44:b2:4c:1f:5d:d1: 72:a6:e7:81:8f:96:94:59:59:e2:9b:4c:f7:69:29: f6:1b:a4:c2:ab:d8:31:42:f9:82:3f:af:4f:b4:d8: e9:f0:6b:6b:51:6d:5d:60:23:04:63:47:74:1d:c6: 0d:3f:64:47:a7:47:7a:90:57:b0:66:8d:6c:57:c2: 56:45:e9:82:30:8f:f0:4d:e6:6b:3d:6b:3d:55:d4: 3e:25:50:df:94:a0:ac:36:7e:8e:fc:a8:3a:3a:f2: 7f:9d:22:9b:91:42:2c:f6:b7:76:3e:8a:47:73:26: fb:d5:77:ff:71:03:d8:db:2f:a6:92:3a:69:e7:3e: 99:07:02:c4:7e:70:11:8c:e6:f6:58:87:56:53:7c: 10:1a:7f:4e:11:c2:a6:75:87:a7:17:9f:59:09:59: eb:14:2f:90:78:a4:ce:b6:54:cb:a8:3d:bb:6c:8d: 2e:e0:eb:b2:dd:c7:16:6d:7a:8b:c3:51:85:ef:9d: 78:65:80:bb:58:89:a5:b1:05:3f:0f:27:ca:47:30: a9:f2:44:ad:c1:f1:12:fd:92:e9:3c:bd:71:45:5b: 63:70:b6:a3:67:e7:f5:33:fb:1d:27:05:57:a8:18: c4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:10:EA:8E:2D:5A:98:97:93:3E:40:C2:67:6A:E2:44:0C:E9:87:19 X509v3 Authority Key Identifier: keyid:B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.152.0/21 Signature Algorithm: sha256WithRSAEncryption 87:b6:f2:d1:97:82:de:4d:ba:70:b7:06:59:f2:eb:0f:f1:d6: e6:78:d9:aa:65:ba:50:ed:e8:e3:c6:d9:a2:3e:66:8e:03:29: 3c:24:32:70:e2:1e:c3:47:de:dd:c6:b9:d1:63:97:64:97:47: bb:f8:cf:77:c1:3d:72:33:8d:ad:79:08:20:e5:11:5f:75:a0: 83:4c:67:e7:75:11:da:7c:cc:b9:16:44:0d:80:af:77:a4:af: c8:11:59:c7:ce:75:60:84:52:3b:dd:0f:c1:42:da:64:6d:04: 14:8c:a3:33:58:40:9d:dc:f8:e8:56:26:1b:33:3b:fb:17:f9: 27:fd:f6:81:35:91:62:49:6b:e0:c8:d3:55:99:a3:60:80:9d: 1d:bd:79:0d:e6:c7:e4:73:d7:40:6a:4f:fe:d2:29:f8:e0:0f: 40:3c:62:5f:08:07:e0:62:e1:ee:f9:c0:a2:2f:a6:3e:94:d5: 35:5a:6a:fe:c7:5b:e7:f9:a6:a7:2c:6d:08:4a:42:7e:f7:2b: ee:a0:d8:e9:a6:fd:25:76:17:7f:e2:b5:6a:90:1b:ad:da:26: a6:87:20:35:0e:b5:fe:ed:0e:2e:db:91:1a:a3:d6:d7:94:4c: b6:34:18:64:5c:0f:f5:70:e7:bf:fb:b9:b5:63:15:d0:c2:24: b4:02:81:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJj7pDynGAvjXKK1d4UceS+vxiAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhBMUE3ODUwRkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5 MjFDQjBFNzAeFw0yNjA1MDMwMjEyMDRaFw0yNzA1MDIwMjE3MDRaMDMxMTAvBgNV BAMTKDMxMTBFQThFMkQ1QTk4OTc5MzNFNDBDMjY3NkFFMjQ0MENFOTg3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwkZoQfny/xM/PHJJZU0PnbjIw LHGIX0SyTB9d0XKm54GPlpRZWeKbTPdpKfYbpMKr2DFC+YI/r0+02Onwa2tRbV1g IwRjR3Qdxg0/ZEenR3qQV7BmjWxXwlZF6YIwj/BN5ms9az1V1D4lUN+UoKw2fo78 qDo68n+dIpuRQiz2t3Y+ikdzJvvVd/9xA9jbL6aSOmnnPpkHAsR+cBGM5vZYh1ZT fBAaf04RwqZ1h6cXn1kJWesUL5B4pM62VMuoPbtsjS7g67LdxxZteovDUYXvnXhl gLtYiaWxBT8PJ8pHMKnyRK3B8RL9kuk8vXFFW2NwtqNn5/Uz+x0nBVeoGMQ5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMRDqji1amJeTPkDCZ2riRAzphxkwHwYDVR0j BBgwFoAUuKGnhQ/kYGZFzbmTYT8DJpIcsOcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI0ZTE5NWUtMTJkZS00YzNjLTkzZTUtNTIyZWU1NDAxOGQ2LzAvQjhBMUE3ODUw RkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5MjFDQjBFNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COEExQTc4NTBGRTQ2MDY2NDVDREI5OTM2MTNGMDMyNjkyMUNC MEU3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMDJlMzIzOTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gdmDANBgkqhkiG 9w0BAQsFAAOCAQEAh7by0ZeC3k26cLcGWfLrD/HW5njZqmW6UO3o48bZoj5mjgMp PCQycOIew0fe3ca50WOXZJdHu/jPd8E9cjONrXkIIOURX3Wgg0xn53UR2nzMuRZE DYCvd6SvyBFZx851YIRSO90PwULaZG0EFIyjM1hAndz46FYmGzM7+xf5J/32gTWR Yklr4MjTVZmjYICdHb15DebH5HPXQGpP/tIp+OAPQDxiXwgH4GLh7vnAoi+mPpTV NVpq/sdb5/mmpyxtCEpCfvcr7qDY6ab9JXYXf+K1apAbrdompocgNQ61/u0OLtuR GqPW15RMtjQYZFwP9XDnv/u5tWMV0MIktAKB1Q== -----END CERTIFICATE-----Generated at Wed May 13 02:11:55 2026 by rpki-client