$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa File: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (raw, json) Hash identifier: +RhRFdi85IS0AEDdqFSyPx04Rb7SIcL6RBSvchBHq2w= Subject key identifier: 6C:94:58:3A:8D:40:40:C3:9D:B0:33:03:96:05:4B:D8:44:55:FB:DB Certificate issuer: /CN=34617F5B566204A91A2C21380B5E25F66A437892 Certificate serial: 544B4806D14A2C5F24951718C515004D1DAB3164 Authority key identifier: 34:61:7F:5B:56:62:04:A9:1A:2C:21:38:0B:5E:25:F6:6A:43:78:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34617F5B566204A91A2C21380B5E25F66A437892.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa Signing time: Sun 03 May 2026 02:17:13 +0000 ROA not before: Sun 03 May 2026 02:12:13 +0000 ROA not after: Sun 02 May 2027 02:17:13 +0000 asID: 152039 IP address blocks: 27.124.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/34617F5B566204A91A2C21380B5E25F66A437892.crl rsync://rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/34617F5B566204A91A2C21380B5E25F66A437892.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34617F5B566204A91A2C21380B5E25F66A437892.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4b:48:06:d1:4a:2c:5f:24:95:17:18:c5:15:00:4d:1d:ab:31:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34617F5B566204A91A2C21380B5E25F66A437892 Validity Not Before: May 3 02:12:13 2026 GMT Not After : May 2 02:17:13 2027 GMT Subject: CN=6C94583A8D4040C39DB0330396054BD84455FBDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:c3:19:97:94:79:29:c9:27:f2:77:2b:b6: ed:f6:55:fc:ba:98:96:35:41:d6:29:30:f4:5c:12: 29:93:41:d0:19:44:bd:ee:8a:7e:8c:92:44:f1:bd: 9a:0a:4e:6e:8d:30:d9:3e:28:2d:a6:37:b8:8e:ed: 8b:54:4b:3b:cc:4a:91:5f:ca:05:5c:6f:cc:f9:6d: c2:22:a6:20:f1:8a:9a:4d:e7:0a:75:51:32:66:24: 06:0a:3b:d1:1b:c2:df:d4:c4:89:c5:83:b4:ed:ae: ac:8d:cc:8d:a2:2b:d2:e1:10:fe:41:28:27:a0:94: ba:d4:28:15:32:b6:c6:02:69:45:4d:0d:14:f8:e5: e0:44:69:19:27:13:95:67:87:dd:a6:ed:02:46:69: d7:e0:1e:57:2b:f8:6d:23:52:df:88:ee:43:ee:51: c0:a1:ac:ce:69:32:27:04:e2:b3:56:9c:e2:02:77: 95:a1:5b:9d:f6:65:12:07:c6:6d:b9:92:63:42:3d: bd:ff:b8:6a:c5:a8:9c:7b:80:e3:7b:64:9f:3e:e6: 45:e9:59:fe:13:2c:a3:f8:46:b2:b9:da:56:b7:dd: 5f:c1:ff:b4:69:6e:08:5e:9a:c3:b8:0d:37:23:db: dc:39:60:d6:a1:0c:44:8d:aa:cb:08:39:cc:ea:36: 01:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:94:58:3A:8D:40:40:C3:9D:B0:33:03:96:05:4B:D8:44:55:FB:DB X509v3 Authority Key Identifier: keyid:34:61:7F:5B:56:62:04:A9:1A:2C:21:38:0B:5E:25:F6:6A:43:78:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/34617F5B566204A91A2C21380B5E25F66A437892.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/34617F5B566204A91A2C21380B5E25F66A437892.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.66.0/24 Signature Algorithm: sha256WithRSAEncryption 39:89:89:b0:ba:83:d0:4e:99:be:dc:db:d6:f4:b1:07:2d:09: dd:29:7e:3c:97:a8:2f:36:66:36:23:0f:1d:c6:5c:35:91:67: c9:5c:31:84:82:11:57:0a:64:88:d1:de:33:cb:db:d5:28:8f: 7b:db:a5:f6:63:d8:bc:0d:42:87:2e:c0:ae:bd:fd:12:7d:2b: 3e:48:2c:0f:c8:1e:19:28:12:44:78:67:6f:31:8e:42:bb:ef: e6:37:cb:a7:9c:31:8b:e2:14:ee:ac:43:0b:b2:30:d8:6e:96: b9:b2:24:b0:6e:c1:a0:dd:e2:2a:37:d1:28:67:bd:03:71:61: 02:bc:60:f8:a1:dd:9c:35:37:65:7a:4a:ed:8a:6f:dd:c3:7c: b3:ac:f4:70:a9:c5:79:53:5f:25:5f:0d:22:85:3f:8d:85:64: 78:bd:63:4d:4f:7c:11:04:31:86:dc:4d:a8:f5:06:e4:18:01: e5:45:f3:03:0f:18:96:64:02:37:75:0b:49:59:c7:3f:85:2b: b5:03:65:fb:b1:90:6a:98:ef:8b:7a:10:fa:99:ae:7b:65:37: 8f:ff:b5:22:9a:64:23:a2:a1:ce:4f:b8:76:43:48:97:48:92: ee:89:e8:2b:b1:c5:e7:18:f9:eb:f1:d8:e2:23:f8:95:ef:69: fe:29:f4:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVEtIBtFKLF8klRcYxRUATR2rMWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ2MTdGNUI1NjYyMDRBOTFBMkMyMTM4MEI1RTI1RjY2 QTQzNzg5MjAeFw0yNjA1MDMwMjEyMTNaFw0yNzA1MDIwMjE3MTNaMDMxMTAvBgNV BAMTKDZDOTQ1ODNBOEQ0MDQwQzM5REIwMzMwMzk2MDU0QkQ4NDQ1NUZCREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+sMZl5R5Kckn8ncrtu32Vfy6 mJY1QdYpMPRcEimTQdAZRL3uin6MkkTxvZoKTm6NMNk+KC2mN7iO7YtUSzvMSpFf ygVcb8z5bcIipiDxippN5wp1UTJmJAYKO9Ebwt/UxInFg7TtrqyNzI2iK9LhEP5B KCeglLrUKBUytsYCaUVNDRT45eBEaRknE5Vnh92m7QJGadfgHlcr+G0jUt+I7kPu UcChrM5pMicE4rNWnOICd5WhW532ZRIHxm25kmNCPb3/uGrFqJx7gON7ZJ8+5kXp Wf4TLKP4RrK52la33V/B/7RpbghemsO4DTcj29w5YNahDESNqssIOczqNgHbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbJRYOo1AQMOdsDMDlgVL2ERV+9swHwYDVR0j BBgwFoAUNGF/W1ZiBKkaLCE4C14l9mpDeJIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI3ZTBiYzAtNzYxYi00ZWMzLThmNDItODI5ODFiOTFhOTdhLzAvMzQ2MTdGNUI1 NjYyMDRBOTFBMkMyMTM4MEI1RTI1RjY2QTQzNzg5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNDYxN0Y1QjU2NjIwNEE5MUEyQzIxMzgwQjVFMjVGNjZBNDM3 ODkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiN2UwYmMwLTc2MWItNGVjMy04 ZjQyLTgyOTgxYjkxYTk3YS8wLzMyMzcyZTMxMzIzNDJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8QjANBgkqhkiG 9w0BAQsFAAOCAQEAOYmJsLqD0E6Zvtzb1vSxBy0J3Sl+PJeoLzZmNiMPHcZcNZFn yVwxhIIRVwpkiNHeM8vb1SiPe9ul9mPYvA1Chy7Arr39En0rPkgsD8geGSgSRHhn bzGOQrvv5jfLp5wxi+IU7qxDC7Iw2G6WubIksG7BoN3iKjfRKGe9A3FhArxg+KHd nDU3ZXpK7Ypv3cN8s6z0cKnFeVNfJV8NIoU/jYVkeL1jTU98EQQxhtxNqPUG5BgB 5UXzAw8YlmQCN3ULSVnHP4UrtQNl+7GQapjvi3oQ+pmue2U3j/+1IppkI6Khzk+4 dkNIl0iS7onoK7HF5xj56/HY4iP4le9p/in0Og== -----END CERTIFICATE-----Generated at Wed May 13 05:26:01 2026 by rpki-client