$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: oQq+nr1R3/LIq3FYUPDo+7lWe378qim9S5GBtc/7+XI= Subject key identifier: 37:A7:A1:2B:61:12:64:86:FF:62:FF:4F:81:A7:22:4F:D9:CB:83:1E Certificate issuer: /CN=A668BCDA89AD035D496B64CF27245A5F2E3B079C Certificate serial: 7A21945199B47558B0B4B833D214F95391EC4E3F Authority key identifier: A6:68:BC:DA:89:AD:03:5D:49:6B:64:CF:27:24:5A:5F:2E:3B:07:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa Signing time: Sun 03 May 2026 02:18:32 +0000 ROA not before: Sun 03 May 2026 02:13:32 +0000 ROA not after: Sun 02 May 2027 02:18:32 +0000 asID: 46026 IP address blocks: 175.111.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.crl rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 05:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:21:94:51:99:b4:75:58:b0:b4:b8:33:d2:14:f9:53:91:ec:4e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A668BCDA89AD035D496B64CF27245A5F2E3B079C Validity Not Before: May 3 02:13:32 2026 GMT Not After : May 2 02:18:32 2027 GMT Subject: CN=37A7A12B61126486FF62FF4F81A7224FD9CB831E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:88:19:bf:7e:b8:b9:ea:a6:ae:7b:89:4f:04: 8d:1f:ee:1c:8f:10:6a:4c:37:85:ed:43:f6:9a:29: 70:c8:b2:b2:07:73:84:65:68:e0:49:5c:2b:4d:5c: aa:43:f7:48:9a:7f:8d:ff:32:b6:e0:54:7d:62:cd: d3:f8:f0:15:03:9a:26:1f:63:b5:b2:7c:b8:fc:89: fc:8e:64:63:e1:0d:f6:39:07:1b:6c:06:3a:11:31: bc:ea:a3:a0:f2:0f:7f:04:1a:83:33:b9:d3:6b:db: 3d:e6:e7:47:55:8d:27:88:89:56:d7:e2:37:34:0c: 8a:95:04:83:27:27:ea:19:46:3f:de:a4:c3:52:bf: 8d:c1:a1:e3:d6:bf:1c:0f:3d:2c:87:50:ed:6e:90: 06:3e:2f:39:e8:9a:60:b0:11:25:a3:7c:f5:13:a0: 10:9d:a1:1e:76:5b:a9:1c:35:c8:94:92:6c:d0:4b: 02:b1:f2:a8:df:cf:a6:c5:9d:8e:ef:71:e6:fa:7f: cb:90:d2:b4:60:d8:fd:a8:4c:48:b4:1d:cd:36:0d: a8:15:33:8a:54:4a:8d:4a:42:e0:be:b4:cd:00:e1: 36:9a:09:36:fa:6b:4e:50:92:6d:74:bf:41:5f:be: a9:d2:85:a0:24:28:54:63:84:2a:db:ae:ba:46:7c: c3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A7:A1:2B:61:12:64:86:FF:62:FF:4F:81:A7:22:4F:D9:CB:83:1E X509v3 Authority Key Identifier: keyid:A6:68:BC:DA:89:AD:03:5D:49:6B:64:CF:27:24:5A:5F:2E:3B:07:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/A668BCDA89AD035D496B64CF27245A5F2E3B079C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A668BCDA89AD035D496B64CF27245A5F2E3B079C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131342e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.114.0/24 Signature Algorithm: sha256WithRSAEncryption ba:c7:84:8c:62:1c:22:b4:0a:5b:11:a4:e7:06:54:c1:27:e8: f1:61:5d:27:1b:6c:19:9e:b7:c4:0f:f6:f3:3a:dd:81:62:94: 8f:02:44:bd:86:4d:48:c3:82:98:88:07:07:dc:e1:26:7d:96: f5:d3:c5:d5:12:f4:4b:19:4c:a1:72:8e:d9:0b:8c:fa:a6:70: 4c:17:27:66:e7:5c:27:21:52:a0:09:73:a5:6a:c6:b8:9e:ca: 9a:dc:86:b1:83:4e:c6:c5:34:0b:01:8e:01:ba:b4:ea:cf:67: 72:fb:96:2f:e8:bb:d7:f5:f2:b3:78:3e:95:9a:9e:ec:46:df: 33:9e:79:25:2a:72:62:39:06:82:52:b1:ba:91:4b:3e:c8:3a: b2:6a:7a:bd:1d:69:dd:2d:e1:cb:3c:fb:5b:84:ae:68:44:5a: 90:30:f1:85:97:18:fc:0e:4f:ab:d4:d4:e9:13:81:e6:2f:7e: a9:0f:03:5d:58:27:18:13:ca:c5:a0:64:5f:53:f5:e1:71:fb: d0:59:87:67:aa:25:7a:82:92:c4:62:54:9d:ee:14:ee:ec:ff: ab:68:49:5f:d0:7c:7d:45:c6:31:c0:c3:91:92:9d:ad:02:3c: d0:73:3f:13:4e:3e:28:16:39:8f:fe:a4:75:d0:e4:03:63:35: 39:a3:c0:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeiGUUZm0dViwtLgz0hT5U5HsTj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2OEJDREE4OUFEMDM1RDQ5NkI2NENGMjcyNDVBNUYy RTNCMDc5QzAeFw0yNjA1MDMwMjEzMzJaFw0yNzA1MDIwMjE4MzJaMDMxMTAvBgNV BAMTKDM3QTdBMTJCNjExMjY0ODZGRjYyRkY0RjgxQTcyMjRGRDlDQjgzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6iBm/fri56qaue4lPBI0f7hyP EGpMN4XtQ/aaKXDIsrIHc4RlaOBJXCtNXKpD90iaf43/MrbgVH1izdP48BUDmiYf Y7WyfLj8ifyOZGPhDfY5BxtsBjoRMbzqo6DyD38EGoMzudNr2z3m50dVjSeIiVbX 4jc0DIqVBIMnJ+oZRj/epMNSv43BoePWvxwPPSyHUO1ukAY+LznommCwESWjfPUT oBCdoR52W6kcNciUkmzQSwKx8qjfz6bFnY7vceb6f8uQ0rRg2P2oTEi0Hc02DagV M4pUSo1KQuC+tM0A4TaaCTb6a05Qkm10v0FfvqnShaAkKFRjhCrbrrpGfMMHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN6ehK2ESZIb/Yv9PgaciT9nLgx4wHwYDVR0j BBgwFoAUpmi82omtA11Ja2TPJyRaXy47B5wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWZmNGViY2QtMjljZi00ZWVjLWE5MmEtZDExMzZmNWY5OTM2LzAvQTY2OEJDREE4 OUFEMDM1RDQ5NkI2NENGMjcyNDVBNUYyRTNCMDc5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BNjY4QkNEQTg5QUQwMzVENDk2QjY0Q0YyNzI0NUE1RjJFM0Iw NzlDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29yMA0GCSqG SIb3DQEBCwUAA4IBAQC6x4SMYhwitApbEaTnBlTBJ+jxYV0nG2wZnrfED/bzOt2B YpSPAkS9hk1Iw4KYiAcH3OEmfZb108XVEvRLGUyhco7ZC4z6pnBMFydm51wnIVKg CXOlasa4nsqa3Iaxg07GxTQLAY4BurTqz2dy+5Yv6LvX9fKzeD6Vmp7sRt8znnkl KnJiOQaCUrG6kUs+yDqyanq9HWndLeHLPPtbhK5oRFqQMPGFlxj8Dk+r1NTpE4Hm L36pDwNdWCcYE8rFoGRfU/XhcfvQWYdnqiV6gpLEYlSd7hTu7P+raElf0Hx9RcYx wMORkp2tAjzQcz8TTj4oFjmP/qR10OQDYzU5o8CW -----END CERTIFICATE-----Generated at Tue May 12 23:06:41 2026 by rpki-client