$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa File: 3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: oNkaxpYzPIKgTpj+lkTHDLCejPXbbfrG+S9imks+MJY= Subject key identifier: A5:DB:E2:A5:75:8F:F6:52:AE:32:87:45:21:73:DE:F9:34:D5:65:1D Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 3F1D0398424575D098C8BCCE5B53A5A97008AADC Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa Signing time: Sun 03 May 2026 02:18:57 +0000 ROA not before: Sun 03 May 2026 02:13:57 +0000 ROA not after: Sun 02 May 2027 02:18:57 +0000 asID: 138841 IP address blocks: 110.232.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:1d:03:98:42:45:75:d0:98:c8:bc:ce:5b:53:a5:a9:70:08:aa:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:57 2026 GMT Not After : May 2 02:18:57 2027 GMT Subject: CN=A5DBE2A5758FF652AE3287452173DEF934D5651D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8a:98:31:33:91:d8:b5:8d:15:a8:93:50:5a: e3:62:19:fe:19:c5:1b:fe:8f:e2:da:d2:59:c9:90: df:74:41:54:4f:2e:02:12:d5:98:ef:3b:16:98:07: a5:28:8a:46:b0:34:22:d3:8e:dd:22:03:90:19:e1: f5:1c:09:19:ec:8e:fd:b7:22:93:0f:f2:6b:9c:3e: ba:7f:5f:63:c8:e4:60:2d:6d:a7:58:4f:e9:70:95: b4:c5:98:4e:04:f5:5f:51:3e:92:a4:96:df:8f:92: 69:14:84:c5:91:29:2f:1a:dd:e8:8f:4c:57:7b:33: 64:17:cd:f9:dc:3f:62:f3:e6:41:ec:b8:45:40:36: fa:5b:f0:76:84:aa:e1:2f:46:5c:3e:41:22:42:39: 7b:e9:e4:24:88:07:88:2e:93:f2:05:b6:cc:34:c6: 28:a4:51:24:cf:8e:5e:3f:c2:a4:b8:cc:5f:89:30: a6:c8:ee:bf:1e:ad:ea:c1:2d:66:73:c0:a8:f1:67: 90:2f:21:a4:db:cd:69:42:cc:81:47:21:5e:fc:22: 2e:a9:72:00:38:2f:aa:a5:c6:eb:9c:c1:90:ee:c0: 0b:a0:51:0e:3d:14:32:62:08:e0:dd:91:57:59:90: 2a:4a:db:ce:98:93:fb:73:c8:64:18:2e:ea:cf:9c: 70:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DB:E2:A5:75:8F:F6:52:AE:32:87:45:21:73:DE:F9:34:D5:65:1D X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.76.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:aa:13:1d:64:22:c5:2a:af:4e:d7:bc:5f:8d:61:3b:f8:27: 94:c9:11:fd:6e:35:67:47:97:9a:2a:85:09:a0:e0:13:0e:e5: f5:96:c6:3c:42:82:0e:a1:ba:a7:34:7e:a1:b4:43:50:44:b2: 91:ce:aa:3a:23:0e:5a:1c:87:73:f7:c1:5c:be:10:03:bc:71: 50:7b:a4:40:3d:2e:d9:9a:0a:85:89:42:5a:3d:3a:e3:53:95: 67:fa:68:d0:2d:40:bc:ba:f9:c4:14:28:20:e2:fd:84:2d:91: be:ec:ec:30:e9:e4:58:b1:38:9a:51:90:36:79:85:1d:4e:9f: 92:71:5f:75:40:a2:9a:96:15:3f:76:f2:54:07:9c:fb:fe:fe: 14:47:f1:31:63:1a:57:96:85:e4:e8:1a:71:52:51:1e:7e:ca: 8c:1d:8a:45:f4:f5:dc:21:ee:24:39:44:3b:44:94:82:8a:bd: 88:98:3d:74:c8:74:6a:c3:ec:ea:c8:a0:a2:2a:3e:fa:ca:ec: 95:1c:a7:76:92:c7:ae:5d:2c:8b:89:c7:5f:d8:24:3b:cc:5b: 6c:3a:fe:37:79:83:7b:ad:31:09:94:7c:8a:41:dc:2b:e7:5a: f7:c2:e3:07:03:63:fc:df:fd:6d:fe:94:64:14:8b:b5:52:64: 0c:f6:f4:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPx0DmEJFddCYyLzOW1OlqXAIqtwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNTdaFw0yNzA1MDIwMjE4NTdaMDMxMTAvBgNV BAMTKEE1REJFMkE1NzU4RkY2NTJBRTMyODc0NTIxNzNERUY5MzRENTY1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsipgxM5HYtY0VqJNQWuNiGf4Z xRv+j+La0lnJkN90QVRPLgIS1ZjvOxaYB6UoikawNCLTjt0iA5AZ4fUcCRnsjv23 IpMP8mucPrp/X2PI5GAtbadYT+lwlbTFmE4E9V9RPpKklt+PkmkUhMWRKS8a3eiP TFd7M2QXzfncP2Lz5kHsuEVANvpb8HaEquEvRlw+QSJCOXvp5CSIB4guk/IFtsw0 xiikUSTPjl4/wqS4zF+JMKbI7r8ererBLWZzwKjxZ5AvIaTbzWlCzIFHIV78Ii6p cgA4L6qlxuucwZDuwAugUQ49FDJiCODdkVdZkCpK286Yk/tzyGQYLurPnHAfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpdvipXWP9lKuModFIXPe+TTVZR0wHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbuhMMA0GCSqG SIb3DQEBCwUAA4IBAQBfqhMdZCLFKq9O17xfjWE7+CeUyRH9bjVnR5eaKoUJoOAT DuX1lsY8QoIOobqnNH6htENQRLKRzqo6Iw5aHIdz98FcvhADvHFQe6RAPS7ZmgqF iUJaPTrjU5Vn+mjQLUC8uvnEFCgg4v2ELZG+7Oww6eRYsTiaUZA2eYUdTp+ScV91 QKKalhU/dvJUB5z7/v4UR/ExYxpXloXk6BpxUlEefsqMHYpF9PXcIe4kOUQ7RJSC ir2ImD10yHRqw+zqyKCiKj76yuyVHKd2kseuXSyLicdf2CQ7zFtsOv43eYN7rTEJ lHyKQdwr51r3wuMHA2P83/1t/pRkFIu1UmQM9vTE -----END CERTIFICATE-----Generated at Wed May 13 06:15:28 2026 by rpki-client