$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa File: 3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa (raw, json) Hash identifier: Is+Z3Dm7SUUGnToRzPMf2tBbNJr/wUfOUKihGt4SHV8= Subject key identifier: EC:D6:6E:76:66:0F:4F:F8:3E:98:5E:AA:ED:AB:01:31:D7:A6:15:66 Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 747CBBE3222136837F934AF250601ECC6B54C566 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa Signing time: Sun 03 May 2026 02:19:01 +0000 ROA not before: Sun 03 May 2026 02:14:01 +0000 ROA not after: Sun 02 May 2027 02:19:01 +0000 asID: 140031 IP address blocks: 110.232.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7c:bb:e3:22:21:36:83:7f:93:4a:f2:50:60:1e:cc:6b:54:c5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:14:01 2026 GMT Not After : May 2 02:19:01 2027 GMT Subject: CN=ECD66E76660F4FF83E985EAAEDAB0131D7A61566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0c:bb:ca:ae:41:54:52:c8:ed:9f:da:17:25: 97:e4:59:c2:19:5c:e0:88:14:d2:a8:bf:e2:01:d6: 2a:f8:a5:2a:47:b3:07:bd:a9:6d:a7:62:de:65:94: 01:70:e4:c6:c0:69:30:6b:19:bf:63:69:4e:47:92: 74:7b:76:04:5d:3e:f2:38:22:61:09:53:5e:70:f9: c4:15:49:86:d9:6c:95:4e:16:8d:e9:0a:8c:a7:18: a5:95:e4:fa:75:eb:7c:59:9c:3a:f2:3e:e9:a4:f1: 02:40:89:7e:32:00:54:d3:74:73:25:34:01:f1:03: 4c:a6:a1:4b:90:c9:a0:6d:8f:3d:fb:5f:f4:17:da: 1c:57:1b:73:d5:74:b1:06:68:83:e6:3c:ce:21:92: 52:cc:09:a2:7a:69:1b:28:cc:91:2c:97:54:0e:18: a1:82:17:37:18:cf:04:1a:32:37:3a:28:a6:81:94: cd:6c:47:cf:73:d4:3f:68:77:d1:d4:3e:03:52:5c: 99:69:60:d2:5d:e4:f5:9d:ff:bc:55:cc:70:6a:09: 1b:55:61:d8:84:11:a7:e9:ec:5f:02:07:12:bb:19: b1:94:7d:7e:e5:b9:9e:b9:9a:c0:c5:ba:e9:dc:05: 36:f1:74:ee:a1:6c:01:f6:be:83:b9:ad:90:b4:1c: a7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D6:6E:76:66:0F:4F:F8:3E:98:5E:AA:ED:AB:01:31:D7:A6:15:66 X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.85.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:d9:32:42:1f:d2:88:b2:fc:72:7d:e9:97:21:1d:28:94:d7: 7e:80:a1:12:86:a0:79:70:62:92:da:83:28:8d:82:18:53:a2: 7d:80:9e:78:b4:1c:a7:72:d5:fe:a2:cd:70:21:f9:49:ea:d7: 3f:d1:e7:69:04:37:79:da:fd:b0:ee:50:85:3b:e1:fc:31:ca: 2a:91:d5:ef:77:01:25:d8:c5:6b:a3:b2:4e:04:d3:93:41:b7: e4:06:4e:56:d3:e6:43:a7:be:3a:ec:1c:f7:4a:03:6d:5f:de: 0e:39:ce:d8:e3:f0:98:59:ae:4b:05:d0:9c:52:22:77:44:17: 27:42:88:85:be:05:04:49:39:6a:a8:85:15:03:0d:29:a4:9b: 98:5e:a8:52:40:ba:0f:5a:fa:72:83:bb:a9:65:fa:f8:10:db: 88:ca:aa:16:6f:4a:b3:8a:bb:b4:1e:e9:07:ce:26:3c:a4:0b: e0:d5:e2:8c:36:85:6a:74:d9:69:84:ba:99:aa:60:fb:33:42: 1f:95:d6:b1:a5:32:9e:e7:58:93:d3:ab:14:40:74:77:a0:d2: 54:74:36:6f:8a:57:a9:58:ba:31:32:8f:56:a0:38:f1:4b:01: 7c:71:ff:85:ff:23:bb:2c:4b:92:7c:e5:8c:60:f2:03:56:a1: a3:0a:bc:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdHy74yIhNoN/k0ryUGAezGtUxWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjE0MDFaFw0yNzA1MDIwMjE5MDFaMDMxMTAvBgNV BAMTKEVDRDY2RTc2NjYwRjRGRjgzRTk4NUVBQUVEQUIwMTMxRDdBNjE1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChDLvKrkFUUsjtn9oXJZfkWcIZ XOCIFNKov+IB1ir4pSpHswe9qW2nYt5llAFw5MbAaTBrGb9jaU5HknR7dgRdPvI4 ImEJU15w+cQVSYbZbJVOFo3pCoynGKWV5Pp163xZnDryPumk8QJAiX4yAFTTdHMl NAHxA0ymoUuQyaBtjz37X/QX2hxXG3PVdLEGaIPmPM4hklLMCaJ6aRsozJEsl1QO GKGCFzcYzwQaMjc6KKaBlM1sR89z1D9od9HUPgNSXJlpYNJd5PWd/7xVzHBqCRtV YdiEEafp7F8CBxK7GbGUfX7luZ65msDFuuncBTbxdO6hbAH2voO5rZC0HKcZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7NZudmYPT/g+mF6q7asBMdemFWYwHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuhVMA0GCSqG SIb3DQEBCwUAA4IBAQBs2TJCH9KIsvxyfemXIR0olNd+gKEShqB5cGKS2oMojYIY U6J9gJ54tBynctX+os1wIflJ6tc/0edpBDd52v2w7lCFO+H8McoqkdXvdwEl2MVr o7JOBNOTQbfkBk5W0+ZDp7467Bz3SgNtX94OOc7Y4/CYWa5LBdCcUiJ3RBcnQoiF vgUESTlqqIUVAw0ppJuYXqhSQLoPWvpyg7upZfr4ENuIyqoWb0qziru0HukHziY8 pAvg1eKMNoVqdNlphLqZqmD7M0IfldaxpTKe51iT06sUQHR3oNJUdDZvilepWLox Mo9WoDjxSwF8cf+F/yO7LEuSfOWMYPIDVqGjCry2 -----END CERTIFICATE-----Generated at Wed May 13 06:15:28 2026 by rpki-client