$ rpki-client -vvf rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232352e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: ZyVnCGfpVMbL3rPs3FU6HbGvjwN2cgfbIIbFeRp+eSg= Subject key identifier: 3A:39:80:22:88:82:12:E0:B2:FF:A7:65:A2:FD:41:DC:0A:2F:FF:FF Certificate issuer: /CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Certificate serial: 527AABAC099746FDDA7E7055A7ED081087704E4A Authority key identifier: 90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa Signing time: Sun 03 May 2026 02:19:42 +0000 ROA not before: Sun 03 May 2026 02:14:42 +0000 ROA not after: Sun 02 May 2027 02:19:42 +0000 asID: 38764 IP address blocks: 120.29.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:7a:ab:ac:09:97:46:fd:da:7e:70:55:a7:ed:08:10:87:70:4e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Validity Not Before: May 3 02:14:42 2026 GMT Not After : May 2 02:19:42 2027 GMT Subject: CN=3A398022888212E0B2FFA765A2FD41DC0A2FFFFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:91:12:86:44:1f:df:04:6d:0c:f1:2f:39:bd: ab:96:e1:17:37:9b:a3:b9:19:d3:f1:f0:f4:09:65: 5d:c2:97:0a:eb:69:a0:92:cb:33:c1:36:54:51:58: c9:59:52:e4:9e:92:6c:5f:53:58:2f:05:30:1c:41: 70:3f:dc:66:57:8b:6a:6a:72:e5:91:33:73:f6:0b: d4:53:f9:fc:b9:69:4d:86:0f:fe:d3:f7:ff:af:80: 89:46:cd:a2:f4:26:f7:73:9c:b3:9d:d9:c9:54:27: 53:70:c5:12:d3:60:dd:97:8f:d3:bb:ef:95:59:ff: c3:de:ec:8a:ff:33:35:6d:b2:a9:26:6d:7a:28:50: 5b:11:10:23:92:4e:63:d5:05:36:46:e9:ed:af:db: 20:05:df:31:00:2f:dd:ad:ec:8b:f0:5f:c4:73:15: a0:89:1f:11:bb:af:fe:cd:0d:e4:0f:dd:d4:c8:35: ff:0f:72:29:f8:6d:c2:49:47:d1:46:dc:b5:c5:44: 90:a8:c4:32:2a:2d:5a:48:e8:30:82:1b:34:2c:cb: 9d:07:ba:a1:13:48:ce:f2:87:16:c9:09:51:b5:b8: 8f:64:9a:b1:9b:d3:9f:c8:ec:32:e5:b9:a2:8f:e1: 06:76:67:3c:ea:e6:53:81:33:ca:fb:c5:17:31:ad: 72:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:39:80:22:88:82:12:E0:B2:FF:A7:65:A2:FD:41:DC:0A:2F:FF:FF X509v3 Authority Key Identifier: keyid:90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232352e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.225.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:97:1e:ca:6e:af:5a:85:6d:40:0f:ff:55:53:ff:0d:24:ad: 9b:cf:f9:0f:9e:cd:b2:f0:e1:a2:62:72:59:c1:63:0d:f3:5d: db:b5:59:b7:56:77:c6:a4:0f:08:dc:df:be:f4:00:32:5e:d4: 7e:e3:d6:0d:fb:8f:ee:0e:d8:54:58:de:ac:38:cd:52:6d:ae: ab:e5:2c:bb:e7:3f:3b:3f:ad:51:31:ce:ba:2b:bd:6a:39:a2: 29:92:d5:22:af:ce:30:31:2a:8c:78:89:4e:32:c3:89:bd:6a: 92:40:92:be:13:35:33:05:cd:56:bd:9b:83:ec:ba:54:a2:64: c2:f3:8e:2c:bb:4d:c7:2c:86:9d:eb:95:3d:c5:a7:fa:5a:0d: 4c:71:f3:85:f3:a7:bb:9e:4c:af:c5:b0:4f:4b:08:be:17:c0: c0:6b:70:47:cd:8e:d4:38:a1:e2:d7:30:91:14:7a:11:bc:44: 32:5e:e8:08:8a:2a:fc:93:25:01:22:b1:33:cd:00:e2:e2:f5: ee:ef:3d:e1:be:a8:13:26:4b:db:e2:14:ac:26:12:4c:18:94: 5d:0d:c0:32:43:f6:ad:f3:1c:7b:24:9c:b1:81:88:30:48:ba: be:61:69:8d:c1:cb:d0:3a:82:85:c6:e6:b7:37:b1:b1:48:fe: 44:61:26:8b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUnqrrAmXRv3afnBVp+0IEIdwTkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBBMTQ5RkI3NTlBNkExNzZGRTRENDdGNTA4MkZBNjBD OTc2NzAyMjAeFw0yNjA1MDMwMjE0NDJaFw0yNzA1MDIwMjE5NDJaMDMxMTAvBgNV BAMTKDNBMzk4MDIyODg4MjEyRTBCMkZGQTc2NUEyRkQ0MURDMEEyRkZGRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCokRKGRB/fBG0M8S85vauW4Rc3 m6O5GdPx8PQJZV3ClwrraaCSyzPBNlRRWMlZUuSekmxfU1gvBTAcQXA/3GZXi2pq cuWRM3P2C9RT+fy5aU2GD/7T9/+vgIlGzaL0JvdznLOd2clUJ1NwxRLTYN2Xj9O7 75VZ/8Pe7Ir/MzVtsqkmbXooUFsRECOSTmPVBTZG6e2v2yAF3zEAL92t7IvwX8Rz FaCJHxG7r/7NDeQP3dTINf8Pcin4bcJJR9FG3LXFRJCoxDIqLVpI6DCCGzQsy50H uqETSM7yhxbJCVG1uI9kmrGb05/I7DLluaKP4QZ2Zzzq5lOBM8r7xRcxrXIVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOjmAIoiCEuCy/6dlov1B3Aov//8wHwYDVR0j BBgwFoAUkKFJ+3Waahdv5NR/UIL6YMl2cCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIxYzljYWQtYzNiOS00NWEwLWJlYjYtYmNlNDhlMmIyMjcyLzAvOTBBMTQ5RkI3 NTlBNkExNzZGRTRENDdGNTA4MkZBNjBDOTc2NzAyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MEExNDlGQjc1OUE2QTE3NkZFNEQ0N0Y1MDgyRkE2MEM5NzY3 MDIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd4TANBgkqhkiG 9w0BAQsFAAOCAQEALJceym6vWoVtQA//VVP/DSStm8/5D57NsvDhomJyWcFjDfNd 27VZt1Z3xqQPCNzfvvQAMl7UfuPWDfuP7g7YVFjerDjNUm2uq+Usu+c/Oz+tUTHO uiu9ajmiKZLVIq/OMDEqjHiJTjLDib1qkkCSvhM1MwXNVr2bg+y6VKJkwvOOLLtN xyyGneuVPcWn+loNTHHzhfOnu55Mr8WwT0sIvhfAwGtwR82O1Dih4tcwkRR6EbxE Ml7oCIoq/JMlASKxM80A4uL17u894b6oEyZL2+IUrCYSTBiUXQ3AMkP2rfMceySc sYGIMEi6vmFpjcHL0DqChcbmtzexsUj+RGEmiw== -----END CERTIFICATE-----Generated at Wed May 13 05:44:30 2026 by rpki-client