$ rpki-client -vvf rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: ckYh7W2IVtz0AntnQ+PueP5/KAoXf5rAosyZM59PhNk= Subject key identifier: DC:69:EB:6F:F8:1E:61:69:AE:4A:98:4F:DF:19:C3:5E:B6:8F:20:1E Certificate issuer: /CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Certificate serial: 6DAF7B67D569BA18D9BB78E213D4EE690B72EC61 Authority key identifier: 90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa Signing time: Sun 03 May 2026 02:19:41 +0000 ROA not before: Sun 03 May 2026 02:14:41 +0000 ROA not after: Sun 02 May 2027 02:19:41 +0000 asID: 38764 IP address blocks: 120.29.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:af:7b:67:d5:69:ba:18:d9:bb:78:e2:13:d4:ee:69:0b:72:ec:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Validity Not Before: May 3 02:14:41 2026 GMT Not After : May 2 02:19:41 2027 GMT Subject: CN=DC69EB6FF81E6169AE4A984FDF19C35EB68F201E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1c:2a:e1:f5:6f:63:b4:bc:a1:63:49:11:0b: 2c:fd:fd:88:54:43:82:21:ee:cd:5c:1e:7a:b6:97: 0d:e8:ff:ad:3c:82:e0:fa:75:35:c5:a7:94:ed:60: c3:d6:d1:93:1d:54:f8:5e:5d:77:83:f1:d2:cd:bc: f0:86:78:1a:44:87:c2:bf:ee:c3:ca:1e:71:ac:a0: d7:a2:4c:c8:9e:5f:38:39:48:29:79:d4:6f:61:a7: 2b:39:ba:36:42:b3:93:35:24:a0:5b:0e:f7:f6:8a: 8c:ef:29:c9:17:0c:a7:70:7c:14:fa:93:10:b7:07: e8:6a:92:1d:ae:33:cb:da:8f:bf:a5:40:41:5f:1d: 30:b8:59:57:59:e1:2c:12:f1:f1:7f:3c:b2:bf:de: aa:03:67:c3:2c:7c:18:ee:ed:96:5c:f2:1b:80:39: 10:f1:31:22:4a:2e:d5:9a:1c:60:49:4c:5f:8e:b2: b4:0f:83:aa:2e:5a:55:71:e3:05:0e:e8:ab:75:c5: fa:a2:8b:77:92:fd:33:f6:8d:e8:e1:3c:fe:ba:05: 98:3f:c9:be:06:72:fb:eb:be:dc:f8:f5:d1:92:7a: 83:82:5e:36:a7:66:c6:ef:e6:fc:f7:2c:80:43:d1: 9c:d4:99:30:9b:25:1b:13:ef:95:0e:ba:73:7c:d6: f9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:69:EB:6F:F8:1E:61:69:AE:4A:98:4F:DF:19:C3:5E:B6:8F:20:1E X509v3 Authority Key Identifier: keyid:90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.226.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:d5:60:98:87:c9:7d:b6:88:ee:fd:49:e1:42:6d:b0:22:27: 49:dd:96:13:ad:ae:c4:ad:23:a6:17:f7:2b:73:c9:13:b6:76: 88:03:c0:f9:5e:a5:57:db:57:fe:99:bf:0b:31:90:21:8c:f0: 46:e1:c0:c9:5a:0d:58:db:50:5e:14:79:2d:bb:6d:0e:9f:91: a2:f9:8a:9b:9d:bf:04:c4:bc:aa:65:ae:2e:4c:8e:8e:cf:c6: 8d:70:a0:be:ff:11:f7:b3:98:54:c9:48:a5:8e:79:ac:61:5a: c6:35:f5:1e:b7:f8:67:4f:5b:a0:b9:bf:51:0c:25:ae:b4:91: aa:10:94:df:ef:86:db:ad:5b:b3:c9:38:e8:04:39:33:9a:cf: 02:3e:3c:43:b6:c1:d6:40:1e:28:7c:4f:dd:67:cc:f6:9a:53: 11:29:57:e3:f8:d0:02:fa:f2:9e:f4:7c:b9:3c:2d:d2:e0:db: d1:a6:a0:3c:e5:44:ba:bb:a0:04:52:9c:fe:45:3e:5f:b0:36: 6b:9d:19:b2:a0:64:e7:15:87:a8:f7:e3:5a:3f:bf:57:d9:92: 5b:d2:d6:1e:d1:1b:86:48:7d:fd:1d:e9:33:43:f1:7e:8a:4c: 93:be:26:f1:cc:b4:14:fb:cf:75:c0:64:9d:5e:a7:65:e5:d9: ca:63:11:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUba97Z9VpuhjZu3jiE9TuaQty7GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBBMTQ5RkI3NTlBNkExNzZGRTRENDdGNTA4MkZBNjBD OTc2NzAyMjAeFw0yNjA1MDMwMjE0NDFaFw0yNzA1MDIwMjE5NDFaMDMxMTAvBgNV BAMTKERDNjlFQjZGRjgxRTYxNjlBRTRBOTg0RkRGMTlDMzVFQjY4RjIwMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGHCrh9W9jtLyhY0kRCyz9/YhU Q4Ih7s1cHnq2lw3o/608guD6dTXFp5TtYMPW0ZMdVPheXXeD8dLNvPCGeBpEh8K/ 7sPKHnGsoNeiTMieXzg5SCl51G9hpys5ujZCs5M1JKBbDvf2iozvKckXDKdwfBT6 kxC3B+hqkh2uM8vaj7+lQEFfHTC4WVdZ4SwS8fF/PLK/3qoDZ8MsfBju7ZZc8huA ORDxMSJKLtWaHGBJTF+OsrQPg6ouWlVx4wUO6Kt1xfqii3eS/TP2jejhPP66BZg/ yb4Gcvvrvtz49dGSeoOCXjanZsbv5vz3LIBD0ZzUmTCbJRsT75UOunN81vlTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3Gnrb/geYWmuSphP3xnDXraPIB4wHwYDVR0j BBgwFoAUkKFJ+3Waahdv5NR/UIL6YMl2cCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIxYzljYWQtYzNiOS00NWEwLWJlYjYtYmNlNDhlMmIyMjcyLzAvOTBBMTQ5RkI3 NTlBNkExNzZGRTRENDdGNTA4MkZBNjBDOTc2NzAyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MEExNDlGQjc1OUE2QTE3NkZFNEQ0N0Y1MDgyRkE2MEM5NzY3 MDIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd4jANBgkqhkiG 9w0BAQsFAAOCAQEAP9VgmIfJfbaI7v1J4UJtsCInSd2WE62uxK0jphf3K3PJE7Z2 iAPA+V6lV9tX/pm/CzGQIYzwRuHAyVoNWNtQXhR5LbttDp+RovmKm52/BMS8qmWu LkyOjs/GjXCgvv8R97OYVMlIpY55rGFaxjX1Hrf4Z09boLm/UQwlrrSRqhCU3++G 261bs8k46AQ5M5rPAj48Q7bB1kAeKHxP3WfM9ppTESlX4/jQAvrynvR8uTwt0uDb 0aagPOVEurugBFKc/kU+X7A2a50ZsqBk5xWHqPfjWj+/V9mSW9LWHtEbhkh9/R3p M0PxfopMk74m8cy0FPvPdcBknV6nZeXZymMRAA== -----END CERTIFICATE-----Generated at Wed May 13 05:43:20 2026 by rpki-client