$ rpki-client -vvf rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3232382e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: /bFeq3oJ+j4yhcHhIfucgcl6Z3OfaEag9GMIa9agARs= Subject key identifier: EF:14:10:2D:F0:31:91:6C:50:78:A0:1D:B8:18:D5:C5:97:4A:D8:DE Certificate issuer: /CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Certificate serial: 1E6D9874DA0A4D9787206DA23A2462552976EF82 Authority key identifier: 90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa Signing time: Sun 03 May 2026 02:19:44 +0000 ROA not before: Sun 03 May 2026 02:14:44 +0000 ROA not after: Sun 02 May 2027 02:19:44 +0000 asID: 38764 IP address blocks: 120.29.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:6d:98:74:da:0a:4d:97:87:20:6d:a2:3a:24:62:55:29:76:ef:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Validity Not Before: May 3 02:14:44 2026 GMT Not After : May 2 02:19:44 2027 GMT Subject: CN=EF14102DF031916C5078A01DB818D5C5974AD8DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:47:1d:6c:c8:51:3b:53:00:21:a0:29:f3:3f: be:da:38:9c:08:fa:45:ba:bb:74:4a:3b:3d:b3:7a: b1:15:0c:c3:02:76:80:6c:9c:66:67:8a:45:04:b2: c3:c6:66:43:52:7f:77:ab:20:f8:9d:7d:27:81:0b: 7b:38:1b:a8:71:98:34:62:a3:58:18:3b:df:88:1c: c9:2a:a7:dc:53:63:2a:b3:92:d0:11:23:a6:05:88: 94:18:42:10:5a:3f:1c:ec:b7:c2:8e:7b:81:2b:1f: 12:1f:5f:f9:6e:74:4f:72:e1:91:62:5a:70:92:5b: 66:cb:1f:18:48:e4:d0:74:d1:b0:d7:13:a7:b9:c4: f2:14:8d:97:55:55:23:ce:5c:44:96:f7:f0:d2:cd: a9:a8:36:0c:80:2c:37:21:39:fb:e2:02:7a:b4:5d: d2:2d:90:c6:18:ba:a3:b7:07:ad:ec:f9:28:9a:7e: 46:9f:78:76:82:81:fe:87:40:1c:c4:16:e9:c7:4b: 44:53:a9:fc:cc:c4:4f:28:84:bb:2f:15:c2:98:af: ac:9d:a1:a2:db:c3:cf:2f:a7:42:57:78:17:ec:d6: 36:b7:11:6e:6e:fc:8b:f1:41:1c:85:d0:74:26:a0: 9f:5a:40:74:09:9b:a9:80:86:94:cb:8d:36:f4:45: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:14:10:2D:F0:31:91:6C:50:78:A0:1D:B8:18:D5:C5:97:4A:D8:DE X509v3 Authority Key Identifier: keyid:90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232382e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.228.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:3e:eb:30:73:30:27:d7:77:d1:e0:e8:d6:8a:4c:7a:00:36: 1d:6b:60:40:b1:f9:ba:5d:d2:ee:13:cb:35:70:9f:a4:4d:d9: 93:09:bc:98:56:d2:5e:37:25:f5:b7:35:d9:0b:64:09:3c:74: 7b:02:ff:a9:4a:19:5f:ef:55:cc:14:5f:a9:6d:9f:f8:90:ba: 9c:0e:27:7d:3d:40:37:30:24:48:15:6a:74:64:86:84:3f:c7: f9:a2:fe:fd:ef:41:40:0b:0b:96:f8:3a:8e:d0:7b:49:c8:81: 8c:ed:ea:1a:de:01:80:83:b2:ac:f4:a5:c1:6e:b2:9f:b5:07: 19:dc:ba:85:a1:f8:f8:63:ae:64:8d:94:79:70:4d:f7:ba:dc: 17:b0:19:2e:04:07:f0:e0:2e:26:db:cc:c6:38:72:a1:7f:8b: 97:24:ff:f5:db:bc:12:ff:f2:f8:15:dd:23:f3:12:de:ca:63: 68:16:22:40:df:ec:a3:3a:d6:1d:4a:71:88:19:36:26:74:7c: 33:1f:43:d4:9c:e0:4c:87:79:56:e9:eb:ac:94:37:b0:7c:f4: 47:17:5a:e7:5c:5f:8b:6d:71:27:bd:bf:3c:81:aa:01:0e:c2: 8b:68:b7:9d:6f:43:58:b0:fb:42:61:34:e0:7e:61:b5:90:ca: 0f:8d:69:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHm2YdNoKTZeHIG2iOiRiVSl274IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBBMTQ5RkI3NTlBNkExNzZGRTRENDdGNTA4MkZBNjBD OTc2NzAyMjAeFw0yNjA1MDMwMjE0NDRaFw0yNzA1MDIwMjE5NDRaMDMxMTAvBgNV BAMTKEVGMTQxMDJERjAzMTkxNkM1MDc4QTAxREI4MThENUM1OTc0QUQ4REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhRx1syFE7UwAhoCnzP77aOJwI +kW6u3RKOz2zerEVDMMCdoBsnGZnikUEssPGZkNSf3erIPidfSeBC3s4G6hxmDRi o1gYO9+IHMkqp9xTYyqzktARI6YFiJQYQhBaPxzst8KOe4ErHxIfX/ludE9y4ZFi WnCSW2bLHxhI5NB00bDXE6e5xPIUjZdVVSPOXESW9/DSzamoNgyALDchOfviAnq0 XdItkMYYuqO3B63s+SiafkafeHaCgf6HQBzEFunHS0RTqfzMxE8ohLsvFcKYr6yd oaLbw88vp0JXeBfs1ja3EW5u/IvxQRyF0HQmoJ9aQHQJm6mAhpTLjTb0RT7zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7xQQLfAxkWxQeKAduBjVxZdK2N4wHwYDVR0j BBgwFoAUkKFJ+3Waahdv5NR/UIL6YMl2cCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIxYzljYWQtYzNiOS00NWEwLWJlYjYtYmNlNDhlMmIyMjcyLzAvOTBBMTQ5RkI3 NTlBNkExNzZGRTRENDdGNTA4MkZBNjBDOTc2NzAyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MEExNDlGQjc1OUE2QTE3NkZFNEQ0N0Y1MDgyRkE2MEM5NzY3 MDIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5DANBgkqhkiG 9w0BAQsFAAOCAQEAXj7rMHMwJ9d30eDo1opMegA2HWtgQLH5ul3S7hPLNXCfpE3Z kwm8mFbSXjcl9bc12QtkCTx0ewL/qUoZX+9VzBRfqW2f+JC6nA4nfT1ANzAkSBVq dGSGhD/H+aL+/e9BQAsLlvg6jtB7SciBjO3qGt4BgIOyrPSlwW6yn7UHGdy6haH4 +GOuZI2UeXBN97rcF7AZLgQH8OAuJtvMxjhyoX+LlyT/9du8Ev/y+BXdI/MS3spj aBYiQN/sozrWHUpxiBk2JnR8Mx9D1JzgTId5VunrrJQ3sHz0Rxda51xfi21xJ72/ PIGqAQ7Ci2i3nW9DWLD7QmE04H5htZDKD41pYA== -----END CERTIFICATE-----Generated at Wed May 13 05:24:42 2026 by rpki-client