$ rpki-client -vvf rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa File: 3132302e32392e3233302e302f32342d3234203d3e203338373634.roa (raw, json) Hash identifier: PkQgWHfFkFDdD7JqzWkftJuZG03TTvKBUbVrhzww6Q4= Subject key identifier: 8E:0E:FC:66:63:9F:9D:93:9D:9E:D7:76:20:D2:65:ED:1F:C2:A7:8E Certificate issuer: /CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Certificate serial: 4D848A45C90F7BCA875CCA0A2801220A08A7A4C1 Authority key identifier: 90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa Signing time: Sun 03 May 2026 02:19:41 +0000 ROA not before: Sun 03 May 2026 02:14:41 +0000 ROA not after: Sun 02 May 2027 02:19:41 +0000 asID: 38764 IP address blocks: 120.29.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:84:8a:45:c9:0f:7b:ca:87:5c:ca:0a:28:01:22:0a:08:a7:a4:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Validity Not Before: May 3 02:14:41 2026 GMT Not After : May 2 02:19:41 2027 GMT Subject: CN=8E0EFC66639F9D939D9ED77620D265ED1FC2A78E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:a2:45:da:f9:f2:a0:03:4f:45:9f:9b:05: 34:88:18:6e:9e:97:db:d8:fe:87:f4:3b:d0:57:a0: 73:91:06:a4:3a:b4:de:1b:0c:a0:65:41:d4:18:ba: 87:cb:26:da:da:b6:c5:20:5f:fd:f2:3c:ef:8c:50: 75:e6:4c:1b:81:25:08:ae:fb:5e:77:61:9a:3b:d4: 1a:80:7a:f0:8d:8c:e4:8c:af:c5:ed:1d:a9:7b:2d: ff:79:bc:19:ed:9f:30:c4:e9:57:3c:79:61:80:10: ca:d7:8b:b4:e3:38:85:82:79:5b:c5:60:7d:3b:60: 6b:a3:bb:bb:bf:9e:bd:ef:35:85:b8:c1:76:1a:97: 25:e4:87:b4:45:9a:95:bf:10:95:64:b0:fd:50:b7: 20:b5:46:d1:67:dc:ee:65:ae:47:7e:2e:c7:2c:de: 57:69:01:58:65:2c:fb:74:10:78:9c:9e:b4:a0:df: 87:af:d4:b2:ad:ea:e9:af:9d:a5:72:bb:4d:5c:dd: 8b:89:58:ca:78:47:94:02:7a:db:a9:53:a3:72:c6: 0e:30:f4:ee:48:31:5e:9f:72:de:e5:ad:84:da:ec: c1:ea:22:92:19:2a:d1:e0:96:64:f5:a5:df:80:3e: 6a:a4:5c:64:9a:0d:8b:f9:74:01:a4:05:07:61:ae: d5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0E:FC:66:63:9F:9D:93:9D:9E:D7:76:20:D2:65:ED:1F:C2:A7:8E X509v3 Authority Key Identifier: keyid:90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233302e302f32342d3234203d3e203338373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.230.0/24 Signature Algorithm: sha256WithRSAEncryption 02:d1:d4:6f:92:2d:1c:5f:04:76:94:fc:36:cb:f8:41:2c:fe: fc:37:f7:0d:0d:2e:56:5a:12:a2:50:83:a6:fa:8a:65:69:63: 8e:7c:12:f8:45:97:52:19:3b:cb:72:05:4c:5a:28:75:6c:bc: 76:b2:fc:15:75:eb:39:09:f0:cd:ba:21:7e:18:e9:d8:cb:7d: 50:f7:7c:a2:52:f8:46:43:a1:94:c0:0a:1f:1c:80:d0:5e:ba: f1:f1:a4:c5:3e:e4:1e:4f:0b:a9:cb:85:a0:d9:87:fd:c8:95: 6f:96:73:b5:1a:d4:37:3c:71:f2:ea:61:01:7e:51:7b:6c:c4: 1d:9d:d9:b1:e8:73:a7:44:33:77:ce:80:09:88:a4:20:18:be: 69:92:3e:dd:d9:0b:b5:ee:a6:ce:6e:0f:b8:a4:80:32:1b:25: 98:33:24:1e:12:e7:0b:b0:48:01:c1:b4:8a:d1:78:9d:b2:66: f5:3a:ea:27:2c:e1:66:d2:51:43:c5:c0:fe:1c:17:4e:44:ce: a1:11:15:ea:f3:cb:90:6e:26:5c:86:ae:38:b6:e6:3f:6d:56: 17:0e:a0:bd:c0:58:0d:75:0f:93:31:82:53:c0:d5:64:78:a2: db:04:24:e6:64:a7:dd:0a:8f:82:0c:7b:6f:0c:db:1e:0d:d9: a7:85:f8:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTYSKRckPe8qHXMoKKAEiCginpMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBBMTQ5RkI3NTlBNkExNzZGRTRENDdGNTA4MkZBNjBD OTc2NzAyMjAeFw0yNjA1MDMwMjE0NDFaFw0yNzA1MDIwMjE5NDFaMDMxMTAvBgNV BAMTKDhFMEVGQzY2NjM5RjlEOTM5RDlFRDc3NjIwRDI2NUVEMUZDMkE3OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+i6JF2vnyoANPRZ+bBTSIGG6e l9vY/of0O9BXoHORBqQ6tN4bDKBlQdQYuofLJtratsUgX/3yPO+MUHXmTBuBJQiu +153YZo71BqAevCNjOSMr8XtHal7Lf95vBntnzDE6Vc8eWGAEMrXi7TjOIWCeVvF YH07YGuju7u/nr3vNYW4wXYalyXkh7RFmpW/EJVksP1QtyC1RtFn3O5lrkd+Lscs 3ldpAVhlLPt0EHicnrSg34ev1LKt6umvnaVyu01c3YuJWMp4R5QCetupU6Nyxg4w 9O5IMV6fct7lrYTa7MHqIpIZKtHglmT1pd+APmqkXGSaDYv5dAGkBQdhrtWXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjg78ZmOfnZOdntd2INJl7R/Cp44wHwYDVR0j BBgwFoAUkKFJ+3Waahdv5NR/UIL6YMl2cCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIxYzljYWQtYzNiOS00NWEwLWJlYjYtYmNlNDhlMmIyMjcyLzAvOTBBMTQ5RkI3 NTlBNkExNzZGRTRENDdGNTA4MkZBNjBDOTc2NzAyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MEExNDlGQjc1OUE2QTE3NkZFNEQ0N0Y1MDgyRkE2MEM5NzY3 MDIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5jANBgkqhkiG 9w0BAQsFAAOCAQEAAtHUb5ItHF8EdpT8Nsv4QSz+/Df3DQ0uVloSolCDpvqKZWlj jnwS+EWXUhk7y3IFTFoodWy8drL8FXXrOQnwzbohfhjp2Mt9UPd8olL4RkOhlMAK HxyA0F668fGkxT7kHk8LqcuFoNmH/ciVb5ZztRrUNzxx8uphAX5Re2zEHZ3Zsehz p0Qzd86ACYikIBi+aZI+3dkLte6mzm4PuKSAMhslmDMkHhLnC7BIAcG0itF4nbJm 9TrqJyzhZtJRQ8XA/hwXTkTOoREV6vPLkG4mXIauOLbmP21WFw6gvcBYDXUPkzGC U8DVZHii2wQk5mSn3QqPggx7bwzbHg3Zp4X4zQ== -----END CERTIFICATE-----Generated at Wed May 13 04:16:24 2026 by rpki-client