$ rpki-client -vvf rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233312e302f32342d3234203d3e203139393035.roa File: 3132302e32392e3233312e302f32342d3234203d3e203139393035.roa (raw, json) Hash identifier: wR1gyIq5cKfCTApo9vqdO2nlAEKOlwrS+SEI5BtyjVc= Subject key identifier: 65:DF:84:5C:1A:B7:6F:F6:BD:3F:5D:49:E0:3A:14:65:F6:C0:E3:EF Certificate issuer: /CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Certificate serial: 21B1BFD735616EB222D3746398CE6592BF86866E Authority key identifier: 90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233312e302f32342d3234203d3e203139393035.roa Signing time: Sun 03 May 2026 02:19:40 +0000 ROA not before: Sun 03 May 2026 02:14:40 +0000 ROA not after: Sun 02 May 2027 02:19:40 +0000 asID: 19905 IP address blocks: 120.29.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b1:bf:d7:35:61:6e:b2:22:d3:74:63:98:ce:65:92:bf:86:86:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90A149FB759A6A176FE4D47F5082FA60C9767022 Validity Not Before: May 3 02:14:40 2026 GMT Not After : May 2 02:19:40 2027 GMT Subject: CN=65DF845C1AB76FF6BD3F5D49E03A1465F6C0E3EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:48:6a:09:e6:51:4c:f6:5d:2e:5f:09:9c:cb: f8:1b:9d:54:06:43:90:a8:37:67:36:fc:4f:f6:b0: 98:76:75:c8:ef:38:aa:9b:21:37:e2:b4:db:a1:49: 26:f3:52:b2:de:20:ec:b6:99:a3:82:c3:6f:aa:7f: 9d:dd:68:2f:2d:c1:29:0b:b2:d8:ce:fc:62:b8:86: 2b:44:2c:de:36:f1:97:00:0a:9b:11:9d:68:d9:d3: aa:e4:02:4a:4a:aa:f9:9f:17:23:2b:13:6a:6a:36: 7c:59:05:d8:6a:08:78:cf:83:48:4a:88:7a:4c:59: 19:40:4d:54:23:16:be:0c:88:b1:9b:9c:f6:79:79: fb:ff:76:b5:6c:a6:ef:1d:1a:b5:9b:65:b9:8c:8d: 60:d2:56:c3:0d:61:a5:b7:9d:68:5b:fd:a1:0e:79: 36:25:1e:f6:cf:39:54:af:c6:ae:37:9d:fa:1d:13: 39:3c:29:d8:f2:ad:f5:4e:b8:ca:ee:44:39:ed:40: 6e:0b:7c:1f:c2:22:d7:b0:6b:1b:4a:2f:5a:cf:46: 9c:c5:5f:0d:3d:d9:9c:41:e4:c5:cc:24:b7:ec:21: 76:aa:49:6d:cc:9f:b3:e8:f6:7f:69:a6:15:69:35: 7c:72:16:b1:d2:4e:3c:45:4f:8e:83:e7:1b:a7:05: eb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DF:84:5C:1A:B7:6F:F6:BD:3F:5D:49:E0:3A:14:65:F6:C0:E3:EF X509v3 Authority Key Identifier: keyid:90:A1:49:FB:75:9A:6A:17:6F:E4:D4:7F:50:82:FA:60:C9:76:70:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/90A149FB759A6A176FE4D47F5082FA60C9767022.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/90A149FB759A6A176FE4D47F5082FA60C9767022.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3233312e302f32342d3234203d3e203139393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.231.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:65:1e:ac:98:25:ff:ee:58:38:8d:a9:da:c3:c1:c9:9a:25: 34:5a:e9:1f:fa:38:c7:30:4a:c6:e2:1a:e1:2b:e6:e4:5c:4a: 92:9e:b3:7b:14:91:12:fe:41:06:7b:39:cd:4f:5f:b9:9d:f8: 98:b0:e6:0c:a6:bb:da:08:64:06:3d:39:6b:52:94:68:68:bb: 32:c6:fe:5b:44:a7:bf:5e:3d:9a:e1:ca:db:87:2f:42:04:df: 43:14:13:ef:3a:4e:4d:2a:7f:b1:9f:4a:21:75:11:05:7a:f2: a3:ed:9f:49:90:57:22:20:f7:0e:f5:ca:0c:3d:e2:bc:88:86: c5:98:40:aa:46:fd:34:d5:51:e0:c9:a0:61:f5:4b:ef:25:5c: 0d:f2:2e:f3:ea:4c:ba:fb:a3:95:5a:48:d7:cf:d6:ad:ce:b2: 54:b0:e2:d3:fd:ac:cc:91:63:19:3a:36:c6:24:33:06:aa:6b: 93:80:d9:4c:09:87:bb:6a:a0:ba:f0:c4:08:ab:3f:5a:0f:8c: df:00:e1:41:73:4e:19:12:39:3e:8a:25:77:30:e5:03:09:45: 6d:eb:84:6a:89:c6:0f:c0:d6:89:9b:9d:bf:70:40:db:e5:5e: 8d:f5:be:39:94:e2:3e:ea:b1:13:96:65:a7:c6:c4:7e:07:b7: 58:55:4d:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIbG/1zVhbrIi03RjmM5lkr+Ghm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBBMTQ5RkI3NTlBNkExNzZGRTRENDdGNTA4MkZBNjBD OTc2NzAyMjAeFw0yNjA1MDMwMjE0NDBaFw0yNzA1MDIwMjE5NDBaMDMxMTAvBgNV BAMTKDY1REY4NDVDMUFCNzZGRjZCRDNGNUQ0OUUwM0ExNDY1RjZDMEUzRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpSGoJ5lFM9l0uXwmcy/gbnVQG Q5CoN2c2/E/2sJh2dcjvOKqbITfitNuhSSbzUrLeIOy2maOCw2+qf53daC8twSkL stjO/GK4hitELN428ZcACpsRnWjZ06rkAkpKqvmfFyMrE2pqNnxZBdhqCHjPg0hK iHpMWRlATVQjFr4MiLGbnPZ5efv/drVspu8dGrWbZbmMjWDSVsMNYaW3nWhb/aEO eTYlHvbPOVSvxq43nfodEzk8KdjyrfVOuMruRDntQG4LfB/CItewaxtKL1rPRpzF Xw092ZxB5MXMJLfsIXaqSW3Mn7Po9n9pphVpNXxyFrHSTjxFT46D5xunBevFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZd+EXBq3b/a9P11J4DoUZfbA4+8wHwYDVR0j BBgwFoAUkKFJ+3Waahdv5NR/UIL6YMl2cCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjIxYzljYWQtYzNiOS00NWEwLWJlYjYtYmNlNDhlMmIyMjcyLzAvOTBBMTQ5RkI3 NTlBNkExNzZGRTRENDdGNTA4MkZBNjBDOTc2NzAyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MEExNDlGQjc1OUE2QTE3NkZFNEQ0N0Y1MDgyRkE2MEM5NzY3 MDIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyMWM5Y2FkLWMzYjktNDVhMC1i ZWI2LWJjZTQ4ZTJiMjI3Mi8wLzMxMzIzMDJlMzIzOTJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzOTM5MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHgd5zANBgkqhkiG 9w0BAQsFAAOCAQEAamUerJgl/+5YOI2p2sPByZolNFrpH/o4xzBKxuIa4Svm5FxK kp6zexSREv5BBns5zU9fuZ34mLDmDKa72ghkBj05a1KUaGi7Msb+W0Snv149muHK 24cvQgTfQxQT7zpOTSp/sZ9KIXURBXryo+2fSZBXIiD3DvXKDD3ivIiGxZhAqkb9 NNVR4MmgYfVL7yVcDfIu8+pMuvujlVpI18/Wrc6yVLDi0/2szJFjGTo2xiQzBqpr k4DZTAmHu2qguvDECKs/Wg+M3wDhQXNOGRI5PooldzDlAwlFbeuEaonGD8DWiZud v3BA2+VejfW+OZTiPuqxE5Zlp8bEfge3WFVNaQ== -----END CERTIFICATE-----Generated at Wed May 13 05:36:18 2026 by rpki-client