$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3132382e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: LFWm0EcZVdKQjPdOneLLEFWhQfSN5g3Hf6HGlVqHaI8= Subject key identifier: 7D:54:76:B9:02:E3:BE:8B:B5:E6:4A:B8:BD:03:1B:52:90:77:8B:55 Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 619062DEA3AE3CCAF41F824C7BF5D7B0D2EE47FB Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa Signing time: Sun 03 May 2026 02:21:30 +0000 ROA not before: Sun 03 May 2026 02:16:30 +0000 ROA not after: Sun 02 May 2027 02:21:30 +0000 asID: 45306 IP address blocks: 119.15.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:90:62:de:a3:ae:3c:ca:f4:1f:82:4c:7b:f5:d7:b0:d2:ee:47:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:30 2026 GMT Not After : May 2 02:21:30 2027 GMT Subject: CN=7D5476B902E3BE8BB5E64AB8BD031B5290778B55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b2:69:6b:88:c8:27:88:23:96:3b:8d:21:f3: 9b:35:78:34:5b:6f:2c:4a:5c:bd:64:d1:88:84:1e: 39:fe:8e:05:7a:10:51:36:73:46:31:db:5c:5a:75: b6:e6:aa:ff:19:1d:ff:26:3e:07:7e:dd:fd:33:46: cf:ae:81:3a:54:22:52:2f:86:22:b6:92:f6:0b:a3: 67:58:2b:35:78:11:9a:f5:75:a2:7b:0e:37:11:99: 86:62:01:f6:57:58:e1:82:92:36:68:68:55:3f:2e: 9a:a5:03:6d:44:b9:61:0e:dd:fe:73:e8:cd:c2:82: cf:47:71:e1:09:46:82:a0:17:df:87:90:52:6d:b8: 0a:be:a8:61:c0:ac:c9:21:8e:3d:04:68:26:10:fe: c4:39:92:18:16:f3:8b:3c:bd:3a:df:08:c0:e5:23: 31:b6:ba:c0:dd:a3:5f:b2:bc:58:d8:91:34:b0:28: 62:e2:ab:92:17:35:25:76:ff:f6:08:16:ce:1f:3e: 7c:01:a9:86:1b:5a:f8:42:1f:6a:91:a2:52:73:2d: a4:be:c1:ed:83:ed:ff:fc:8b:53:0b:81:af:7e:d3: 08:89:a3:58:51:fa:51:8d:ad:ad:7a:49:38:ad:49: 9f:30:73:4c:ff:41:ed:3c:d1:1c:06:e5:5e:06:2d: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:54:76:B9:02:E3:BE:8B:B5:E6:4A:B8:BD:03:1B:52:90:77:8B:55 X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3132382e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:9a:02:e6:3f:7a:b8:ba:ec:c2:e8:4f:bf:93:25:c8:97:f6: 71:24:fc:45:ba:a7:c8:11:a2:56:bf:e7:82:50:06:26:fb:b6: e4:34:fe:29:93:6c:56:6b:b6:aa:88:c6:ef:29:03:a1:12:f4: 09:46:5b:c3:86:99:bb:3d:e4:95:e4:7d:b0:60:00:40:5d:b3: 67:ff:44:01:a7:57:a9:31:4f:5b:bf:27:14:94:24:7f:99:8a: 10:f5:de:d4:d9:be:0f:28:19:ac:eb:c8:31:6c:48:d2:08:34: 62:7c:ae:80:bc:ba:91:5d:37:fa:22:65:c9:2c:a2:2f:62:f2: 51:b1:da:32:a7:b8:22:de:61:3e:6e:99:6a:11:6e:8a:11:b1: cb:21:68:15:25:39:2a:2b:b8:53:24:48:c7:46:b4:92:40:7a: 2c:47:26:0b:79:27:56:fd:ec:ee:9c:dc:86:f4:9a:c8:79:87: fb:3c:58:8b:51:f8:24:cc:ed:4c:b2:35:46:c5:6f:cf:57:73: a8:65:ae:23:79:ab:03:0c:e2:bf:bf:6b:c8:8a:d9:6c:4d:d7: 59:a8:1d:19:cc:b9:cb:29:06:e6:60:9f:c8:7d:7e:e3:23:9a: c5:e3:61:ba:3d:3e:59:6a:8b:05:cd:90:20:35:19:97:2b:e1: df:09:b1:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYZBi3qOuPMr0H4JMe/XXsNLuR/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzBaFw0yNzA1MDIwMjIxMzBaMDMxMTAvBgNV BAMTKDdENTQ3NkI5MDJFM0JFOEJCNUU2NEFCOEJEMDMxQjUyOTA3NzhCNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4smlriMgniCOWO40h85s1eDRb byxKXL1k0YiEHjn+jgV6EFE2c0Yx21xadbbmqv8ZHf8mPgd+3f0zRs+ugTpUIlIv hiK2kvYLo2dYKzV4EZr1daJ7DjcRmYZiAfZXWOGCkjZoaFU/LpqlA21EuWEO3f5z 6M3Cgs9HceEJRoKgF9+HkFJtuAq+qGHArMkhjj0EaCYQ/sQ5khgW84s8vTrfCMDl IzG2usDdo1+yvFjYkTSwKGLiq5IXNSV2//YIFs4fPnwBqYYbWvhCH2qRolJzLaS+ we2D7f/8i1MLga9+0wiJo1hR+lGNra16STitSZ8wc0z/Qe080RwG5V4GLZIBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfVR2uQLjvou15kq4vQMbUpB3i1UwHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgDANBgkqhkiG 9w0BAQsFAAOCAQEAD5oC5j96uLrswuhPv5MlyJf2cST8RbqnyBGiVr/nglAGJvu2 5DT+KZNsVmu2qojG7ykDoRL0CUZbw4aZuz3kleR9sGAAQF2zZ/9EAadXqTFPW78n FJQkf5mKEPXe1Nm+DygZrOvIMWxI0gg0YnyugLy6kV03+iJlySyiL2LyUbHaMqe4 It5hPm6ZahFuihGxyyFoFSU5Kiu4UyRIx0a0kkB6LEcmC3knVv3s7pzchvSayHmH +zxYi1H4JMztTLI1RsVvz1dzqGWuI3mrAwziv79ryIrZbE3XWagdGcy5yykG5mCf yH1+4yOaxeNhuj0+WWqLBc2QIDUZlyvh3wmx7Q== -----END CERTIFICATE-----Generated at Wed May 13 08:39:46 2026 by rpki-client