$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133302e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133302e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: 9qfFoBhiNHzp+LreK9FNs3OMOxGnSUcOBWmf2OnEzeE= Subject key identifier: A8:B9:0A:E4:2F:F5:4D:68:08:EA:37:05:74:B6:EB:C7:ED:AB:6E:4A Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 215348D7AEB11A3BAF835D27B28B2EE38D5970FA Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133302e302f32342d3234203d3e203435333036.roa Signing time: Sun 03 May 2026 02:21:35 +0000 ROA not before: Sun 03 May 2026 02:16:35 +0000 ROA not after: Sun 02 May 2027 02:21:35 +0000 asID: 45306 IP address blocks: 119.15.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:53:48:d7:ae:b1:1a:3b:af:83:5d:27:b2:8b:2e:e3:8d:59:70:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:35 2026 GMT Not After : May 2 02:21:35 2027 GMT Subject: CN=A8B90AE42FF54D6808EA370574B6EBC7EDAB6E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:28:cf:4b:1d:cf:1f:cf:9c:91:bd:72:8c:b7: cc:5e:e7:ad:a9:54:ca:ad:11:0f:21:39:c2:28:54: fa:da:b4:7e:91:b1:44:41:20:cc:9d:41:af:eb:e7: 68:f1:a5:2d:93:9f:7a:fb:64:db:d9:5d:e3:38:80: f3:33:81:4e:f4:8c:7f:e8:d1:ca:07:b5:84:25:02: c9:98:8d:19:e5:fd:3c:33:85:7d:29:79:da:46:88: 97:55:23:d1:c0:4e:e1:19:6b:36:a0:66:a2:44:d9: 64:bb:74:c1:27:07:ae:df:60:48:37:b1:b7:cd:f0: 47:a7:8c:b5:50:8a:f6:fc:3b:f3:6c:32:84:28:de: 87:e5:0d:56:df:4b:80:3f:f8:5c:63:52:f7:47:2d: f2:da:6c:ea:3e:17:47:46:8b:95:f4:e9:9f:18:45: 4d:4f:e3:34:fa:3b:d0:54:05:a7:f4:b3:af:5b:a0: ad:be:47:e2:23:e6:25:c7:d9:81:9b:8e:8e:d4:44: 70:73:e0:15:34:31:4d:a1:07:d1:2a:36:1a:b4:c4: ff:4d:5c:33:ed:0d:e0:9a:72:b7:87:8e:a0:ea:e7: 63:98:3f:42:3e:e1:59:bb:95:f6:76:95:fe:54:61: 3f:57:97:98:23:02:9f:ae:79:5c:c8:b7:cb:6a:12: f8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B9:0A:E4:2F:F5:4D:68:08:EA:37:05:74:B6:EB:C7:ED:AB:6E:4A X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133302e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.130.0/24 Signature Algorithm: sha256WithRSAEncryption 56:bd:fe:b1:28:76:a5:12:b0:fb:4d:05:51:b5:3d:21:1b:03: 43:3c:69:8d:11:7e:c8:15:56:76:b6:5b:55:c0:97:09:b0:9f: 58:60:f5:dc:cf:24:49:98:d6:f1:ee:7a:21:c3:10:09:6d:95: 49:7a:6a:7e:8c:2c:77:8c:d2:13:71:a0:b5:7e:70:02:d7:31: 7a:49:29:4e:ef:d3:8d:98:80:1b:85:67:20:27:34:2f:06:8c: 94:ce:c5:ff:3e:56:3f:7d:7d:c7:74:90:f4:c0:84:f4:4a:4a: 6f:4b:5e:ac:63:23:70:8d:c7:05:1a:82:bc:bf:6e:87:9b:eb: b5:c7:71:c7:ce:d3:eb:f7:99:aa:83:c9:04:51:1a:7e:ae:7d: 99:65:42:1f:9e:7d:64:18:24:75:65:b9:74:57:09:a0:9b:1b: d7:79:41:c7:b3:1a:a2:da:51:f1:a2:ec:f8:18:d3:5b:28:f8: e8:3a:a5:7e:df:e4:56:0e:0d:3f:fb:d8:5b:d2:3c:c8:33:d2: ef:78:af:75:c0:fc:e7:84:f9:29:76:46:93:f9:cc:42:ee:3c: 53:29:51:86:c8:99:93:6e:b5:86:62:1f:7b:c5:09:dd:38:dc: f0:2a:8b:06:88:8f:ed:43:c6:86:3c:69:f9:8e:e7:82:80:49: ba:72:2c:b7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIVNI166xGjuvg10nsosu441ZcPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzVaFw0yNzA1MDIwMjIxMzVaMDMxMTAvBgNV BAMTKEE4QjkwQUU0MkZGNTRENjgwOEVBMzcwNTc0QjZFQkM3RURBQjZFNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBKM9LHc8fz5yRvXKMt8xe562p VMqtEQ8hOcIoVPratH6RsURBIMydQa/r52jxpS2Tn3r7ZNvZXeM4gPMzgU70jH/o 0coHtYQlAsmYjRnl/TwzhX0pedpGiJdVI9HATuEZazagZqJE2WS7dMEnB67fYEg3 sbfN8EenjLVQivb8O/NsMoQo3oflDVbfS4A/+FxjUvdHLfLabOo+F0dGi5X06Z8Y RU1P4zT6O9BUBaf0s69boK2+R+Ij5iXH2YGbjo7URHBz4BU0MU2hB9EqNhq0xP9N XDPtDeCacreHjqDq52OYP0I+4Vm7lfZ2lf5UYT9Xl5gjAp+ueVzIt8tqEvhpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqLkK5C/1TWgI6jcFdLbrx+2rbkowHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPgjANBgkqhkiG 9w0BAQsFAAOCAQEAVr3+sSh2pRKw+00FUbU9IRsDQzxpjRF+yBVWdrZbVcCXCbCf WGD13M8kSZjW8e56IcMQCW2VSXpqfowsd4zSE3GgtX5wAtcxekkpTu/TjZiAG4Vn ICc0LwaMlM7F/z5WP319x3SQ9MCE9EpKb0terGMjcI3HBRqCvL9uh5vrtcdxx87T 6/eZqoPJBFEafq59mWVCH559ZBgkdWW5dFcJoJsb13lBx7MaotpR8aLs+BjTWyj4 6Dqlft/kVg4NP/vYW9I8yDPS73ivdcD854T5KXZGk/nMQu48UylRhsiZk261hmIf e8UJ3Tjc8CqLBoiP7UPGhjxp+Y7ngoBJunIstw== -----END CERTIFICATE-----Generated at Wed May 13 09:11:46 2026 by rpki-client