$ rpki-client -vvf rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133322e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: 9+aWSYM5qln+RUD+mRbEe6cHjWT6vF9wbMbOOp4+klI= Subject key identifier: 8B:1C:A1:3F:19:94:CA:2C:53:0A:93:66:AF:16:4C:A6:C0:26:BD:86 Certificate issuer: /CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Certificate serial: 15B48A801DD000C0AEF5984319BEFDFDF049ED61 Authority key identifier: 72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa Signing time: Sun 03 May 2026 02:21:31 +0000 ROA not before: Sun 03 May 2026 02:16:31 +0000 ROA not after: Sun 02 May 2027 02:21:31 +0000 asID: 45306 IP address blocks: 119.15.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b4:8a:80:1d:d0:00:c0:ae:f5:98:43:19:be:fd:fd:f0:49:ed:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7229DFE2E0A3A570A93521601EB1A61FC0CEAE07 Validity Not Before: May 3 02:16:31 2026 GMT Not After : May 2 02:21:31 2027 GMT Subject: CN=8B1CA13F1994CA2C530A9366AF164CA6C026BD86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:54:20:ef:41:b1:da:fd:95:6a:c5:83:f8:ef: 4b:40:9b:fd:40:74:47:86:de:d7:6e:1f:d8:28:70: e7:36:b9:03:84:68:a1:38:19:f9:70:2c:63:a0:19: 8a:89:90:ea:9b:ee:a5:ce:4d:57:19:8b:02:51:d6: c1:2a:d0:78:4c:1e:eb:bb:bc:cf:e3:e7:41:b2:5d: ee:30:17:44:65:6b:1f:f5:58:a5:c4:72:dd:e3:da: 4d:0d:d5:ad:56:20:34:6e:0a:8c:e7:05:50:91:22: ce:12:f6:be:0e:09:a9:7a:2f:a4:49:87:88:94:11: cf:a1:71:52:6a:21:bc:6a:ee:a2:a0:5d:fd:0d:84: fd:bc:19:aa:1e:26:f2:0b:1e:a7:a2:ae:8c:d9:1a: 92:69:e2:1e:3c:9f:75:20:91:b2:b6:71:4c:50:90: f5:52:6e:8a:3a:19:01:8d:50:6e:68:01:c7:1a:77: 8b:c3:e6:22:a1:d8:61:cd:5a:35:2b:ea:61:55:09: 2d:73:5b:a8:ec:3a:b7:fe:52:62:ef:b9:b1:3d:3d: 59:d0:de:03:62:4f:ac:dd:0f:2b:e1:74:65:a3:55: 05:d7:e4:29:e7:7d:ff:75:8b:88:91:eb:a6:6e:24: 85:96:fc:04:e8:90:b1:53:e2:64:51:03:69:0d:16: d1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1C:A1:3F:19:94:CA:2C:53:0A:93:66:AF:16:4C:A6:C0:26:BD:86 X509v3 Authority Key Identifier: keyid:72:29:DF:E2:E0:A3:A5:70:A9:35:21:60:1E:B1:A6:1F:C0:CE:AE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7229DFE2E0A3A570A93521601EB1A61FC0CEAE07.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.132.0/24 Signature Algorithm: sha256WithRSAEncryption 78:cb:84:0e:50:5b:ac:ac:f2:7c:fa:48:d7:68:57:4b:e5:36: e1:5e:21:d9:63:13:65:04:77:ac:fc:1d:6b:d1:bf:e3:75:fc: fd:5b:b4:13:ad:b4:13:f7:5c:77:87:ac:72:9b:d2:07:10:67: 8b:f8:e6:bd:25:c6:82:95:bc:16:5c:37:d6:62:4c:e7:db:2c: f5:be:47:b3:fd:36:5e:e6:ba:3d:d4:99:71:ed:28:2b:16:b7: aa:5f:b7:f6:07:bd:23:3b:9c:51:a9:2f:18:18:64:e4:20:e7: 59:91:49:09:95:80:3e:50:4c:b9:40:9b:05:bd:20:d1:9a:51: 92:31:6b:2d:dd:3c:43:88:62:24:19:65:10:6d:99:e1:32:0b: 27:7b:52:9e:84:f9:05:81:a5:8c:b6:67:45:8b:9e:e2:d2:1a: fa:ae:6e:8e:ca:44:e8:1b:97:0e:44:3a:e1:62:2a:6d:68:c3: 7b:08:46:38:26:ad:04:cf:37:bf:4e:04:3b:40:09:a4:9d:b1: 56:b9:d0:d0:dc:53:d3:a6:d1:1b:16:8f:9e:8a:33:64:bc:e1: 6b:c7:90:74:6c:a3:47:18:00:23:24:38:be:68:34:df:d6:68: b3:36:f6:a7:9e:59:fe:43:fd:ba:1c:76:fe:45:a6:59:6d:1a: 15:37:ec:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFbSKgB3QAMCu9ZhDGb79/fBJ7WEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyOURGRTJFMEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZD MENFQUUwNzAeFw0yNjA1MDMwMjE2MzFaFw0yNzA1MDIwMjIxMzFaMDMxMTAvBgNV BAMTKDhCMUNBMTNGMTk5NENBMkM1MzBBOTM2NkFGMTY0Q0E2QzAyNkJEODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWVCDvQbHa/ZVqxYP470tAm/1A dEeG3tduH9gocOc2uQOEaKE4GflwLGOgGYqJkOqb7qXOTVcZiwJR1sEq0HhMHuu7 vM/j50GyXe4wF0Rlax/1WKXEct3j2k0N1a1WIDRuCoznBVCRIs4S9r4OCal6L6RJ h4iUEc+hcVJqIbxq7qKgXf0NhP28GaoeJvILHqeirozZGpJp4h48n3UgkbK2cUxQ kPVSboo6GQGNUG5oAccad4vD5iKh2GHNWjUr6mFVCS1zW6jsOrf+UmLvubE9PVnQ 3gNiT6zdDyvhdGWjVQXX5Cnnff91i4iR66ZuJIWW/ATokLFT4mRRA2kNFtElAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUixyhPxmUyixTCpNmrxZMpsAmvYYwHwYDVR0j BBgwFoAUcinf4uCjpXCpNSFgHrGmH8DOrgcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjlhYjYwYjEtYTI0NC00YTc4LWIzMWItZmVjYTNkMTRlZDlmLzAvNzIyOURGRTJF MEEzQTU3MEE5MzUyMTYwMUVCMUE2MUZDMENFQUUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MjI5REZFMkUwQTNBNTcwQTkzNTIxNjAxRUIxQTYxRkMwQ0VB RTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhDANBgkqhkiG 9w0BAQsFAAOCAQEAeMuEDlBbrKzyfPpI12hXS+U24V4h2WMTZQR3rPwda9G/43X8 /Vu0E620E/dcd4escpvSBxBni/jmvSXGgpW8Flw31mJM59ss9b5Hs/02Xua6PdSZ ce0oKxa3ql+39ge9IzucUakvGBhk5CDnWZFJCZWAPlBMuUCbBb0g0ZpRkjFrLd08 Q4hiJBllEG2Z4TILJ3tSnoT5BYGljLZnRYue4tIa+q5ujspE6BuXDkQ64WIqbWjD ewhGOCatBM83v04EO0AJpJ2xVrnQ0NxT06bRGxaPnoozZLzha8eQdGyjRxgAIyQ4 vmg039Zoszb2p55Z/kP9uhx2/kWmWW0aFTfsUg== -----END CERTIFICATE-----Generated at Wed May 13 08:35:03 2026 by rpki-client