$ rpki-client -vvf rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/3132322e34392e3232352e302f32342d3234203d3e203338353232.roa File: 3132322e34392e3232352e302f32342d3234203d3e203338353232.roa (raw, json) Hash identifier: YwK9zKWhCwEUulSxU5g8clKq/6rfBd7sqbMSAqcQZGU= Subject key identifier: 7B:50:CB:6E:BC:60:F1:F7:9D:8D:0D:83:9A:FD:22:D8:0D:84:25:FA Certificate issuer: /CN=87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C Certificate serial: 22C8FB8A8476F66951782BBC47C46841EE2DFEC2 Authority key identifier: 87:BE:31:8D:9A:B9:E7:83:D2:D6:A8:E6:47:3B:14:BE:72:0F:4F:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/3132322e34392e3232352e302f32342d3234203d3e203338353232.roa Signing time: Sun 03 May 2026 02:23:13 +0000 ROA not before: Sun 03 May 2026 02:18:13 +0000 ROA not after: Sun 02 May 2027 02:23:13 +0000 asID: 38522 IP address blocks: 122.49.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.crl rsync://rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c8:fb:8a:84:76:f6:69:51:78:2b:bc:47:c4:68:41:ee:2d:fe:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C Validity Not Before: May 3 02:18:13 2026 GMT Not After : May 2 02:23:13 2027 GMT Subject: CN=7B50CB6EBC60F1F79D8D0D839AFD22D80D8425FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e8:89:46:66:da:f9:db:91:a8:9d:46:4c:0d: 77:de:a2:05:40:c5:33:4b:96:8e:47:a2:52:01:04: 92:7c:b5:ee:67:3d:f2:4f:56:67:9d:7c:5e:ae:50: 15:e6:dc:a3:e8:a1:46:e2:15:e7:a1:20:97:3d:d9: 11:cc:0a:b9:e4:0a:e5:ca:ab:0f:15:88:bb:c1:0e: c7:b2:e8:28:0a:f1:7e:85:a2:49:27:00:b1:6b:1a: 30:3e:b0:81:d8:97:a5:2c:25:15:d4:db:81:3a:7d: 53:fe:af:33:eb:82:8e:15:fe:00:7e:fd:9d:56:f9: 8a:f2:36:75:52:c1:8e:8d:1c:9b:0a:1d:eb:2f:2f: 20:f8:a1:4c:11:dc:d3:89:a4:8b:a1:87:7c:21:eb: 84:40:bf:36:a8:2e:6c:a6:f9:86:86:37:e6:7b:61: de:e0:6e:31:98:24:07:42:73:fb:61:ce:bc:aa:f2: 33:7f:9f:e7:81:60:f5:35:4e:ab:48:ce:ae:ba:4d: 5c:bb:da:e8:83:ae:ca:d4:bd:75:ee:5c:ee:02:e8: 49:b3:7c:3e:88:17:22:5e:12:b1:4f:1b:72:e6:a0: f6:9c:b3:a0:45:57:fb:32:05:75:dd:28:07:38:38: 68:29:eb:43:2e:30:4d:ed:b8:3f:d9:63:d4:90:c4: be:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:50:CB:6E:BC:60:F1:F7:9D:8D:0D:83:9A:FD:22:D8:0D:84:25:FA X509v3 Authority Key Identifier: keyid:87:BE:31:8D:9A:B9:E7:83:D2:D6:A8:E6:47:3B:14:BE:72:0F:4F:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/87BE318D9AB9E783D2D6A8E6473B14BE720F4F5C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2e434981-36bb-4539-9b55-07b67208fd06/0/3132322e34392e3232352e302f32342d3234203d3e203338353232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.49.225.0/24 Signature Algorithm: sha256WithRSAEncryption 21:4d:8a:67:d4:ef:4a:78:b3:6d:05:b8:2c:73:4b:5e:96:69: 44:ed:be:21:98:77:fa:8e:26:d8:a2:f8:67:f7:62:18:6f:1e: 98:48:ee:d9:c0:a4:2b:de:27:88:e4:7d:c9:c3:86:68:8f:9d: 4e:b9:2c:4c:0e:20:4b:04:d7:97:14:5c:a0:fd:82:20:fc:ed: 26:f6:02:ff:31:00:ce:e4:8f:00:61:f1:d9:c1:63:21:b2:0d: 36:4f:98:47:70:d9:55:2d:dd:01:61:1d:ad:6b:79:b4:3f:4b: f9:83:a5:62:6c:23:fe:30:e4:30:a3:75:c5:72:d7:a7:b2:ee: 53:f8:d4:25:a8:c9:85:d4:11:2b:45:c5:94:9d:1a:0c:ad:60: 7e:f6:39:ff:80:1c:0e:e9:54:a0:66:fa:b4:7c:ff:cc:ef:ee: a0:08:34:75:81:9a:16:34:3c:1b:1a:ad:38:36:38:0a:3f:8c: ee:fb:dd:50:40:1d:ea:9c:e5:ee:8a:01:50:cc:d1:24:06:6b: ae:ca:4f:d2:84:33:cb:19:8b:e1:29:c1:09:11:12:4e:a9:40: 3e:11:df:43:50:3e:26:03:40:2b:f9:aa:08:d2:1a:17:bf:b4: 2a:55:62:6e:96:55:8a:d4:8b:96:0b:48:f9:4e:ee:80:54:ac: f3:e8:d3:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIsj7ioR29mlReCu8R8RoQe4t/sIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdCRTMxOEQ5QUI5RTc4M0QyRDZBOEU2NDczQjE0QkU3 MjBGNEY1QzAeFw0yNjA1MDMwMjE4MTNaFw0yNzA1MDIwMjIzMTNaMDMxMTAvBgNV BAMTKDdCNTBDQjZFQkM2MEYxRjc5RDhEMEQ4MzlBRkQyMkQ4MEQ4NDI1RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp6IlGZtr525GonUZMDXfeogVA xTNLlo5HolIBBJJ8te5nPfJPVmedfF6uUBXm3KPooUbiFeehIJc92RHMCrnkCuXK qw8ViLvBDsey6CgK8X6FokknALFrGjA+sIHYl6UsJRXU24E6fVP+rzPrgo4V/gB+ /Z1W+YryNnVSwY6NHJsKHesvLyD4oUwR3NOJpIuhh3wh64RAvzaoLmym+YaGN+Z7 Yd7gbjGYJAdCc/thzryq8jN/n+eBYPU1TqtIzq66TVy72uiDrsrUvXXuXO4C6Emz fD6IFyJeErFPG3LmoPacs6BFV/syBXXdKAc4OGgp60MuME3tuD/ZY9SQxL5TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUe1DLbrxg8fedjQ2Dmv0i2A2EJfowHwYDVR0j BBgwFoAUh74xjZq554PS1qjmRzsUvnIPT1wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmU0MzQ5ODEtMzZiYi00NTM5LTliNTUtMDdiNjcyMDhmZDA2LzAvODdCRTMxOEQ5 QUI5RTc4M0QyRDZBOEU2NDczQjE0QkU3MjBGNEY1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84N0JFMzE4RDlBQjlFNzgzRDJENkE4RTY0NzNCMTRCRTcyMEY0 RjVDLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJlNDM0OTgxLTM2YmItNDUzOS05 YjU1LTA3YjY3MjA4ZmQwNi8wLzMxMzIzMjJlMzQzOTJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHox4TANBgkqhkiG 9w0BAQsFAAOCAQEAIU2KZ9TvSnizbQW4LHNLXpZpRO2+IZh3+o4m2KL4Z/diGG8e mEju2cCkK94niOR9ycOGaI+dTrksTA4gSwTXlxRcoP2CIPztJvYC/zEAzuSPAGHx 2cFjIbINNk+YR3DZVS3dAWEdrWt5tD9L+YOlYmwj/jDkMKN1xXLXp7LuU/jUJajJ hdQRK0XFlJ0aDK1gfvY5/4AcDulUoGb6tHz/zO/uoAg0dYGaFjQ8GxqtODY4Cj+M 7vvdUEAd6pzl7ooBUMzRJAZrrspP0oQzyxmL4SnBCRESTqlAPhHfQ1A+JgNAK/mq CNIaF7+0KlVibpZVitSLlgtI+U7ugFSs8+jTtQ== -----END CERTIFICATE-----Generated at Wed May 13 09:12:38 2026 by rpki-client