$ rpki-client -vvf rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e38382e302f32342d3234203d3e203338353237.roa File: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (raw, json) Hash identifier: yffHTG+EllVLleEh6Oirz1/R0DaU0LdSs2f4Coe9+OM= Subject key identifier: 52:63:DE:B0:26:05:0D:B4:57:03:E9:F1:C6:D0:B8:5A:92:03:B2:B1 Certificate issuer: /CN=7521EB714EF9A5F0A697E8574714A86DCF234610 Certificate serial: 19FC7FE79722413F017AD2BC1A386C743D1BD253 Authority key identifier: 75:21:EB:71:4E:F9:A5:F0:A6:97:E8:57:47:14:A8:6D:CF:23:46:10 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7521EB714EF9A5F0A697E8574714A86DCF234610.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e38382e302f32342d3234203d3e203338353237.roa Signing time: Sun 03 May 2026 02:24:00 +0000 ROA not before: Sun 03 May 2026 02:19:00 +0000 ROA not after: Sun 02 May 2027 02:24:00 +0000 asID: 38527 IP address blocks: 119.47.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/7521EB714EF9A5F0A697E8574714A86DCF234610.crl rsync://rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/7521EB714EF9A5F0A697E8574714A86DCF234610.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7521EB714EF9A5F0A697E8574714A86DCF234610.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:fc:7f:e7:97:22:41:3f:01:7a:d2:bc:1a:38:6c:74:3d:1b:d2:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7521EB714EF9A5F0A697E8574714A86DCF234610 Validity Not Before: May 3 02:19:00 2026 GMT Not After : May 2 02:24:00 2027 GMT Subject: CN=5263DEB026050DB45703E9F1C6D0B85A9203B2B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:0b:40:0d:97:3a:15:08:6d:92:df:fa:78: e3:ee:95:50:81:0f:37:e6:f4:81:ba:3f:ef:66:00: 2d:ac:9d:fa:66:4e:cb:88:14:8e:58:3e:df:9f:d4: 04:9f:65:2a:91:17:de:2b:a5:9e:de:2e:89:1c:69: 45:4f:7f:4d:1f:37:38:f3:9e:29:d1:55:90:ce:41: 17:b0:a5:14:03:93:a5:d6:9e:a4:bb:fb:c5:d1:fd: cf:fd:d4:da:8b:57:99:36:4d:14:45:a3:d7:12:6a: 36:33:1b:0b:6c:e9:a2:53:fa:d1:28:b1:ec:73:fc: e0:d4:8e:30:e0:25:54:83:94:f4:23:af:4d:dd:c1: 4d:fa:10:4c:10:66:c1:c4:36:4d:f0:a2:0b:b0:b6: 7b:ce:f8:f8:c3:d8:06:f8:b9:ce:1b:04:36:1d:70: 22:58:38:32:af:e2:0a:8a:48:44:d1:3b:1f:bf:77: a6:69:c9:a7:35:05:1b:b4:d6:a9:60:a7:71:52:2d: 0d:d0:0f:8e:82:2a:4e:eb:fd:97:ac:e0:c1:84:23: 84:fd:ef:d3:86:c9:2e:ea:51:78:4a:1e:1a:d5:dd: fd:91:26:1c:56:0e:05:68:a6:dd:11:33:d9:82:e2: f0:f1:1c:59:7e:cd:c2:b5:70:be:2f:11:49:f8:16: 9f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:63:DE:B0:26:05:0D:B4:57:03:E9:F1:C6:D0:B8:5A:92:03:B2:B1 X509v3 Authority Key Identifier: keyid:75:21:EB:71:4E:F9:A5:F0:A6:97:E8:57:47:14:A8:6D:CF:23:46:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/7521EB714EF9A5F0A697E8574714A86DCF234610.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7521EB714EF9A5F0A697E8574714A86DCF234610.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e38382e302f32342d3234203d3e203338353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.88.0/24 Signature Algorithm: sha256WithRSAEncryption 74:0a:a3:2c:98:01:13:23:80:31:bb:54:bf:32:77:f2:da:a0: 9c:3c:90:c1:7a:d1:cc:22:a5:42:76:bd:d6:69:60:0b:a1:6d: 39:1c:df:f7:a0:62:a3:89:eb:2d:72:f9:28:25:40:2d:cf:87: e0:f9:cb:2d:af:c5:11:21:13:8d:84:e0:2e:d5:53:28:6e:3e: 09:83:6f:87:78:a7:89:df:08:99:46:54:ab:7b:49:17:3f:b9: be:76:c3:03:3c:41:30:e2:42:ed:ae:32:c3:5e:ae:f2:91:cd: cd:e5:d8:fc:b4:88:ae:04:e5:1d:05:45:e7:75:0a:72:6b:e9: cf:55:5b:88:2d:21:02:18:23:34:b3:da:01:e1:c0:2f:86:99: 7f:8e:6a:57:ad:65:dd:a2:cd:57:4c:68:aa:e9:df:54:ff:43: 37:04:b3:2c:89:25:31:2f:30:5f:fc:10:67:f9:ae:a3:c1:43: 55:f2:f3:bb:4a:6f:10:43:34:9f:78:22:1a:12:bc:c6:09:fc: 13:77:2b:52:55:be:53:ae:04:2c:ca:46:ce:99:e0:ac:85:0a: ed:3a:7a:91:54:d9:1c:1a:f6:4d:db:bb:66:87:4b:4f:31:37: 2e:5c:a0:d1:2d:6c:7b:7e:94:90:34:34:81:00:20:34:bc:b9: af:16:23:bf -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGfx/55ciQT8BetK8GjhsdD0b0lMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzUyMUVCNzE0RUY5QTVGMEE2OTdFODU3NDcxNEE4NkRD RjIzNDYxMDAeFw0yNjA1MDMwMjE5MDBaFw0yNzA1MDIwMjI0MDBaMDMxMTAvBgNV BAMTKDUyNjNERUIwMjYwNTBEQjQ1NzAzRTlGMUM2RDBCODVBOTIwM0IyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxAtADZc6FQhtkt/6eOPulVCB Dzfm9IG6P+9mAC2snfpmTsuIFI5YPt+f1ASfZSqRF94rpZ7eLokcaUVPf00fNzjz ninRVZDOQRewpRQDk6XWnqS7+8XR/c/91NqLV5k2TRRFo9cSajYzGwts6aJT+tEo sexz/ODUjjDgJVSDlPQjr03dwU36EEwQZsHENk3woguwtnvO+PjD2Ab4uc4bBDYd cCJYODKv4gqKSETROx+/d6Zpyac1BRu01qlgp3FSLQ3QD46CKk7r/Zes4MGEI4T9 79OGyS7qUXhKHhrV3f2RJhxWDgVopt0RM9mC4vDxHFl+zcK1cL4vEUn4Fp+fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUUmPesCYFDbRXA+nxxtC4WpIDsrEwHwYDVR0j BBgwFoAUdSHrcU75pfCml+hXRxSobc8jRhAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzE3ZWZkMmEtMDJhYi00MjAyLTk3MGYtZjY5OWRmZjk3ZGU1LzAvNzUyMUVCNzE0 RUY5QTVGMEE2OTdFODU3NDcxNEE4NkRDRjIzNDYxMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83NTIxRUI3MTRFRjlBNUYwQTY5N0U4NTc0NzE0QTg2RENGMjM0 NjEwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzEzOTJlMzQzNzJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3L1gwDQYJKoZIhvcN AQELBQADggEBAHQKoyyYARMjgDG7VL8yd/LaoJw8kMF60cwipUJ2vdZpYAuhbTkc 3/egYqOJ6y1y+SglQC3Ph+D5yy2vxREhE42E4C7VUyhuPgmDb4d4p4nfCJlGVKt7 SRc/ub52wwM8QTDiQu2uMsNervKRzc3l2Py0iK4E5R0FRed1CnJr6c9VW4gtIQIY IzSz2gHhwC+GmX+OaletZd2izVdMaKrp31T/QzcEsyyJJTEvMF/8EGf5rqPBQ1Xy 87tKbxBDNJ94IhoSvMYJ/BN3K1JVvlOuBCzKRs6Z4KyFCu06epFU2Rwa9k3bu2aH S08xNy5coNEtbHt+lJA0NIEAIDS8ua8WI78= -----END CERTIFICATE-----Generated at Wed May 13 06:27:23 2026 by rpki-client