$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131322e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131322e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: oJAKvIjQYUnV4YiPQwgQNfHdtV+ujtVQM+Xex28JGbg= Subject key identifier: DD:2B:40:6C:26:3C:35:7B:8E:39:60:F1:F6:87:C9:AC:02:D6:95:DD Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 0873464F9A70F21EC74880A59307D719F0122CB0 Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131322e302f32342d3234203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:15 +0000 ROA not before: Sun 03 May 2026 02:20:15 +0000 ROA not after: Sun 02 May 2027 02:25:15 +0000 asID: 38523 IP address blocks: 117.74.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:73:46:4f:9a:70:f2:1e:c7:48:80:a5:93:07:d7:19:f0:12:2c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:15 2026 GMT Not After : May 2 02:25:15 2027 GMT Subject: CN=DD2B406C263C357B8E3960F1F687C9AC02D695DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:1f:68:a5:41:82:df:58:d7:ae:9c:60:a3: 08:b9:3a:18:a3:fc:38:80:47:d3:c5:30:f0:b6:18: 19:49:49:0b:b2:4d:f4:c2:39:23:72:72:07:42:a4: b6:68:a3:62:4a:74:99:d0:77:aa:b7:6a:ca:78:e3: 63:60:12:e9:25:6a:8f:92:0b:d5:7b:3c:6f:65:68: 31:c1:0e:ea:05:68:63:f9:80:6d:ff:87:c4:35:4c: 05:c9:fb:e2:db:8f:fd:50:63:7f:e7:a3:9d:c7:98: e9:94:69:dc:b4:5a:ac:97:ae:af:1d:72:7c:ae:9b: 70:03:12:36:54:32:34:ed:2c:fc:fb:07:22:35:05: 30:d5:7f:08:e0:35:b4:33:ee:3a:4e:c6:51:ef:6a: 67:7f:14:89:26:63:66:17:2e:62:89:03:68:d6:80: 32:9f:00:c5:69:92:67:0c:99:31:3f:04:a9:1f:2a: 9c:85:2d:fd:86:b4:b8:42:a4:d2:52:8e:e7:62:4e: 92:8b:57:00:b7:57:a6:f6:8f:83:52:11:93:79:c4: 06:b4:69:9c:7a:20:62:63:6d:11:60:44:42:f2:9d: 06:6a:38:2f:c1:ed:1e:f2:29:cc:3b:fd:7b:e6:0e: 9c:69:e7:48:30:3b:0c:01:7b:d0:f2:77:06:00:82: b6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2B:40:6C:26:3C:35:7B:8E:39:60:F1:F6:87:C9:AC:02:D6:95:DD X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131322e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.112.0/24 Signature Algorithm: sha256WithRSAEncryption 97:39:c8:87:2a:59:85:b4:f1:11:1a:2c:9b:e7:a9:ac:54:5b: f6:98:d7:93:b7:1d:85:8d:af:b9:1b:8e:69:46:a2:28:5f:2c: 7f:55:d2:b5:30:b0:61:8b:7b:41:d2:08:2f:21:b9:a2:0f:a1: 4a:e4:39:f5:11:dc:15:77:80:ae:fc:01:c8:d1:95:50:8d:36: 9b:b4:da:5d:9d:da:d6:e3:2a:95:7e:8a:16:5a:f1:24:20:78: 15:8b:4f:b8:6c:8f:12:9f:69:f5:60:4c:4f:98:c6:2a:75:2b: 1d:3e:11:45:cc:92:d7:c1:34:54:6d:e2:34:cb:6a:bd:bc:a2: 42:19:6b:36:12:a1:62:ab:a6:35:0c:7b:aa:1b:94:c1:86:d2: 92:1e:53:ef:7a:8e:03:ea:46:74:17:dc:38:77:e0:a0:ab:d9: 77:67:c7:09:cd:09:6d:96:2b:16:43:43:b3:ff:82:4a:57:bc: c0:86:dc:d6:a8:b2:79:3e:38:87:57:41:4d:a5:ff:53:82:79: 8c:ca:31:eb:73:16:8f:2f:d9:dc:b9:25:7f:8e:d0:51:eb:1d: c0:86:90:68:b3:35:7e:a8:bb:23:3f:b7:b9:43:1e:2e:55:27: 71:10:38:90:f5:2d:e0:eb:ae:0f:94:6f:6c:d0:52:82:53:35: 9f:c4:51:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCHNGT5pw8h7HSIClkwfXGfASLLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTVaFw0yNzA1MDIwMjI1MTVaMDMxMTAvBgNV BAMTKEREMkI0MDZDMjYzQzM1N0I4RTM5NjBGMUY2ODdDOUFDMDJENjk1REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoyh9opUGC31jXrpxgowi5Ohij /DiAR9PFMPC2GBlJSQuyTfTCOSNycgdCpLZoo2JKdJnQd6q3asp442NgEuklao+S C9V7PG9laDHBDuoFaGP5gG3/h8Q1TAXJ++Lbj/1QY3/no53HmOmUady0WqyXrq8d cnyum3ADEjZUMjTtLPz7ByI1BTDVfwjgNbQz7jpOxlHvamd/FIkmY2YXLmKJA2jW gDKfAMVpkmcMmTE/BKkfKpyFLf2GtLhCpNJSjudiTpKLVwC3V6b2j4NSEZN5xAa0 aZx6IGJjbRFgRELynQZqOC/B7R7yKcw7/XvmDpxp50gwOwwBe9DydwYAgrb5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3StAbCY8NXuOOWDx9ofJrALWld0wHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKcDANBgkqhkiG 9w0BAQsFAAOCAQEAlznIhypZhbTxERosm+eprFRb9pjXk7cdhY2vuRuOaUaiKF8s f1XStTCwYYt7QdIILyG5og+hSuQ59RHcFXeArvwByNGVUI02m7TaXZ3a1uMqlX6K FlrxJCB4FYtPuGyPEp9p9WBMT5jGKnUrHT4RRcyS18E0VG3iNMtqvbyiQhlrNhKh YqumNQx7qhuUwYbSkh5T73qOA+pGdBfcOHfgoKvZd2fHCc0JbZYrFkNDs/+CSle8 wIbc1qiyeT44h1dBTaX/U4J5jMox63MWjy/Z3Lklf47QUesdwIaQaLM1fqi7Iz+3 uUMeLlUncRA4kPUt4OuuD5RvbNBSglM1n8RRxg== -----END CERTIFICATE-----Generated at Wed May 13 04:03:53 2026 by rpki-client