$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131332e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: 2RFM120BK2x+ijcQiQQFduH+zaBhpG83qp16mYO7vG8= Subject key identifier: B9:EA:56:65:02:2A:CB:74:28:00:DF:C4:89:E9:D8:BB:8A:23:0C:D4 Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 721CBC08FCEEBE982830ED6C38CAD80A8C4D417B Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:11 +0000 ROA not before: Sun 03 May 2026 02:20:11 +0000 ROA not after: Sun 02 May 2027 02:25:11 +0000 asID: 38523 IP address blocks: 117.74.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:1c:bc:08:fc:ee:be:98:28:30:ed:6c:38:ca:d8:0a:8c:4d:41:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:11 2026 GMT Not After : May 2 02:25:11 2027 GMT Subject: CN=B9EA5665022ACB742800DFC489E9D8BB8A230CD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:32:06:44:9e:b0:d7:71:cc:a8:c3:a4:d3:cb: a6:95:57:ed:3a:a7:13:95:d4:17:fc:5d:06:41:49: 44:2d:7d:19:ed:7b:0d:ec:26:75:59:33:8f:1c:fc: 9a:ff:93:e5:b2:52:d1:58:69:ec:4c:73:82:86:2c: aa:4c:71:ca:aa:b9:6f:98:2f:a6:c8:dc:92:6b:d3: e7:fd:2a:d5:14:56:c2:48:f1:35:8b:d5:f9:d3:70: 3c:8d:b6:24:84:5f:a7:73:7a:e1:dc:13:89:75:5f: 6e:45:39:8d:37:54:90:da:25:bf:a1:09:3a:1b:7a: f5:22:f1:2c:a7:ed:9f:d9:18:76:0a:6c:b0:13:c9: 85:c0:51:66:63:26:19:87:0f:ee:8a:13:87:bf:5e: 66:cb:58:7b:ca:75:05:f3:73:ff:bb:a6:32:ce:bd: e6:af:88:e3:e1:c3:b6:25:a1:68:9f:2a:62:fb:62: 2d:35:9f:f4:02:1b:ec:bc:43:a5:eb:d8:49:21:ad: 24:b4:f0:4f:39:5a:8f:fb:b6:b9:4b:16:07:23:ac: e8:a6:5d:cb:7c:75:99:23:b2:cb:50:8e:d1:e2:17: 7b:2e:c6:0c:38:69:14:b9:a9:b4:8d:ed:1d:a5:3c: 08:73:81:de:b1:1e:8c:9a:a1:e0:7e:c7:55:eb:64: 50:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EA:56:65:02:2A:CB:74:28:00:DF:C4:89:E9:D8:BB:8A:23:0C:D4 X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131332e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.113.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:80:bb:b0:32:5f:82:42:c5:46:02:89:67:58:53:03:91:5d: 1e:38:34:ff:c1:9f:e5:f9:75:10:ca:35:72:08:7a:41:50:bd: 03:6f:f4:50:57:d2:2d:cd:e3:69:7f:aa:00:4a:00:f3:a7:4b: 69:e6:2a:89:fc:bf:43:b9:e1:c9:f5:41:88:44:2c:e1:44:d4: f9:72:da:70:3f:7e:aa:bf:51:fa:51:e3:cc:e2:87:40:71:6f: 6f:04:d1:8f:c0:9d:aa:fe:62:38:bf:5c:41:38:f0:c4:f9:da: c0:8b:9a:10:cb:a5:3e:ff:ca:2e:90:4e:85:f7:b5:90:85:d9: 19:2b:ab:a8:2d:35:d3:9c:5a:08:77:23:66:27:ad:1a:41:6f: 97:f7:47:4c:45:b4:ee:90:6c:a2:2a:c0:d6:c4:f6:23:59:64: f0:08:08:02:cb:e9:1d:06:68:8e:dd:4a:46:5a:fe:2b:76:ee: 30:7f:3e:04:ba:ab:be:6b:92:bf:a2:25:f5:15:f3:85:b6:76: 14:df:d0:31:17:8d:16:56:6a:91:11:d5:d6:0d:09:db:eb:db: 45:70:15:56:a3:d0:e0:69:79:79:c5:03:bd:ec:ad:8b:f1:44: 75:4c:ae:18:64:86:56:50:d9:63:11:2e:7b:3c:be:1b:6a:09: c3:4d:e7:01 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUchy8CPzuvpgoMO1sOMrYCoxNQXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTFaFw0yNzA1MDIwMjI1MTFaMDMxMTAvBgNV BAMTKEI5RUE1NjY1MDIyQUNCNzQyODAwREZDNDg5RTlEOEJCOEEyMzBDRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAMgZEnrDXccyow6TTy6aVV+06 pxOV1Bf8XQZBSUQtfRntew3sJnVZM48c/Jr/k+WyUtFYaexMc4KGLKpMccqquW+Y L6bI3JJr0+f9KtUUVsJI8TWL1fnTcDyNtiSEX6dzeuHcE4l1X25FOY03VJDaJb+h CTobevUi8Syn7Z/ZGHYKbLATyYXAUWZjJhmHD+6KE4e/XmbLWHvKdQXzc/+7pjLO veaviOPhw7YloWifKmL7Yi01n/QCG+y8Q6Xr2EkhrSS08E85Wo/7trlLFgcjrOim Xct8dZkjsstQjtHiF3suxgw4aRS5qbSN7R2lPAhzgd6xHoyaoeB+x1XrZFCPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuepWZQIqy3QoAN/EienYu4ojDNQwHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKcTANBgkqhkiG 9w0BAQsFAAOCAQEAGoC7sDJfgkLFRgKJZ1hTA5FdHjg0/8Gf5fl1EMo1cgh6QVC9 A2/0UFfSLc3jaX+qAEoA86dLaeYqify/Q7nhyfVBiEQs4UTU+XLacD9+qr9R+lHj zOKHQHFvbwTRj8Cdqv5iOL9cQTjwxPnawIuaEMulPv/KLpBOhfe1kIXZGSurqC01 05xaCHcjZietGkFvl/dHTEW07pBsoirA1sT2I1lk8AgIAsvpHQZojt1KRlr+K3bu MH8+BLqrvmuSv6Il9RXzhbZ2FN/QMReNFlZqkRHV1g0J2+vbRXAVVqPQ4Gl5ecUD veyti/FEdUyuGGSGVlDZYxEuezy+G2oJw03nAQ== -----END CERTIFICATE-----Generated at Wed May 13 04:03:54 2026 by rpki-client