$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131362e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131362e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: MRJCCb3fXe1PqSBXHNtZ+I4+QxuZf0FtTfzRiqIoYFg= Subject key identifier: 45:45:CC:03:6D:07:84:DC:52:4E:0F:30:D6:94:64:D3:9C:62:AC:94 Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 10F80F62EC6957BF63C2F084A88AF5E0E6B0B31B Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131362e302f32342d3234203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:12 +0000 ROA not before: Sun 03 May 2026 02:20:12 +0000 ROA not after: Sun 02 May 2027 02:25:12 +0000 asID: 38523 IP address blocks: 117.74.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f8:0f:62:ec:69:57:bf:63:c2:f0:84:a8:8a:f5:e0:e6:b0:b3:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:12 2026 GMT Not After : May 2 02:25:12 2027 GMT Subject: CN=4545CC036D0784DC524E0F30D69464D39C62AC94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:54:2f:96:8f:da:40:d0:8e:6a:b9:22:d4:47: 4b:be:46:a0:ec:ae:b4:a5:23:06:d5:f2:fc:dc:1f: 84:e1:56:dc:6d:c6:f2:b0:2a:e7:00:3b:ff:97:31: f0:79:8b:76:0f:f4:16:5d:14:e1:96:57:c3:59:66: 5b:47:77:8e:8f:ea:41:8c:a1:a3:b2:04:4c:30:df: 94:12:48:21:13:42:e7:ac:5d:ec:24:e1:d3:91:1d: 8f:65:09:29:11:0e:f7:9a:2f:7d:20:6f:92:14:ee: cd:91:91:80:e2:2a:47:ee:86:18:23:94:34:08:97: 48:90:be:a9:80:00:89:d4:fa:c4:d1:cf:64:70:f8: 24:c9:d4:da:cc:06:d5:3a:df:a5:0e:99:44:ef:cb: 8f:ee:04:02:c3:07:2c:cb:0a:13:b6:e5:4f:e6:32: ea:da:e1:2d:8f:28:6a:f3:6f:64:73:65:d7:71:69: 42:b7:ae:c2:50:f6:51:43:45:55:be:8f:60:97:25: ac:c9:25:c4:c2:59:3f:29:3e:9e:52:e8:0f:3f:1d: 79:62:91:2b:0b:8e:a8:d9:52:f2:60:ad:6e:fd:7c: 4a:52:32:70:f3:2a:95:d4:ba:13:7b:e9:b6:08:a7: 85:05:a4:0b:27:e5:86:c9:fc:11:52:87:d3:2b:bb: 4c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:45:CC:03:6D:07:84:DC:52:4E:0F:30:D6:94:64:D3:9C:62:AC:94 X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131362e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.116.0/24 Signature Algorithm: sha256WithRSAEncryption a1:08:6a:cd:11:7b:7d:14:d3:a6:41:0d:bd:9b:59:64:47:b6: 11:6b:c9:22:25:5a:02:c2:29:d7:83:71:27:f9:51:af:f1:9d: 53:18:6a:db:3c:38:cf:2f:4b:56:bd:d0:eb:6d:59:2d:bf:d0: 4c:de:84:13:db:b3:b8:0c:6e:28:13:44:5e:6e:a4:d3:91:2e: ae:7e:83:90:19:4a:57:b3:a7:ed:bd:c0:15:48:27:bf:62:de: d8:0a:96:90:a2:fb:90:77:4b:a0:aa:25:93:9c:34:96:2b:3d: 51:e5:0e:49:a7:7f:b9:b9:17:56:ec:8a:b3:f1:dc:e8:5e:f9: cf:19:92:21:3c:ec:1d:dc:cc:d9:0f:52:0e:92:f4:b6:60:7d: c8:80:3e:0f:94:83:d8:5b:0c:c8:17:f1:f0:70:00:3a:ee:e5: 31:1c:17:dc:46:e8:12:a6:05:b4:9f:b0:ed:67:d6:94:1a:4d: da:28:b5:4c:4c:a3:0b:d5:aa:6c:b3:12:94:a3:1b:92:cb:7a: e7:18:0e:5f:6a:d7:39:26:71:12:19:a2:41:9e:9c:40:14:e6: f2:17:4d:fc:71:ca:70:e3:0e:cc:a1:09:c5:35:ea:aa:ec:57: e8:33:59:89:bc:2e:f1:b4:76:d5:7a:dd:0c:04:35:73:9c:cf: 95:55:b1:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEPgPYuxpV79jwvCEqIr14OawsxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTJaFw0yNzA1MDIwMjI1MTJaMDMxMTAvBgNV BAMTKDQ1NDVDQzAzNkQwNzg0REM1MjRFMEYzMEQ2OTQ2NEQzOUM2MkFDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyVC+Wj9pA0I5quSLUR0u+RqDs rrSlIwbV8vzcH4ThVtxtxvKwKucAO/+XMfB5i3YP9BZdFOGWV8NZZltHd46P6kGM oaOyBEww35QSSCETQuesXewk4dORHY9lCSkRDveaL30gb5IU7s2RkYDiKkfuhhgj lDQIl0iQvqmAAInU+sTRz2Rw+CTJ1NrMBtU636UOmUTvy4/uBALDByzLChO25U/m Mura4S2PKGrzb2RzZddxaUK3rsJQ9lFDRVW+j2CXJazJJcTCWT8pPp5S6A8/HXli kSsLjqjZUvJgrW79fEpSMnDzKpXUuhN76bYIp4UFpAsn5YbJ/BFSh9Mru0zdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURUXMA20HhNxSTg8w1pRk05xirJQwHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdDANBgkqhkiG 9w0BAQsFAAOCAQEAoQhqzRF7fRTTpkENvZtZZEe2EWvJIiVaAsIp14NxJ/lRr/Gd Uxhq2zw4zy9LVr3Q621ZLb/QTN6EE9uzuAxuKBNEXm6k05Eurn6DkBlKV7On7b3A FUgnv2Le2AqWkKL7kHdLoKolk5w0lis9UeUOSad/ubkXVuyKs/Hc6F75zxmSITzs HdzM2Q9SDpL0tmB9yIA+D5SD2FsMyBfx8HAAOu7lMRwX3EboEqYFtJ+w7WfWlBpN 2ii1TEyjC9WqbLMSlKMbkst65xgOX2rXOSZxEhmiQZ6cQBTm8hdN/HHKcOMOzKEJ xTXqquxX6DNZibwu8bR21XrdDAQ1c5zPlVWxKw== -----END CERTIFICATE-----Generated at Wed May 13 04:03:53 2026 by rpki-client