$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131372e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: MAqDcQzKsQ7AU2jwczXNTkd2KAp2lSq7hYrm+mz5mbc= Subject key identifier: DC:01:D5:C3:02:5D:14:52:41:42:30:05:62:F6:8E:C8:ED:AB:05:09 Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 42CF4CA7532B7C992DCF191EE8E8A05E406BC696 Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:10 +0000 ROA not before: Sun 03 May 2026 02:20:10 +0000 ROA not after: Sun 02 May 2027 02:25:10 +0000 asID: 38523 IP address blocks: 117.74.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cf:4c:a7:53:2b:7c:99:2d:cf:19:1e:e8:e8:a0:5e:40:6b:c6:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:10 2026 GMT Not After : May 2 02:25:10 2027 GMT Subject: CN=DC01D5C3025D14524142300562F68EC8EDAB0509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:49:87:b8:e4:6c:72:69:0d:cd:ca:32:7a:dc: e8:72:c9:84:6d:ae:6f:ed:5a:f5:f4:1f:86:d6:60: 31:f1:13:b1:55:49:84:62:ca:9c:3f:eb:ab:68:42: 17:36:cf:b4:a4:ff:67:7c:2a:09:c7:de:96:43:57: d8:d3:2e:69:55:82:9c:6e:13:ac:f3:a9:8c:0e:86: b4:84:fc:50:f3:91:3e:a0:40:9f:4e:32:1b:9f:53: 04:e1:c9:e7:81:da:48:db:5e:fe:1b:fd:75:90:87: 42:81:19:bd:22:69:6f:c6:08:aa:a8:6d:f6:a4:3e: ef:77:84:f6:8e:71:94:b1:ee:5f:03:2b:25:11:89: af:9a:2d:40:f3:f7:9d:c3:94:9f:b7:8a:11:ac:0c: 0a:ff:9e:18:f2:f9:1b:d4:38:a9:6f:e8:4d:c4:88: 52:6c:bc:47:1a:85:01:25:0d:ae:9f:b4:1a:24:72: c4:4c:77:ba:7b:da:3b:79:ff:36:72:e7:ce:3e:7f: 68:7d:90:09:6b:47:cb:6c:79:1a:4f:84:ed:65:fd: 63:51:77:7b:4e:61:62:1f:36:2e:f8:72:e5:64:76: 8b:3a:03:ef:2c:d2:36:fe:c2:ec:57:ed:03:56:5a: 0a:b0:fb:45:ff:77:01:77:3f:2d:aa:98:ef:e9:af: 52:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:01:D5:C3:02:5D:14:52:41:42:30:05:62:F6:8E:C8:ED:AB:05:09 X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.117.0/24 Signature Algorithm: sha256WithRSAEncryption 16:b7:fa:3a:20:ce:0d:78:d4:56:b3:8c:04:51:1f:f2:ad:d6: 13:72:db:bf:c5:64:7c:9a:f1:f1:30:59:90:10:20:b5:b5:0e: aa:14:28:4b:e6:44:3e:84:16:1f:9a:b7:48:91:b0:62:19:bc: f9:2d:f7:17:40:ca:7c:bb:4b:34:f3:ac:bd:a2:57:c9:1f:86: 87:a0:c4:e0:c1:a8:5d:f3:17:9a:fc:ba:95:65:f1:ee:9f:e1: 4f:ae:1a:5d:de:53:cf:5a:7f:10:8c:e3:8d:26:fe:be:74:65: 77:68:b5:c2:83:ed:a6:09:2e:01:2b:8a:1d:10:51:6d:f2:c2: 25:ec:0e:e4:06:a9:7a:4a:4e:bd:2c:46:4d:3b:1e:62:1a:8c: 5e:85:36:6f:46:93:44:03:28:66:52:17:80:1e:a9:a7:3d:23: 6f:d4:31:5f:c4:8e:a6:33:2b:0c:d3:15:d7:aa:d2:33:08:10: 41:c9:14:79:08:4b:6e:10:b2:11:94:3c:00:0a:50:c8:b4:12: 17:7e:f5:b3:f5:d6:f7:2e:5a:03:2c:8a:da:07:03:fa:f6:ff: 2e:bc:81:28:df:f3:8d:2e:eb:09:05:b1:06:8b:b3:5f:dd:36: bd:55:f7:04:93:17:ab:44:8c:44:cc:8b:78:da:20:35:32:cf: 0e:91:80:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQs9Mp1MrfJktzxke6OigXkBrxpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTBaFw0yNzA1MDIwMjI1MTBaMDMxMTAvBgNV BAMTKERDMDFENUMzMDI1RDE0NTI0MTQyMzAwNTYyRjY4RUM4RURBQjA1MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSYe45GxyaQ3NyjJ63OhyyYRt rm/tWvX0H4bWYDHxE7FVSYRiypw/66toQhc2z7Sk/2d8KgnH3pZDV9jTLmlVgpxu E6zzqYwOhrSE/FDzkT6gQJ9OMhufUwThyeeB2kjbXv4b/XWQh0KBGb0iaW/GCKqo bfakPu93hPaOcZSx7l8DKyURia+aLUDz953DlJ+3ihGsDAr/nhjy+RvUOKlv6E3E iFJsvEcahQElDa6ftBokcsRMd7p72jt5/zZy584+f2h9kAlrR8tseRpPhO1l/WNR d3tOYWIfNi74cuVkdos6A+8s0jb+wuxX7QNWWgqw+0X/dwF3Py2qmO/pr1L5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3AHVwwJdFFJBQjAFYvaOyO2rBQkwHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdTANBgkqhkiG 9w0BAQsFAAOCAQEAFrf6OiDODXjUVrOMBFEf8q3WE3Lbv8VkfJrx8TBZkBAgtbUO qhQoS+ZEPoQWH5q3SJGwYhm8+S33F0DKfLtLNPOsvaJXyR+Gh6DE4MGoXfMXmvy6 lWXx7p/hT64aXd5Tz1p/EIzjjSb+vnRld2i1woPtpgkuASuKHRBRbfLCJewO5Aap ekpOvSxGTTseYhqMXoU2b0aTRAMoZlIXgB6ppz0jb9QxX8SOpjMrDNMV16rSMwgQ QckUeQhLbhCyEZQ8AApQyLQSF371s/XW9y5aAyyK2gcD+vb/LryBKN/zjS7rCQWx BouzX902vVX3BJMXq0SMRMyLeNogNTLPDpGA7g== -----END CERTIFICATE-----Generated at Wed May 13 04:03:54 2026 by rpki-client