$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131382e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: JVFHSqzVsgqy22qJbtrvNEyG8V0kzJkVnI2PAp64X94= Subject key identifier: 91:43:81:97:43:0E:7E:9C:50:50:6F:3C:1A:3F:5B:E6:E2:B6:07:FF Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 74DCDE2E382A27FA3BD6FF3DE1D09963B8057FD3 Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa Signing time: Sun 03 May 2026 02:25:10 +0000 ROA not before: Sun 03 May 2026 02:20:10 +0000 ROA not after: Sun 02 May 2027 02:25:10 +0000 asID: 38523 IP address blocks: 117.74.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:dc:de:2e:38:2a:27:fa:3b:d6:ff:3d:e1:d0:99:63:b8:05:7f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: May 3 02:20:10 2026 GMT Not After : May 2 02:25:10 2027 GMT Subject: CN=91438197430E7E9C50506F3C1A3F5BE6E2B607FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:08:f3:56:54:45:60:77:f7:f0:cd:7b:b7: 31:10:0a:af:bd:90:76:03:cd:c9:e6:92:11:4e:44: 7d:4c:5f:89:56:ff:15:53:9f:0e:6f:72:1e:e3:ca: 72:11:31:a3:e6:01:17:35:5b:81:4e:5c:7d:69:33: c5:6f:b1:2c:a6:c2:8b:e6:0f:c3:8d:98:78:15:c3: d1:b1:f1:29:21:15:a6:cf:50:3e:2c:b3:66:2a:34: a7:aa:b8:46:39:8a:68:99:e6:cf:d3:3f:4d:ce:f0: b7:e9:80:55:1d:88:d9:c7:5d:f8:b5:f2:f3:1d:e1: d2:93:57:01:b9:1d:50:e6:4f:7e:22:0c:66:cd:72: 3b:e2:d3:8d:dc:4e:d2:23:4b:4f:95:7e:22:e1:3d: 4f:84:7b:5b:c6:32:ba:08:6d:3e:21:50:3e:f9:98: 21:02:9b:1b:9c:c0:86:6a:37:7e:15:21:1e:50:9c: 17:d4:12:ef:af:94:91:62:93:a0:13:07:e2:89:63: 69:d5:cc:2d:5d:68:15:91:fb:4f:3d:05:f5:be:08: c1:29:af:2d:b6:b5:53:1c:15:3c:bc:6f:f8:af:84: cb:08:b3:d1:be:91:4f:d2:36:da:4a:bd:aa:cb:63: e2:7f:3d:49:00:da:4d:b9:c5:9d:95:b0:94:35:9f: ad:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:43:81:97:43:0E:7E:9C:50:50:6F:3C:1A:3F:5B:E6:E2:B6:07:FF X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.118.0/24 Signature Algorithm: sha256WithRSAEncryption 88:37:b0:df:34:e1:8d:e1:34:4f:30:1a:ee:20:d7:2a:b2:b2: 28:01:f3:b2:22:8e:45:e5:87:b9:2d:e6:cf:08:55:20:03:b1: 85:6f:91:26:1f:c1:fa:6a:1e:13:4e:ad:82:8c:ba:3d:c1:3a: da:90:7f:79:3d:d7:e2:f8:71:6c:50:aa:29:e3:a1:04:5f:48: f6:9a:d6:79:b7:38:92:93:da:31:73:f8:b7:be:e8:b1:2c:66: eb:b7:f0:4c:13:4a:0a:67:36:f5:dc:a6:68:0e:29:29:f9:3b: 80:8e:b1:f9:e5:ec:23:2d:43:4a:a8:1b:fa:7e:1f:fb:a5:6f: 2e:41:c3:2d:42:93:b7:cf:87:c9:7f:c8:72:b0:09:53:6b:ce: dc:f2:f9:c3:9e:c0:28:5f:46:7b:c8:de:28:14:5b:54:52:7d: 53:e0:bf:8d:c5:37:14:e0:b0:66:6f:cb:87:b8:43:e4:de:66: 2c:48:94:d0:49:11:31:d5:56:2c:ef:ef:06:da:d6:cc:38:f2: 94:c3:e8:04:ad:46:44:2f:53:bc:38:1d:95:79:9a:92:eb:eb: 2c:3e:40:48:6b:cb:e1:34:58:da:4f:6e:81:32:e1:e6:51:f1: 9c:02:cc:a8:a0:ca:1c:4b:e3:e4:56:65:45:0c:43:d5:38:32: 44:a5:22:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdNzeLjgqJ/o71v894dCZY7gFf9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA1MDMwMjIwMTBaFw0yNzA1MDIwMjI1MTBaMDMxMTAvBgNV BAMTKDkxNDM4MTk3NDMwRTdFOUM1MDUwNkYzQzFBM0Y1QkU2RTJCNjA3RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCsgjzVlRFYHf38M17tzEQCq+9 kHYDzcnmkhFORH1MX4lW/xVTnw5vch7jynIRMaPmARc1W4FOXH1pM8VvsSymwovm D8ONmHgVw9Gx8SkhFabPUD4ss2YqNKequEY5imiZ5s/TP03O8LfpgFUdiNnHXfi1 8vMd4dKTVwG5HVDmT34iDGbNcjvi043cTtIjS0+VfiLhPU+Ee1vGMroIbT4hUD75 mCECmxucwIZqN34VIR5QnBfUEu+vlJFik6ATB+KJY2nVzC1daBWR+089BfW+CMEp ry22tVMcFTy8b/ivhMsIs9G+kU/SNtpKvarLY+J/PUkA2k25xZ2VsJQ1n61JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkUOBl0MOfpxQUG88Gj9b5uK2B/8wHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdjANBgkqhkiG 9w0BAQsFAAOCAQEAiDew3zThjeE0TzAa7iDXKrKyKAHzsiKOReWHuS3mzwhVIAOx hW+RJh/B+moeE06tgoy6PcE62pB/eT3X4vhxbFCqKeOhBF9I9prWebc4kpPaMXP4 t77osSxm67fwTBNKCmc29dymaA4pKfk7gI6x+eXsIy1DSqgb+n4f+6VvLkHDLUKT t8+HyX/IcrAJU2vO3PL5w57AKF9Ge8jeKBRbVFJ9U+C/jcU3FOCwZm/Lh7hD5N5m LEiU0EkRMdVWLO/vBtrWzDjylMPoBK1GRC9TvDgdlXmakuvrLD5ASGvL4TRY2k9u gTLh5lHxnALMqKDKHEvj5FZlRQxD1TgyRKUikA== -----END CERTIFICATE-----Generated at Wed May 13 04:03:54 2026 by rpki-client