$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa File: 3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa (raw, json) Hash identifier: qr6xizp3xlx6Xnc3nJpz1BpNSxX/MfpwLyE6uXtLLNM= Subject key identifier: 3F:7F:C2:FA:93:46:3E:FB:3E:3F:28:87:94:49:CC:2A:86:88:B9:B4 Certificate issuer: /CN=73CE17FBAA0657FCD9B985A1514D40B93027A6CD Certificate serial: 3B4FE2FB9CE002DCBBC9999D1062D70FD9D306C5 Authority key identifier: 73:CE:17:FB:AA:06:57:FC:D9:B9:85:A1:51:4D:40:B9:30:27:A6:CD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa Signing time: Sun 03 May 2026 02:27:52 +0000 ROA not before: Sun 03 May 2026 02:22:52 +0000 ROA not after: Sun 02 May 2027 02:27:52 +0000 asID: 152028 IP address blocks: 180.131.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.crl rsync://rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4f:e2:fb:9c:e0:02:dc:bb:c9:99:9d:10:62:d7:0f:d9:d3:06:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73CE17FBAA0657FCD9B985A1514D40B93027A6CD Validity Not Before: May 3 02:22:52 2026 GMT Not After : May 2 02:27:52 2027 GMT Subject: CN=3F7FC2FA93463EFB3E3F28879449CC2A8688B9B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:06:61:7c:79:ae:e9:0b:23:b4:11:fb:0d:fb: 09:72:67:dd:fc:4c:f5:b9:d2:a0:f4:44:11:1e:7f: 2b:82:75:d5:c0:80:54:dd:50:34:a4:d4:e2:46:9b: f7:0d:b2:aa:be:d5:e8:1e:43:57:58:79:b1:0f:34: ff:d8:e9:e1:d1:03:bc:91:76:d6:3b:a1:90:53:91: 5d:98:b0:ba:af:6a:19:5d:ca:fa:0c:00:06:24:ad: 7b:7f:ca:14:aa:cc:67:5a:d0:1d:4b:35:89:fa:c5: 4c:6a:6c:63:72:09:e3:9c:15:89:ef:10:82:16:b8: b1:43:fb:7f:15:de:85:8b:73:99:a8:db:61:bd:32: c8:85:39:96:e8:9a:f6:aa:8f:ae:0c:1f:da:c2:24: d0:37:a5:2c:39:04:43:98:8b:3c:4a:04:5a:83:1b: d8:0c:c2:7d:bb:56:7d:0c:36:3e:f1:01:22:01:31: 67:f9:df:e2:b4:0d:cd:a3:bb:ca:1f:54:cc:43:ce: 65:2c:9a:a0:a2:17:e7:23:ea:56:47:78:e2:36:fa: fb:9e:b5:c0:d5:68:1d:5c:54:56:5b:0a:a0:de:f6: ae:ce:58:82:ce:81:88:e1:01:36:c0:75:da:4a:22: 07:a6:61:d9:f1:53:d8:e7:d1:43:98:ec:5f:e3:ad: c1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:7F:C2:FA:93:46:3E:FB:3E:3F:28:87:94:49:CC:2A:86:88:B9:B4 X509v3 Authority Key Identifier: keyid:73:CE:17:FB:AA:06:57:FC:D9:B9:85:A1:51:4D:40:B9:30:27:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/73CE17FBAA0657FCD9B985A1514D40B93027A6CD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/3138302e3133312e3132392e302f32342d3234203d3e20313532303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.129.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:f6:32:14:da:a8:ef:da:a4:32:4d:42:f8:eb:e2:7a:45:ad: 2a:8b:63:9e:13:a7:76:92:55:6c:7b:90:ac:fb:fd:78:66:07: 8e:5a:65:1b:66:c7:52:c4:1f:4f:15:83:cb:79:a1:63:78:17: bb:2a:88:b7:bb:11:9a:ef:c6:fa:fc:b9:11:8a:37:e5:0b:b3: ba:0f:61:82:78:ae:f1:70:f1:03:fa:1f:fc:dd:f3:db:e3:ad: 36:65:54:06:f1:2e:39:54:fa:89:d3:b6:3f:02:86:38:06:54: b5:aa:05:7c:af:99:7a:cf:b6:ad:40:31:da:c0:58:6e:4c:a6: b1:37:57:fa:35:f6:16:21:64:2d:e6:5f:62:b8:1b:e3:44:45: 11:5a:e0:37:46:33:99:73:6e:2f:d0:17:b2:54:50:fb:cb:96: a4:7b:78:8b:5a:02:98:a6:8e:3f:1c:64:72:52:c7:ef:b0:44: bc:b6:1a:7e:af:96:ce:5e:b4:46:54:0a:46:d7:08:93:8b:6c: da:3c:45:1e:da:ca:92:71:80:41:a7:96:d1:7c:0e:85:63:28: 2c:92:dd:99:86:39:2e:3e:1d:58:04:3c:9a:76:ca:88:68:61: 54:96:01:ac:ce:07:58:ae:2f:93:42:55:08:4f:e9:d3:91:1b: e8:6d:a4:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO0/i+5zgAty7yZmdEGLXD9nTBsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNDRTE3RkJBQTA2NTdGQ0Q5Qjk4NUExNTE0RDQwQjkz MDI3QTZDRDAeFw0yNjA1MDMwMjIyNTJaFw0yNzA1MDIwMjI3NTJaMDMxMTAvBgNV BAMTKDNGN0ZDMkZBOTM0NjNFRkIzRTNGMjg4Nzk0NDlDQzJBODY4OEI5QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeBmF8ea7pCyO0EfsN+wlyZ938 TPW50qD0RBEefyuCddXAgFTdUDSk1OJGm/cNsqq+1egeQ1dYebEPNP/Y6eHRA7yR dtY7oZBTkV2YsLqvahldyvoMAAYkrXt/yhSqzGda0B1LNYn6xUxqbGNyCeOcFYnv EIIWuLFD+38V3oWLc5mo22G9MsiFOZbomvaqj64MH9rCJNA3pSw5BEOYizxKBFqD G9gMwn27Vn0MNj7xASIBMWf53+K0Dc2ju8ofVMxDzmUsmqCiF+cj6lZHeOI2+vue tcDVaB1cVFZbCqDe9q7OWILOgYjhATbAddpKIgemYdnxU9jn0UOY7F/jrcFxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUP3/C+pNGPvs+PyiHlEnMKoaIubQwHwYDVR0j BBgwFoAUc84X+6oGV/zZuYWhUU1AuTAnps0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M5OTQxYTQtMjhkMi00N2QxLTkxZTctYWNhYjU5MDg0NDYyLzAvNzNDRTE3RkJB QTA2NTdGQ0Q5Qjk4NUExNTE0RDQwQjkzMDI3QTZDRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83M0NFMTdGQkFBMDY1N0ZDRDlCOTg1QTE1MTRENDBCOTMwMjdB NkNELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjOTk0MWE0LTI4ZDItNDdkMS05 MWU3LWFjYWI1OTA4NDQ2Mi8wLzMxMzgzMDJlMzEzMzMxMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzMDMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0g4EwDQYJ KoZIhvcNAQELBQADggEBAJ/2MhTaqO/apDJNQvjr4npFrSqLY54Tp3aSVWx7kKz7 /XhmB45aZRtmx1LEH08Vg8t5oWN4F7sqiLe7EZrvxvr8uRGKN+ULs7oPYYJ4rvFw 8QP6H/zd89vjrTZlVAbxLjlU+onTtj8ChjgGVLWqBXyvmXrPtq1AMdrAWG5MprE3 V/o19hYhZC3mX2K4G+NERRFa4DdGM5lzbi/QF7JUUPvLlqR7eItaApimjj8cZHJS x++wRLy2Gn6vls5etEZUCkbXCJOLbNo8RR7aypJxgEGnltF8DoVjKCyS3ZmGOS4+ HVgEPJp2yohoYVSWAazOB1iuL5NCVQhP6dORG+htpKc= -----END CERTIFICATE-----Generated at Wed May 13 12:39:33 2026 by rpki-client