$ rpki-client -vvf rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa File: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (raw, json) Hash identifier: AkdaEMd+XmRC7LIhRP1qHPpsq0xWW6OO7uiTTYl9niM= Subject key identifier: B0:D8:23:26:88:82:01:A2:2A:BC:F3:20:98:94:4F:C5:06:09:CB:4C Certificate issuer: /CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Certificate serial: 10E7588AD7621843C7DC2355A768845AE4D90D84 Authority key identifier: 29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa Signing time: Sun 03 May 2026 02:29:37 +0000 ROA not before: Sun 03 May 2026 02:24:37 +0000 ROA not after: Sun 02 May 2027 02:29:37 +0000 asID: 139399 IP address blocks: 123.253.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e7:58:8a:d7:62:18:43:c7:dc:23:55:a7:68:84:5a:e4:d9:0d:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Validity Not Before: May 3 02:24:37 2026 GMT Not After : May 2 02:29:37 2027 GMT Subject: CN=B0D82326888201A22ABCF32098944FC50609CB4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:c6:eb:c2:43:cb:4f:3a:b1:0e:f9:ec:f0:bb: 3e:1d:b0:43:a1:df:c8:78:47:da:99:d9:45:c5:8e: d0:b7:48:bb:9d:1f:e7:bf:8c:79:b9:2b:07:c3:a4: 8c:6f:3a:ae:b3:d2:2c:9c:8c:63:e2:94:74:0f:05: 89:5f:24:09:87:81:a1:94:71:d3:ce:77:d1:15:2e: f4:ce:1d:dd:86:8e:c2:71:6f:bf:dc:ac:78:cc:9a: 12:e2:0c:20:02:c0:b4:ff:8c:a8:4f:97:cc:f1:26: d4:d7:d9:0f:5a:5d:82:f6:70:85:e7:2f:d2:b5:48: e1:9e:8d:69:33:41:27:14:27:de:bf:c7:79:69:d6: 64:8c:20:e2:5a:c9:28:0f:aa:f2:c7:92:84:2d:f0: 83:02:13:83:d9:4e:f2:82:38:bd:43:3e:c7:ab:e8: df:80:77:b2:89:ad:b5:23:6b:fc:0e:28:df:ee:b2: 4d:4c:37:fd:77:d4:d6:99:ee:a8:91:c7:3f:50:93: fe:72:aa:e7:7b:ae:c3:bf:93:e5:fb:5b:51:58:1d: b9:89:a3:16:bd:ab:cb:b6:f0:f1:99:ac:7f:5d:19: b6:78:03:15:70:fe:7d:96:44:f5:a3:a5:e4:72:19: 06:23:48:2b:52:2a:0c:42:76:b5:ca:bf:5d:5d:61: d1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D8:23:26:88:82:01:A2:2A:BC:F3:20:98:94:4F:C5:06:09:CB:4C X509v3 Authority Key Identifier: keyid:29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.244.0/22 Signature Algorithm: sha256WithRSAEncryption 29:e7:b2:a3:a4:6a:18:a9:a1:04:f8:94:cd:4a:1b:9c:9c:17: d7:31:d6:a2:76:96:1c:49:54:f0:55:f6:5b:a9:f2:f7:e8:66: 82:20:9b:3c:8f:af:db:49:a5:7e:50:09:86:2e:25:ba:c5:58: ed:33:3b:c7:87:55:af:b6:d4:69:4f:64:dc:41:e8:34:20:20: 29:fb:36:6a:bc:9b:ea:40:38:6c:99:a7:ce:92:d8:23:21:69: aa:a8:66:8a:31:87:bf:e7:e7:20:19:fd:1f:3c:98:1c:9a:41: 5a:8c:bb:31:45:11:88:f7:f2:7e:03:c6:a9:17:7a:30:75:4a: b4:1b:8d:1f:7c:ac:35:1a:e4:aa:e5:12:31:8a:4b:a7:d8:6f: 03:9d:f9:bd:ad:1d:10:81:9f:4b:eb:45:a0:37:7a:e1:64:cf: 2a:94:fb:cc:17:54:78:fb:6a:cb:7b:1b:3f:6c:63:29:24:01: db:19:3a:e0:48:96:df:38:b8:8c:34:d5:14:2f:ce:d2:24:fd: 76:aa:81:f2:e3:21:6b:eb:49:c8:7e:28:d8:f9:38:8d:28:dc: a4:ee:00:cd:07:0c:6e:c2:e8:e7:a9:13:c7:0b:66:f0:40:46: bd:1f:97:0a:17:45:c4:bc:23:07:4f:40:35:72:be:bc:01:61: 2f:1c:b3:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEOdYitdiGEPH3CNVp2iEWuTZDYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlGODk1M0QzQkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0 RDZBNkFENDAeFw0yNjA1MDMwMjI0MzdaFw0yNzA1MDIwMjI5MzdaMDMxMTAvBgNV BAMTKEIwRDgyMzI2ODg4MjAxQTIyQUJDRjMyMDk4OTQ0RkM1MDYwOUNCNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIxuvCQ8tPOrEO+ezwuz4dsEOh 38h4R9qZ2UXFjtC3SLudH+e/jHm5KwfDpIxvOq6z0iycjGPilHQPBYlfJAmHgaGU cdPOd9EVLvTOHd2GjsJxb7/crHjMmhLiDCACwLT/jKhPl8zxJtTX2Q9aXYL2cIXn L9K1SOGejWkzQScUJ96/x3lp1mSMIOJaySgPqvLHkoQt8IMCE4PZTvKCOL1DPser 6N+Ad7KJrbUja/wOKN/usk1MN/131NaZ7qiRxz9Qk/5yqud7rsO/k+X7W1FYHbmJ oxa9q8u28PGZrH9dGbZ4AxVw/n2WRPWjpeRyGQYjSCtSKgxCdrXKv11dYdEnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsNgjJoiCAaIqvPMgmJRPxQYJy0wwHwYDVR0j BBgwFoAUKfiVPTvRPXT2C6ymHgKBG01qatQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQyMTk4NWItYTBlNi00ZTA1LWJlZjYtZmU2ZjVhNmUyZjQzLzAvMjlGODk1M0Qz QkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0RDZBNkFENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOUY4OTUzRDNCRDEzRDc0RjYwQkFDQTYxRTAyODExQjRENkE2 QUQ0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzIzMzJlMzIzNTMzMmUzMjM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7/fQwDQYJ KoZIhvcNAQELBQADggEBACnnsqOkahipoQT4lM1KG5ycF9cx1qJ2lhxJVPBV9lup 8vfoZoIgmzyPr9tJpX5QCYYuJbrFWO0zO8eHVa+21GlPZNxB6DQgICn7Nmq8m+pA OGyZp86S2CMhaaqoZooxh7/n5yAZ/R88mByaQVqMuzFFEYj38n4DxqkXejB1SrQb jR98rDUa5KrlEjGKS6fYbwOd+b2tHRCBn0vrRaA3euFkzyqU+8wXVHj7ast7Gz9s YykkAdsZOuBIlt84uIw01RQvztIk/XaqgfLjIWvrSch+KNj5OI0o3KTuAM0HDG7C 6OepE8cLZvBARr0flwoXRcS8IwdPQDVyvrwBYS8csxA= -----END CERTIFICATE-----Generated at Wed May 13 04:17:05 2026 by rpki-client