$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: 8ijdIyFVW9aw6d+fjBurWhMcHj56f4wz73eWHGjXguY= Subject key identifier: 9D:1A:A4:74:35:86:10:7D:9E:55:A9:B4:97:16:74:55:1C:3E:88:39 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 0BCAFD2667618A9F48F0398210D8910A7730F509 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa Signing time: Sun 03 May 2026 02:34:04 +0000 ROA not before: Sun 03 May 2026 02:29:04 +0000 ROA not after: Sun 02 May 2027 02:34:04 +0000 asID: 133841 IP address blocks: 123.231.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:ca:fd:26:67:61:8a:9f:48:f0:39:82:10:d8:91:0a:77:30:f5:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:04 2026 GMT Not After : May 2 02:34:04 2027 GMT Subject: CN=9D1AA4743586107D9E55A9B4971674551C3E8839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:18:03:a4:98:95:b2:7c:75:f1:c5:5b:10: 34:0a:10:ca:32:2f:43:ba:2f:89:65:d0:0f:44:d6: b6:99:96:6f:ed:72:b7:cc:62:51:a9:24:fb:ef:bb: 1d:0b:81:96:1e:77:22:ce:62:c3:2a:c3:30:7c:03: 69:c5:6f:7a:7c:d1:26:75:48:1a:12:92:63:00:44: cb:ac:30:db:12:a4:42:c8:8a:17:e6:35:c3:45:e1: 58:a0:22:48:b1:58:48:7f:d9:a4:21:28:c2:61:df: 9a:6c:d7:ee:4b:61:18:f8:5b:e7:06:05:47:0d:e8: 07:d7:ac:bb:6b:ea:98:56:ab:55:5c:da:dc:15:5a: ae:08:58:73:aa:2e:30:4a:b9:8b:14:96:22:88:25: d5:c4:1c:4c:43:e0:7d:f1:a1:4d:9e:53:62:39:17: 04:f9:df:81:4c:77:73:5e:ed:d4:81:b5:cd:c5:4d: 42:d5:72:68:67:56:b2:ab:91:c6:33:f5:e6:2b:ff: 07:1b:ef:f3:ca:f6:cd:4b:c9:5e:b5:f6:07:65:1f: c0:c4:b7:3e:3c:81:fc:2a:56:6d:b3:8b:6e:31:12: 80:a0:a8:b3:ab:c1:97:06:be:50:e5:2b:29:b1:50: 5c:b3:76:c6:92:1f:65:bd:ef:41:10:76:85:b9:ef: 9a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1A:A4:74:35:86:10:7D:9E:55:A9:B4:97:16:74:55:1C:3E:88:39 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.209.0/24 Signature Algorithm: sha256WithRSAEncryption 09:dd:eb:91:d4:7a:c8:45:21:b7:4e:4f:76:44:ad:99:b4:dd: 28:59:40:5e:34:12:52:dc:d7:aa:4b:0f:55:53:60:c5:aa:ef: cc:c0:b7:2c:1b:31:a2:25:c4:fb:de:b6:23:ba:18:a4:f4:30: 0c:95:68:b3:9e:eb:64:7b:15:28:5c:30:9f:60:55:a3:33:b6: 4a:58:ac:2a:4e:c7:82:5e:d5:b6:52:d1:8c:6f:a5:58:29:3a: 71:63:c0:e7:62:c2:c8:1b:db:41:23:ee:79:50:5e:28:c9:a4: dd:c2:0e:43:46:60:8d:47:68:61:8f:fd:51:f6:c9:58:fe:4c: ce:27:39:89:27:5d:6c:71:5c:9c:f5:e0:2c:11:78:89:5a:92: 4b:75:5c:e9:9f:59:97:c4:0f:8f:de:13:4c:79:a7:91:15:54: ba:af:46:29:dd:13:c9:8a:90:88:4b:22:a2:16:76:93:ad:2a: 5e:8b:6b:16:d9:fb:0e:9e:d9:81:1c:74:6d:b8:37:bd:b2:6e: 35:de:5f:2b:8c:83:9f:00:a5:71:40:16:a0:9b:72:2f:b2:34: 8e:ee:41:d9:49:e0:df:4a:04:c5:71:17:1c:d2:a4:02:f8:47: 55:e6:59:19:bc:1d:44:fe:3b:7b:26:72:01:ae:ed:d2:68:d8: 30:b6:01:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC8r9Jmdhip9I8DmCENiRCncw9QkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MDRaFw0yNzA1MDIwMjM0MDRaMDMxMTAvBgNV BAMTKDlEMUFBNDc0MzU4NjEwN0Q5RTU1QTlCNDk3MTY3NDU1MUMzRTg4MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkhgDpJiVsnx18cVbEDQKEMoy L0O6L4ll0A9E1raZlm/tcrfMYlGpJPvvux0LgZYedyLOYsMqwzB8A2nFb3p80SZ1 SBoSkmMARMusMNsSpELIihfmNcNF4VigIkixWEh/2aQhKMJh35ps1+5LYRj4W+cG BUcN6AfXrLtr6phWq1Vc2twVWq4IWHOqLjBKuYsUliKIJdXEHExD4H3xoU2eU2I5 FwT534FMd3Ne7dSBtc3FTULVcmhnVrKrkcYz9eYr/wcb7/PK9s1LyV619gdlH8DE tz48gfwqVm2zi24xEoCgqLOrwZcGvlDlKymxUFyzdsaSH2W970EQdoW575qdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnRqkdDWGEH2eVam0lxZ0VRw+iDkwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB759EwDQYJ KoZIhvcNAQELBQADggEBAAnd65HUeshFIbdOT3ZErZm03ShZQF40ElLc16pLD1VT YMWq78zAtywbMaIlxPvetiO6GKT0MAyVaLOe62R7FShcMJ9gVaMztkpYrCpOx4Je 1bZS0YxvpVgpOnFjwOdiwsgb20Ej7nlQXijJpN3CDkNGYI1HaGGP/VH2yVj+TM4n OYknXWxxXJz14CwReIlakkt1XOmfWZfED4/eE0x5p5EVVLqvRindE8mKkIhLIqIW dpOtKl6LaxbZ+w6e2YEcdG24N72ybjXeXyuMg58ApXFAFqCbci+yNI7uQdlJ4N9K BMVxFxzSpAL4R1XmWRm8HUT+O3smcgGu7dJo2DC2AZc= -----END CERTIFICATE-----Generated at Wed May 13 14:58:27 2026 by rpki-client