$ rpki-client -vvf rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133312e302f32342d3234203d3e203338353133.roa File: 3132352e3231332e3133312e302f32342d3234203d3e203338353133.roa (raw, json) Hash identifier: 3vEtSN8mP7FRPCchYPmRbaIlK0ypUNunvESKJ134bZI= Subject key identifier: 7B:C6:5D:16:ED:B4:55:56:4A:B3:E9:BF:17:58:2A:8F:3C:98:70:53 Certificate issuer: /CN=C5528B1880D1A3C409F79997E426F977596B3E01 Certificate serial: 42EF15C10B69E592B27B82304D4268E94CE70C18 Authority key identifier: C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133312e302f32342d3234203d3e203338353133.roa Signing time: Sun 03 May 2026 02:34:13 +0000 ROA not before: Sun 03 May 2026 02:29:13 +0000 ROA not after: Sun 02 May 2027 02:34:13 +0000 asID: 38513 IP address blocks: 125.213.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ef:15:c1:0b:69:e5:92:b2:7b:82:30:4d:42:68:e9:4c:e7:0c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5528B1880D1A3C409F79997E426F977596B3E01 Validity Not Before: May 3 02:29:13 2026 GMT Not After : May 2 02:34:13 2027 GMT Subject: CN=7BC65D16EDB455564AB3E9BF17582A8F3C987053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bc:e6:48:ea:ec:37:a0:87:ce:9d:87:f9:4e: 46:b2:32:11:b7:5d:e3:7d:a0:04:1c:53:1a:38:e5: 65:77:a5:e8:08:87:ee:60:bb:1e:83:f4:1b:21:4c: 19:f2:4a:7e:7c:60:3b:d8:fc:f8:9a:7e:99:cd:83: f5:71:90:a9:44:15:30:c1:64:77:47:d6:cf:56:39: ce:23:b8:c6:e0:ce:75:d4:de:15:34:45:90:65:be: fd:29:ec:90:29:76:25:8a:6e:a9:57:9e:25:78:fc: 5a:17:db:29:e8:fb:c8:f0:c8:93:1c:f3:b4:08:fa: 2f:e7:f1:ed:9f:6a:a9:ae:9e:d3:c8:8a:7e:7e:09: 3a:b2:ab:62:bb:df:5b:1e:6a:e0:ef:0f:ec:b5:bb: 4a:6b:e1:a0:99:45:93:cd:e6:19:4a:be:f3:bc:79: 1c:cf:2f:67:d4:2b:03:32:5c:64:85:76:a7:ac:84: a5:ed:aa:f5:ce:5c:a9:b9:48:2f:c3:e0:b7:2f:d6: f4:6a:e8:7d:a0:d0:e7:cd:a6:11:e3:37:03:d0:bd: aa:d4:94:00:e7:d7:f9:0a:da:d7:86:4a:18:dc:0e: 22:f0:44:41:d5:8f:ae:4e:58:ed:57:af:c9:6b:fb: 27:7a:a0:a3:cc:05:c4:fa:42:1d:2e:fe:51:3f:6d: ec:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C6:5D:16:ED:B4:55:56:4A:B3:E9:BF:17:58:2A:8F:3C:98:70:53 X509v3 Authority Key Identifier: keyid:C5:52:8B:18:80:D1:A3:C4:09:F7:99:97:E4:26:F9:77:59:6B:3E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/C5528B1880D1A3C409F79997E426F977596B3E01.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C5528B1880D1A3C409F79997E426F977596B3E01.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132352e3231332e3133312e302f32342d3234203d3e203338353133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.213.131.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:c0:4b:d9:6b:75:72:df:83:00:5b:bb:a5:9a:76:4d:c3:57: 0d:d1:b2:d0:a3:77:a6:84:28:90:cc:1a:c6:55:46:0e:c1:c2: 51:dc:35:67:5a:42:35:20:b2:16:f2:81:72:59:da:73:03:88: c6:61:cc:30:8c:b7:5c:e8:9b:2f:87:bc:88:ad:80:55:60:b9: d3:8f:b0:03:fe:fe:f5:b5:42:8f:44:1e:94:4a:21:39:dd:92: a9:2a:5e:43:b6:03:1e:49:2d:c4:e9:43:78:72:f8:9b:f7:e0: 14:cc:94:2b:48:74:69:5c:43:b8:cc:1b:3c:bb:ce:53:b4:df: 5c:53:41:5a:5c:67:ac:c0:08:b0:e2:24:67:30:75:52:9b:7e: 09:6e:18:8c:63:81:16:47:05:46:16:84:a7:36:50:fe:ad:df: 31:bd:96:be:88:bd:06:c8:59:a5:71:c3:ab:12:61:08:a7:28: b7:8f:4c:60:07:6c:8c:c7:c9:85:ef:de:d4:bc:ed:70:c9:f6: 0d:c9:7c:68:42:5e:84:08:20:b8:7b:0b:f1:e0:fe:57:12:76: a4:03:88:16:7a:dd:a9:2a:1c:cd:f0:d0:5a:f3:e2:65:f6:5f: 92:ec:6e:2a:6a:0c:2a:e1:0d:39:ab:d5:e6:ee:b6:76:c1:fd: a4:d8:e2:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQu8VwQtp5ZKye4IwTUJo6UznDBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1MjhCMTg4MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1 OTZCM0UwMTAeFw0yNjA1MDMwMjI5MTNaFw0yNzA1MDIwMjM0MTNaMDMxMTAvBgNV BAMTKDdCQzY1RDE2RURCNDU1NTY0QUIzRTlCRjE3NTgyQThGM0M5ODcwNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRvOZI6uw3oIfOnYf5TkayMhG3 XeN9oAQcUxo45WV3pegIh+5gux6D9BshTBnySn58YDvY/PiafpnNg/VxkKlEFTDB ZHdH1s9WOc4juMbgznXU3hU0RZBlvv0p7JApdiWKbqlXniV4/FoX2yno+8jwyJMc 87QI+i/n8e2faqmuntPIin5+CTqyq2K731seauDvD+y1u0pr4aCZRZPN5hlKvvO8 eRzPL2fUKwMyXGSFdqeshKXtqvXOXKm5SC/D4Lcv1vRq6H2g0OfNphHjNwPQvarU lADn1/kK2teGShjcDiLwREHVj65OWO1Xr8lr+yd6oKPMBcT6Qh0u/lE/bexZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe8ZdFu20VVZKs+m/F1gqjzyYcFMwHwYDVR0j BBgwFoAUxVKLGIDRo8QJ95mX5Cb5d1lrPgEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTVjZTM2ZGUtZjkyMS00Mjc0LTg0OTctMjk4N2Q5MDk1NDNlLzAvQzU1MjhCMTg4 MEQxQTNDNDA5Rjc5OTk3RTQyNkY5Nzc1OTZCM0UwMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNTUyOEIxODgwRDFBM0M0MDlGNzk5OTdFNDI2Rjk3NzU5NkIz RTAxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzNTJlMzIzMTMzMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfdWDMA0GCSqG SIb3DQEBCwUAA4IBAQAfwEvZa3Vy34MAW7ulmnZNw1cN0bLQo3emhCiQzBrGVUYO wcJR3DVnWkI1ILIW8oFyWdpzA4jGYcwwjLdc6Jsvh7yIrYBVYLnTj7AD/v71tUKP RB6USiE53ZKpKl5DtgMeSS3E6UN4cvib9+AUzJQrSHRpXEO4zBs8u85TtN9cU0Fa XGeswAiw4iRnMHVSm34JbhiMY4EWRwVGFoSnNlD+rd8xvZa+iL0GyFmlccOrEmEI pyi3j0xgB2yMx8mF797UvO1wyfYNyXxoQl6ECCC4ewvx4P5XEnakA4gWet2pKhzN 8NBa8+Jl9l+S7G4qagwq4Q05q9Xm7rZ2wf2k2OKS -----END CERTIFICATE-----Generated at Wed May 13 15:07:03 2026 by rpki-client