$ rpki-client -vvf rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa File: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (raw, json) Hash identifier: F1D8qXB1kPa12d9QgeEIlBgwwS/bqZZ5YMaSMkPMuvU= Subject key identifier: EA:94:55:65:6D:06:F1:5E:BD:F3:7C:0A:22:FC:53:BB:E3:1D:93:AA Certificate issuer: /CN=9D4DB69E1B34493DB5077AAB1831EA08E69462D1 Certificate serial: 0FB55A464C85D8A9E099B4358FE6B3BDDE4B00D0 Authority key identifier: 9D:4D:B6:9E:1B:34:49:3D:B5:07:7A:AB:18:31:EA:08:E6:94:62:D1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa Signing time: Sun 03 May 2026 02:34:36 +0000 ROA not before: Sun 03 May 2026 02:29:36 +0000 ROA not after: Sun 02 May 2027 02:34:36 +0000 asID: 152059 IP address blocks: 210.87.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.crl rsync://rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b5:5a:46:4c:85:d8:a9:e0:99:b4:35:8f:e6:b3:bd:de:4b:00:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D4DB69E1B34493DB5077AAB1831EA08E69462D1 Validity Not Before: May 3 02:29:36 2026 GMT Not After : May 2 02:34:36 2027 GMT Subject: CN=EA9455656D06F15EBDF37C0A22FC53BBE31D93AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:05:b9:ec:07:7c:48:53:83:39:17:a4:33:57: db:53:83:63:59:3d:25:85:d2:3f:c1:37:9a:57:33: dd:d0:9d:af:05:5c:67:d9:ba:df:19:df:20:fb:0b: ca:c0:90:0f:52:04:91:44:1e:fa:2b:81:26:d8:1a: c8:62:a3:26:03:55:37:04:97:96:19:05:46:f1:28: 8c:cb:f2:7e:08:f0:80:9d:30:84:e9:1b:e3:6a:2b: c6:6e:85:14:81:03:df:69:58:20:07:99:e1:67:55: 8f:6e:bf:a5:e9:d1:9f:fc:00:ce:3c:67:b2:ef:53: c4:38:6c:47:9a:1d:5a:86:46:21:36:f5:df:09:fe: 78:c2:cc:9d:07:a8:97:45:1a:c6:fb:ef:6b:7e:30: a2:a2:ff:a1:a9:ea:f3:e9:25:5f:5c:7c:f3:d6:13: 57:2a:87:9d:c7:d6:39:46:69:c3:80:75:07:ab:99: e3:ca:f7:1b:f4:0b:f4:cb:bf:4f:fe:04:e0:d5:6b: 02:66:3a:97:7b:ce:2f:84:7f:be:1f:9b:c9:99:d6: 73:3e:47:74:3f:c6:25:b7:47:c4:b1:89:87:44:52: a2:af:57:88:7f:4c:01:25:43:cd:2d:69:31:4e:f2: 25:45:cb:09:eb:65:64:2f:0c:c6:7b:f8:dc:f7:37: 9f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:94:55:65:6D:06:F1:5E:BD:F3:7C:0A:22:FC:53:BB:E3:1D:93:AA X509v3 Authority Key Identifier: keyid:9D:4D:B6:9E:1B:34:49:3D:B5:07:7A:AB:18:31:EA:08:E6:94:62:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D4DB69E1B34493DB5077AAB1831EA08E69462D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.124.0/23 Signature Algorithm: sha256WithRSAEncryption 63:df:04:cd:e9:a1:12:3c:6c:1d:06:fc:4c:ca:26:8c:37:3b: 7c:14:f2:2b:e2:33:a1:a0:f1:43:02:3c:a5:cd:e0:d3:a9:7b: e4:d4:1e:52:07:18:af:ed:d1:6d:cc:09:69:fa:5e:3d:c9:df: 5a:fe:66:5f:8d:1e:dc:4e:4d:77:b2:9b:06:48:e0:58:0f:2c: 99:dd:0a:d8:fe:fb:dd:68:51:cb:30:14:42:c2:59:97:ed:74: ed:49:68:69:8c:57:04:22:ee:63:47:ca:aa:e4:43:b5:92:05: 23:00:40:65:6c:07:bc:15:ee:76:dd:7d:3e:80:30:c6:9a:33: b1:c2:20:b8:06:db:95:9b:54:2b:85:ee:f4:7a:da:28:bb:84: fb:2e:40:14:90:b3:f9:2e:e8:11:6e:90:56:e5:33:70:f8:f6: ca:a4:97:f3:68:e5:90:53:9f:87:bf:e9:67:0f:ff:45:07:81: 00:a1:06:19:e4:9a:1e:e2:41:87:00:69:24:d7:58:d0:1d:42: 8a:90:ce:70:6d:0e:59:1c:de:af:d1:7c:64:40:ac:ee:60:d9: ef:07:5a:a4:05:62:71:06:9f:05:35:59:15:0b:be:3e:fd:5e: b5:0e:d4:98:9b:bd:28:fb:17:e0:a5:1a:dc:45:c5:dd:12:3a: 2a:f7:86:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD7VaRkyF2KngmbQ1j+azvd5LANAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ0REI2OUUxQjM0NDkzREI1MDc3QUFCMTgzMUVBMDhF Njk0NjJEMTAeFw0yNjA1MDMwMjI5MzZaFw0yNzA1MDIwMjM0MzZaMDMxMTAvBgNV BAMTKEVBOTQ1NTY1NkQwNkYxNUVCREYzN0MwQTIyRkM1M0JCRTMxRDkzQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBBbnsB3xIU4M5F6QzV9tTg2NZ PSWF0j/BN5pXM93Qna8FXGfZut8Z3yD7C8rAkA9SBJFEHvorgSbYGshioyYDVTcE l5YZBUbxKIzL8n4I8ICdMITpG+NqK8ZuhRSBA99pWCAHmeFnVY9uv6Xp0Z/8AM48 Z7LvU8Q4bEeaHVqGRiE29d8J/njCzJ0HqJdFGsb772t+MKKi/6Gp6vPpJV9cfPPW E1cqh53H1jlGacOAdQermePK9xv0C/TLv0/+BODVawJmOpd7zi+Ef74fm8mZ1nM+ R3Q/xiW3R8SxiYdEUqKvV4h/TAElQ80taTFO8iVFywnrZWQvDMZ7+Nz3N5/xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6pRVZW0G8V6983wKIvxTu+Mdk6owHwYDVR0j BBgwFoAUnU22nhs0ST21B3qrGDHqCOaUYtEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTdiZThiN2MtMjMyZi00N2U4LTljZGQtODgxN2QzOWI3MGVhLzAvOUQ0REI2OUUx QjM0NDkzREI1MDc3QUFCMTgzMUVBMDhFNjk0NjJEMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RDREQjY5RTFCMzQ0OTNEQjUwNzdBQUIxODMxRUEwOEU2OTQ2 MkQxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3YmU4YjdjLTIzMmYtNDdlOC05 Y2RkLTg4MTdkMzliNzBlYS8wLzMyMzEzMDJlMzgzNzJlMzEzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0ld8MA0GCSqG SIb3DQEBCwUAA4IBAQBj3wTN6aESPGwdBvxMyiaMNzt8FPIr4jOhoPFDAjylzeDT qXvk1B5SBxiv7dFtzAlp+l49yd9a/mZfjR7cTk13spsGSOBYDyyZ3QrY/vvdaFHL MBRCwlmX7XTtSWhpjFcEIu5jR8qq5EO1kgUjAEBlbAe8Fe523X0+gDDGmjOxwiC4 BtuVm1Qrhe70etoou4T7LkAUkLP5LugRbpBW5TNw+PbKpJfzaOWQU5+Hv+lnD/9F B4EAoQYZ5Joe4kGHAGkk11jQHUKKkM5wbQ5ZHN6v0XxkQKzuYNnvB1qkBWJxBp8F NVkVC74+/V61DtSYm70o+xfgpRrcRcXdEjoq94aB -----END CERTIFICATE-----Generated at Wed May 13 02:41:33 2026 by rpki-client