$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa File: 3131392e322e34302e302f32312d3231203d3e203338353234.roa (raw, json) Hash identifier: 6e8bRKT2+z98DFP1RitvTz2muVOM0oiWxo+oa9c/A7s= Subject key identifier: AC:CA:93:EE:9A:DF:CD:F3:B3:9F:CD:FB:5E:E0:13:11:E4:8F:FE:84 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 2CA569423FEAA619B8C5097F6BEE89A4B4F7293A Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:27 +0000 ROA not before: Sun 03 May 2026 02:41:27 +0000 ROA not after: Sun 02 May 2027 02:46:27 +0000 asID: 38524 IP address blocks: 119.2.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a5:69:42:3f:ea:a6:19:b8:c5:09:7f:6b:ee:89:a4:b4:f7:29:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:27 2026 GMT Not After : May 2 02:46:27 2027 GMT Subject: CN=ACCA93EE9ADFCDF3B39FCDFB5EE01311E48FFE84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2a:5f:b8:dc:44:39:ff:ab:02:f2:7e:96:b4: 01:68:1a:b8:c3:9c:26:cb:50:7b:0d:f0:40:94:73: 0c:e5:d4:68:f0:cc:ef:99:3a:07:60:d0:99:3e:c8: a5:f6:d4:0d:ce:02:a5:68:33:40:d0:58:f1:49:5e: 64:70:a2:84:41:ca:4b:70:8d:d8:dc:38:6d:ec:e8: 64:16:59:35:0c:56:42:6c:24:1a:8a:b5:dc:42:06: 88:4d:71:2e:88:1e:fb:05:c6:4e:aa:36:44:d4:3a: 9b:aa:ed:b3:fd:1f:7b:fd:07:d4:c2:21:b9:ea:26: 6e:53:29:cf:eb:ca:b6:5c:9d:a4:44:66:95:8e:ab: a9:c4:79:b3:ca:c0:32:9e:f7:69:a9:94:4f:0f:60: f4:c1:03:20:3c:04:5b:79:0f:8b:0e:b7:2d:b4:38: 5f:cf:4d:3b:9f:27:c1:95:76:7e:6e:ee:79:d1:05: 97:14:73:c7:ec:fb:7a:c1:01:a4:11:36:df:52:34: db:ca:53:86:a6:fc:e1:08:ba:e8:3e:08:eb:29:86: 24:12:e7:15:1a:8f:c4:b7:86:05:34:de:04:70:ad: 6b:45:d4:fc:4b:50:0d:ea:50:4e:8e:a7:ce:02:b1: ab:68:62:66:e0:9f:70:0d:e5:ab:72:73:91:70:8d: a6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CA:93:EE:9A:DF:CD:F3:B3:9F:CD:FB:5E:E0:13:11:E4:8F:FE:84 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/21 Signature Algorithm: sha256WithRSAEncryption b2:3e:ba:ea:1c:14:3d:17:0f:64:63:b0:cf:d9:fc:9b:1e:5b: 7d:b9:cd:d7:4b:1e:56:06:c2:35:d4:83:9d:81:86:5c:ad:a0: 3c:29:7f:36:cd:d1:c3:a1:52:4f:ea:d6:4c:52:1e:79:e8:4c: e0:f1:da:b3:4a:2f:fd:95:01:28:89:eb:d8:6e:1a:4f:8a:dc: dd:14:a3:e6:7e:3e:6d:69:b2:39:29:20:8a:07:25:3a:32:d2: 4a:3e:6b:d5:fe:b6:6e:d1:1a:ce:a0:f5:bd:8d:2e:28:8b:e5: 2f:56:b1:dd:13:e2:93:2e:21:d9:cd:f9:03:94:07:83:a1:5e: 74:dc:d9:4f:1c:0b:1c:e2:26:6c:12:69:0c:25:17:ba:0f:e7: 06:78:0f:c0:41:25:bb:24:16:d1:fc:91:77:1a:97:d5:bf:17: 86:65:95:6a:d2:63:13:86:9f:0f:ff:5e:82:a6:55:ad:7f:c2: 95:de:88:70:4a:b5:ad:91:ba:14:36:ad:9f:e3:92:c0:06:31: e6:f6:71:5a:1a:dd:d5:0a:72:98:82:38:8d:34:4f:5e:40:9d: 67:44:3a:b3:3e:e9:d3:fc:2f:51:74:2b:cd:19:85:a2:44:6b: d5:9b:a6:5e:b8:80:a6:1f:e7:b0:58:80:9c:d9:23:56:a9:0a: 2e:16:b8:c7 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIULKVpQj/qphm4xQl/a+6JpLT3KTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjdaFw0yNzA1MDIwMjQ2MjdaMDMxMTAvBgNV BAMTKEFDQ0E5M0VFOUFERkNERjNCMzlGQ0RGQjVFRTAxMzExRTQ4RkZFODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbKl+43EQ5/6sC8n6WtAFoGrjD nCbLUHsN8ECUcwzl1GjwzO+ZOgdg0Jk+yKX21A3OAqVoM0DQWPFJXmRwooRByktw jdjcOG3s6GQWWTUMVkJsJBqKtdxCBohNcS6IHvsFxk6qNkTUOpuq7bP9H3v9B9TC IbnqJm5TKc/ryrZcnaREZpWOq6nEebPKwDKe92mplE8PYPTBAyA8BFt5D4sOty20 OF/PTTufJ8GVdn5u7nnRBZcUc8fs+3rBAaQRNt9SNNvKU4am/OEIuug+COsphiQS 5xUaj8S3hgU03gRwrWtF1PxLUA3qUE6Op84CsatoYmbgn3AN5atyc5FwjaZhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUrMqT7prfzfOzn837XuATEeSP/oQwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzEyZDMy MzEyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AigwDQYJKoZIhvcNAQEL BQADggEBALI+uuocFD0XD2RjsM/Z/JseW325zddLHlYGwjXUg52BhlytoDwpfzbN 0cOhUk/q1kxSHnnoTODx2rNKL/2VASiJ69huGk+K3N0Uo+Z+Pm1psjkpIIoHJToy 0ko+a9X+tm7RGs6g9b2NLiiL5S9Wsd0T4pMuIdnN+QOUB4OhXnTc2U8cCxziJmwS aQwlF7oP5wZ4D8BBJbskFtH8kXcal9W/F4ZllWrSYxOGnw//XoKmVa1/wpXeiHBK ta2RuhQ2rZ/jksAGMeb2cVoa3dUKcpiCOI00T15AnWdEOrM+6dP8L1F0K80ZhaJE a9Wbpl64gKYf57BYgJzZI1apCi4WuMc= -----END CERTIFICATE-----Generated at Wed May 13 02:51:13 2026 by rpki-client