$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa File: 3131392e322e34302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: eNtNsQFNigr1W6MKvJrKc3aElg7FuIec3I6GyQ0USN0= Subject key identifier: 92:6E:C8:B0:60:F4:48:9D:09:A9:C1:FA:DC:51:D4:05:76:88:1E:69 Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 23D5435835603D58C63B0AEE27815F7610CD03F2 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:32 +0000 ROA not before: Sun 03 May 2026 02:41:32 +0000 ROA not after: Sun 02 May 2027 02:46:32 +0000 asID: 38524 IP address blocks: 119.2.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d5:43:58:35:60:3d:58:c6:3b:0a:ee:27:81:5f:76:10:cd:03:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:32 2026 GMT Not After : May 2 02:46:32 2027 GMT Subject: CN=926EC8B060F4489D09A9C1FADC51D40576881E69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:ba:0b:44:fd:c7:e7:59:83:fc:75:ad:68:90: fe:d4:2f:f2:a3:48:23:4b:5b:08:ab:55:fc:45:6d: 9b:f4:32:7f:70:7c:7b:0b:e8:f9:3f:3e:fd:9e:e4: 01:12:13:70:97:59:b1:5b:b8:07:16:d7:0a:cc:04: b4:d8:d6:69:6d:65:c7:09:2c:33:88:4d:b1:e1:dd: 9b:eb:af:1f:91:f1:dd:5d:da:5a:bc:7f:61:65:00: 60:37:fc:75:51:47:68:e0:2c:67:1b:d1:49:90:9a: 32:1d:08:7b:19:2c:3e:6f:43:26:2a:9c:bb:80:18: cf:c4:36:5e:ef:2d:f1:e9:a6:ad:0d:f9:a4:4e:6a: 99:f3:24:af:48:5d:19:7f:44:23:1e:ea:b2:23:14: e2:03:7e:fa:7f:39:84:16:69:7c:1b:23:00:5f:74: b0:ea:3b:8e:49:68:07:be:a3:1c:ea:aa:cc:43:81: aa:47:51:9c:6f:4d:41:2f:14:c6:1a:95:1f:cd:2d: c4:80:11:98:72:46:c9:28:ad:9d:8d:ef:10:0c:b4: 80:ff:c6:e4:1b:44:86:b1:68:5c:65:7d:75:48:a1: 64:15:7a:58:99:82:42:53:ab:19:4c:1c:0d:d1:e2: 5f:6a:93:ec:be:84:5b:c8:ac:d5:59:07:12:ed:62: fd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6E:C8:B0:60:F4:48:9D:09:A9:C1:FA:DC:51:D4:05:76:88:1E:69 X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/24 Signature Algorithm: sha256WithRSAEncryption a8:30:2f:6f:38:4d:ae:76:41:b1:44:56:f2:68:f8:be:e7:56: e5:be:ac:c4:a8:7e:c3:5a:59:c2:bc:3c:a3:97:f1:b5:b5:2f: 76:59:17:7a:f6:44:35:51:b4:a7:20:d9:69:cc:68:e9:46:ed: 16:8f:23:9c:07:69:8e:b7:5d:bf:16:29:fd:86:f8:84:2c:9d: 54:71:33:18:48:e1:c8:cf:4f:b7:f7:ad:a8:55:fc:fe:5b:b5: f6:08:d7:00:fe:29:f0:76:00:f7:19:db:21:55:e6:18:65:79: e0:08:61:dc:6a:9a:ec:68:c3:20:1c:c5:e8:f4:e8:35:a1:70: 66:88:4d:0c:aa:d2:04:ea:71:24:7f:a0:5d:fb:dd:b8:75:44: 44:42:cc:ef:3a:f8:e2:69:1e:5e:a2:5d:28:74:da:c1:2b:e0: 96:d8:1e:d0:50:6e:38:b5:e4:71:b6:fb:21:72:13:59:50:f0: d2:b6:93:78:b5:4f:1e:56:3f:d3:78:bf:da:e4:ce:70:dd:7d: db:44:75:60:70:f7:ce:b8:bc:cc:29:0b:24:ae:ac:e5:f8:fa: 05:54:37:0d:1b:62:d7:ff:2f:f3:64:72:37:ae:c6:51:62:bc: 4b:05:b4:ff:67:09:ce:e9:38:43:54:0a:1d:d4:0c:d2:48:c0: 7c:c7:a4:d5 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI9VDWDVgPVjGOwruJ4FfdhDNA/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMzJaFw0yNzA1MDIwMjQ2MzJaMDMxMTAvBgNV BAMTKDkyNkVDOEIwNjBGNDQ4OUQwOUE5QzFGQURDNTFENDA1NzY4ODFFNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8ugtE/cfnWYP8da1okP7UL/Kj SCNLWwirVfxFbZv0Mn9wfHsL6Pk/Pv2e5AESE3CXWbFbuAcW1wrMBLTY1mltZccJ LDOITbHh3Zvrrx+R8d1d2lq8f2FlAGA3/HVRR2jgLGcb0UmQmjIdCHsZLD5vQyYq nLuAGM/ENl7vLfHppq0N+aROapnzJK9IXRl/RCMe6rIjFOIDfvp/OYQWaXwbIwBf dLDqO45JaAe+oxzqqsxDgapHUZxvTUEvFMYalR/NLcSAEZhyRskorZ2N7xAMtID/ xuQbRIaxaFxlfXVIoWQVeliZgkJTqxlMHA3R4l9qk+y+hFvIrNVZBxLtYv0LAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUkm7IsGD0SJ0JqcH63FHUBXaIHmkwHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AigwDQYJKoZIhvcNAQEL BQADggEBAKgwL284Ta52QbFEVvJo+L7nVuW+rMSofsNaWcK8PKOX8bW1L3ZZF3r2 RDVRtKcg2WnMaOlG7RaPI5wHaY63Xb8WKf2G+IQsnVRxMxhI4cjPT7f3rahV/P5b tfYI1wD+KfB2APcZ2yFV5hhleeAIYdxqmuxowyAcxej06DWhcGaITQyq0gTqcSR/ oF373bh1RERCzO86+OJpHl6iXSh02sEr4JbYHtBQbji15HG2+yFyE1lQ8NK2k3i1 Tx5WP9N4v9rkznDdfdtEdWBw9864vMwpCySurOX4+gVUNw0bYtf/L/NkcjeuxlFi vEsFtP9nCc7pOENUCh3UDNJIwHzHpNU= -----END CERTIFICATE-----Generated at Wed May 13 02:27:15 2026 by rpki-client