$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa File: 3131392e322e34312e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: J0sTJL7uuAFdCia8CnpmbOZj9Zo8ZeTbA6//7jjDPEE= Subject key identifier: 31:23:31:D5:4A:60:43:60:E8:23:23:A4:4A:0D:98:E1:E6:50:C3:FF Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 247E576335F47C2EF9DDA5BA991ABE2466868337 Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:26 +0000 ROA not before: Sun 03 May 2026 02:41:26 +0000 ROA not after: Sun 02 May 2027 02:46:26 +0000 asID: 38524 IP address blocks: 119.2.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7e:57:63:35:f4:7c:2e:f9:dd:a5:ba:99:1a:be:24:66:86:83:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:26 2026 GMT Not After : May 2 02:46:26 2027 GMT Subject: CN=312331D54A604360E82323A44A0D98E1E650C3FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ed:0b:c8:6c:48:40:8b:59:7e:cc:e0:02:f8: 61:63:d1:c7:96:a1:d8:03:be:33:54:48:57:3b:27: 1d:3b:c3:d8:d1:da:f1:2f:fe:6b:f0:70:ed:ba:d5: 15:6e:e8:d2:b7:28:c9:eb:a3:f4:ab:a6:85:1d:86: 68:ff:96:a0:27:1b:03:45:8e:83:f9:d1:15:f6:91: b0:38:d1:fd:78:99:31:2f:de:43:df:36:84:65:f3: a4:b6:42:f8:42:2b:69:da:1c:02:d4:ba:75:10:3b: cb:8c:a8:a7:fd:c2:22:c2:43:a9:6d:3a:37:ae:62: 19:6c:05:36:7e:4e:99:4b:91:36:9b:a5:26:d7:00: 11:e3:3c:ed:cf:60:06:82:90:c2:51:bf:e2:30:a2: 9e:19:bd:b6:c7:0b:66:01:b6:8e:c6:c5:4d:47:43: 4f:c7:27:0d:6a:a1:8b:86:e8:1f:87:3f:4e:81:89: 63:f2:31:00:b4:68:95:7a:21:74:72:4c:43:05:46: 65:b0:99:a6:88:06:19:64:46:a3:0a:0d:43:ca:4c: fd:02:0b:32:88:9f:c0:45:0a:26:2d:38:4a:69:7a: 7e:d4:dd:fd:1c:aa:37:48:48:07:c5:8a:e9:bd:e7: 15:db:73:e6:cf:bc:1d:52:2d:3b:49:9e:28:a7:4b: bf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:23:31:D5:4A:60:43:60:E8:23:23:A4:4A:0D:98:E1:E6:50:C3:FF X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.41.0/24 Signature Algorithm: sha256WithRSAEncryption a1:3f:6b:58:3f:cf:c9:d0:9a:eb:d4:f8:b8:28:77:46:7f:ab: cd:e7:cd:49:6a:77:f2:0b:c9:58:8f:a9:ee:0f:5f:67:05:84: 21:b7:4b:b7:f0:70:c3:b7:60:7d:65:93:43:95:a0:0a:0f:2e: c7:70:e0:3c:37:a7:85:91:69:99:4e:85:e8:a6:6d:23:7a:37: 1d:48:1e:54:37:19:26:78:1f:12:a9:d3:61:b7:80:90:1a:bc: fc:9f:93:3d:f5:5e:d4:90:ec:8e:c4:55:e4:ca:92:1b:1f:40: c2:a0:97:08:56:12:a7:98:74:d1:ea:36:04:30:3f:58:66:67: 4e:b8:dc:c1:e5:49:a2:85:67:58:68:09:61:ce:cb:04:80:d8: 2a:de:69:bb:39:94:aa:18:25:ae:2b:49:42:62:e7:93:cd:ca: 21:4e:a4:f8:c4:9c:a9:54:52:f3:06:93:56:90:08:53:68:41: 39:e1:bf:29:fe:71:c7:22:f0:9c:fb:8a:24:2d:4f:52:07:25: 32:d2:21:1e:f5:78:bc:f7:c0:bf:a8:f8:b9:10:ab:dd:52:70: 2c:c6:e2:50:f1:d1:8d:23:60:ab:f9:e2:08:29:a9:c0:a6:b4: 6f:8d:ae:ad:f9:19:f1:10:aa:3a:82:1a:ac:76:4c:d9:8d:b3: e6:cc:e6:a9 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUJH5XYzX0fC753aW6mRq+JGaGgzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjZaFw0yNzA1MDIwMjQ2MjZaMDMxMTAvBgNV BAMTKDMxMjMzMUQ1NEE2MDQzNjBFODIzMjNBNDRBMEQ5OEUxRTY1MEMzRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe7QvIbEhAi1l+zOAC+GFj0ceW odgDvjNUSFc7Jx07w9jR2vEv/mvwcO261RVu6NK3KMnro/SrpoUdhmj/lqAnGwNF joP50RX2kbA40f14mTEv3kPfNoRl86S2QvhCK2naHALUunUQO8uMqKf9wiLCQ6lt OjeuYhlsBTZ+TplLkTabpSbXABHjPO3PYAaCkMJRv+Iwop4ZvbbHC2YBto7GxU1H Q0/HJw1qoYuG6B+HP06BiWPyMQC0aJV6IXRyTEMFRmWwmaaIBhlkRqMKDUPKTP0C CzKIn8BFCiYtOEppen7U3f0cqjdISAfFium95xXbc+bPvB1SLTtJniinS7/7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUMSMx1UpgQ2DoIyOkSg2Y4eZQw/8wHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AikwDQYJKoZIhvcNAQEL BQADggEBAKE/a1g/z8nQmuvU+Lgod0Z/q83nzUlqd/ILyViPqe4PX2cFhCG3S7fw cMO3YH1lk0OVoAoPLsdw4Dw3p4WRaZlOheimbSN6Nx1IHlQ3GSZ4HxKp02G3gJAa vPyfkz31XtSQ7I7EVeTKkhsfQMKglwhWEqeYdNHqNgQwP1hmZ0643MHlSaKFZ1ho CWHOywSA2Creabs5lKoYJa4rSUJi55PNyiFOpPjEnKlUUvMGk1aQCFNoQTnhvyn+ ccci8Jz7iiQtT1IHJTLSIR71eLz3wL+o+LkQq91ScCzG4lDx0Y0jYKv54ggpqcCm tG+Nrq35GfEQqjqCGqx2TNmNs+bM5qk= -----END CERTIFICATE-----Generated at Wed May 13 02:59:58 2026 by rpki-client