$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa File: 3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa (raw, json) Hash identifier: rCX7dSAz0+qNZf+JX7cNepkLY8fLV6qo+N3cJ/3xyMU= Subject key identifier: 53:9A:BB:B4:F4:14:01:17:5D:D7:4E:4B:41:4D:2C:73:C4:E3:5E:ED Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 29473DFC026A155A4C9E8380358B021616E34315 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:50 +0000 ROA not before: Sun 03 May 2026 02:42:50 +0000 ROA not after: Sun 02 May 2027 02:47:50 +0000 asID: 55685 IP address blocks: 124.158.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:3d:fc:02:6a:15:5a:4c:9e:83:80:35:8b:02:16:16:e3:43:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:50 2026 GMT Not After : May 2 02:47:50 2027 GMT Subject: CN=539ABBB4F41401175DD74E4B414D2C73C4E35EED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:2a:b1:60:13:e4:95:7d:af:98:24:22:43: ed:5c:33:fc:4f:08:c8:07:57:0f:f8:e8:9d:da:ec: 1d:b7:00:bb:b5:2c:e7:f2:9d:73:02:86:22:bb:18: c3:91:79:20:5c:f6:fa:20:08:e7:3e:8a:98:3b:79: 39:9f:f2:8c:7a:5d:e0:2c:a2:f7:95:3c:87:43:bf: 8e:d6:0f:1e:02:b6:a6:52:f2:ea:e5:da:e5:bc:4e: da:a1:22:bb:4f:c8:f7:df:6f:34:d5:1b:6c:c6:5f: a1:a6:cd:88:85:16:98:7a:09:2a:c5:81:6f:f3:b2: 7d:dc:6a:af:4c:54:5c:16:44:f9:83:59:b4:ea:3e: 26:85:32:6c:d1:8f:0f:08:53:94:d3:80:c8:d1:92: 9c:4c:00:3a:07:9d:c2:27:b1:d6:2d:a8:0d:da:48: 0c:5e:80:09:c8:80:02:9f:3e:55:97:43:06:ea:74: b7:5a:a9:37:29:9a:83:95:cb:ef:19:0c:0f:93:05: e8:e6:bf:f7:2a:30:a4:6d:ed:d1:6b:15:d5:30:b2: 64:d4:13:70:38:fd:ca:be:b2:ad:9b:44:2d:99:30: 0e:3c:4b:03:2d:b1:3b:eb:96:95:9f:f2:31:90:b0: 8e:bd:d9:7c:38:42:03:ff:83:fe:00:af:48:cb:ec: 72:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9A:BB:B4:F4:14:01:17:5D:D7:4E:4B:41:4D:2C:73:C4:E3:5E:ED X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.176.0/20 Signature Algorithm: sha256WithRSAEncryption 14:7f:c7:50:71:5e:76:70:16:50:06:ed:91:78:78:6a:40:51: 23:88:79:3f:ff:be:29:78:42:0f:d4:03:99:fc:57:a5:81:35: e2:56:16:41:53:16:d0:47:5b:5b:d4:5d:6c:22:61:2c:00:69: e1:e4:72:18:dd:fb:d4:4b:6d:0b:59:b2:98:7a:14:92:0e:25: ca:72:a9:54:d1:96:6e:72:b6:5b:17:8a:bc:63:5f:1d:69:b1: 61:79:ef:6d:28:12:62:6e:bf:d6:c0:e6:2c:34:1f:bc:bd:24: 69:60:76:7a:b8:b0:a1:0a:a5:d9:13:d3:f7:17:be:f3:88:6c: 67:89:69:81:7c:f9:f0:8b:c6:0f:9c:bd:d3:99:4c:82:66:e5: 0b:6c:b4:c4:1a:e5:56:38:74:e5:81:18:73:f1:4c:19:77:59: 9a:ef:f1:8d:9f:66:6f:26:f3:12:3d:97:d1:49:89:12:a3:9e: b9:9c:49:d0:c1:86:4f:88:ec:ab:3a:c1:14:5f:49:aa:53:5c: 1f:9a:01:57:18:6c:11:93:93:d0:e1:af:59:38:45:b1:68:33: b5:08:43:da:84:71:8f:5e:87:30:38:73:75:c7:0c:84:06:42: 92:70:6c:61:17:24:31:44:4d:6d:83:05:b1:e9:97:36:4d:78: f1:a5:6d:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKUc9/AJqFVpMnoOANYsCFhbjQxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTBaFw0yNzA1MDIwMjQ3NTBaMDMxMTAvBgNV BAMTKDUzOUFCQkI0RjQxNDAxMTc1REQ3NEU0QjQxNEQyQzczQzRFMzVFRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwwyqxYBPklX2vmCQiQ+1cM/xP CMgHVw/46J3a7B23ALu1LOfynXMChiK7GMOReSBc9vogCOc+ipg7eTmf8ox6XeAs oveVPIdDv47WDx4CtqZS8url2uW8TtqhIrtPyPffbzTVG2zGX6GmzYiFFph6CSrF gW/zsn3caq9MVFwWRPmDWbTqPiaFMmzRjw8IU5TTgMjRkpxMADoHncInsdYtqA3a SAxegAnIgAKfPlWXQwbqdLdaqTcpmoOVy+8ZDA+TBejmv/cqMKRt7dFrFdUwsmTU E3A4/cq+sq2bRC2ZMA48SwMtsTvrlpWf8jGQsI692Xw4QgP/g/4Ar0jL7HKJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU5q7tPQUARdd105LQU0sc8TjXu0wHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzIzNDJlMzEzNTM4MmUzMTM3MzYyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfJ6wMA0GCSqG SIb3DQEBCwUAA4IBAQAUf8dQcV52cBZQBu2ReHhqQFEjiHk//74peEIP1AOZ/Fel gTXiVhZBUxbQR1tb1F1sImEsAGnh5HIY3fvUS20LWbKYehSSDiXKcqlU0ZZucrZb F4q8Y18dabFhee9tKBJibr/WwOYsNB+8vSRpYHZ6uLChCqXZE9P3F77ziGxniWmB fPnwi8YPnL3TmUyCZuULbLTEGuVWOHTlgRhz8UwZd1ma7/GNn2ZvJvMSPZfRSYkS o565nEnQwYZPiOyrOsEUX0mqU1wfmgFXGGwRk5PQ4a9ZOEWxaDO1CEPahHGPXocw OHN1xwyEBkKScGxhFyQxRE1tgwWx6Zc2TXjxpW0h -----END CERTIFICATE-----Generated at Wed May 13 02:11:45 2026 by rpki-client