$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa File: 3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa (raw, json) Hash identifier: F8OoTDhCJq9Bcdj1yKzjz6oWC9zK/hcpJVLKpPZ2JFE= Subject key identifier: 61:24:BA:80:A6:5C:8B:B0:2B:9B:29:14:00:79:8C:96:A7:83:44:02 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 4920083513C728B3298D2E32EA5FBBABCC34B298 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:51 +0000 ROA not before: Sun 03 May 2026 02:42:51 +0000 ROA not after: Sun 02 May 2027 02:47:51 +0000 asID: 55685 IP address blocks: 124.158.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:20:08:35:13:c7:28:b3:29:8d:2e:32:ea:5f:bb:ab:cc:34:b2:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:51 2026 GMT Not After : May 2 02:47:51 2027 GMT Subject: CN=6124BA80A65C8BB02B9B291400798C96A7834402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f7:52:29:b6:c4:84:49:27:24:41:dd:dd:94: 49:a8:ad:d8:35:58:21:4f:21:28:3c:a6:bb:58:cc: e6:6f:af:24:29:c3:eb:53:eb:eb:3c:bd:1b:6b:32: 8e:e0:66:82:5a:d9:f2:50:56:b5:53:20:48:88:e4: 2b:a8:47:2a:11:69:60:fe:62:af:8d:e4:dd:3f:2f: d8:3a:18:78:2c:34:ba:0d:38:ef:73:e8:90:23:b1: c5:62:cd:22:10:32:5d:4d:7a:ee:f7:5f:32:1c:11: 22:42:3f:15:11:2a:88:af:13:63:33:fe:12:17:e9: 7f:ad:80:3b:de:5f:1d:63:03:77:71:5c:de:a8:7d: 62:26:d9:91:2e:ce:0b:81:18:5b:ee:45:b3:2c:e4: 66:83:f0:47:01:fa:2e:d3:23:55:d6:2f:5e:8b:4a: c2:04:b8:77:ec:9e:3b:52:48:a7:46:af:6b:08:d2: ad:46:ba:47:ee:89:67:fb:d7:ad:fe:f9:34:5d:aa: f9:e3:65:63:c9:dc:13:eb:b7:51:0f:a9:4c:6b:f2: e4:90:6f:99:55:3a:a5:ed:81:ac:96:49:1f:9c:30: 07:1a:71:74:c9:8e:ab:45:d5:1c:1c:08:31:e9:b5: 62:6c:06:e2:f3:fb:b9:0e:24:6c:54:89:dc:f8:5f: 6f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:24:BA:80:A6:5C:8B:B0:2B:9B:29:14:00:79:8C:96:A7:83:44:02 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3138342e302f32312d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.184.0/21 Signature Algorithm: sha256WithRSAEncryption 67:9b:31:bb:64:2e:16:e9:88:e2:f6:82:06:6f:d4:9c:b6:07: 26:f8:b1:6c:65:12:00:3d:48:99:62:e6:66:6c:68:d0:5c:3b: 46:4d:8c:c7:bb:76:d5:51:fb:59:d8:92:d9:32:09:29:f9:1e: a8:cf:7b:95:c4:52:c5:67:e5:9c:fb:5b:19:ac:49:d9:32:5a: 25:cd:07:64:8a:74:2d:b4:58:1e:f1:f4:79:dd:2a:a7:c6:89: 18:28:8e:37:00:d0:d9:21:49:2f:7a:37:88:b6:4c:29:e3:a0: bd:d7:d7:2a:ca:45:a7:51:60:b3:ca:e9:90:87:e8:39:aa:9d: 78:e0:7f:a2:c3:e5:9c:f7:63:00:e4:70:09:58:1c:f8:d8:06: 9c:0a:2b:ec:07:ee:cb:67:7f:72:eb:a7:55:75:d6:fc:b8:45: d3:8b:8f:56:ce:98:0e:bc:24:25:08:48:21:95:ff:17:c2:6d: 9b:e6:53:c4:7b:18:7f:76:92:37:b7:a3:55:6e:b2:c3:90:c2: 15:e8:3f:c3:ba:a0:a6:88:e7:24:72:b1:ee:ed:cb:43:71:81: 0d:a3:84:e8:51:ef:6b:fb:46:83:dc:f5:9f:f7:ae:4b:3c:65: 97:49:37:a7:4e:2f:36:e2:36:88:f4:2d:f0:f3:8f:bd:6a:c0: 20:33:f2:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSSAINRPHKLMpjS4y6l+7q8w0spgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTFaFw0yNzA1MDIwMjQ3NTFaMDMxMTAvBgNV BAMTKDYxMjRCQTgwQTY1QzhCQjAyQjlCMjkxNDAwNzk4Qzk2QTc4MzQ0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE91IptsSESSckQd3dlEmordg1 WCFPISg8prtYzOZvryQpw+tT6+s8vRtrMo7gZoJa2fJQVrVTIEiI5CuoRyoRaWD+ Yq+N5N0/L9g6GHgsNLoNOO9z6JAjscVizSIQMl1Neu73XzIcESJCPxURKoivE2Mz /hIX6X+tgDveXx1jA3dxXN6ofWIm2ZEuzguBGFvuRbMs5GaD8EcB+i7TI1XWL16L SsIEuHfsnjtSSKdGr2sI0q1GukfuiWf7163++TRdqvnjZWPJ3BPrt1EPqUxr8uSQ b5lVOqXtgayWSR+cMAcacXTJjqtF1RwcCDHptWJsBuLz+7kOJGxUidz4X2/dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYSS6gKZci7ArmykUAHmMlqeDRAIwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzIzNDJlMzEzNTM4MmUzMTM4MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDfJ64MA0GCSqG SIb3DQEBCwUAA4IBAQBnmzG7ZC4W6Yji9oIGb9Sctgcm+LFsZRIAPUiZYuZmbGjQ XDtGTYzHu3bVUftZ2JLZMgkp+R6oz3uVxFLFZ+Wc+1sZrEnZMlolzQdkinQttFge 8fR53SqnxokYKI43ANDZIUkvejeItkwp46C919cqykWnUWCzyumQh+g5qp144H+i w+Wc92MA5HAJWBz42AacCivsB+7LZ39y66dVddb8uEXTi49WzpgOvCQlCEghlf8X wm2b5lPEexh/dpI3t6NVbrLDkMIV6D/DuqCmiOckcrHu7ctDcYENo4ToUe9r+0aD 3PWf965LPGWXSTenTi824jaI9C3w84+9asAgM/K5 -----END CERTIFICATE-----Generated at Wed May 13 01:44:49 2026 by rpki-client