$ rpki-client -vvf rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa File: 3131382e39312e3132382e302f32312d3234203d3e203234313935.roa (raw, json) Hash identifier: LQLPTnxAiTCFL6ZmWkZjMD4eo5v053wknOPM5ftHnJk= Subject key identifier: DF:61:1B:4C:E4:E2:61:D2:DA:77:2F:02:A2:8E:19:21:BA:54:B9:20 Certificate issuer: /CN=FB3286A3734F366E27845180AD985879147BEA5E Certificate serial: 7CBC46388C752AC90E5D91B1E809A33E1FE27DAC Authority key identifier: FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa Signing time: Sun 03 May 2026 02:48:36 +0000 ROA not before: Sun 03 May 2026 02:43:36 +0000 ROA not after: Sun 02 May 2027 02:48:36 +0000 asID: 24195 IP address blocks: 118.91.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:bc:46:38:8c:75:2a:c9:0e:5d:91:b1:e8:09:a3:3e:1f:e2:7d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3286A3734F366E27845180AD985879147BEA5E Validity Not Before: May 3 02:43:36 2026 GMT Not After : May 2 02:48:36 2027 GMT Subject: CN=DF611B4CE4E261D2DA772F02A28E1921BA54B920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:8e:07:c9:98:ad:5e:43:fe:7a:9b:1c:f3: 0f:5a:d1:9d:20:77:78:3b:2f:60:9e:dd:ec:8c:da: 7d:86:5c:a9:7f:ec:b8:a6:e9:5f:00:60:60:05:3a: 44:41:87:4e:5e:dd:64:f8:60:47:5b:77:9d:85:32: 8d:db:00:f5:06:48:87:5c:bf:9e:11:59:56:32:99: c4:c2:bf:8a:d5:45:47:1a:f3:23:4d:b4:99:7f:9d: 5c:f8:16:8d:e7:88:7b:0c:5e:1a:ad:4b:b6:30:08: ce:5a:fa:c3:3b:50:99:94:92:4f:f4:8e:7b:61:50: c0:97:0c:6e:ee:e0:6e:b7:7b:75:5d:4f:2a:b8:38: 94:99:b1:7c:a0:2b:a4:a5:55:af:c0:0a:47:b7:11: 50:fe:24:31:62:79:5d:fe:f9:e8:43:7c:3d:9a:4d: 6b:27:9e:bc:c2:91:55:53:8e:1f:c6:e6:3a:56:a8: be:c6:5d:4c:53:8d:3b:a3:47:97:ef:3a:01:44:9a: 62:f2:1d:18:eb:01:9a:6c:36:b1:d2:e2:4b:d7:43: 19:77:6c:71:0a:17:e4:52:26:82:a2:c9:bf:22:1f: 79:7b:e7:54:4c:d0:69:fe:22:84:65:04:13:1d:de: 58:ee:07:13:e1:5b:0f:61:6f:6d:c3:66:75:77:b5: c5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:61:1B:4C:E4:E2:61:D2:DA:77:2F:02:A2:8E:19:21:BA:54:B9:20 X509v3 Authority Key Identifier: keyid:FB:32:86:A3:73:4F:36:6E:27:84:51:80:AD:98:58:79:14:7B:EA:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/FB3286A3734F366E27845180AD985879147BEA5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB3286A3734F366E27845180AD985879147BEA5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.91.128.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:37:5e:76:9e:1d:e0:80:fa:4e:b9:0a:ae:a4:3f:56:f8:38: 1f:44:c8:2f:5c:1e:c2:c9:b9:4e:88:5f:82:65:af:b6:f2:7b: c6:60:73:14:6d:35:eb:cb:ce:d9:96:ce:a7:d7:8f:32:11:9c: df:0e:27:82:56:f1:1f:c5:c5:cd:fd:e3:d2:34:c4:a4:13:ae: b4:8d:03:83:65:19:f6:34:66:83:30:60:e2:53:59:94:b2:79: b0:6f:03:0b:9f:15:ab:d5:b8:55:16:ef:0d:bd:87:e0:5e:5c: 5a:97:86:d9:12:b2:bf:1b:5e:b5:cc:b8:37:3f:70:69:34:da: bd:cc:4b:8b:01:5d:0e:9e:33:c9:63:c8:13:71:b4:13:f7:64: ac:50:0e:8a:5b:c1:ee:ec:5f:c6:fe:53:ef:68:3a:73:60:91: 1d:4e:7d:70:42:fd:01:a8:df:0e:19:18:e0:a5:25:c5:55:71: 24:a3:65:ad:7c:9d:9e:ed:2e:4c:b0:fe:13:f1:23:8b:f9:c7: 1c:9d:84:69:9f:09:87:a3:e7:7c:b5:46:7b:e7:7e:b5:a7:89: f9:c6:c8:b1:24:6f:62:75:c6:85:54:a4:f7:09:f8:35:63:9f: dc:19:c3:9c:d6:13:ee:85:95:64:fb:3a:c2:ae:fa:f8:10:1f: 20:da:c7:77 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfLxGOIx1KskOXZGx6AmjPh/ifawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzMjg2QTM3MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4Nzkx NDdCRUE1RTAeFw0yNjA1MDMwMjQzMzZaFw0yNzA1MDIwMjQ4MzZaMDMxMTAvBgNV BAMTKERGNjExQjRDRTRFMjYxRDJEQTc3MkYwMkEyOEUxOTIxQkE1NEI5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaZI4HyZitXkP+epsc8w9a0Z0g d3g7L2Ce3eyM2n2GXKl/7Lim6V8AYGAFOkRBh05e3WT4YEdbd52FMo3bAPUGSIdc v54RWVYymcTCv4rVRUca8yNNtJl/nVz4Fo3niHsMXhqtS7YwCM5a+sM7UJmUkk/0 jnthUMCXDG7u4G63e3VdTyq4OJSZsXygK6SlVa/ACke3EVD+JDFieV3++ehDfD2a TWsnnrzCkVVTjh/G5jpWqL7GXUxTjTujR5fvOgFEmmLyHRjrAZpsNrHS4kvXQxl3 bHEKF+RSJoKiyb8iH3l751RM0Gn+IoRlBBMd3ljuBxPhWw9hb23DZnV3tcXRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU32EbTOTiYdLady8Coo4ZIbpUuSAwHwYDVR0j BBgwFoAU+zKGo3NPNm4nhFGArZhYeRR76l4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODc5MmE0Y2QtZGJhYy00M2FjLTgwNjAtMmU4ZDQyZWFlNjU1LzAvRkIzMjg2QTM3 MzRGMzY2RTI3ODQ1MTgwQUQ5ODU4NzkxNDdCRUE1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjMyODZBMzczNEYzNjZFMjc4NDUxODBBRDk4NTg3OTE0N0JF QTVFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMxMzEzODJlMzkzMTJlMzEzMjM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3ZbgDANBgkqhkiG 9w0BAQsFAAOCAQEAHDdedp4d4ID6TrkKrqQ/Vvg4H0TIL1wewsm5TohfgmWvtvJ7 xmBzFG0168vO2ZbOp9ePMhGc3w4nglbxH8XFzf3j0jTEpBOutI0Dg2UZ9jRmgzBg 4lNZlLJ5sG8DC58Vq9W4VRbvDb2H4F5cWpeG2RKyvxtetcy4Nz9waTTavcxLiwFd Dp4zyWPIE3G0E/dkrFAOilvB7uxfxv5T72g6c2CRHU59cEL9AajfDhkY4KUlxVVx JKNlrXydnu0uTLD+E/Eji/nHHJ2EaZ8Jh6PnfLVGe+d+taeJ+cbIsSRvYnXGhVSk 9wn4NWOf3BnDnNYT7oWVZPs6wq76+BAfINrHdw== -----END CERTIFICATE-----Generated at Wed May 13 00:45:25 2026 by rpki-client