$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa File: 3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa (raw, json) Hash identifier: ynDJbl5QheJ1es5AfYiOzo7k58LFt+WF0Rj8WpNbQVc= Subject key identifier: 9E:B5:A5:F0:78:C9:ED:71:14:4E:4D:49:73:14:8F:73:A9:27:3F:5D Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 10890392002D70FC3B5F65CAE50F39E0988EA8DE Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa Signing time: Sun 03 May 2026 02:49:39 +0000 ROA not before: Sun 03 May 2026 02:44:39 +0000 ROA not after: Sun 02 May 2027 02:49:39 +0000 asID: 140481 IP address blocks: 110.76.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:89:03:92:00:2d:70:fc:3b:5f:65:ca:e5:0f:39:e0:98:8e:a8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:39 2026 GMT Not After : May 2 02:49:39 2027 GMT Subject: CN=9EB5A5F078C9ED71144E4D4973148F73A9273F5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a3:11:b3:55:a3:3f:64:4a:c3:0c:13:38:3e: 0f:c5:d5:9e:2a:ed:64:2f:90:f6:68:49:8f:32:1e: e8:4b:33:ab:e0:59:c6:1b:44:48:e1:f1:89:ba:d0: fc:df:9f:d8:ee:1f:6a:06:19:b6:26:b5:b1:62:6d: 95:b5:5b:c5:63:bf:ff:9d:fe:1f:88:6d:a2:2e:05: d1:b2:bb:f7:01:ae:48:6e:54:40:75:3d:e3:4d:7e: a1:e1:c1:d1:ca:14:6e:4f:b5:7b:88:0b:ed:5b:bf: dc:76:8a:cf:6c:31:21:26:0f:97:ef:aa:82:2b:dc: 6f:3d:89:ce:67:ac:00:cb:f5:90:45:75:4c:48:46: 5b:91:12:e6:39:49:44:e6:02:11:22:53:6f:24:5e: 09:a4:c5:a5:1c:bc:cc:79:30:3d:20:35:41:a1:0d: 21:06:90:37:6c:80:b7:9a:cb:7e:f3:cb:a3:c8:8b: 33:3a:40:c6:f1:85:a7:9a:0c:9d:8c:c3:77:05:d9: 79:08:de:6b:74:5b:52:e6:a2:79:14:97:78:81:a4: b0:d9:b4:ce:e4:da:a7:b9:44:10:c8:3a:56:27:ed: 62:c3:b5:41:3e:40:1c:9b:df:db:ad:7d:a7:21:8d: 23:cb:6c:e6:9e:9e:96:99:a4:3e:96:84:0d:b8:ca: cc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B5:A5:F0:78:C9:ED:71:14:4E:4D:49:73:14:8F:73:A9:27:3F:5D X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134342e302f32342d3234203d3e20313430343831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.144.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:5a:13:60:91:aa:e7:8c:94:54:16:2c:e7:9e:8d:79:fc:ad: 80:a6:9b:dc:bf:10:bc:d4:3e:de:c5:70:0d:88:77:78:24:c6: 87:d7:f0:32:e2:b9:b5:ef:87:01:8f:07:52:36:8f:d7:56:17: 16:a4:2a:c8:59:40:2a:e4:18:53:d0:aa:cf:ff:b7:8d:e7:ec: 24:e6:ee:ca:39:fb:8e:a6:af:30:37:4b:1a:d7:2c:8b:92:f1: da:09:68:bc:27:c0:2a:73:c7:27:6b:cb:f1:f5:49:1c:7c:de: 4a:b9:80:45:53:d5:3f:32:0a:24:d1:68:8b:28:53:77:09:28: 43:8d:1a:a4:86:d7:54:20:11:9f:6b:5c:d8:5e:3a:b7:d6:0e: 09:9f:fc:cf:62:85:f5:5b:71:75:7a:22:5e:66:6e:f4:0f:7d: b2:5a:0e:aa:58:83:51:30:1f:bd:6a:43:77:c2:4b:7b:4d:2e: c9:35:f5:c6:66:a5:e7:52:83:17:39:9e:e2:e1:d3:2d:81:43: fa:f9:37:cc:4d:b5:4f:ea:0e:84:2c:2b:25:a8:0e:9b:1e:38: e9:ab:fe:22:ab:de:3f:c8:f3:87:5f:d9:cf:8c:82:d6:36:ab: e1:a4:34:84:9c:06:81:64:dd:3b:5d:e5:33:63:49:c9:2f:57: 72:e8:4e:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEIkDkgAtcPw7X2XK5Q854JiOqN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0MzlaFw0yNzA1MDIwMjQ5MzlaMDMxMTAvBgNV BAMTKDlFQjVBNUYwNzhDOUVENzExNDRFNEQ0OTczMTQ4RjczQTkyNzNGNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgoxGzVaM/ZErDDBM4Pg/F1Z4q 7WQvkPZoSY8yHuhLM6vgWcYbREjh8Ym60Pzfn9juH2oGGbYmtbFibZW1W8Vjv/+d /h+IbaIuBdGyu/cBrkhuVEB1PeNNfqHhwdHKFG5PtXuIC+1bv9x2is9sMSEmD5fv qoIr3G89ic5nrADL9ZBFdUxIRluREuY5SUTmAhEiU28kXgmkxaUcvMx5MD0gNUGh DSEGkDdsgLeay37zy6PIizM6QMbxhaeaDJ2Mw3cF2XkI3mt0W1LmonkUl3iBpLDZ tM7k2qe5RBDIOlYn7WLDtUE+QByb39utfachjSPLbOaenpaZpD6WhA24yswDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnrWl8HjJ7XEUTk1JcxSPc6knP10wHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyQMA0GCSqG SIb3DQEBCwUAA4IBAQB/WhNgkarnjJRUFiznno15/K2AppvcvxC81D7exXANiHd4 JMaH1/Ay4rm174cBjwdSNo/XVhcWpCrIWUAq5BhT0KrP/7eN5+wk5u7KOfuOpq8w N0sa1yyLkvHaCWi8J8Aqc8cna8vx9UkcfN5KuYBFU9U/Mgok0WiLKFN3CShDjRqk htdUIBGfa1zYXjq31g4Jn/zPYoX1W3F1eiJeZm70D32yWg6qWINRMB+9akN3wkt7 TS7JNfXGZqXnUoMXOZ7i4dMtgUP6+TfMTbVP6g6ELCslqA6bHjjpq/4iq94/yPOH X9nPjILWNqvhpDSEnAaBZN07XeUzY0nJL1dy6E6R -----END CERTIFICATE-----Generated at Wed May 13 03:48:32 2026 by rpki-client