$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa File: 3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa (raw, json) Hash identifier: 4j6hlYNmDWL6STxcmNLJzK33rXVdOWRVZ9jzrMGheb0= Subject key identifier: 66:1D:A2:8E:28:A0:40:4E:8F:CA:C4:16:87:66:79:88:D3:1E:67:D5 Certificate issuer: /CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Certificate serial: 5F1B40126F2A3452F9329BEB796021BC9A01708A Authority key identifier: 21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa Signing time: Sun 03 May 2026 02:49:40 +0000 ROA not before: Sun 03 May 2026 02:44:40 +0000 ROA not after: Sun 02 May 2027 02:49:40 +0000 asID: 140481 IP address blocks: 110.76.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1b:40:12:6f:2a:34:52:f9:32:9b:eb:79:60:21:bc:9a:01:70:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21A1AF13820FECAAC871E77BA706DF913EB6445B Validity Not Before: May 3 02:44:40 2026 GMT Not After : May 2 02:49:40 2027 GMT Subject: CN=661DA28E28A0404E8FCAC41687667988D31E67D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:c8:05:e4:1c:25:6d:4b:e9:5f:35:f1:cb: aa:7c:c5:d6:1e:da:9c:66:2c:29:03:a0:04:6d:88: 1e:7f:7f:8d:63:0e:b7:5a:fd:7f:f5:3b:42:ef:23: e0:fb:43:80:69:a6:7b:59:af:f8:4d:ba:23:2f:6f: 5a:89:15:03:f1:2b:1d:74:98:fc:17:15:f9:fc:bb: bc:01:d2:47:bf:13:df:8e:64:83:80:5b:0c:f8:df: b8:ad:1a:7c:38:cc:07:b8:b5:34:87:1e:22:93:e3: 2c:30:5b:2a:2d:ba:37:94:a5:09:b0:0f:6c:69:fc: d8:11:2b:5b:db:97:b4:e3:be:2a:e2:78:bc:4f:b0: 62:0d:54:77:94:ef:65:d9:99:0a:4f:6c:86:36:4c: 42:5d:4e:27:fc:f5:87:a2:f1:38:64:84:86:0b:bb: 17:3a:2c:0e:d9:cd:9b:86:ff:6b:ef:ec:5a:78:8e: 45:be:35:e2:ad:ed:79:f0:55:c9:c9:73:7b:60:e7: 30:16:65:44:cd:8c:7e:79:a1:cd:a6:e5:59:e8:25: 8b:06:d7:e8:40:93:17:06:d0:c9:93:b2:25:60:ad: 4c:42:9b:88:f7:d5:02:2d:2d:b9:e7:ca:72:45:a2: af:ee:e9:b7:e6:fb:00:d9:d6:71:37:2d:f9:11:70: d5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1D:A2:8E:28:A0:40:4E:8F:CA:C4:16:87:66:79:88:D3:1E:67:D5 X509v3 Authority Key Identifier: keyid:21:A1:AF:13:82:0F:EC:AA:C8:71:E7:7B:A7:06:DF:91:3E:B6:44:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/21A1AF13820FECAAC871E77BA706DF913EB6445B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/21A1AF13820FECAAC871E77BA706DF913EB6445B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.145.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:47:63:e2:90:b2:09:d2:12:c1:ab:e0:60:32:cd:9b:ac:78: b7:49:2e:da:ef:82:e3:c2:52:2c:10:29:4a:56:d9:1f:40:60: 37:4c:35:54:c9:dc:06:a3:fe:89:a5:a3:1e:9f:b6:4e:3a:b2: ec:90:76:6e:3c:e4:35:ec:6f:b8:cb:1f:2d:5f:32:75:18:de: e2:7a:ff:22:df:78:21:36:00:da:cf:19:31:ae:ce:5c:13:46: 78:00:a0:5a:a5:d9:13:01:4b:bb:48:5b:e5:65:e7:69:fc:62: b5:5a:5f:0e:98:fc:b9:e7:22:4a:5f:aa:76:5f:e7:13:88:c0: 33:b0:cb:8b:56:a3:72:78:75:c8:fa:53:68:c3:d5:15:92:2d: 2c:f2:d0:17:6e:79:d7:97:01:c1:58:2b:fb:c4:6e:39:d7:a5: 63:9b:eb:2c:98:38:2d:57:fb:d9:fd:f1:f0:75:94:8a:6d:4d: 6a:ce:d0:44:ab:18:92:2b:d1:01:31:4b:33:95:4d:1f:af:e8: e9:55:f8:2b:7f:10:a4:34:1e:6f:5d:12:08:3b:56:36:82:3d: 1c:db:ed:63:a6:73:99:d7:90:0c:99:06:c3:f1:fc:2d:0d:12: 7b:be:59:55:df:cf:4a:d3:c7:3a:9b:5d:0b:97:99:8f:5c:26: 49:20:40:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXxtAEm8qNFL5MpvreWAhvJoBcIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBMUFGMTM4MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEz RUI2NDQ1QjAeFw0yNjA1MDMwMjQ0NDBaFw0yNzA1MDIwMjQ5NDBaMDMxMTAvBgNV BAMTKDY2MURBMjhFMjhBMDQwNEU4RkNBQzQxNjg3NjY3OTg4RDMxRTY3RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbsgF5BwlbUvpXzXxy6p8xdYe 2pxmLCkDoARtiB5/f41jDrda/X/1O0LvI+D7Q4BppntZr/hNuiMvb1qJFQPxKx10 mPwXFfn8u7wB0ke/E9+OZIOAWwz437itGnw4zAe4tTSHHiKT4ywwWyotujeUpQmw D2xp/NgRK1vbl7TjvirieLxPsGINVHeU72XZmQpPbIY2TEJdTif89Yei8ThkhIYL uxc6LA7ZzZuG/2vv7Fp4jkW+NeKt7XnwVcnJc3tg5zAWZUTNjH55oc2m5VnoJYsG 1+hAkxcG0MmTsiVgrUxCm4j31QItLbnnynJFoq/u6bfm+wDZ1nE3LfkRcNWfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZh2ijiigQE6PysQWh2Z5iNMeZ9UwHwYDVR0j BBgwFoAUIaGvE4IP7KrIced7pwbfkT62RFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI1NDhiYWQtN2ZlZC00MWZkLWI0MmUtNzgwMzcyYzQ1MjU1LzAvMjFBMUFGMTM4 MjBGRUNBQUM4NzFFNzdCQTcwNkRGOTEzRUI2NDQ1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMUExQUYxMzgyMEZFQ0FBQzg3MUU3N0JBNzA2REY5MTNFQjY0 NDVCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyRMA0GCSqG SIb3DQEBCwUAA4IBAQAcR2PikLIJ0hLBq+BgMs2brHi3SS7a74LjwlIsEClKVtkf QGA3TDVUydwGo/6JpaMen7ZOOrLskHZuPOQ17G+4yx8tXzJ1GN7iev8i33ghNgDa zxkxrs5cE0Z4AKBapdkTAUu7SFvlZedp/GK1Wl8OmPy55yJKX6p2X+cTiMAzsMuL VqNyeHXI+lNow9UVki0s8tAXbnnXlwHBWCv7xG4516Vjm+ssmDgtV/vZ/fHwdZSK bU1qztBEqxiSK9EBMUszlU0fr+jpVfgrfxCkNB5vXRIIO1Y2gj0c2+1jpnOZ15AM mQbD8fwtDRJ7vllV389K08c6m10Ll5mPXCZJIEDe -----END CERTIFICATE-----Generated at Wed May 13 02:59:14 2026 by rpki-client