$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: fe4VBDB8fZ2ly9OlZIw2qwBg9IDrhroSOlQIynx8W34= Subject key identifier: D9:6E:E3:D9:7C:0C:86:EF:32:B6:2A:15:6F:41:68:CB:2E:CF:40:99 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 4E7BAC02341CBEFE2CEA84A1ABACE6C2D9B73C97 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:16 +0000 ROA not before: Sun 03 May 2026 02:45:16 +0000 ROA not after: Sun 02 May 2027 02:50:16 +0000 asID: 17671 IP address blocks: 114.199.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7b:ac:02:34:1c:be:fe:2c:ea:84:a1:ab:ac:e6:c2:d9:b7:3c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:16 2026 GMT Not After : May 2 02:50:16 2027 GMT Subject: CN=D96EE3D97C0C86EF32B62A156F4168CB2ECF4099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:81:b1:2e:f0:f9:cf:47:93:c0:55:32:f6: 72:8a:e1:23:89:ec:b7:d6:22:eb:cc:0a:71:e8:d7: d6:b6:63:cb:ab:fb:18:69:08:6f:16:cd:b1:27:6d: d6:ef:42:44:60:64:78:a2:73:0c:6a:95:22:66:96: b8:0b:d3:78:86:a3:95:1a:f2:bd:72:27:98:27:05: a2:7c:9e:e3:5c:f1:f2:f5:0f:39:1d:b9:72:c2:07: 00:b4:77:41:03:63:a5:18:f7:e4:2c:3f:eb:94:8b: 03:21:4f:ea:4f:c7:fa:e7:a2:7d:0d:a7:cb:a3:d4: f1:c3:59:f2:a4:b8:74:4c:ec:7c:72:33:78:ca:ec: fb:19:13:4a:59:a5:c2:d1:86:9c:d4:61:d8:3d:d9: 26:2c:43:5d:40:f7:80:44:38:17:f1:f6:06:40:2e: 7d:45:20:97:cd:87:58:80:d2:39:0c:05:3e:78:e1: b1:15:1f:9a:4e:40:cb:35:09:39:6c:d4:ce:8e:ee: 40:b5:ef:63:0b:e0:54:0b:e1:14:a2:0b:f3:f5:4d: 45:11:8f:f4:d5:1a:dd:0a:5f:e1:85:67:0e:c8:32: 9c:17:e9:0d:40:2c:c1:d6:9b:de:e1:6b:ba:16:15: 9f:0a:f8:03:66:04:65:eb:47:f5:3b:b4:20:37:1e: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6E:E3:D9:7C:0C:86:EF:32:B6:2A:15:6F:41:68:CB:2E:CF:40:99 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.84.0/24 Signature Algorithm: sha256WithRSAEncryption 80:b9:92:8a:22:f3:c2:52:e9:5c:b0:f2:de:98:fe:9e:05:43: 56:c7:82:ad:72:f4:5e:84:8a:2c:56:40:14:3f:89:82:00:2f: 7f:07:5b:66:e9:16:2e:ad:8d:83:c8:df:d0:cd:30:9a:22:ac: e3:0d:3b:cd:fb:7b:8e:a6:6d:d6:b7:9a:8e:b2:ff:d6:80:37: dc:2a:cf:be:96:86:34:75:77:bc:23:b2:de:e8:92:fb:0d:f2: 36:b3:c2:d1:ad:71:17:d4:c7:cb:35:c3:89:27:c6:33:92:2b: ea:35:36:ae:ec:2f:3e:bb:94:bc:a4:b6:96:bc:54:e9:4f:b1: 68:b1:23:0e:72:2b:7d:4f:4b:f0:51:57:a9:a1:64:c8:25:27: 59:ac:5c:a6:b8:4e:bb:cc:13:da:8b:92:8b:35:80:8b:50:a6: 7c:83:dc:0c:32:9a:b7:7e:43:3b:e6:fb:ef:10:7a:a9:31:77: 3d:b0:cd:42:03:94:de:93:cd:e8:14:13:07:73:89:ba:fb:0c: 82:47:b0:81:85:d6:e9:af:58:28:c3:a4:40:2a:2d:58:e5:6a: a2:1c:0b:ee:97:88:ff:ba:3f:c5:36:70:67:33:6b:cd:61:db: 1e:fb:a4:6d:91:2d:72:06:11:25:c1:e3:7a:ce:b4:68:ec:55: cd:01:42:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTnusAjQcvv4s6oShq6zmwtm3PJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTZaFw0yNzA1MDIwMjUwMTZaMDMxMTAvBgNV BAMTKEQ5NkVFM0Q5N0MwQzg2RUYzMkI2MkExNTZGNDE2OENCMkVDRjQwOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9u4GxLvD5z0eTwFUy9nKK4SOJ 7LfWIuvMCnHo19a2Y8ur+xhpCG8WzbEnbdbvQkRgZHiicwxqlSJmlrgL03iGo5Ua 8r1yJ5gnBaJ8nuNc8fL1DzkduXLCBwC0d0EDY6UY9+QsP+uUiwMhT+pPx/rnon0N p8uj1PHDWfKkuHRM7HxyM3jK7PsZE0pZpcLRhpzUYdg92SYsQ11A94BEOBfx9gZA Ln1FIJfNh1iA0jkMBT544bEVH5pOQMs1CTls1M6O7kC172ML4FQL4RSiC/P1TUUR j/TVGt0KX+GFZw7IMpwX6Q1ALMHWm97ha7oWFZ8K+ANmBGXrR/U7tCA3HqMfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2W7j2XwMhu8ytioVb0Foyy7PQJkwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVDANBgkqhkiG 9w0BAQsFAAOCAQEAgLmSiiLzwlLpXLDy3pj+ngVDVseCrXL0XoSKLFZAFD+JggAv fwdbZukWLq2Ng8jf0M0wmiKs4w07zft7jqZt1reajrL/1oA33CrPvpaGNHV3vCOy 3uiS+w3yNrPC0a1xF9THyzXDiSfGM5Ir6jU2ruwvPruUvKS2lrxU6U+xaLEjDnIr fU9L8FFXqaFkyCUnWaxcprhOu8wT2ouSizWAi1CmfIPcDDKat35DO+b77xB6qTF3 PbDNQgOU3pPN6BQTB3OJuvsMgkewgYXW6a9YKMOkQCotWOVqohwL7peI/7o/xTZw ZzNrzWHbHvukbZEtcgYRJcHjes60aOxVzQFCww== -----END CERTIFICATE-----Generated at Wed May 13 05:51:18 2026 by rpki-client