$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: /GvAWz0KjbaYzo2YaXw/73qjxaFjmZGaryAkGC7GEek= Subject key identifier: D0:25:41:87:4A:83:52:84:79:05:01:69:91:A0:B5:A3:35:57:B2:1F Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 6D7C2437D3167A476B1F06EF88903512472EDA8B Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:13 +0000 ROA not before: Sun 03 May 2026 02:45:13 +0000 ROA not after: Sun 02 May 2027 02:50:13 +0000 asID: 17671 IP address blocks: 114.199.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:7c:24:37:d3:16:7a:47:6b:1f:06:ef:88:90:35:12:47:2e:da:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:13 2026 GMT Not After : May 2 02:50:13 2027 GMT Subject: CN=D02541874A8352847905016991A0B5A33557B21F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:b8:28:1c:ba:cc:3e:2f:05:f6:65:0f:52: 59:6e:3e:e2:0f:e8:18:6a:58:b5:a9:df:b9:bb:ee: 8d:02:a6:19:50:0e:3a:2f:0d:9c:70:13:40:86:23: 62:3e:ce:18:13:02:3c:8f:15:11:3d:1b:78:95:1f: 82:41:1e:f1:52:27:9b:9b:0a:df:da:b4:35:fe:10: 90:42:fa:c3:b5:e9:9a:a7:b7:fe:cf:bf:e9:eb:8e: e4:64:ad:10:39:79:a8:df:a2:a2:67:16:5e:54:82: db:3e:25:72:3a:d1:84:09:51:1e:57:d2:94:3a:15: 35:9d:5e:43:ac:62:8a:6f:30:94:aa:4c:d4:09:a9: bb:ba:6d:f2:2d:e6:0a:2f:54:37:33:19:d4:3d:1a: 93:03:d6:0f:56:35:3f:0c:6a:5b:99:5f:26:07:63: f3:a0:c8:91:13:6d:32:ba:d1:ef:bc:15:f6:05:d5: 1c:b2:45:af:8e:3f:a7:5e:dd:d2:38:3a:fc:29:ce: 22:94:39:6c:36:83:6a:37:ab:33:ad:20:09:3e:84: ed:0d:32:57:12:02:23:e7:b7:92:93:b6:00:ab:9b: 19:9b:d0:ac:bd:2c:b4:fa:51:50:28:9d:3a:01:9f: 8b:fb:36:79:e6:e4:26:cf:57:e5:28:61:8f:fe:62: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:25:41:87:4A:83:52:84:79:05:01:69:91:A0:B5:A3:35:57:B2:1F X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.85.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:05:6e:11:f2:bb:e6:04:39:e0:0a:ab:11:94:a9:a3:07:d1: 48:88:76:8e:85:7d:23:a0:41:93:7d:de:96:ec:b2:46:3c:10: 5d:36:b2:c5:75:a0:0b:f1:83:92:75:97:4c:ee:1d:eb:11:d7: 6e:e1:95:36:b2:cf:63:72:17:74:f1:96:05:41:f5:d6:d0:30: f3:d3:db:4b:8e:05:ba:3b:62:d4:e9:83:6a:f5:51:4a:e4:57: 26:ef:7a:e4:75:9b:7d:3b:99:f7:f9:27:a0:ad:c0:da:42:4a: bb:5f:9f:c8:e6:fa:52:18:ac:14:b1:af:78:e7:84:51:41:31: f7:58:ed:e5:2f:36:b0:3b:14:3b:ad:96:e2:49:eb:a3:09:1e: 85:e1:88:d4:29:b5:ff:07:4f:8b:5c:5e:3f:13:25:cb:68:6e: 3d:6c:7b:25:af:54:82:49:6a:75:60:a4:6f:29:5e:8a:6f:5e: 03:fc:1f:af:97:78:82:b9:9c:e9:61:8d:61:c8:4f:da:29:3f: cd:7d:b8:aa:5e:bc:73:b8:15:50:46:68:aa:be:0c:a5:55:f8: aa:a4:32:4c:fa:4f:77:f2:8c:b7:e5:09:37:0a:08:34:e0:8f: 24:7e:2f:94:eb:9d:98:90:93:db:8a:a8:e6:4d:57:dd:ac:f6: 05:88:b4:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbXwkN9MWekdrHwbviJA1Ekcu2oswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTNaFw0yNzA1MDIwMjUwMTNaMDMxMTAvBgNV BAMTKEQwMjU0MTg3NEE4MzUyODQ3OTA1MDE2OTkxQTBCNUEzMzU1N0IyMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzu7goHLrMPi8F9mUPUlluPuIP 6BhqWLWp37m77o0CphlQDjovDZxwE0CGI2I+zhgTAjyPFRE9G3iVH4JBHvFSJ5ub Ct/atDX+EJBC+sO16Zqnt/7Pv+nrjuRkrRA5eajfoqJnFl5Ugts+JXI60YQJUR5X 0pQ6FTWdXkOsYopvMJSqTNQJqbu6bfIt5govVDczGdQ9GpMD1g9WNT8MaluZXyYH Y/OgyJETbTK60e+8FfYF1RyyRa+OP6de3dI4OvwpziKUOWw2g2o3qzOtIAk+hO0N MlcSAiPnt5KTtgCrmxmb0Ky9LLT6UVAonToBn4v7Nnnm5CbPV+UoYY/+YtFfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0CVBh0qDUoR5BQFpkaC1ozVXsh8wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVTANBgkqhkiG 9w0BAQsFAAOCAQEAXwVuEfK75gQ54AqrEZSpowfRSIh2joV9I6BBk33eluyyRjwQ XTayxXWgC/GDknWXTO4d6xHXbuGVNrLPY3IXdPGWBUH11tAw89PbS44Fujti1OmD avVRSuRXJu965HWbfTuZ9/knoK3A2kJKu1+fyOb6UhisFLGveOeEUUEx91jt5S82 sDsUO62W4knrowkeheGI1Cm1/wdPi1xePxMly2huPWx7Ja9UgklqdWCkbyleim9e A/wfr5d4grmc6WGNYchP2ik/zX24ql68c7gVUEZoqr4MpVX4qqQyTPpPd/KMt+UJ NwoINOCPJH4vlOudmJCT24qo5k1X3az2BYi00g== -----END CERTIFICATE-----Generated at Wed May 13 05:51:19 2026 by rpki-client