$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38372e302f32342d3234203d3e203137363731.roa File: 3131342e3139392e38372e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: W5ILtcPJR4sTvX59opdacZKxBUabwh6H/kq2mPPFpdc= Subject key identifier: E9:35:F2:31:A2:B9:F5:A8:90:5E:07:8C:A1:A8:B4:27:D9:F6:97:EB Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 19D7DF49148760AF5878990719F0D00F2AF13C6D Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38372e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:13 +0000 ROA not before: Sun 03 May 2026 02:45:13 +0000 ROA not after: Sun 02 May 2027 02:50:13 +0000 asID: 17671 IP address blocks: 114.199.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d7:df:49:14:87:60:af:58:78:99:07:19:f0:d0:0f:2a:f1:3c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:13 2026 GMT Not After : May 2 02:50:13 2027 GMT Subject: CN=E935F231A2B9F5A8905E078CA1A8B427D9F697EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:53:83:70:07:0b:c8:04:4b:a7:72:65:41:ed: d0:f2:ec:ce:49:42:93:2b:7b:cf:72:21:0f:ac:0d: f3:02:c6:dd:04:3a:95:93:be:ee:71:9b:8c:fe:7f: e6:e1:39:f4:cf:f9:c4:13:6b:03:b6:00:84:15:d9: 3b:45:ca:83:fc:7c:fa:79:0c:0f:33:01:fa:4c:09: 45:6b:0c:ac:82:95:e6:3e:00:49:f0:e9:39:1b:a4: 88:36:7a:36:56:55:52:ee:74:5b:15:ee:16:49:dc: cd:c0:62:b4:2d:38:31:9f:b2:6e:84:b6:4c:0a:cb: 34:ae:7a:3e:9a:e0:e3:3e:e7:c3:ce:78:63:4d:d4: 83:91:64:0b:05:3f:ff:76:f9:ee:a6:55:81:03:f0: eb:c0:35:81:9b:71:e5:1c:77:82:75:c8:a7:f3:51: b8:f4:79:12:32:60:5b:85:1d:cf:13:ab:8f:23:1c: 45:4c:0f:32:d1:35:e2:c3:3e:21:c1:7b:e4:77:ca: b3:7b:9f:70:3d:bc:02:9f:74:ec:4e:71:44:81:33: 24:97:70:05:31:ee:62:82:23:b3:43:21:7b:4e:eb: c9:17:6a:0b:96:2e:f1:42:a4:51:7d:a6:32:34:1c: 0a:bd:04:87:dc:05:13:91:37:63:7c:85:22:fe:14: 74:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:35:F2:31:A2:B9:F5:A8:90:5E:07:8C:A1:A8:B4:27:D9:F6:97:EB X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3131342e3139392e38372e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.87.0/24 Signature Algorithm: sha256WithRSAEncryption 43:34:8c:a5:d6:fd:e2:e4:c9:e4:6c:56:75:b3:f4:f4:56:82: 9e:91:c9:e4:ce:b2:f9:da:1e:f0:ce:48:86:8f:42:9a:b2:df: 45:34:34:7f:07:fa:e6:b5:65:3c:29:1a:3c:5a:67:94:f9:c2: a7:3f:c1:1b:7d:ac:f9:7b:26:13:e6:bc:82:c9:da:9e:ff:14: a6:79:54:b6:14:61:4e:c8:9d:c7:f6:b3:0e:82:4d:ee:52:18: 12:84:3f:35:b3:21:50:66:19:2c:42:54:1c:1e:27:67:8d:60: 92:e5:02:ec:c5:85:de:1c:75:fe:67:ea:60:72:04:c6:f9:bc: c2:f7:e7:72:80:ab:dd:01:7f:2f:a2:f0:51:30:76:6f:66:4b: 01:c2:18:13:22:bb:f4:4a:6e:25:c4:21:95:3a:08:5f:cd:9c: 6b:5c:72:6a:35:81:cc:f6:47:bb:8f:f6:d0:96:d0:09:79:ba: 56:a4:37:ec:1e:11:00:c6:d9:90:f3:1e:7a:1e:1a:01:54:90: 56:ef:cd:c4:84:db:c1:62:42:64:4e:27:75:f2:69:66:2e:1a: 96:3c:73:e1:0a:28:66:f2:c1:9d:d1:78:da:f1:37:06:d8:8b: e8:0f:83:dc:a6:d1:0c:a2:3b:01:ae:db:3d:9b:b8:a1:39:86: 9b:44:a0:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGdffSRSHYK9YeJkHGfDQDyrxPG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTNaFw0yNzA1MDIwMjUwMTNaMDMxMTAvBgNV BAMTKEU5MzVGMjMxQTJCOUY1QTg5MDVFMDc4Q0ExQThCNDI3RDlGNjk3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLU4NwBwvIBEuncmVB7dDy7M5J QpMre89yIQ+sDfMCxt0EOpWTvu5xm4z+f+bhOfTP+cQTawO2AIQV2TtFyoP8fPp5 DA8zAfpMCUVrDKyCleY+AEnw6TkbpIg2ejZWVVLudFsV7hZJ3M3AYrQtODGfsm6E tkwKyzSuej6a4OM+58POeGNN1IORZAsFP/92+e6mVYED8OvANYGbceUcd4J1yKfz Ubj0eRIyYFuFHc8Tq48jHEVMDzLRNeLDPiHBe+R3yrN7n3A9vAKfdOxOcUSBMySX cAUx7mKCI7NDIXtO68kXaguWLvFCpFF9pjI0HAq9BIfcBRORN2N8hSL+FHTPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6TXyMaK59aiQXgeMoai0J9n2l+swHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzEzNDJlMzEzOTM5MmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHVzANBgkqhkiG 9w0BAQsFAAOCAQEAQzSMpdb94uTJ5GxWdbP09FaCnpHJ5M6y+doe8M5Iho9CmrLf RTQ0fwf65rVlPCkaPFpnlPnCpz/BG32s+XsmE+a8gsnanv8UpnlUthRhTsidx/az DoJN7lIYEoQ/NbMhUGYZLEJUHB4nZ41gkuUC7MWF3hx1/mfqYHIExvm8wvfncoCr 3QF/L6LwUTB2b2ZLAcIYEyK79EpuJcQhlToIX82ca1xyajWBzPZHu4/20JbQCXm6 VqQ37B4RAMbZkPMeeh4aAVSQVu/NxITbwWJCZE4ndfJpZi4aljxz4QooZvLBndF4 2vE3BtiL6A+D3KbRDKI7Aa7bPZu4oTmGm0Sgqg== -----END CERTIFICATE-----Generated at Wed May 13 05:51:19 2026 by rpki-client