$ rpki-client -vvf rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa File: 3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa (raw, json) Hash identifier: DR008bVSYXJm82RMo+BhRQvkIWKNDedVtmRpjzWrQic= Subject key identifier: B9:BD:EE:C7:15:19:12:F0:AA:21:EF:2A:B1:8B:C6:B5:E2:87:00:3B Certificate issuer: /CN=D8435659F33EE1F7005A21C1387F49D353431808 Certificate serial: 0681DA5E05D0EAA2432F39B23D605EE71062425C Authority key identifier: D8:43:56:59:F3:3E:E1:F7:00:5A:21:C1:38:7F:49:D3:53:43:18:08 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8435659F33EE1F7005A21C1387F49D353431808.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa Signing time: Sun 03 May 2026 02:52:17 +0000 ROA not before: Sun 03 May 2026 02:47:17 +0000 ROA not after: Sun 02 May 2027 02:52:17 +0000 asID: 131706 IP address blocks: 121.101.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/D8435659F33EE1F7005A21C1387F49D353431808.crl rsync://rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/D8435659F33EE1F7005A21C1387F49D353431808.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8435659F33EE1F7005A21C1387F49D353431808.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:81:da:5e:05:d0:ea:a2:43:2f:39:b2:3d:60:5e:e7:10:62:42:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8435659F33EE1F7005A21C1387F49D353431808 Validity Not Before: May 3 02:47:17 2026 GMT Not After : May 2 02:52:17 2027 GMT Subject: CN=B9BDEEC7151912F0AA21EF2AB18BC6B5E287003B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3d:b1:ee:18:39:6d:85:b6:bf:8e:38:6b:30: 3d:9c:8e:86:17:4d:54:1e:7b:c6:09:15:1d:fc:f7: 5a:f6:98:ca:c4:40:e7:f7:4a:c0:56:b1:cf:77:d0: c9:ca:97:94:b5:5f:c0:a7:59:96:b7:12:1f:66:b1: e1:db:e7:4b:ce:4d:f1:43:ba:30:f2:15:f1:63:3f: 8e:c0:50:10:72:f3:a2:7a:cc:2a:8a:bf:5f:07:bc: d5:81:a5:c3:63:a2:8a:b3:f4:ee:67:b0:92:14:20: c9:79:69:55:a7:88:a2:7e:57:32:5f:ff:07:7f:95: 8a:88:df:6c:ae:d7:d1:99:68:ea:b0:a1:c2:f7:e9: 75:5e:24:c7:48:78:68:2f:da:68:f0:ad:45:c2:90: 00:27:61:75:82:22:45:85:48:a0:35:a3:6f:18:d6: a2:5e:df:10:3c:18:d8:88:2b:7b:56:9b:11:7a:18: ca:5e:65:68:f7:94:76:73:7e:05:dc:2a:11:26:f3: 23:ba:62:57:d8:86:f1:a0:e7:6b:ea:ac:3e:bd:4f: c5:f1:9a:5c:01:50:a0:a7:b4:ce:ad:56:d1:bf:26: f7:b8:8e:d5:df:28:71:bc:44:fe:fa:38:1e:9d:f4: 61:ff:28:26:ae:5d:ff:aa:de:95:e3:f5:a6:4e:31: 08:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BD:EE:C7:15:19:12:F0:AA:21:EF:2A:B1:8B:C6:B5:E2:87:00:3B X509v3 Authority Key Identifier: keyid:D8:43:56:59:F3:3E:E1:F7:00:5A:21:C1:38:7F:49:D3:53:43:18:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/D8435659F33EE1F7005A21C1387F49D353431808.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8435659F33EE1F7005A21C1387F49D353431808.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.128.0/21 Signature Algorithm: sha256WithRSAEncryption 63:20:0e:43:11:6f:4a:f8:2c:eb:ed:50:21:c4:8f:30:74:c3: 9a:d3:aa:33:35:24:7a:c8:88:3f:2b:5c:db:c2:b6:83:a4:de: 98:f0:a2:f7:72:2a:06:f2:05:6f:4f:cb:9d:1b:e5:5a:a8:d8: 9c:1f:05:30:a2:16:cb:28:3e:f4:e4:3d:1a:2c:2c:09:e7:27: 99:80:90:b9:7b:8c:9f:92:f7:b8:ef:8d:07:0c:36:5e:fd:db: 33:07:3f:10:4c:c0:74:fe:c3:87:53:e4:8d:71:b9:88:5a:b1: ce:07:71:77:f5:95:c4:a1:28:bc:fc:e0:98:1c:99:3f:61:75: 5e:e7:e4:5c:37:30:58:24:51:5a:1f:07:88:cb:40:73:dc:ff: 1e:8e:d0:bf:92:92:47:38:dc:d8:b7:5e:84:24:85:a2:da:d1: 6b:dc:cb:f5:a0:e8:7b:17:79:19:5b:a7:54:f7:d9:7b:32:75: a5:22:93:ba:ac:3c:70:3b:89:a6:ec:39:06:b9:33:87:28:93: ba:ed:62:a7:a5:cb:bb:a3:b7:1d:f1:b9:d6:d6:e9:1c:6e:97: 17:9b:54:e1:f0:f0:81:04:ae:6e:52:ea:ef:13:f6:17:df:74: 0b:ed:06:e3:51:c8:d4:40:6a:c8:bf:fe:7e:2d:85:a1:20:38: ac:a5:3f:db -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBoHaXgXQ6qJDLzmyPWBe5xBiQlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg0MzU2NTlGMzNFRTFGNzAwNUEyMUMxMzg3RjQ5RDM1 MzQzMTgwODAeFw0yNjA1MDMwMjQ3MTdaFw0yNzA1MDIwMjUyMTdaMDMxMTAvBgNV BAMTKEI5QkRFRUM3MTUxOTEyRjBBQTIxRUYyQUIxOEJDNkI1RTI4NzAwM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWPbHuGDlthba/jjhrMD2cjoYX TVQee8YJFR3891r2mMrEQOf3SsBWsc930MnKl5S1X8CnWZa3Eh9mseHb50vOTfFD ujDyFfFjP47AUBBy86J6zCqKv18HvNWBpcNjooqz9O5nsJIUIMl5aVWniKJ+VzJf /wd/lYqI32yu19GZaOqwocL36XVeJMdIeGgv2mjwrUXCkAAnYXWCIkWFSKA1o28Y 1qJe3xA8GNiIK3tWmxF6GMpeZWj3lHZzfgXcKhEm8yO6YlfYhvGg52vqrD69T8Xx mlwBUKCntM6tVtG/Jve4jtXfKHG8RP76OB6d9GH/KCauXf+q3pXj9aZOMQgbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUub3uxxUZEvCqIe8qsYvGteKHADswHwYDVR0j BBgwFoAU2ENWWfM+4fcAWiHBOH9J01NDGAgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTI3YTZmMzQtMWI2ZS00ZTkyLWIyZDItMGI5MzAxYTY2NmE1LzAvRDg0MzU2NTlG MzNFRTFGNzAwNUEyMUMxMzg3RjQ5RDM1MzQzMTgwOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EODQzNTY1OUYzM0VFMUY3MDA1QTIxQzEzODdGNDlEMzUzNDMx ODA4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzIzMTJlMzEzMDMxMmUzMTMyMzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN5ZYAwDQYJ KoZIhvcNAQELBQADggEBAGMgDkMRb0r4LOvtUCHEjzB0w5rTqjM1JHrIiD8rXNvC toOk3pjwovdyKgbyBW9Py50b5Vqo2JwfBTCiFssoPvTkPRosLAnnJ5mAkLl7jJ+S 97jvjQcMNl792zMHPxBMwHT+w4dT5I1xuYhasc4HcXf1lcShKLz84JgcmT9hdV7n 5Fw3MFgkUVofB4jLQHPc/x6O0L+Skkc43Ni3XoQkhaLa0Wvcy/Wg6HsXeRlbp1T3 2XsydaUik7qsPHA7iabsOQa5M4cok7rtYqely7ujtx3xudbW6RxulxebVOHw8IEE rm5S6u8T9hffdAvtBuNRyNRAasi//n4thaEgOKylP9s= -----END CERTIFICATE-----Generated at Wed May 13 03:56:31 2026 by rpki-client