$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: PtWJtmRhyQ2yPeW/tjptx/9+8uOyz/tIzSW1+zYn5P8= Subject key identifier: 61:51:50:40:4D:ED:9C:9D:34:E5:46:5C:A3:E4:C7:E0:BD:9D:DB:5D Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 36B2CF205C99FE1D3CB24E37880DD2EF40AE0E87 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:21 +0000 ROA not before: Sun 03 May 2026 02:50:21 +0000 ROA not after: Sun 02 May 2027 02:55:21 +0000 asID: 38753 IP address blocks: 119.110.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b2:cf:20:5c:99:fe:1d:3c:b2:4e:37:88:0d:d2:ef:40:ae:0e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:21 2026 GMT Not After : May 2 02:55:21 2027 GMT Subject: CN=615150404DED9C9D34E5465CA3E4C7E0BD9DDB5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:2a:fa:9a:6d:0e:75:f8:a6:36:2d:cf:47: c7:40:87:92:ae:77:31:72:59:d0:4d:c5:b0:6a:31: 6a:29:e7:47:fb:39:eb:c8:2a:4e:f4:2f:42:f3:e8: 59:d5:8c:6e:5e:74:e4:a1:11:c1:74:51:22:66:95: 7c:63:d0:8e:60:46:03:4a:c5:e7:e7:11:20:3a:92: 59:3e:40:93:df:4e:cb:20:3d:74:2f:50:a6:2a:6b: 80:b9:d5:81:41:3c:6a:8d:c8:7a:2b:b9:86:1e:a1: e0:31:ca:2f:40:da:68:2b:8b:3c:77:77:d6:b6:5a: 70:8e:12:94:59:d6:14:11:56:80:78:0f:54:29:6a: 20:6a:22:7a:0c:17:72:44:47:cc:27:66:51:4b:bb: 8a:e1:7b:d1:01:60:77:70:12:5a:5a:0b:db:48:87: 04:f7:09:8e:87:05:51:80:82:e0:ae:d8:cf:42:ff: fe:a4:5f:2c:e0:30:73:86:53:48:bf:ad:f7:12:06: d4:60:36:82:40:65:7a:24:72:77:74:de:82:75:ac: a4:b9:b6:80:27:1e:7c:b9:ac:06:ac:a1:84:bf:7d: f6:65:87:6b:a2:9c:4f:0d:5d:80:01:c2:5f:2b:d3: 91:9c:63:ce:75:bd:64:e9:a4:72:ce:cd:84:d1:b9: d0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:51:50:40:4D:ED:9C:9D:34:E5:46:5C:A3:E4:C7:E0:BD:9D:DB:5D X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.84.0/24 Signature Algorithm: sha256WithRSAEncryption 54:14:57:99:b0:b2:7b:f6:d4:0f:37:41:10:f7:43:fc:66:ea: 67:82:23:c2:c7:6c:53:86:ab:c9:6a:ca:86:05:8c:a0:c0:64: 1d:e8:d1:79:d7:15:27:54:bf:45:17:c9:e3:1a:c6:4d:4a:4b: 0c:8e:15:70:16:c1:dc:98:e9:f1:27:2a:aa:0d:1a:4b:10:02: 29:d4:ed:99:9d:13:7b:1f:fb:1e:35:8d:0d:4e:fc:13:af:a6: 67:fc:9e:01:ec:af:50:d0:e7:57:84:de:e2:8d:f2:35:41:6e: 32:65:85:6c:5e:d2:b0:cb:66:71:31:04:84:47:9f:3b:3f:bb: 9f:08:2e:fa:07:2e:98:99:a5:0e:17:90:2b:9f:88:63:bf:c7: 3d:38:86:e4:b7:59:13:15:d0:14:c5:14:39:c6:9e:82:55:ea: 3a:a8:26:a9:87:6e:de:8e:09:b4:39:8c:84:27:10:94:66:f6: f2:3a:f0:90:06:33:f7:0e:43:87:6c:81:5f:92:d7:7f:8e:8f: 4e:b8:5b:78:99:b9:89:7d:46:5a:41:16:d2:ee:da:cc:94:a3: e4:de:42:0c:fa:2e:17:e7:0f:75:33:de:53:60:e6:f2:1e:6c: 03:ca:38:59:e9:d6:ee:ea:c4:39:8e:da:38:97:12:6a:c0:ba: 29:da:2d:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNrLPIFyZ/h08sk43iA3S70CuDocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjFaFw0yNzA1MDIwMjU1MjFaMDMxMTAvBgNV BAMTKDYxNTE1MDQwNERFRDlDOUQzNEU1NDY1Q0EzRTRDN0UwQkQ5RERCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99yr6mm0OdfimNi3PR8dAh5Ku dzFyWdBNxbBqMWop50f7OevIKk70L0Lz6FnVjG5edOShEcF0USJmlXxj0I5gRgNK xefnESA6klk+QJPfTssgPXQvUKYqa4C51YFBPGqNyHoruYYeoeAxyi9A2mgrizx3 d9a2WnCOEpRZ1hQRVoB4D1QpaiBqInoMF3JER8wnZlFLu4rhe9EBYHdwElpaC9tI hwT3CY6HBVGAguCu2M9C//6kXyzgMHOGU0i/rfcSBtRgNoJAZXokcnd03oJ1rKS5 toAnHny5rAasoYS/ffZlh2uinE8NXYABwl8r05GcY851vWTppHLOzYTRudBPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYVFQQE3tnJ005UZco+TH4L2d210wHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVDANBgkqhkiG 9w0BAQsFAAOCAQEAVBRXmbCye/bUDzdBEPdD/GbqZ4IjwsdsU4aryWrKhgWMoMBk HejRedcVJ1S/RRfJ4xrGTUpLDI4VcBbB3Jjp8Scqqg0aSxACKdTtmZ0Tex/7HjWN DU78E6+mZ/yeAeyvUNDnV4Te4o3yNUFuMmWFbF7SsMtmcTEEhEefOz+7nwgu+gcu mJmlDheQK5+IY7/HPTiG5LdZExXQFMUUOcaeglXqOqgmqYdu3o4JtDmMhCcQlGb2 8jrwkAYz9w5Dh2yBX5LXf46PTrhbeJm5iX1GWkEW0u7azJSj5N5CDPouF+cPdTPe U2Dm8h5sA8o4WenW7urEOY7aOJcSasC6Kdot2w== -----END CERTIFICATE-----Generated at Wed May 13 05:07:44 2026 by rpki-client