$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa File: 3131392e3131302e38352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: tNLY8u6A/k+8Q7IpBt5/zBkDDVLxVjw0s0mCnDnTLQ0= Subject key identifier: E2:CF:B8:2F:0A:3A:15:90:FB:19:FD:DF:07:D0:6B:9F:51:AE:02:05 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 4862382C39B107BA072E97FBCB2EBD3673663263 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:22 +0000 ROA not before: Sun 03 May 2026 02:50:22 +0000 ROA not after: Sun 02 May 2027 02:55:22 +0000 asID: 38753 IP address blocks: 119.110.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:62:38:2c:39:b1:07:ba:07:2e:97:fb:cb:2e:bd:36:73:66:32:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:22 2026 GMT Not After : May 2 02:55:22 2027 GMT Subject: CN=E2CFB82F0A3A1590FB19FDDF07D06B9F51AE0205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:90:e1:94:bc:a4:ce:61:6f:4e:a3:29:28:35: 92:8d:00:35:44:af:da:2a:c3:dd:a1:ef:dc:51:39: 77:b3:3b:08:ba:fc:cb:2a:5a:00:2d:07:c0:d9:aa: b0:b8:a1:80:86:a5:7a:39:82:7a:1d:22:3b:94:c1: 8e:5a:1b:09:d4:5f:d0:35:cf:8a:be:8d:1a:12:4c: c5:4f:50:2c:96:82:8f:25:a3:66:7f:8c:09:00:0a: 1d:d3:63:30:de:52:16:e5:fd:94:3c:92:0d:54:75: d8:5a:c4:b4:58:82:c7:a5:9c:86:69:35:32:0e:02: af:0e:5b:c8:04:5c:94:e6:2e:c0:d3:2a:51:3d:3e: 24:d8:79:83:57:aa:9c:f7:05:d7:58:f9:af:37:15: 8d:8c:3e:a8:58:39:3c:fa:a0:b3:48:41:9f:05:36: 6f:2e:21:02:94:f3:3f:5c:b0:91:c3:e5:e7:ad:ae: f0:53:ed:06:e8:c9:0f:ee:85:2f:8a:03:d6:7f:f3: 70:96:6f:38:af:34:bc:9b:67:8e:b9:ac:ec:5c:91: 1d:49:36:7b:dc:1b:c7:68:fc:67:4d:c6:d8:ca:c4: 12:66:2d:58:85:0a:8d:a9:46:d4:90:7b:52:15:db: cc:2d:be:c5:f7:e5:15:c3:d3:58:57:4a:e5:59:52: 3d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CF:B8:2F:0A:3A:15:90:FB:19:FD:DF:07:D0:6B:9F:51:AE:02:05 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.85.0/24 Signature Algorithm: sha256WithRSAEncryption 90:96:32:18:fb:93:75:68:3d:c7:b5:e7:0c:cc:b8:6c:6d:73: ae:55:25:db:ac:5e:87:83:09:17:27:bb:a7:3d:2e:6c:5e:d2: 72:bf:ed:32:a3:fb:2f:d5:c3:33:c5:73:c8:cc:4d:6e:e4:9f: d9:80:4b:cf:52:08:c8:95:64:c4:58:56:e4:95:93:94:57:24: e4:1a:45:f0:ac:23:35:59:55:9e:1a:21:c3:ad:f7:81:16:46: 1d:56:d0:16:57:d5:ba:ed:88:a7:c7:01:83:38:1d:ce:b9:66: 28:95:51:19:24:74:d6:c7:bf:0f:73:b1:59:a0:49:4e:e8:4e: d7:32:93:b7:77:39:39:b6:2c:64:f2:bf:3b:84:8b:2c:bf:7c: 59:1a:27:f3:38:83:70:64:5e:66:47:da:8f:38:ad:7b:12:ba: 68:2b:fa:b0:09:ee:ab:e3:18:f8:46:6e:21:dc:48:f3:62:e5: fb:41:cb:99:c2:ab:42:3e:b1:1c:94:e6:7c:53:ad:74:7f:6a: 3c:aa:68:f0:b9:1e:6c:73:77:5a:3d:0b:75:b4:5a:87:e0:d2: f9:8a:e9:7c:42:5a:5a:9e:54:e2:1d:d4:29:e6:08:38:37:3b: 2e:91:dd:aa:d6:ea:a1:d2:47:46:b3:88:34:aa:76:7b:dc:4c: f8:26:bb:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSGI4LDmxB7oHLpf7yy69NnNmMmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjJaFw0yNzA1MDIwMjU1MjJaMDMxMTAvBgNV BAMTKEUyQ0ZCODJGMEEzQTE1OTBGQjE5RkRERjA3RDA2QjlGNTFBRTAyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkOGUvKTOYW9OoykoNZKNADVE r9oqw92h79xROXezOwi6/MsqWgAtB8DZqrC4oYCGpXo5gnodIjuUwY5aGwnUX9A1 z4q+jRoSTMVPUCyWgo8lo2Z/jAkACh3TYzDeUhbl/ZQ8kg1UddhaxLRYgselnIZp NTIOAq8OW8gEXJTmLsDTKlE9PiTYeYNXqpz3BddY+a83FY2MPqhYOTz6oLNIQZ8F Nm8uIQKU8z9csJHD5eetrvBT7QboyQ/uhS+KA9Z/83CWbzivNLybZ465rOxckR1J NnvcG8do/GdNxtjKxBJmLViFCo2pRtSQe1IV28wtvsX35RXD01hXSuVZUj3jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4s+4Lwo6FZD7Gf3fB9Brn1GuAgUwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzEzOTJlMzEzMTMwMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHduVTANBgkqhkiG 9w0BAQsFAAOCAQEAkJYyGPuTdWg9x7XnDMy4bG1zrlUl26xeh4MJFye7pz0ubF7S cr/tMqP7L9XDM8VzyMxNbuSf2YBLz1IIyJVkxFhW5JWTlFck5BpF8KwjNVlVnhoh w633gRZGHVbQFlfVuu2Ip8cBgzgdzrlmKJVRGSR01se/D3OxWaBJTuhO1zKTt3c5 ObYsZPK/O4SLLL98WRon8ziDcGReZkfajzitexK6aCv6sAnuq+MY+EZuIdxI82Ll +0HLmcKrQj6xHJTmfFOtdH9qPKpo8LkebHN3Wj0LdbRah+DS+YrpfEJaWp5U4h3U KeYIODc7LpHdqtbqodJHRrOINKp2e9xM+Ca7TQ== -----END CERTIFICATE-----Generated at Wed May 13 04:47:22 2026 by rpki-client