$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa File: 32372e3133312e302e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: Ig7Y8d/z0WMmUiX2C4TSUSSE7SskBjCHoUm5fDhMqMc= Subject key identifier: 4E:D9:19:6D:90:5C:BB:4F:40:31:F0:DD:06:0B:13:01:CF:39:63:B4 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 63CB7439FBC90ED48C526E9D0BBE091CBEF497EB Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:32 +0000 ROA not before: Sun 03 May 2026 02:50:32 +0000 ROA not after: Sun 02 May 2027 02:55:32 +0000 asID: 38753 IP address blocks: 27.131.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:cb:74:39:fb:c9:0e:d4:8c:52:6e:9d:0b:be:09:1c:be:f4:97:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:32 2026 GMT Not After : May 2 02:55:32 2027 GMT Subject: CN=4ED9196D905CBB4F4031F0DD060B1301CF3963B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:9f:a2:16:2f:df:d0:3c:52:20:b5:b1:83: 30:1e:e1:15:bf:bb:c6:c5:0e:d9:36:33:ff:2e:08: fc:4f:7e:e3:fa:27:f4:38:c8:da:ac:97:ec:50:f0: f3:ee:28:0b:df:7d:28:b6:45:9a:9a:ed:54:45:b7: 04:2b:07:8e:4c:ff:b0:7b:22:8c:b6:f9:00:cf:5a: 65:6f:17:af:52:f9:b4:c1:9d:5a:d3:9a:5a:f7:5c: b6:0c:73:3f:41:18:1d:0f:76:b3:4d:3d:6e:e9:0c: 34:a0:0d:ec:d3:64:d5:10:af:15:fd:75:6c:76:6a: 8a:0d:e3:f1:b5:f6:1a:ea:06:8d:8a:d9:b7:32:b8: 17:bd:fb:d8:38:cb:82:5b:10:a5:22:5f:d4:12:3e: 94:b4:63:07:3a:51:79:41:c3:e1:a2:d3:23:07:2c: 4b:87:1c:8b:43:2b:2d:85:3c:81:87:d3:8c:cb:d5: d3:5a:cf:43:dd:8f:d7:99:43:2a:0a:f9:8b:7c:e9: dc:03:4e:29:8f:0a:d5:df:48:24:b7:d9:2c:0f:9c: 4d:e0:3b:53:e9:55:9b:4f:0f:58:ae:14:ea:16:bd: 1b:7d:ea:1b:d6:21:65:45:a7:5e:b9:f4:e8:3c:13: ff:d4:f2:3f:db:65:12:0c:9b:af:57:8b:c4:a2:56: 03:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D9:19:6D:90:5C:BB:4F:40:31:F0:DD:06:0B:13:01:CF:39:63:B4 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/23 Signature Algorithm: sha256WithRSAEncryption 46:94:10:bc:63:ec:53:4c:50:72:bc:6e:9c:6b:2a:78:6f:12: 6e:a2:b6:40:57:ea:12:c0:fd:56:ad:5f:7e:b5:2b:45:53:92: 87:bb:f9:71:e4:82:06:14:1c:9e:e4:d4:98:da:01:42:d6:ba: 10:3d:cc:30:05:c7:47:94:10:f7:ed:83:f6:7a:6f:bb:9e:31: b3:c9:e8:dd:a9:2b:b2:68:aa:a6:a4:7a:f0:0e:ab:fc:79:8e: bd:b3:5b:fb:6c:b3:a3:8d:00:3f:96:0b:4a:32:e4:7d:fc:6b: 3f:ab:33:9e:f8:ac:eb:a2:2a:63:f8:0e:df:59:bf:0d:9c:e0: 5b:ce:61:ed:1c:6f:69:d9:be:aa:c9:cb:c5:48:e5:99:b4:8d: 3f:95:d1:be:c0:86:73:63:9a:1c:8c:7b:61:11:20:dc:bb:4f: fe:f0:d4:4a:cf:74:44:a1:8c:23:2a:04:e7:d7:45:ab:76:ec: 71:83:16:8f:56:80:5e:b7:64:15:0c:8e:6e:f4:0d:53:49:d6: ed:0c:ef:4c:09:99:ea:d9:87:9b:4b:8f:7b:58:8a:15:a1:fa: 02:9c:c2:62:92:91:41:1a:b5:84:ae:b6:87:dd:31:0f:47:31: 44:26:89:ee:9b:8d:6c:f8:7b:11:9c:23:9f:b5:8c:9e:a0:71: 87:3d:37:57 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUY8t0OfvJDtSMUm6dC74JHL70l+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMzJaFw0yNzA1MDIwMjU1MzJaMDMxMTAvBgNV BAMTKDRFRDkxOTZEOTA1Q0JCNEY0MDMxRjBERDA2MEIxMzAxQ0YzOTYzQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykJ+iFi/f0DxSILWxgzAe4RW/ u8bFDtk2M/8uCPxPfuP6J/Q4yNqsl+xQ8PPuKAvffSi2RZqa7VRFtwQrB45M/7B7 Ioy2+QDPWmVvF69S+bTBnVrTmlr3XLYMcz9BGB0PdrNNPW7pDDSgDezTZNUQrxX9 dWx2aooN4/G19hrqBo2K2bcyuBe9+9g4y4JbEKUiX9QSPpS0Ywc6UXlBw+Gi0yMH LEuHHItDKy2FPIGH04zL1dNaz0Pdj9eZQyoK+Yt86dwDTimPCtXfSCS32SwPnE3g O1PpVZtPD1iuFOoWvRt96hvWIWVFp1659Og8E//U8j/bZRIMm69Xi8SiVgPRAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUTtkZbZBcu09AMfDdBgsTAc85Y7QwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMDJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwAwDQYJKoZIhvcNAQEL BQADggEBAEaUELxj7FNMUHK8bpxrKnhvEm6itkBX6hLA/VatX361K0VTkoe7+XHk ggYUHJ7k1JjaAULWuhA9zDAFx0eUEPftg/Z6b7ueMbPJ6N2pK7JoqqakevAOq/x5 jr2zW/tss6ONAD+WC0oy5H38az+rM574rOuiKmP4Dt9Zvw2c4FvOYe0cb2nZvqrJ y8VI5Zm0jT+V0b7AhnNjmhyMe2ERINy7T/7w1ErPdEShjCMqBOfXRat27HGDFo9W gF63ZBUMjm70DVNJ1u0M70wJmerZh5tLj3tYihWh+gKcwmKSkUEatYSutofdMQ9H MUQmie6bjWz4exGcI5+1jJ6gcYc9N1c= -----END CERTIFICATE-----Generated at Wed May 13 02:38:03 2026 by rpki-client