$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa File: 32372e3133312e312e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 0ujMcCdmbSHFPa+orQdB/PxCKLq7qgCAwvDBt82XgQ8= Subject key identifier: 28:73:9F:D3:34:83:B0:0B:B9:83:FE:B1:E6:D7:A9:76:4D:72:8D:62 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 2391921F173DD36368D26BCEE4C9AD18E59F7B82 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:32 +0000 ROA not before: Sun 03 May 2026 02:50:32 +0000 ROA not after: Sun 02 May 2027 02:55:32 +0000 asID: 38753 IP address blocks: 27.131.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:91:92:1f:17:3d:d3:63:68:d2:6b:ce:e4:c9:ad:18:e5:9f:7b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:32 2026 GMT Not After : May 2 02:55:32 2027 GMT Subject: CN=28739FD33483B00BB983FEB1E6D7A9764D728D62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9b:53:e3:e3:19:61:3b:b1:97:81:2a:50:34: ca:dc:35:7c:61:41:9b:5d:55:78:2e:72:de:54:74: 8e:6b:0b:a0:b5:38:1f:03:e3:82:54:cd:16:af:00: 61:9b:0a:a3:1e:f0:fb:0d:14:64:31:81:25:42:6d: ed:a3:c2:a7:59:36:ba:bd:78:fc:c4:88:b8:76:1b: a3:80:e9:48:4a:d3:39:34:c8:7b:30:e6:22:19:76: 67:bb:20:b1:b2:62:48:e4:30:07:f7:39:e5:0f:c2: ae:cf:0c:3a:8e:38:84:f7:74:a3:0e:12:e4:7e:0b: 7b:45:cf:1d:fc:0f:2a:ee:77:7c:70:76:8e:fd:f3: 18:be:45:2d:39:54:66:7d:27:c7:f9:0e:0c:d0:a2: 2d:68:05:64:f3:72:b4:fb:97:a4:f7:9a:a2:bd:df: 42:2c:ef:15:3d:3a:f1:8e:29:a4:99:b5:7c:73:f3: d4:6b:84:44:1e:6f:59:38:e1:b1:43:5c:26:f1:21: 0b:f5:e8:91:5b:cb:5e:36:5c:25:ec:68:2f:98:86: 44:c3:30:91:b5:c5:de:a7:24:44:6b:f8:61:14:15: 82:a8:fe:ce:b4:57:99:f6:90:e7:b8:23:30:36:ac: 30:7e:97:25:d0:f6:80:4e:ee:6a:e9:8e:97:fe:f2: f1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:73:9F:D3:34:83:B0:0B:B9:83:FE:B1:E6:D7:A9:76:4D:72:8D:62 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.1.0/24 Signature Algorithm: sha256WithRSAEncryption c0:4f:42:cb:a6:d0:84:a5:33:47:29:ac:29:65:ea:a7:68:1e: d0:8e:21:fe:5e:fc:22:bb:01:7e:52:82:6d:a5:fc:e0:62:5b: ac:52:7a:d1:3c:8d:3b:be:4e:5d:28:d1:68:46:5c:ab:7d:31: 25:c4:7a:50:fe:ec:2c:3d:8e:b1:1c:5c:04:22:11:ad:76:ae: 56:46:2e:2c:8a:8d:7c:1a:73:b8:27:7a:1c:78:ff:e2:9a:0c: 2f:6a:88:a2:8a:eb:dc:c7:f3:90:8e:97:6b:75:c8:39:11:25: 36:1b:e7:a0:0c:22:20:a7:8f:4e:c5:97:25:e1:be:55:33:f6: 02:4e:1a:90:79:a1:ae:07:3c:95:1d:b2:4d:ac:f5:9c:f8:44: 8c:63:e3:d8:50:18:1e:80:db:0d:f3:46:28:cf:d9:0f:8d:05: 32:d2:55:d6:07:96:67:0f:75:0d:9f:10:3c:53:ff:94:c8:3f: 8f:a3:8e:fe:6f:9a:ce:67:d8:aa:1e:6d:e8:2e:9a:21:5e:99: d2:87:7a:a9:b4:b8:1d:25:1d:7a:59:b7:76:79:09:e5:1b:60: 8b:67:9d:8f:1c:d4:92:64:2e:e7:c5:61:6d:d8:19:7b:97:ea: 68:ff:40:f2:0a:28:ba:5e:c9:82:d4:77:c0:fa:48:43:30:65: 95:c4:4e:ac -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI5GSHxc902No0mvO5MmtGOWfe4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMzJaFw0yNzA1MDIwMjU1MzJaMDMxMTAvBgNV BAMTKDI4NzM5RkQzMzQ4M0IwMEJCOTgzRkVCMUU2RDdBOTc2NEQ3MjhENjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwm1Pj4xlhO7GXgSpQNMrcNXxh QZtdVXguct5UdI5rC6C1OB8D44JUzRavAGGbCqMe8PsNFGQxgSVCbe2jwqdZNrq9 ePzEiLh2G6OA6UhK0zk0yHsw5iIZdme7ILGyYkjkMAf3OeUPwq7PDDqOOIT3dKMO EuR+C3tFzx38Dyrud3xwdo798xi+RS05VGZ9J8f5DgzQoi1oBWTzcrT7l6T3mqK9 30Is7xU9OvGOKaSZtXxz89RrhEQeb1k44bFDXCbxIQv16JFby142XCXsaC+YhkTD MJG1xd6nJERr+GEUFYKo/s60V5n2kOe4IzA2rDB+lyXQ9oBO7mrpjpf+8vEhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUKHOf0zSDsAu5g/6x5tepdk1yjWIwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwEwDQYJKoZIhvcNAQEL BQADggEBAMBPQsum0ISlM0cprCll6qdoHtCOIf5e/CK7AX5Sgm2l/OBiW6xSetE8 jTu+Tl0o0WhGXKt9MSXEelD+7Cw9jrEcXAQiEa12rlZGLiyKjXwac7gnehx4/+Ka DC9qiKKK69zH85COl2t1yDkRJTYb56AMIiCnj07FlyXhvlUz9gJOGpB5oa4HPJUd sk2s9Zz4RIxj49hQGB6A2w3zRijP2Q+NBTLSVdYHlmcPdQ2fEDxT/5TIP4+jjv5v ms5n2KoebegumiFemdKHeqm0uB0lHXpZt3Z5CeUbYItnnY8c1JJkLufFYW3YGXuX 6mj/QPIKKLpeyYLUd8D6SEMwZZXETqw= -----END CERTIFICATE-----Generated at Wed May 13 02:58:51 2026 by rpki-client