$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa File: 32372e3133312e322e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: ty7Vf4qg1FcZefRWuagmSuJdA+UHNoaYjSnBxf4OMW8= Subject key identifier: E4:77:6E:A5:B2:31:B3:07:58:6B:4A:DA:DF:AE:82:4A:0B:06:41:37 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 284943A933C6B2D3A7FA56FA1E61958BFCD0AC42 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:27 +0000 ROA not before: Sun 03 May 2026 02:50:27 +0000 ROA not after: Sun 02 May 2027 02:55:27 +0000 asID: 38753 IP address blocks: 27.131.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:49:43:a9:33:c6:b2:d3:a7:fa:56:fa:1e:61:95:8b:fc:d0:ac:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:27 2026 GMT Not After : May 2 02:55:27 2027 GMT Subject: CN=E4776EA5B231B307586B4ADADFAE824A0B064137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:18:5d:3d:98:79:98:a7:a6:ce:e9:7e:5e: 46:75:60:98:5d:19:24:94:55:11:41:1c:6e:0a:c1: 14:c9:31:05:bb:ca:5f:88:68:a6:7e:9e:b6:aa:f6: 83:ab:52:85:48:4f:f6:11:ce:98:b4:aa:31:d7:a9: 01:6b:13:81:b1:b8:0c:4d:ec:6f:32:80:90:9f:9c: a1:17:d5:cb:0a:7e:c1:3c:67:52:8b:74:ac:14:1a: 23:6d:09:fb:ce:39:5d:d3:28:06:95:34:ae:cc:08: f1:74:b0:d4:66:89:e5:e4:2d:15:fd:59:be:4b:44: 61:a5:82:7f:cf:fd:b1:8b:ce:dd:36:ff:63:66:7b: 97:04:af:5b:85:97:80:5e:e1:a8:69:96:6e:9f:ed: 08:0e:ce:81:63:27:79:d2:88:c7:bd:a1:87:84:4e: dc:39:b2:32:45:6c:c0:98:7d:4d:4a:db:c0:f8:0b: b0:f3:a5:ae:e1:72:68:4f:f2:4b:c9:0c:55:85:30: 7c:d5:58:22:8e:72:e6:1f:75:c9:bb:45:2c:b6:07: 98:52:02:c2:bc:ef:b6:49:52:12:e9:0e:e1:c1:e4: 8f:72:24:4f:cf:db:8f:20:48:84:26:3d:e4:ed:04: e4:d7:a1:c9:5c:06:26:d8:7e:d2:f2:fd:ad:2e:57: 78:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:77:6E:A5:B2:31:B3:07:58:6B:4A:DA:DF:AE:82:4A:0B:06:41:37 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.2.0/23 Signature Algorithm: sha256WithRSAEncryption 87:3c:f6:6a:e0:e2:90:94:a9:6f:6b:a7:b4:4f:56:a5:b4:5c: 6d:fa:66:f5:8a:45:d2:28:72:9b:cb:38:2b:ad:70:73:27:69: 9a:eb:46:f7:6a:94:a4:e5:53:c5:95:b8:a1:5a:f5:5a:ab:f7: a4:81:dc:5c:fc:e4:72:65:7a:e3:de:31:6c:61:36:10:ae:83: 32:57:19:06:d2:65:7d:80:11:75:73:a7:b5:92:d4:16:a5:f8: 65:92:ca:1c:d5:d0:e9:ed:92:35:28:f6:7c:de:f6:ff:ae:71: bf:e9:ca:30:c3:d3:ae:98:c8:54:ea:11:0d:a6:f2:ac:e3:c8: 12:78:a4:e1:1d:96:05:d4:7e:b7:be:2e:2a:a9:51:b4:3f:58: 52:6e:2c:5e:15:5f:33:a5:2c:31:e7:09:58:3d:17:4f:a2:ce: 9b:e0:e0:1a:6c:eb:30:56:0e:36:2f:5d:37:0e:90:68:6c:e2: 6f:4c:79:04:b3:f5:48:b1:43:44:1c:3a:81:16:cd:19:a0:e7: c1:5a:96:95:c8:0a:9b:72:a8:1b:92:ae:fb:94:57:70:a6:99: 41:0d:ae:81:8b:c5:ef:00:fa:c7:14:9d:e8:35:e8:44:61:3d: 49:46:00:af:c6:59:71:0e:ff:c6:12:fa:3c:ec:c9:1d:0d:1e: de:af:fd:d6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKElDqTPGstOn+lb6HmGVi/zQrEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjdaFw0yNzA1MDIwMjU1MjdaMDMxMTAvBgNV BAMTKEU0Nzc2RUE1QjIzMUIzMDc1ODZCNEFEQURGQUU4MjRBMEIwNjQxMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18hhdPZh5mKemzul+XkZ1YJhd GSSUVRFBHG4KwRTJMQW7yl+IaKZ+nraq9oOrUoVIT/YRzpi0qjHXqQFrE4GxuAxN 7G8ygJCfnKEX1csKfsE8Z1KLdKwUGiNtCfvOOV3TKAaVNK7MCPF0sNRmieXkLRX9 Wb5LRGGlgn/P/bGLzt02/2Nme5cEr1uFl4Be4ahplm6f7QgOzoFjJ3nSiMe9oYeE Ttw5sjJFbMCYfU1K28D4C7Dzpa7hcmhP8kvJDFWFMHzVWCKOcuYfdcm7RSy2B5hS AsK877ZJUhLpDuHB5I9yJE/P248gSIQmPeTtBOTXoclcBibYftLy/a0uV3gvAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU5HdupbIxswdYa0ra366CSgsGQTcwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMjJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwIwDQYJKoZIhvcNAQEL BQADggEBAIc89mrg4pCUqW9rp7RPVqW0XG36ZvWKRdIocpvLOCutcHMnaZrrRvdq lKTlU8WVuKFa9Vqr96SB3Fz85HJleuPeMWxhNhCugzJXGQbSZX2AEXVzp7WS1Bal +GWSyhzV0OntkjUo9nze9v+ucb/pyjDD066YyFTqEQ2m8qzjyBJ4pOEdlgXUfre+ LiqpUbQ/WFJuLF4VXzOlLDHnCVg9F0+izpvg4Bps6zBWDjYvXTcOkGhs4m9MeQSz 9UixQ0QcOoEWzRmg58FalpXICptyqBuSrvuUV3CmmUENroGLxe8A+scUneg16ERh PUlGAK/GWXEO/8YS+jzsyR0NHt6v/dY= -----END CERTIFICATE-----Generated at Wed May 13 03:16:54 2026 by rpki-client