$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa File: 32372e3133312e342e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: NHwGHAqnRCVzryyOErVysZqTBFNCvmT2DiyKJEQAiWs= Subject key identifier: 8B:BB:2D:57:D3:65:9F:6C:BD:15:AE:D9:C3:AA:BB:5B:EE:57:96:D4 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 5C4EB771B27E79B7F0FA4A2EB0FABDF613F1514A Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:29 +0000 ROA not before: Sun 03 May 2026 02:50:29 +0000 ROA not after: Sun 02 May 2027 02:55:29 +0000 asID: 38753 IP address blocks: 27.131.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4e:b7:71:b2:7e:79:b7:f0:fa:4a:2e:b0:fa:bd:f6:13:f1:51:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:29 2026 GMT Not After : May 2 02:55:29 2027 GMT Subject: CN=8BBB2D57D3659F6CBD15AED9C3AABB5BEE5796D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:88:25:2e:bd:72:82:5c:4a:03:15:93:bf:2b: 4a:f6:59:a4:00:0c:bb:ee:41:1c:0f:ef:2c:e6:07: 02:5c:64:ee:21:49:06:cd:15:65:37:9c:6f:1d:21: 29:51:6c:82:0f:5d:a6:85:39:95:1c:a8:1c:da:2b: 8c:de:f4:c0:24:e2:81:57:50:fa:43:1a:fd:9d:98: 23:a1:b3:3c:d9:3d:ee:be:c2:55:70:e2:61:1b:8c: e8:75:36:21:4d:a4:f3:48:fd:3c:aa:f5:6f:a1:9b: 64:9d:3a:20:68:3d:01:09:e1:65:c3:ca:32:b5:45: 1f:9e:21:60:b8:8b:a3:2b:2f:a4:67:3a:0e:dd:be: 74:ed:c5:61:cd:d3:1e:07:15:f2:fa:43:1f:58:8f: cb:ac:cf:47:2a:b2:e6:e4:e5:a8:fb:da:21:57:53: 10:5f:a4:14:2a:4e:72:55:70:10:fa:11:71:84:e3: 81:94:7e:c5:85:89:56:1f:35:1a:13:c6:27:e1:35: 83:9e:07:3d:1c:5c:c1:22:56:82:09:92:bf:47:44: 15:8c:64:51:6b:da:62:c1:9b:c8:df:1a:f0:4e:f4: e8:90:5e:80:9a:76:81:ed:8a:0f:38:ee:c5:37:58: 57:68:40:c4:4d:1d:60:60:8b:25:a9:d4:ab:ea:63: ce:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BB:2D:57:D3:65:9F:6C:BD:15:AE:D9:C3:AA:BB:5B:EE:57:96:D4 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.4.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:98:4d:a6:fd:88:62:cb:2d:8f:ad:ea:15:22:a0:2f:14:1d: 22:34:a2:e9:b4:63:0c:f9:fd:06:bc:ee:81:50:e3:e0:0d:de: 69:61:01:0f:cc:08:e3:0b:5e:85:5f:28:b1:91:88:37:5a:17: 1d:ee:30:df:f0:8b:58:9e:3d:1e:0e:fa:18:fd:69:dd:32:18: 84:7a:de:be:5e:33:75:76:aa:b0:45:0c:b4:75:24:92:b1:37: 03:8e:c9:53:d5:a9:17:c5:cf:4c:5c:10:5e:5d:d6:4f:36:46: 43:c1:90:b0:51:f9:e8:da:aa:bc:7e:e9:3f:d7:63:5f:91:2b: 38:78:48:6f:d9:40:19:36:41:00:fe:83:98:54:ee:3a:83:9e: 4d:93:99:33:c4:58:1f:85:5e:b1:02:d1:09:52:3a:aa:24:92: ff:f5:ab:79:29:6d:c9:52:86:1f:b6:93:07:ff:c8:02:38:4d: a4:e9:2f:b9:94:c0:15:c4:0d:67:37:3b:d2:b9:2b:4b:e1:48: 50:78:f4:4f:a9:d4:c4:3f:b9:37:f2:f4:56:05:61:6f:ea:38: ef:02:57:2d:b0:ea:56:31:ff:47:5f:82:0b:39:b1:25:81:06: ef:84:ca:47:65:71:7f:93:39:21:91:24:12:0c:c3:80:f2:3e: b2:9b:1a:6a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXE63cbJ+ebfw+kousPq99hPxUUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjlaFw0yNzA1MDIwMjU1MjlaMDMxMTAvBgNV BAMTKDhCQkIyRDU3RDM2NTlGNkNCRDE1QUVEOUMzQUFCQjVCRUU1Nzk2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoiCUuvXKCXEoDFZO/K0r2WaQA DLvuQRwP7yzmBwJcZO4hSQbNFWU3nG8dISlRbIIPXaaFOZUcqBzaK4ze9MAk4oFX UPpDGv2dmCOhszzZPe6+wlVw4mEbjOh1NiFNpPNI/Tyq9W+hm2SdOiBoPQEJ4WXD yjK1RR+eIWC4i6MrL6RnOg7dvnTtxWHN0x4HFfL6Qx9Yj8usz0cqsubk5aj72iFX UxBfpBQqTnJVcBD6EXGE44GUfsWFiVYfNRoTxifhNYOeBz0cXMEiVoIJkr9HRBWM ZFFr2mLBm8jfGvBO9OiQXoCadoHtig847sU3WFdoQMRNHWBgiyWp1KvqY85RAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUi7stV9Nln2y9Fa7Zw6q7W+5XltQwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNDJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwQwDQYJKoZIhvcNAQEL BQADggEBAF6YTab9iGLLLY+t6hUioC8UHSI0oum0Ywz5/Qa87oFQ4+AN3mlhAQ/M COMLXoVfKLGRiDdaFx3uMN/wi1iePR4O+hj9ad0yGIR63r5eM3V2qrBFDLR1JJKx NwOOyVPVqRfFz0xcEF5d1k82RkPBkLBR+ejaqrx+6T/XY1+RKzh4SG/ZQBk2QQD+ g5hU7jqDnk2TmTPEWB+FXrEC0QlSOqokkv/1q3kpbclShh+2kwf/yAI4TaTpL7mU wBXEDWc3O9K5K0vhSFB49E+p1MQ/uTfy9FYFYW/qOO8CVy2w6lYx/0dfggs5sSWB Bu+EykdlcX+TOSGRJBIMw4DyPrKbGmo= -----END CERTIFICATE-----Generated at Wed May 13 02:38:03 2026 by rpki-client