$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa File: 32372e3133312e342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 5enVXM16FAeRB9TOwd6lPWeoTI/DTYje7oBg0vJxZHM= Subject key identifier: 53:D2:ED:26:12:8B:63:C6:B7:C0:21:25:49:41:BD:3E:A6:48:D6:F7 Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: BEDC370F409FB27B0209725B39E4C3FF6F93BB Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:23 +0000 ROA not before: Sun 03 May 2026 02:50:23 +0000 ROA not after: Sun 02 May 2027 02:55:23 +0000 asID: 38753 IP address blocks: 27.131.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:37:0f:40:9f:b2:7b:02:09:72:5b:39:e4:c3:ff:6f:93:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:23 2026 GMT Not After : May 2 02:55:23 2027 GMT Subject: CN=53D2ED26128B63C6B7C021254941BD3EA648D6F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ca:4f:b5:8f:d5:cb:85:e3:b3:d7:b6:3f:77: 76:fe:b5:7e:fe:bd:f3:79:9b:7d:56:17:e4:48:92: e5:e8:cf:fd:09:43:cf:3d:00:71:f6:b9:10:ca:60: c4:c1:06:75:24:24:4c:6c:e5:db:a8:be:61:d1:37: 0e:ab:2c:01:2c:1a:0a:f2:3b:31:68:30:0c:9e:67: 36:5f:2d:9c:66:35:9e:1b:25:a3:33:66:95:ff:2f: 44:d6:b0:f7:f9:37:c5:33:83:90:d5:7d:76:7d:53: 38:f8:1e:62:a8:f8:95:59:37:c7:1f:9e:cd:a6:db: 3d:44:54:32:1a:80:12:7c:f3:bf:d6:8d:40:b9:29: 9a:da:e7:ad:4e:d4:9c:d6:b3:71:2a:d4:bd:9b:db: 4f:f5:f4:8c:d5:f4:1d:62:b8:39:9e:3d:4d:f1:ed: 8b:0f:60:ae:46:64:aa:37:e6:e2:e2:3e:2e:6a:7c: 86:08:7b:26:2d:86:41:9c:f7:f9:e0:5a:a8:55:f5: 45:a3:19:f9:07:66:7a:89:90:1c:ed:c3:db:27:1f: c1:bb:8c:69:38:8c:3b:b6:8c:f6:c7:0a:3f:bc:49: 63:5c:63:8d:d4:de:43:fb:d5:52:22:0b:0d:20:c3: 47:67:15:86:bd:ae:74:39:82:c3:a8:a2:9e:6d:93: 74:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D2:ED:26:12:8B:63:C6:B7:C0:21:25:49:41:BD:3E:A6:48:D6:F7 X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.4.0/24 Signature Algorithm: sha256WithRSAEncryption bd:0d:bc:3f:0a:e4:46:c3:89:2d:3c:d5:63:ce:01:bc:db:5a: 26:e9:58:1a:c9:d1:8f:85:c9:4e:97:4e:98:9f:cd:6e:d5:1b: 95:0f:76:9a:29:c9:e6:83:4e:14:e8:af:96:3b:6c:84:9c:3b: 38:9c:b6:89:07:a2:03:bd:c5:60:e1:a2:bd:d3:35:05:da:84: 1f:1c:ed:76:93:55:ae:eb:c1:71:03:3b:26:e5:2f:1c:2e:bb: df:35:b5:b1:58:08:a9:44:bc:73:77:41:76:a7:d3:af:9b:c8: 35:7c:94:95:69:07:03:4f:3a:e9:cb:fd:f8:c6:4a:7e:c2:48: 8a:16:39:44:a5:c4:32:dd:76:33:f5:58:8f:63:64:7b:54:b9: 5a:c9:e1:35:d5:e2:b0:d7:a9:1b:e2:f1:de:a3:27:98:dc:3e: f8:3c:78:70:b3:c6:75:12:d1:42:c2:b1:6e:b3:c3:5d:80:a9: cd:d6:ac:aa:33:58:8d:4a:87:01:96:01:52:6e:a7:9c:f2:2d: ab:6f:4f:25:62:35:d3:9b:1f:ef:27:2c:a6:f0:4d:a0:7f:be: 19:79:64:f5:1c:bb:ff:91:3c:ef:1c:35:c3:b6:fb:f8:e7:96: f8:34:fe:99:5b:b0:32:0e:83:18:68:b6:e2:6d:44:7d:5e:4e: bd:aa:46:79 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUAL7cNw9An7J7AglyWznkw/9vk7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjNaFw0yNzA1MDIwMjU1MjNaMDMxMTAvBgNV BAMTKDUzRDJFRDI2MTI4QjYzQzZCN0MwMjEyNTQ5NDFCRDNFQTY0OEQ2RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLyk+1j9XLheOz17Y/d3b+tX7+ vfN5m31WF+RIkuXoz/0JQ889AHH2uRDKYMTBBnUkJExs5duovmHRNw6rLAEsGgry OzFoMAyeZzZfLZxmNZ4bJaMzZpX/L0TWsPf5N8Uzg5DVfXZ9Uzj4HmKo+JVZN8cf ns2m2z1EVDIagBJ887/WjUC5KZra561O1JzWs3Eq1L2b20/19IzV9B1iuDmePU3x 7YsPYK5GZKo35uLiPi5qfIYIeyYthkGc9/ngWqhV9UWjGfkHZnqJkBztw9snH8G7 jGk4jDu2jPbHCj+8SWNcY43U3kP71VIiCw0gw0dnFYa9rnQ5gsOoop5tk3R9AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUU9LtJhKLY8a3wCElSUG9PqZI1vcwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwQwDQYJKoZIhvcNAQEL BQADggEBAL0NvD8K5EbDiS081WPOAbzbWibpWBrJ0Y+FyU6XTpifzW7VG5UPdpop yeaDThTor5Y7bIScOzictokHogO9xWDhor3TNQXahB8c7XaTVa7rwXEDOyblLxwu u981tbFYCKlEvHN3QXan06+byDV8lJVpBwNPOunL/fjGSn7CSIoWOUSlxDLddjP1 WI9jZHtUuVrJ4TXV4rDXqRvi8d6jJ5jcPvg8eHCzxnUS0ULCsW6zw12Aqc3WrKoz WI1KhwGWAVJup5zyLatvTyViNdObH+8nLKbwTaB/vhl5ZPUcu/+RPO8cNcO2+/jn lvg0/plbsDIOgxhotuJtRH1eTr2qRnk= -----END CERTIFICATE-----Generated at Wed May 13 02:58:58 2026 by rpki-client