$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e352e302f32342d3234203d3e203338373533.roa File: 32372e3133312e352e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: jEBHuFwyUPhLyetq8AZ0j6MkcWDGQIC2Ql8z9hlScDY= Subject key identifier: 38:FA:42:AA:C1:12:2C:F7:DC:87:CA:D4:91:19:8B:5B:C5:9B:9E:FA Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 4DCA8D90A7988A6781E9BB9866F48F9252E62AB4 Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e352e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:27 +0000 ROA not before: Sun 03 May 2026 02:50:27 +0000 ROA not after: Sun 02 May 2027 02:55:27 +0000 asID: 38753 IP address blocks: 27.131.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ca:8d:90:a7:98:8a:67:81:e9:bb:98:66:f4:8f:92:52:e6:2a:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:27 2026 GMT Not After : May 2 02:55:27 2027 GMT Subject: CN=38FA42AAC1122CF7DC87CAD491198B5BC59B9EFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:ab:9a:01:12:c2:cc:3a:9a:a4:f0:00:49: ae:9d:64:3c:99:8d:5e:a8:c8:db:77:e1:6a:57:d0: ae:2c:6a:8c:77:44:3c:9c:4a:f2:9c:be:1a:55:9c: c7:51:73:8e:cc:a7:e5:4b:0b:04:0c:c6:40:96:b4: be:9a:e3:0a:ec:5e:cf:a4:c4:3c:e0:64:59:bb:b6: 96:37:72:22:da:d8:02:80:89:55:2d:ff:09:b1:28: 42:f4:2a:15:0d:6b:1a:e3:5d:eb:c5:30:2b:e9:b1: db:6d:0d:3e:65:b7:76:04:fc:fc:6c:ea:db:b9:2c: b0:a2:3f:95:cb:02:1b:2a:e4:7f:a5:ff:a3:25:6e: 64:2e:54:a3:28:3c:f6:d3:2d:b6:66:3b:07:c7:b8: a7:ea:7c:26:9c:4d:35:ed:70:bb:df:af:fe:98:d5: 94:5e:dd:f7:07:aa:2e:21:f2:d7:54:69:bf:f2:36: 50:7b:cb:1f:ff:42:2c:36:af:55:50:ab:01:88:0e: 1a:24:da:0d:98:7f:56:99:84:09:9a:be:0b:16:b2: cb:52:a3:c4:5d:af:24:65:d1:5d:57:13:4f:da:66: de:f0:b9:bb:52:a2:c3:ad:29:38:bf:b5:9e:aa:61: 9a:f0:0d:b1:d7:72:40:88:9a:66:02:1b:92:a0:2e: 59:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FA:42:AA:C1:12:2C:F7:DC:87:CA:D4:91:19:8B:5B:C5:9B:9E:FA X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e352e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.5.0/24 Signature Algorithm: sha256WithRSAEncryption b9:74:5b:78:3f:26:15:b2:4b:da:24:77:69:e7:78:dc:99:04: 34:8f:7a:8e:69:52:3f:f9:9e:cb:2a:c9:a0:87:b4:e3:d8:61: 86:87:9e:f4:9d:f0:17:a4:fe:6a:ad:50:f4:3f:95:b4:c4:18: 92:9e:c2:d3:c9:5f:42:ec:74:93:c5:39:2f:27:90:ee:ab:dc: 2a:0e:da:16:e2:4a:49:08:27:15:04:74:53:e4:00:83:6a:0a: bf:ea:8d:f7:08:e9:cb:2a:1c:a7:94:6c:42:3b:a0:0d:a4:0b: 3b:63:9a:86:9a:f5:5b:50:d4:55:34:89:ae:ab:b1:02:dc:da: 45:a5:77:d9:e0:99:eb:08:42:cf:e0:ea:10:59:0f:24:a6:ed: 8e:b3:c1:62:f1:91:ad:3f:5d:bc:58:2a:5b:0a:05:1f:cb:8c: 57:fd:18:9b:0d:f6:0d:c0:95:a8:7e:c4:06:84:e3:18:c0:f3: 2d:cc:54:b0:85:a6:b8:28:6f:f1:e1:41:2d:0a:ea:4d:f5:e0: 04:d5:fc:3b:93:b7:90:f5:29:c5:eb:55:76:0b:34:70:7c:40: 69:0f:a6:05:98:eb:86:ff:97:45:cc:64:3c:ca:52:41:04:9f: f5:f6:a2:4a:45:5d:64:0a:1c:b0:65:e6:20:10:50:08:b4:12: 28:17:e7:bb -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUTcqNkKeYimeB6buYZvSPklLmKrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjdaFw0yNzA1MDIwMjU1MjdaMDMxMTAvBgNV BAMTKDM4RkE0MkFBQzExMjJDRjdEQzg3Q0FENDkxMTk4QjVCQzU5QjlFRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxgquaARLCzDqapPAASa6dZDyZ jV6oyNt34WpX0K4saox3RDycSvKcvhpVnMdRc47Mp+VLCwQMxkCWtL6a4wrsXs+k xDzgZFm7tpY3ciLa2AKAiVUt/wmxKEL0KhUNaxrjXevFMCvpsdttDT5lt3YE/Pxs 6tu5LLCiP5XLAhsq5H+l/6MlbmQuVKMoPPbTLbZmOwfHuKfqfCacTTXtcLvfr/6Y 1ZRe3fcHqi4h8tdUab/yNlB7yx//Qiw2r1VQqwGIDhok2g2Yf1aZhAmavgsWsstS o8RdryRl0V1XE0/aZt7wubtSosOtKTi/tZ6qYZrwDbHXckCImmYCG5KgLlm7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUOPpCqsESLPfch8rUkRmLW8WbnvowHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwUwDQYJKoZIhvcNAQEL BQADggEBALl0W3g/JhWyS9okd2nneNyZBDSPeo5pUj/5nssqyaCHtOPYYYaHnvSd 8Bek/mqtUPQ/lbTEGJKewtPJX0LsdJPFOS8nkO6r3CoO2hbiSkkIJxUEdFPkAINq Cr/qjfcI6csqHKeUbEI7oA2kCztjmoaa9VtQ1FU0ia6rsQLc2kWld9ngmesIQs/g 6hBZDySm7Y6zwWLxka0/XbxYKlsKBR/LjFf9GJsN9g3Alah+xAaE4xjA8y3MVLCF prgob/HhQS0K6k314ATV/DuTt5D1KcXrVXYLNHB8QGkPpgWY64b/l0XMZDzKUkEE n/X2okpFXWQKHLBl5iAQUAi0EigX57s= -----END CERTIFICATE-----Generated at Wed May 13 02:59:20 2026 by rpki-client