$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e372e302f32342d3234203d3e203338373533.roa File: 32372e3133312e372e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 6lROY1Ar+V8VDfpGSML6QiI8zQ9aBGOnUU2JJVyM6Rs= Subject key identifier: 36:8F:77:E6:05:16:06:FF:3B:0C:47:1F:33:C7:AD:D4:D2:61:75:BC Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 5B833BFDEFB6BFA1CEE80215EDCB66203339960D Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e372e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:25 +0000 ROA not before: Sun 03 May 2026 02:50:25 +0000 ROA not after: Sun 02 May 2027 02:55:25 +0000 asID: 38753 IP address blocks: 27.131.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:83:3b:fd:ef:b6:bf:a1:ce:e8:02:15:ed:cb:66:20:33:39:96:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:25 2026 GMT Not After : May 2 02:55:25 2027 GMT Subject: CN=368F77E6051606FF3B0C471F33C7ADD4D26175BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:f4:18:e2:8c:a9:43:35:52:54:00:cf:be:6f: 7f:cd:3a:03:08:de:8d:43:6a:11:41:ad:dd:e4:1a: ea:70:5c:a4:b4:7b:7f:8c:a2:d3:75:89:d5:0a:37: 92:cc:54:88:bc:1e:20:e4:1f:b7:e8:fb:e8:7f:e3: 43:9b:60:db:c8:15:9b:fb:f8:db:b2:78:94:9a:ce: 26:8c:cf:c5:11:72:0d:c5:20:5c:eb:87:d6:8a:90: 77:c6:c0:fa:6e:e1:55:34:45:ab:6c:fd:63:42:df: 2c:e9:b4:de:0e:00:43:28:3d:c7:71:ea:46:cb:ad: 8e:a4:a8:e4:b1:7e:81:de:29:d8:ae:13:0e:f4:d4: 6f:22:76:86:4a:65:7d:45:f3:f9:59:35:11:35:fa: 57:67:de:8c:35:f7:bf:85:b9:07:6b:df:ba:5c:13: f1:7f:f1:7a:b1:12:3d:bf:2b:97:57:6b:ab:da:b1: 51:46:5e:18:a8:0e:41:91:9f:dc:db:2c:72:42:4e: ec:b6:7e:6f:0a:dc:de:45:e9:65:d5:eb:a4:0b:a9: 95:40:c4:9c:25:b6:cb:0a:5e:2c:32:b4:30:45:ef: ec:8f:3f:05:f7:53:23:52:31:56:fc:22:a1:c0:e3: 81:c4:36:84:ba:89:48:d0:b0:85:88:77:e7:cb:1b: 48:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8F:77:E6:05:16:06:FF:3B:0C:47:1F:33:C7:AD:D4:D2:61:75:BC X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e372e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.7.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:92:30:40:4f:f4:cc:42:09:4d:95:1d:2b:56:02:09:ef:12: 5f:a4:9a:39:22:05:c7:33:fa:57:38:e2:4b:3a:42:09:41:ef: 96:5c:d2:2c:2a:35:2f:5d:b5:d6:ad:cd:7c:c7:7a:4d:5c:2d: 4e:5e:38:da:fb:50:b2:30:07:46:3c:22:77:69:72:02:35:05: 5e:41:6a:64:2a:3d:b7:2f:56:d5:a7:b3:d0:53:85:0c:e9:e3: f5:cc:6b:5a:9f:7f:9b:33:57:22:07:0a:0f:ab:f6:2e:bd:44: 98:c1:29:6f:eb:f2:1c:50:c8:87:dc:a1:37:32:db:b2:44:9b: 74:83:c5:55:6f:0e:43:63:9e:44:de:91:1b:88:1d:18:c7:fe: da:9a:2e:83:62:de:00:8c:c3:01:bf:bf:8f:39:98:3e:5b:f2: ef:6f:cb:6f:b6:98:cb:84:a7:a2:0b:75:b8:81:5c:13:9b:b0: 4e:61:e8:1d:4d:aa:48:54:a5:a0:fb:3f:cc:05:82:d1:c7:4e: 3c:2d:71:ce:b0:a5:cd:b1:09:a7:5f:6a:29:64:25:d8:a7:da: cb:80:98:17:d1:52:dc:ba:1a:4c:21:7e:e4:df:c7:44:57:d2: a2:b1:b5:ab:8f:ce:32:ee:e7:3e:ea:1f:f2:05:25:dd:90:24: 29:11:54:11 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUW4M7/e+2v6HO6AIV7ctmIDM5lg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjVaFw0yNzA1MDIwMjU1MjVaMDMxMTAvBgNV BAMTKDM2OEY3N0U2MDUxNjA2RkYzQjBDNDcxRjMzQzdBREQ0RDI2MTc1QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD59BjijKlDNVJUAM++b3/NOgMI 3o1DahFBrd3kGupwXKS0e3+MotN1idUKN5LMVIi8HiDkH7fo++h/40ObYNvIFZv7 +NuyeJSaziaMz8URcg3FIFzrh9aKkHfGwPpu4VU0Rats/WNC3yzptN4OAEMoPcdx 6kbLrY6kqOSxfoHeKdiuEw701G8idoZKZX1F8/lZNRE1+ldn3ow197+FuQdr37pc E/F/8XqxEj2/K5dXa6vasVFGXhioDkGRn9zbLHJCTuy2fm8K3N5F6WXV66QLqZVA xJwltssKXiwytDBF7+yPPwX3UyNSMVb8IqHA44HENoS6iUjQsIWId+fLG0jJAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUNo935gUWBv87DEcfM8et1NJhdbwwHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwcwDQYJKoZIhvcNAQEL BQADggEBAF+SMEBP9MxCCU2VHStWAgnvEl+kmjkiBccz+lc44ks6QglB75Zc0iwq NS9dtdatzXzHek1cLU5eONr7ULIwB0Y8IndpcgI1BV5BamQqPbcvVtWns9BThQzp 4/XMa1qff5szVyIHCg+r9i69RJjBKW/r8hxQyIfcoTcy27JEm3SDxVVvDkNjnkTe kRuIHRjH/tqaLoNi3gCMwwG/v485mD5b8u9vy2+2mMuEp6ILdbiBXBObsE5h6B1N qkhUpaD7P8wFgtHHTjwtcc6wpc2xCadfailkJdin2suAmBfRUty6GkwhfuTfx0RX 0qKxtauPzjLu5z7qH/IFJd2QJCkRVBE= -----END CERTIFICATE-----Generated at Wed May 13 03:00:00 2026 by rpki-client