$ rpki-client -vvf rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: o0yYhvbuoFqhEPym4z+ZdJk3Le3FK4ab18rxhmTiTA8= Subject key identifier: A4:79:A3:88:71:76:4E:42:54:31:7F:4F:16:E1:0C:59:27:07:0F:CC Certificate issuer: /CN=EAF11A8ED035ADED159E0977A55B8A135A2DBAF0 Certificate serial: 33642D9E1AE377D56B9088D8ED81E6CE75CE7785 Authority key identifier: EA:F1:1A:8E:D0:35:AD:ED:15:9E:09:77:A5:5B:8A:13:5A:2D:BA:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa Signing time: Sun 03 May 2026 02:56:36 +0000 ROA not before: Sun 03 May 2026 02:51:36 +0000 ROA not after: Sun 02 May 2027 02:56:36 +0000 asID: 38785 IP address blocks: 121.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.crl rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:64:2d:9e:1a:e3:77:d5:6b:90:88:d8:ed:81:e6:ce:75:ce:77:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAF11A8ED035ADED159E0977A55B8A135A2DBAF0 Validity Not Before: May 3 02:51:36 2026 GMT Not After : May 2 02:56:36 2027 GMT Subject: CN=A479A38871764E4254317F4F16E10C5927070FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:71:b6:83:e4:9c:3b:94:2d:d2:71:06:3b:2f: 1d:9a:54:af:b4:4c:3e:27:7f:d0:a7:b7:79:a7:70: 64:c2:e0:7e:e0:c7:0f:8c:a8:7d:f6:98:fd:c9:08: b4:14:61:3d:cc:88:a2:f2:98:37:e4:a0:9a:3f:d4: 8e:bd:75:08:cc:95:aa:84:42:59:df:3f:49:57:d9: ae:3e:85:a6:9d:14:73:d6:1a:87:9d:7f:c1:fb:19: 47:5c:b2:32:4a:7e:3b:50:19:48:d2:b7:d3:da:20: 97:26:29:fc:e4:63:f5:dc:ec:59:59:09:de:27:3e: 8c:89:af:94:ef:bb:bc:04:fe:9b:a4:b3:62:2e:63: 49:ae:b8:4b:27:8f:22:98:d4:6f:3c:47:a6:e4:83: 7b:db:2b:b4:e5:c9:42:5f:e3:2d:79:32:33:1d:09: c5:b4:22:c8:2a:50:71:02:91:9f:70:bd:1b:da:07: a0:82:05:94:46:11:ff:3f:87:75:e1:be:bb:e2:22: 77:25:6e:ba:cc:3e:76:3a:0a:49:f2:81:ff:c7:90: c5:07:23:ba:37:68:32:36:89:b6:41:75:a9:09:81: ae:58:14:f8:50:17:b8:a3:6c:87:d8:44:bc:82:c8: 70:71:5e:fc:f9:0b:5a:dd:eb:00:df:ed:1b:bf:2d: e6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:79:A3:88:71:76:4E:42:54:31:7F:4F:16:E1:0C:59:27:07:0F:CC X509v3 Authority Key Identifier: keyid:EA:F1:1A:8E:D0:35:AD:ED:15:9E:09:77:A5:5B:8A:13:5A:2D:BA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.186.0/24 Signature Algorithm: sha256WithRSAEncryption 86:50:22:aa:22:89:13:ed:72:f8:c5:1e:9b:0e:d5:5a:e4:35: 09:5c:03:0d:71:fc:d1:a2:af:5e:76:df:0b:99:75:ce:ac:5c: de:44:04:d0:d0:0a:2b:1b:fc:a8:38:ab:39:d6:a0:8d:29:1a: bf:6f:b7:2a:cf:a2:2e:ba:26:a3:62:bb:10:45:6b:63:36:c1: 5b:f2:91:9c:63:ca:41:1e:fd:8d:87:45:ae:e4:40:bb:17:f1: 63:b2:b3:6f:08:65:9f:6a:45:9d:03:15:12:5c:ab:cc:f6:26: da:b8:50:e5:60:88:0b:68:27:6b:75:16:12:e9:57:58:40:09: e3:66:5a:60:1f:09:cb:cf:77:f6:a9:12:62:97:21:ff:ef:61: af:0a:91:9b:db:5c:81:27:26:71:4d:2a:21:7d:02:fb:e0:22: 86:76:95:c6:c0:bf:b2:90:f8:6b:ba:7e:5a:31:88:e4:aa:d5: 59:3c:df:da:ca:49:f1:93:74:d6:08:bc:a7:5a:d2:c0:bd:51: 51:48:00:a8:77:60:c8:c4:d6:e5:8a:d6:a6:42:8b:41:f8:c8: ba:74:c8:d4:66:bc:5b:29:ce:76:f8:46:2b:00:e9:af:45:5e: 91:5f:51:79:86:99:ea:3d:32:ca:01:59:2e:d1:45:9a:0d:55: ff:ed:4f:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM2Qtnhrjd9VrkIjY7YHmznXOd4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFGMTFBOEVEMDM1QURFRDE1OUUwOTc3QTU1QjhBMTM1 QTJEQkFGMDAeFw0yNjA1MDMwMjUxMzZaFw0yNzA1MDIwMjU2MzZaMDMxMTAvBgNV BAMTKEE0NzlBMzg4NzE3NjRFNDI1NDMxN0Y0RjE2RTEwQzU5MjcwNzBGQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClcbaD5Jw7lC3ScQY7Lx2aVK+0 TD4nf9Cnt3mncGTC4H7gxw+MqH32mP3JCLQUYT3MiKLymDfkoJo/1I69dQjMlaqE QlnfP0lX2a4+haadFHPWGoedf8H7GUdcsjJKfjtQGUjSt9PaIJcmKfzkY/Xc7FlZ Cd4nPoyJr5Tvu7wE/puks2IuY0muuEsnjyKY1G88R6bkg3vbK7TlyUJf4y15MjMd CcW0IsgqUHECkZ9wvRvaB6CCBZRGEf8/h3XhvrviInclbrrMPnY6Cknygf/HkMUH I7o3aDI2ibZBdakJga5YFPhQF7ijbIfYRLyCyHBxXvz5C1rd6wDf7Ru/LeaLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpHmjiHF2TkJUMX9PFuEMWScHD8wwHwYDVR0j BBgwFoAU6vEajtA1re0Vngl3pVuKE1otuvAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU3MmRmYmUtNGNhMC00YTQ2LTgwMzctNDk2OGVkOTdjYWRjLzAvRUFGMTFBOEVE MDM1QURFRDE1OUUwOTc3QTU1QjhBMTM1QTJEQkFGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUYxMUE4RUQwMzVBREVEMTU5RTA5NzdBNTVCOEExMzVBMkRC QUYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW6MA0GCSqG SIb3DQEBCwUAA4IBAQCGUCKqIokT7XL4xR6bDtVa5DUJXAMNcfzRoq9edt8LmXXO rFzeRATQ0AorG/yoOKs51qCNKRq/b7cqz6IuuiajYrsQRWtjNsFb8pGcY8pBHv2N h0Wu5EC7F/FjsrNvCGWfakWdAxUSXKvM9ibauFDlYIgLaCdrdRYS6VdYQAnjZlpg HwnLz3f2qRJilyH/72GvCpGb21yBJyZxTSohfQL74CKGdpXGwL+ykPhrun5aMYjk qtVZPN/ayknxk3TWCLynWtLAvVFRSACod2DIxNblitamQotB+Mi6dMjUZrxbKc52 +EYrAOmvRV6RX1F5hpnqPTLKAVku0UWaDVX/7U+p -----END CERTIFICATE-----Generated at Wed May 13 10:40:03 2026 by rpki-client