$ rpki-client -vvf rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: kOLyF61iZDyTGCpcXoqG6pGYD92Lf55fGKKsSX0XUdE= Subject key identifier: AD:CE:30:FC:98:76:39:C1:9A:15:B5:0F:79:E3:45:6A:B2:A5:0B:2A Certificate issuer: /CN=EAF11A8ED035ADED159E0977A55B8A135A2DBAF0 Certificate serial: 75D1520939A0A14BF6502E37DD3BE048E2DD3A49 Authority key identifier: EA:F1:1A:8E:D0:35:AD:ED:15:9E:09:77:A5:5B:8A:13:5A:2D:BA:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa Signing time: Sun 03 May 2026 02:56:40 +0000 ROA not before: Sun 03 May 2026 02:51:40 +0000 ROA not after: Sun 02 May 2027 02:56:40 +0000 asID: 38785 IP address blocks: 121.101.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.crl rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d1:52:09:39:a0:a1:4b:f6:50:2e:37:dd:3b:e0:48:e2:dd:3a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAF11A8ED035ADED159E0977A55B8A135A2DBAF0 Validity Not Before: May 3 02:51:40 2026 GMT Not After : May 2 02:56:40 2027 GMT Subject: CN=ADCE30FC987639C19A15B50F79E3456AB2A50B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:b4:fe:25:b7:54:45:db:a4:c1:64:31:b9: 54:d7:43:8b:98:aa:8f:d2:66:fe:c1:ab:2a:0f:ab: 65:fe:d7:fb:94:7a:4a:7b:5b:a3:28:00:ef:d4:e5: ba:62:73:0d:e6:64:58:f2:ac:87:51:93:10:d8:cb: b4:8b:05:c7:47:aa:3a:22:54:16:04:27:d7:20:da: 9e:f1:a7:7e:84:83:44:ac:35:48:2c:64:cf:cc:c6: 62:90:29:be:d7:e3:52:fd:45:9b:d0:f5:a3:df:bf: 3f:5f:5b:4b:d7:f5:40:f4:c5:64:67:0e:7b:63:fd: 7c:4d:92:8f:fb:79:5c:f4:71:ad:61:a4:d2:ef:2a: 13:e3:3a:d5:b1:93:e9:ce:e3:9c:92:86:28:3c:b1: c0:c3:44:0c:dc:4f:a0:ca:c6:39:85:58:ff:b3:e1: 36:3b:f7:fb:72:27:b3:a6:ad:7a:ff:ee:44:30:ce: 9a:19:9c:e9:fa:33:bb:26:83:6b:02:d1:55:f3:97: 79:ed:ac:5b:f5:7c:6d:38:f0:d1:a3:1c:48:35:b6: a5:fe:27:ba:1b:77:19:fa:fd:72:90:1d:b4:b9:46: e9:5b:ed:b7:54:85:37:52:ad:d3:c9:11:be:68:f1: b9:b4:57:bc:e5:f3:78:6a:bf:8d:b1:0b:89:73:b1: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CE:30:FC:98:76:39:C1:9A:15:B5:0F:79:E3:45:6A:B2:A5:0B:2A X509v3 Authority Key Identifier: keyid:EA:F1:1A:8E:D0:35:AD:ED:15:9E:09:77:A5:5B:8A:13:5A:2D:BA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAF11A8ED035ADED159E0977A55B8A135A2DBAF0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:1d:35:09:81:32:39:99:5a:46:a7:3f:9d:14:cc:8b:5a:ac: b2:1f:74:c8:96:78:fe:e5:56:54:90:6d:07:a6:eb:1d:fa:57: 59:33:30:52:fa:b4:78:90:af:c6:ef:64:1c:9b:03:48:8a:b6: d2:21:8f:33:21:17:8a:e9:45:02:eb:c0:88:c9:98:e8:7b:7e: 95:4a:c9:b7:f8:c2:2d:4d:60:34:20:56:9d:10:c1:89:48:c9: 41:bf:73:d9:ab:59:84:09:22:82:21:31:b7:a1:98:3a:2b:ce: b3:7a:82:ae:f2:67:a1:cb:6c:ad:13:81:7f:a9:3b:20:0a:92: a0:c6:3f:eb:1c:fc:a6:d7:a1:c4:20:fb:43:c3:0b:c5:ac:9a: f7:90:75:8e:fa:06:de:e5:48:db:d6:5a:66:0a:a8:54:7c:46: 9c:14:97:8e:35:0d:4b:d2:d3:f2:2c:2d:4d:d7:07:d9:61:1a: c4:cb:12:ac:d9:89:68:81:0c:09:cb:04:f4:c7:ac:6d:72:6e: a4:b6:05:b7:6f:c4:a4:1c:f1:1f:e3:e7:1d:62:c5:89:f7:2a: a3:2a:a3:49:d1:c9:5d:38:00:f1:45:d0:9a:a4:e3:b4:ed:8d: 52:c0:f4:f5:46:5a:d0:de:fe:c3:fd:d8:d4:6c:df:f1:a7:cb: 92:93:77:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUddFSCTmgoUv2UC433TvgSOLdOkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFGMTFBOEVEMDM1QURFRDE1OUUwOTc3QTU1QjhBMTM1 QTJEQkFGMDAeFw0yNjA1MDMwMjUxNDBaFw0yNzA1MDIwMjU2NDBaMDMxMTAvBgNV BAMTKEFEQ0UzMEZDOTg3NjM5QzE5QTE1QjUwRjc5RTM0NTZBQjJBNTBCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6BLT+JbdURdukwWQxuVTXQ4uY qo/SZv7BqyoPq2X+1/uUekp7W6MoAO/U5bpicw3mZFjyrIdRkxDYy7SLBcdHqjoi VBYEJ9cg2p7xp36Eg0SsNUgsZM/MxmKQKb7X41L9RZvQ9aPfvz9fW0vX9UD0xWRn Dntj/XxNko/7eVz0ca1hpNLvKhPjOtWxk+nO45yShig8scDDRAzcT6DKxjmFWP+z 4TY79/tyJ7OmrXr/7kQwzpoZnOn6M7smg2sC0VXzl3ntrFv1fG048NGjHEg1tqX+ J7obdxn6/XKQHbS5Rulb7bdUhTdSrdPJEb5o8bm0V7zl83hqv42xC4lzsYmbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrc4w/Jh2OcGaFbUPeeNFarKlCyowHwYDVR0j BBgwFoAU6vEajtA1re0Vngl3pVuKE1otuvAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU3MmRmYmUtNGNhMC00YTQ2LTgwMzctNDk2OGVkOTdjYWRjLzAvRUFGMTFBOEVE MDM1QURFRDE1OUUwOTc3QTU1QjhBMTM1QTJEQkFGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUYxMUE4RUQwMzVBREVEMTU5RTA5NzdBNTVCOEExMzVBMkRC QUYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW+MA0GCSqG SIb3DQEBCwUAA4IBAQBLHTUJgTI5mVpGpz+dFMyLWqyyH3TIlnj+5VZUkG0Hpusd +ldZMzBS+rR4kK/G72QcmwNIirbSIY8zIReK6UUC68CIyZjoe36VSsm3+MItTWA0 IFadEMGJSMlBv3PZq1mECSKCITG3oZg6K86zeoKu8mehy2ytE4F/qTsgCpKgxj/r HPym16HEIPtDwwvFrJr3kHWO+gbe5Ujb1lpmCqhUfEacFJeONQ1L0tPyLC1N1wfZ YRrEyxKs2YlogQwJywT0x6xtcm6ktgW3b8SkHPEf4+cdYsWJ9yqjKqNJ0cldOADx RdCapOO07Y1SwPT1RlrQ3v7D/djUbN/xp8uSk3dl -----END CERTIFICATE-----Generated at Wed May 13 09:17:54 2026 by rpki-client