$ rpki-client -vvf rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa File: 3130312e35302e302e302f32322d3234203d3e203535363838.roa (raw, json) Hash identifier: KvTBLhcA30Q3MMqmIFRVkjBY73ZF22OKBZQ16lHRnEE= Subject key identifier: 69:0A:76:3D:64:2C:29:37:4D:2C:8C:9B:23:68:2C:AF:11:31:73:1F Certificate issuer: /CN=989831789EE975B0651609E616352062EEC4FC7B Certificate serial: 7C1E77EEBBB55AB12D0D6E9E83079EAAAE1E0AD6 Authority key identifier: 98:98:31:78:9E:E9:75:B0:65:16:09:E6:16:35:20:62:EE:C4:FC:7B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa Signing time: Sun 03 May 2026 02:57:25 +0000 ROA not before: Sun 03 May 2026 02:52:25 +0000 ROA not after: Sun 02 May 2027 02:57:25 +0000 asID: 55688 IP address blocks: 101.50.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.crl rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1e:77:ee:bb:b5:5a:b1:2d:0d:6e:9e:83:07:9e:aa:ae:1e:0a:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989831789EE975B0651609E616352062EEC4FC7B Validity Not Before: May 3 02:52:25 2026 GMT Not After : May 2 02:57:25 2027 GMT Subject: CN=690A763D642C29374D2C8C9B23682CAF1131731F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:47:b8:b4:46:a8:b1:6f:c4:8e:31:c1:07: 9a:5e:6a:8d:03:0a:47:00:79:be:40:a3:52:64:68: e6:f3:96:12:9f:22:33:10:16:af:5b:2b:2c:8f:10: f7:73:12:44:8a:79:d3:2b:96:bb:e9:bf:01:75:91: 54:1e:06:7f:41:a0:24:8f:0e:88:15:f5:38:4e:2c: ef:8c:94:d5:35:bc:b5:cd:b5:da:c4:17:af:72:72: a9:83:df:a4:1a:75:65:5a:60:d3:c1:d5:95:4a:c9: 54:e6:91:7c:d7:87:ea:08:43:46:1b:51:b0:d2:7d: 91:84:9b:27:28:2b:71:94:02:06:0d:20:78:da:fb: b0:24:3f:17:fe:02:a3:98:d3:48:f9:51:73:1a:fc: bd:12:b2:cf:9b:15:3b:5d:8f:72:54:d9:fc:66:8b: 34:fa:87:97:96:93:b9:0b:8f:c1:bb:19:a0:6f:1a: ae:9c:b3:0b:57:9f:e0:99:c3:4f:03:a8:62:91:70: e5:e0:04:60:14:3b:08:e8:22:e1:f2:c0:16:ed:a4: b0:25:42:58:eb:ee:88:1b:c3:40:78:84:bd:0e:a2: e2:9b:8a:e2:0c:32:9b:61:5a:d2:33:c6:a4:e4:34: 39:17:18:ca:b1:e5:aa:2a:cf:02:e7:a4:24:c4:72: 63:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0A:76:3D:64:2C:29:37:4D:2C:8C:9B:23:68:2C:AF:11:31:73:1F X509v3 Authority Key Identifier: keyid:98:98:31:78:9E:E9:75:B0:65:16:09:E6:16:35:20:62:EE:C4:FC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130312e35302e302e302f32322d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.0.0/22 Signature Algorithm: sha256WithRSAEncryption 93:70:79:00:69:41:71:98:ed:e7:5f:73:cd:d1:1f:14:d7:88: fa:c4:4a:b3:af:b2:0e:dc:c2:16:b1:97:70:77:9a:ab:76:da: 10:a6:da:18:f1:29:ee:5c:8a:6f:95:5a:79:ae:32:71:75:7d: 78:3b:95:32:ef:f2:c6:f3:63:8e:1c:ba:5b:3c:a7:e8:85:fb: 07:41:27:c3:1b:a8:7c:c7:87:85:78:8d:d1:13:13:26:f1:d1: 05:87:93:75:2f:b9:e8:89:ce:43:56:fe:e7:75:ae:a3:72:81: 27:0f:4c:df:70:d9:58:80:b5:fc:88:e6:83:24:9a:84:ff:56: f7:59:7f:78:51:1e:ef:70:88:03:9d:7b:07:91:12:59:4d:a6: fe:1f:a8:b9:5e:ba:a3:59:d4:4f:4a:72:d2:e3:b8:3b:e8:96: 49:e3:a9:47:ee:24:4f:50:a7:04:c6:cb:6c:0a:dd:a7:05:5c: 23:4a:bf:b8:4a:5e:b5:e7:a4:32:62:a1:26:d9:eb:54:75:f2: 33:63:8f:7a:1a:6e:c5:07:7a:53:da:92:9c:02:48:04:1a:a7: 32:32:ea:b1:af:42:50:ae:a7:8a:74:1b:75:1e:db:dc:e4:e9: 2f:78:47:18:a6:22:d3:c7:7c:26:62:73:97:db:57:26:73:03: 7c:a7:ed:85 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUfB537ru1WrEtDW6egweeqq4eCtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5ODMxNzg5RUU5NzVCMDY1MTYwOUU2MTYzNTIwNjJF RUM0RkM3QjAeFw0yNjA1MDMwMjUyMjVaFw0yNzA1MDIwMjU3MjVaMDMxMTAvBgNV BAMTKDY5MEE3NjNENjQyQzI5Mzc0RDJDOEM5QjIzNjgyQ0FGMTEzMTczMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGoEe4tEaosW/EjjHBB5peao0D CkcAeb5Ao1JkaObzlhKfIjMQFq9bKyyPEPdzEkSKedMrlrvpvwF1kVQeBn9BoCSP DogV9ThOLO+MlNU1vLXNtdrEF69ycqmD36QadWVaYNPB1ZVKyVTmkXzXh+oIQ0Yb UbDSfZGEmycoK3GUAgYNIHja+7AkPxf+AqOY00j5UXMa/L0Sss+bFTtdj3JU2fxm izT6h5eWk7kLj8G7GaBvGq6cswtXn+CZw08DqGKRcOXgBGAUOwjoIuHywBbtpLAl Qljr7ogbw0B4hL0OouKbiuIMMpthWtIzxqTkNDkXGMqx5aoqzwLnpCTEcmNrAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUaQp2PWQsKTdNLIybI2gsrxExcx8wHwYDVR0j BBgwFoAUmJgxeJ7pdbBlFgnmFjUgYu7E/HswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc1OGM4MGUtYTMyOC00ZjhjLWEwM2YtOTFjM2MyNjIxNGEyLzAvOTg5ODMxNzg5 RUU5NzVCMDY1MTYwOUU2MTYzNTIwNjJFRUM0RkM3Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85ODk4MzE3ODlFRTk3NUIwNjUxNjA5RTYxNjM1MjA2MkVFQzRG QzdCLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTc1OGM4MGUtYTMyOC00ZjhjLWEw M2YtOTFjM2MyNjIxNGEyLzAvMzEzMDMxMmUzNTMwMmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzUzNjM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJlMgAwDQYJKoZIhvcNAQEL BQADggEBAJNweQBpQXGY7edfc83RHxTXiPrESrOvsg7cwhaxl3B3mqt22hCm2hjx Ke5cim+VWnmuMnF1fXg7lTLv8sbzY44culs8p+iF+wdBJ8MbqHzHh4V4jdETEybx 0QWHk3UvueiJzkNW/ud1rqNygScPTN9w2ViAtfyI5oMkmoT/VvdZf3hRHu9wiAOd eweREllNpv4fqLleuqNZ1E9KctLjuDvolknjqUfuJE9QpwTGy2wK3acFXCNKv7hK XrXnpDJioSbZ61R18jNjj3oabsUHelPakpwCSAQapzIy6rGvQlCup4p0G3Ue29zk 6S94RximItPHfCZic5fbVyZzA3yn7YU= -----END CERTIFICATE-----Generated at Wed May 13 02:15:17 2026 by rpki-client