$ rpki-client -vvf rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e20333935373933.roa File: 3131302e34342e3137312e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: Qlk0oD+wYGVfdAwJsFbQ75XWp7ZZAdoIXaQP7ZyAga4= Subject key identifier: D4:04:20:CC:81:15:67:92:2E:5F:4F:08:E2:03:A5:F8:BB:E6:B5:9B Certificate issuer: /CN=E6B678AE8DC843399DF534610764D871D4D698D8 Certificate serial: 132E86A631C1D4B562DDCA505AECCEA3C27656DF Authority key identifier: E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e20333935373933.roa Signing time: Sun 03 May 2026 02:57:28 +0000 ROA not before: Sun 03 May 2026 02:52:28 +0000 ROA not after: Sun 02 May 2027 02:57:28 +0000 asID: 395793 IP address blocks: 110.44.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:2e:86:a6:31:c1:d4:b5:62:dd:ca:50:5a:ec:ce:a3:c2:76:56:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6B678AE8DC843399DF534610764D871D4D698D8 Validity Not Before: May 3 02:52:28 2026 GMT Not After : May 2 02:57:28 2027 GMT Subject: CN=D40420CC811567922E5F4F08E203A5F8BBE6B59B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:38:c0:d7:f8:ff:3e:bd:89:a0:62:a0:e9:03: 28:95:3d:f3:56:90:5f:ff:47:aa:51:c0:a9:93:09: a4:c0:c6:4e:45:57:b3:de:63:fd:8e:b6:a1:ea:14: 48:1e:2a:ae:c9:c2:c5:c8:37:8d:40:96:15:0b:4d: 21:b3:42:3a:c6:a4:e7:8f:c1:a2:70:30:e4:b0:5e: d8:a5:2a:9e:bd:14:1f:24:09:29:c8:b9:24:50:e0: 40:e7:24:17:67:1a:2b:88:11:15:8d:38:c5:b5:0a: 9b:7c:40:ab:3f:eb:66:ad:dc:0a:6b:c9:15:5e:3a: 52:e0:49:77:e8:3c:71:0b:5b:cb:c3:cf:3c:92:ac: 98:a2:2e:b9:12:7c:86:a9:83:1b:68:e6:67:49:7a: f7:62:57:8f:20:dd:af:a5:a5:50:3f:f3:04:37:ae: 28:06:cb:12:36:f5:9c:3a:00:99:58:fc:19:ff:95: 52:8e:64:b5:dd:73:5d:04:2c:3c:7d:cc:d1:7a:23: 84:01:bd:68:af:65:77:45:66:c6:41:18:32:9b:90: a8:fb:8b:27:29:23:15:47:a6:66:51:b8:63:92:f1: 23:5f:99:04:83:56:33:a3:6e:dc:de:2b:e7:81:ba: a8:e3:c4:09:de:f9:f1:7a:08:6d:76:37:38:c2:1f: e2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:04:20:CC:81:15:67:92:2E:5F:4F:08:E2:03:A5:F8:BB:E6:B5:9B X509v3 Authority Key Identifier: keyid:E6:B6:78:AE:8D:C8:43:39:9D:F5:34:61:07:64:D8:71:D4:D6:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/E6B678AE8DC843399DF534610764D871D4D698D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6B678AE8DC843399DF534610764D871D4D698D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137312e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.44.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:ff:8c:71:73:34:6f:6d:b0:46:a6:03:24:4f:4d:09:50:5b: ac:14:43:38:60:d4:70:81:ef:74:b6:11:7c:a7:d9:90:5c:a0: 1b:13:c9:fd:f5:de:05:11:ca:b9:83:df:e9:21:d6:69:5f:be: b3:50:52:97:8a:41:05:ab:3e:2b:1f:c2:08:0f:08:02:ce:ac: 46:13:71:59:59:fa:9a:b3:0a:d6:90:21:33:bd:02:c0:fc:e7: f5:80:67:bb:5b:94:bf:fa:3e:68:3f:7a:cf:d9:7d:81:62:9e: 5a:1e:dc:29:eb:68:4b:03:c6:cb:e5:da:16:27:16:f4:be:47: 20:17:4b:44:54:fb:79:fe:20:75:d1:ef:0b:aa:eb:ce:71:c0: 79:22:06:5e:a2:e8:43:d7:68:40:21:86:09:ff:ba:90:30:81: 02:0a:dd:d7:ef:2d:f8:c7:85:bf:c7:1f:57:da:52:4d:50:b8: f0:b7:12:de:1e:a0:d0:9d:9a:2a:34:7b:0e:07:66:65:62:62: c1:da:fe:0c:13:ae:5c:1d:db:d6:88:ec:7a:f9:42:4d:1a:79: 76:d1:fc:7f:29:0f:bf:58:b7:70:c3:31:23:c9:4e:a0:be:28: cf:98:43:e0:3c:06:27:3e:3b:76:1c:c9:4c:20:c7:9b:71:93: e0:6a:e6:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEy6GpjHB1LVi3cpQWuzOo8J2Vt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTZCNjc4QUU4REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFE NEQ2OThEODAeFw0yNjA1MDMwMjUyMjhaFw0yNzA1MDIwMjU3MjhaMDMxMTAvBgNV BAMTKEQ0MDQyMENDODExNTY3OTIyRTVGNEYwOEUyMDNBNUY4QkJFNkI1OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmOMDX+P8+vYmgYqDpAyiVPfNW kF//R6pRwKmTCaTAxk5FV7PeY/2OtqHqFEgeKq7JwsXIN41AlhULTSGzQjrGpOeP waJwMOSwXtilKp69FB8kCSnIuSRQ4EDnJBdnGiuIERWNOMW1Cpt8QKs/62at3Apr yRVeOlLgSXfoPHELW8vDzzySrJiiLrkSfIapgxto5mdJevdiV48g3a+lpVA/8wQ3 rigGyxI29Zw6AJlY/Bn/lVKOZLXdc10ELDx9zNF6I4QBvWivZXdFZsZBGDKbkKj7 iycpIxVHpmZRuGOS8SNfmQSDVjOjbtzeK+eBuqjjxAne+fF6CG12NzjCH+K3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1AQgzIEVZ5IuX08I4gOl+LvmtZswHwYDVR0j BBgwFoAU5rZ4ro3IQzmd9TRhB2TYcdTWmNgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc5MjJmODktM2U5Yi00YjIxLTkxODYtYTY0OGMyZGEzZjdiLzAvRTZCNjc4QUU4 REM4NDMzOTlERjUzNDYxMDc2NEQ4NzFENEQ2OThEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNkI2NzhBRThEQzg0MzM5OURGNTM0NjEwNzY0RDg3MUQ0RDY5 OEQ4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMxMzEzMDJlMzQzNDJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbiyrMA0GCSqG SIb3DQEBCwUAA4IBAQCL/4xxczRvbbBGpgMkT00JUFusFEM4YNRwge90thF8p9mQ XKAbE8n99d4FEcq5g9/pIdZpX76zUFKXikEFqz4rH8IIDwgCzqxGE3FZWfqaswrW kCEzvQLA/Of1gGe7W5S/+j5oP3rP2X2BYp5aHtwp62hLA8bL5doWJxb0vkcgF0tE VPt5/iB10e8LquvOccB5IgZeouhD12hAIYYJ/7qQMIECCt3X7y34x4W/xx9X2lJN ULjwtxLeHqDQnZoqNHsOB2ZlYmLB2v4ME65cHdvWiOx6+UJNGnl20fx/KQ+/WLdw wzEjyU6gvijPmEPgPAYnPjt2HMlMIMebcZPgauaF -----END CERTIFICATE-----Generated at Wed May 13 03:16:45 2026 by rpki-client