$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa File: 3131312e36382e32342e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: g7QAve2M16WshAcdg9i1WymFPs4Va3AKdhm/B6BQFgo= Subject key identifier: D4:F0:28:C1:19:60:C4:F6:A2:BC:85:43:63:A9:A2:75:53:F7:76:F2 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 1B8E4B4EF4BB70A932513F13F42886B9FD4A305E Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa Signing time: Sun 03 May 2026 02:59:35 +0000 ROA not before: Sun 03 May 2026 02:54:35 +0000 ROA not after: Sun 02 May 2027 02:59:35 +0000 asID: 55666 IP address blocks: 111.68.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8e:4b:4e:f4:bb:70:a9:32:51:3f:13:f4:28:86:b9:fd:4a:30:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:35 2026 GMT Not After : May 2 02:59:35 2027 GMT Subject: CN=D4F028C11960C4F6A2BC854363A9A27553F776F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:42:2c:92:df:32:03:06:11:c9:23:16:f6: c1:c4:c6:b9:66:ca:da:f3:95:cf:4e:50:4e:82:57: 37:c6:50:ae:cb:0d:5d:db:92:5d:ed:78:91:9d:65: f5:10:38:65:a4:55:ff:65:99:38:83:63:76:2d:06: 81:b7:19:5c:5a:98:84:f3:e3:02:2d:4b:5e:af:78: 39:42:f5:5b:c1:4a:38:37:6b:e6:ba:0a:99:1d:65: d1:93:8d:6d:a0:d8:c0:49:1d:91:3a:45:5e:ed:72: a2:6b:57:d5:b3:c8:c6:66:7b:6a:7d:32:8b:3b:2a: 21:3e:77:98:d3:75:d9:84:d5:fb:85:bf:ad:28:1d: e9:b7:12:54:a4:28:f1:5a:a3:0c:73:9c:db:91:01: 2e:6f:a9:4a:6a:50:d7:c1:cf:5e:97:d5:8e:64:6d: 58:47:e7:05:a2:74:0e:39:30:1e:34:56:ad:1b:a4: 80:c8:a3:8c:6e:ec:56:f5:19:50:c7:b7:48:c7:aa: 88:98:9e:df:08:78:d8:18:89:09:eb:d5:dd:e8:12: 14:be:67:29:f9:e7:1f:fd:9c:65:cc:15:fd:e5:45: f6:1b:a3:38:83:54:98:d9:80:84:f1:af:fe:3a:f8: bf:a3:35:24:51:68:e3:fa:db:0a:c9:3b:7f:d9:e4: 06:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F0:28:C1:19:60:C4:F6:A2:BC:85:43:63:A9:A2:75:53:F7:76:F2 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32342e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.68.24.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:2f:fa:86:e3:9a:d5:60:c6:b1:6e:8e:45:df:ec:24:7d:92: 9d:bb:3a:dc:63:dc:6c:84:0c:e9:b2:97:9f:50:66:a3:17:3c: 58:57:bd:3a:e9:18:06:25:ad:42:89:03:9c:94:74:e1:e9:f3: 11:b8:0b:74:14:92:4e:64:02:2c:30:1f:84:6c:35:61:ec:61: fc:62:e4:39:22:e5:e9:39:f7:55:1b:43:51:e6:45:1c:33:15: 17:dc:38:fd:cc:7c:9f:3d:2c:93:52:be:a8:e8:8a:ce:07:cf: a6:61:88:85:e6:d4:3c:c0:f6:a7:49:9f:6c:a9:81:56:c0:42: 37:71:f3:d3:29:a5:b8:99:34:cd:08:1e:1a:b9:6a:77:0d:89: 87:51:04:0f:1d:5b:57:dd:f5:e3:e1:6e:c8:ba:b5:be:15:7f: 7e:b4:e3:ec:64:79:91:2e:a9:ae:65:bb:c7:3f:d6:74:de:b3: d5:e6:f8:b7:30:93:ab:f4:3e:0f:91:68:a7:b5:70:4f:4f:21: 44:dd:ef:fd:d4:3f:3f:fa:50:1d:6b:08:7d:63:25:26:a6:9d: 3e:9b:fe:0f:63:31:51:48:1d:d6:19:a6:4b:07:82:4c:59:9c: 15:ec:cd:62:94:4d:0e:e7:28:16:75:a1:d1:40:11:36:c6:ad: fc:39:e8:93 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG45LTvS7cKkyUT8T9CiGuf1KMF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzVaFw0yNzA1MDIwMjU5MzVaMDMxMTAvBgNV BAMTKEQ0RjAyOEMxMTk2MEM0RjZBMkJDODU0MzYzQTlBMjc1NTNGNzc2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClEUIskt8yAwYRySMW9sHExrlm ytrzlc9OUE6CVzfGUK7LDV3bkl3teJGdZfUQOGWkVf9lmTiDY3YtBoG3GVxamITz 4wItS16veDlC9VvBSjg3a+a6CpkdZdGTjW2g2MBJHZE6RV7tcqJrV9WzyMZme2p9 Mos7KiE+d5jTddmE1fuFv60oHem3ElSkKPFaowxznNuRAS5vqUpqUNfBz16X1Y5k bVhH5wWidA45MB40Vq0bpIDIo4xu7Fb1GVDHt0jHqoiYnt8IeNgYiQnr1d3oEhS+ Zyn55x/9nGXMFf3lRfYboziDVJjZgITxr/46+L+jNSRRaOP62wrJO3/Z5AZRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1PAowRlgxPaivIVDY6midVP3dvIwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzMTJlMzYzODJlMzIzNDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANvRBgwDQYJKoZIhvcN AQELBQADggEBAH4v+objmtVgxrFujkXf7CR9kp27Otxj3GyEDOmyl59QZqMXPFhX vTrpGAYlrUKJA5yUdOHp8xG4C3QUkk5kAiwwH4RsNWHsYfxi5Dki5ek591UbQ1Hm RRwzFRfcOP3MfJ89LJNSvqjois4Hz6ZhiIXm1DzA9qdJn2ypgVbAQjdx89MppbiZ NM0IHhq5ancNiYdRBA8dW1fd9ePhbsi6tb4Vf3604+xkeZEuqa5lu8c/1nTes9Xm +Lcwk6v0Pg+RaKe1cE9PIUTd7/3UPz/6UB1rCH1jJSamnT6b/g9jMVFIHdYZpksH gkxZnBXszWKUTQ7nKBZ1odFAETbGrfw56JM= -----END CERTIFICATE-----Generated at Wed May 13 00:34:31 2026 by rpki-client