$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa File: 3131322e37382e33322e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: 36bL5os36IFga3PLdgZOx3pMjOcRY/XQz2W7KvU2LBw= Subject key identifier: 18:8C:47:71:39:B0:D2:07:72:E4:FD:BE:4E:E7:A8:B8:D3:21:62:AC Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 355A58AF37A172CAF7DBA1DAB6164C71E7D556E5 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa Signing time: Sun 03 May 2026 02:59:32 +0000 ROA not before: Sun 03 May 2026 02:54:32 +0000 ROA not after: Sun 02 May 2027 02:59:32 +0000 asID: 55666 IP address blocks: 112.78.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:5a:58:af:37:a1:72:ca:f7:db:a1:da:b6:16:4c:71:e7:d5:56:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:32 2026 GMT Not After : May 2 02:59:32 2027 GMT Subject: CN=188C477139B0D20772E4FDBE4EE7A8B8D32162AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:de:70:df:c4:d1:52:6b:a2:d6:65:fd:a2: 26:de:89:af:17:cd:17:d4:2a:05:00:1b:da:d0:01: 7a:c4:03:e4:ef:42:2c:d4:64:a0:8b:2d:f5:e3:d5: de:19:bd:12:ef:f2:5b:cf:9c:b9:31:5c:b7:52:6c: f9:6e:c3:5a:40:c5:2f:15:82:71:01:56:b5:f2:4c: 6f:68:85:18:f8:bc:81:93:ef:9a:22:13:60:6f:9c: 76:2c:87:85:53:ac:8b:1f:a5:2a:ec:9f:ee:ba:66: 7f:71:8b:c1:d2:2b:36:27:fa:7d:b3:dd:e2:d7:09: 0e:51:83:a8:a3:93:8f:f0:2a:40:70:6a:4a:d6:45: 12:1d:ea:6b:bb:e2:26:60:14:e8:ac:ad:d1:49:25: ba:56:12:e8:04:60:28:fe:87:fc:d0:fe:90:37:53: d5:59:ea:5b:ce:ef:22:e6:7e:b6:6f:66:79:41:bd: 3a:b8:6d:14:b1:b5:2f:d1:30:5a:9a:55:91:39:13: 1a:dd:b7:90:ed:20:62:b6:0f:a6:21:38:14:4f:53: 72:2b:05:38:06:6c:4b:8a:2a:6e:94:65:d0:fe:6d: ef:50:a8:f0:9a:97:67:69:09:c2:28:a5:ed:45:5d: 66:b2:a5:3e:49:b1:97:80:9a:45:ea:78:70:9d:56: 06:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8C:47:71:39:B0:D2:07:72:E4:FD:BE:4E:E7:A8:B8:D3:21:62:AC X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.78.32.0/21 Signature Algorithm: sha256WithRSAEncryption ab:87:ea:0e:85:88:db:cd:7b:6f:31:78:27:f5:0f:35:dd:ae: fa:bf:8b:1f:65:7f:20:85:11:0a:a1:1a:3e:d5:3d:90:86:41: 26:a7:d0:ff:1f:37:87:4e:00:ae:2d:82:d2:66:36:9b:b7:21: 91:f1:ce:7e:7b:da:04:c4:3d:0b:dd:4f:ed:43:cb:b0:15:99: 2b:a5:a4:92:b9:a5:66:71:13:fd:d0:5f:f0:8c:cf:28:00:34: 2d:df:4b:9a:44:67:b3:cd:37:a8:b9:94:42:20:c6:26:d3:3d: df:40:e4:0b:86:c6:e8:db:2d:c3:ef:85:73:1e:56:e6:ca:49: 70:b4:87:d9:55:49:bb:73:b4:c9:23:9e:5d:6f:f5:5f:b5:de: 56:f6:f0:e5:a1:34:1e:cc:0d:1a:d5:00:51:31:e1:ae:a8:84: c9:fa:6b:1a:d0:25:b8:a0:34:b3:08:dc:51:2e:f0:a6:97:60: 2f:65:aa:4b:0e:84:d3:92:7d:5d:fd:e4:8f:a6:8b:5f:88:cc: 41:f1:45:1e:ff:d1:b0:72:fe:70:2b:25:9a:e7:f4:b7:a2:9a: 7e:6a:22:22:07:b1:74:ed:36:1b:82:8b:c9:59:54:61:d4:a5: 19:9a:cb:2f:1d:96:e2:3e:ae:56:17:18:71:96:14:44:31:a0: fc:a9:65:b8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNVpYrzehcsr326HathZMcefVVuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzJaFw0yNzA1MDIwMjU5MzJaMDMxMTAvBgNV BAMTKDE4OEM0NzcxMzlCMEQyMDc3MkU0RkRCRTRFRTdBOEI4RDMyMTYyQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIdd5w38TRUmui1mX9oibeia8X zRfUKgUAG9rQAXrEA+TvQizUZKCLLfXj1d4ZvRLv8lvPnLkxXLdSbPluw1pAxS8V gnEBVrXyTG9ohRj4vIGT75oiE2BvnHYsh4VTrIsfpSrsn+66Zn9xi8HSKzYn+n2z 3eLXCQ5Rg6ijk4/wKkBwakrWRRId6mu74iZgFOisrdFJJbpWEugEYCj+h/zQ/pA3 U9VZ6lvO7yLmfrZvZnlBvTq4bRSxtS/RMFqaVZE5Exrdt5DtIGK2D6YhOBRPU3Ir BTgGbEuKKm6UZdD+be9QqPCal2dpCcIope1FXWaypT5JsZeAmkXqeHCdVgYfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGIxHcTmw0gdy5P2+TueouNMhYqwwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzMjJlMzczODJlMzMzMjJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANwTiAwDQYJKoZIhvcN AQELBQADggEBAKuH6g6FiNvNe28xeCf1DzXdrvq/ix9lfyCFEQqhGj7VPZCGQSan 0P8fN4dOAK4tgtJmNpu3IZHxzn572gTEPQvdT+1Dy7AVmSulpJK5pWZxE/3QX/CM zygANC3fS5pEZ7PNN6i5lEIgxibTPd9A5AuGxujbLcPvhXMeVubKSXC0h9lVSbtz tMkjnl1v9V+13lb28OWhNB7MDRrVAFEx4a6ohMn6axrQJbigNLMI3FEu8KaXYC9l qksOhNOSfV395I+mi1+IzEHxRR7/0bBy/nArJZrn9Leimn5qIiIHsXTtNhuCi8lZ VGHUpRmayy8dluI+rlYXGHGWFEQxoPypZbg= -----END CERTIFICATE-----Generated at Wed May 13 04:53:44 2026 by rpki-client