$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa File: 3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: QIf4poWU9GclzJvfzow6rDGADrhZNDuHDpOnA1OEJJU= Subject key identifier: 48:59:D4:E6:47:19:45:42:8B:84:31:05:E1:91:8F:C7:4D:36:AA:29 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 68C881B450705659C88E17E3F53142C127606C60 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa Signing time: Sun 03 May 2026 02:59:32 +0000 ROA not before: Sun 03 May 2026 02:54:32 +0000 ROA not after: Sun 02 May 2027 02:59:32 +0000 asID: 55666 IP address blocks: 116.254.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c8:81:b4:50:70:56:59:c8:8e:17:e3:f5:31:42:c1:27:60:6c:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:32 2026 GMT Not After : May 2 02:59:32 2027 GMT Subject: CN=4859D4E6471945428B843105E1918FC74D36AA29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:89:dc:34:47:0c:e2:10:44:a4:7f:16:99:bd: 15:72:b6:a5:f8:fd:dc:bc:4b:fd:f0:97:e5:13:a9: 78:40:d7:0c:65:f1:32:4a:91:dc:51:55:7a:7e:4d: fd:29:5d:c2:c5:47:eb:26:63:aa:11:c1:02:28:90: 20:0d:89:50:9f:10:69:39:87:34:d7:93:7b:5c:7d: 4f:35:41:6b:c8:ec:73:b5:c6:98:be:a9:7a:61:b9: ee:9e:cd:d3:51:fb:af:76:d0:7a:ec:6e:c8:9c:64: e1:1e:c1:aa:5d:b4:8d:2b:2d:dd:65:bf:a1:a7:2a: 3a:a2:44:75:ae:ec:71:f5:3e:aa:f4:19:b1:2f:39: b4:93:e2:90:d6:91:02:e9:7d:c1:0c:c3:97:85:3b: 47:b3:9f:3a:37:c1:35:3c:7f:9a:ff:2a:53:5b:0e: e7:ce:f9:b3:9a:f8:18:4b:df:70:f0:4a:ba:6f:0e: c4:db:0a:1b:46:a4:b0:b8:28:ec:3b:62:4b:b9:71: 5c:30:66:16:97:f1:af:fe:0a:82:31:b7:de:27:00: 3c:4c:61:25:b4:a7:e0:5a:91:ed:06:d0:53:6d:04: e3:11:f2:af:35:8b:b8:28:ca:16:b6:64:21:61:75: ca:0f:2b:2a:b4:f0:8f:d3:29:99:5a:2d:ed:22:a2: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:59:D4:E6:47:19:45:42:8B:84:31:05:E1:91:8F:C7:4D:36:AA:29 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131362e3235342e3131322e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.112.0/21 Signature Algorithm: sha256WithRSAEncryption ac:4e:7e:8d:c2:4b:e4:e2:59:7d:da:ad:57:fe:c8:6c:01:da: 9c:4e:04:fe:0b:3b:3d:66:19:11:dd:05:4f:ad:1f:71:a7:e3: 3e:c0:29:7a:e7:ac:38:13:90:25:ee:eb:30:59:a5:25:bf:2f: 69:a7:c8:d2:8f:b5:cc:c3:84:0d:6f:7f:1e:a1:91:9c:70:30: c7:82:c4:f1:8b:c3:f7:43:fb:c4:cf:12:df:8c:b3:94:95:58: 92:5e:ba:4f:1c:74:31:cd:5f:a6:b9:27:3c:f1:f4:54:2b:48: 03:29:36:d9:3a:53:15:a3:69:ff:85:fb:be:3a:4f:81:19:53: b3:76:4a:e2:4f:ff:db:24:71:73:1e:38:91:fc:dc:bc:d3:fd: 7b:6d:60:7a:2c:9a:7d:5f:86:d3:e6:c0:b1:4a:6c:43:62:c2: 38:14:24:cf:89:01:a4:7b:ed:a1:d5:92:42:93:45:36:3c:01: cf:a7:a6:0e:29:f4:57:ee:56:3b:fa:d0:87:7f:14:52:95:33: 32:a2:cf:86:56:49:68:80:73:76:30:60:39:c2:ff:22:7a:f1: 75:28:76:4d:9a:58:96:73:b6:dc:c8:e9:e5:33:cc:b1:7a:40: 13:80:cb:8f:df:8d:e1:9e:95:4a:8c:c8:2e:77:f9:27:f1:86: 1f:89:4e:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaMiBtFBwVlnIjhfj9TFCwSdgbGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzJaFw0yNzA1MDIwMjU5MzJaMDMxMTAvBgNV BAMTKDQ4NTlENEU2NDcxOTQ1NDI4Qjg0MzEwNUUxOTE4RkM3NEQzNkFBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRidw0RwziEESkfxaZvRVytqX4 /dy8S/3wl+UTqXhA1wxl8TJKkdxRVXp+Tf0pXcLFR+smY6oRwQIokCANiVCfEGk5 hzTXk3tcfU81QWvI7HO1xpi+qXphue6ezdNR+6920HrsbsicZOEewapdtI0rLd1l v6GnKjqiRHWu7HH1Pqr0GbEvObST4pDWkQLpfcEMw5eFO0eznzo3wTU8f5r/KlNb DufO+bOa+BhL33DwSrpvDsTbChtGpLC4KOw7Yku5cVwwZhaX8a/+CoIxt94nADxM YSW0p+Bake0G0FNtBOMR8q81i7goyha2ZCFhdcoPKyq08I/TKZlaLe0iomiDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSFnU5kcZRUKLhDEF4ZGPx002qikwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzNjJlMzIzNTM0MmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdP5wMA0GCSqG SIb3DQEBCwUAA4IBAQCsTn6Nwkvk4ll92q1X/shsAdqcTgT+Czs9ZhkR3QVPrR9x p+M+wCl656w4E5Al7uswWaUlvy9pp8jSj7XMw4QNb38eoZGccDDHgsTxi8P3Q/vE zxLfjLOUlViSXrpPHHQxzV+muSc88fRUK0gDKTbZOlMVo2n/hfu+Ok+BGVOzdkri T//bJHFzHjiR/Ny80/17bWB6LJp9X4bT5sCxSmxDYsI4FCTPiQGke+2h1ZJCk0U2 PAHPp6YOKfRX7lY7+tCHfxRSlTMyos+GVklogHN2MGA5wv8ievF1KHZNmliWc7bc yOnlM8yxekATgMuP343hnpVKjMgud/kn8YYfiU7I -----END CERTIFICATE-----Generated at Wed May 13 07:36:11 2026 by rpki-client