$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e32342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 1mPl4nczlp+w37eel7U2EFwcRrSQ+oGW9pzw44ohFWs= Subject key identifier: 9D:4B:67:2A:46:DF:A2:CF:7A:CC:DD:7A:ED:36:18:6C:22:E9:3D:0D Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 1DD48A9D0ECBB6EC0C4CD0E764799FF17AFA6EE6 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:42 +0000 ROA not before: Sun 03 May 2026 02:58:42 +0000 ROA not after: Sun 02 May 2027 03:03:42 +0000 asID: 18059 IP address blocks: 122.128.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d4:8a:9d:0e:cb:b6:ec:0c:4c:d0:e7:64:79:9f:f1:7a:fa:6e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:42 2026 GMT Not After : May 2 03:03:42 2027 GMT Subject: CN=9D4B672A46DFA2CF7ACCDD7AED36186C22E93D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c7:1e:15:91:d8:23:9e:56:9b:cb:96:9b:45: 7d:f3:90:3e:b8:1c:2a:7a:a8:2a:76:bf:79:a6:49: a8:10:45:33:c7:bd:78:99:52:84:1f:4a:d7:1e:b1: c1:48:83:e6:25:fe:b1:f3:0d:a4:1d:e2:cb:c5:08: a3:16:f5:3c:0b:a1:ba:2a:2b:e3:a0:de:f9:26:f7: 31:40:70:40:f1:47:32:65:9f:71:38:03:e1:f9:7f: ec:e5:c2:43:2f:50:da:0b:d1:21:12:d6:ef:26:75: 5c:e0:3a:2a:5b:e9:51:7e:b0:b8:6a:3e:a8:cd:e9: 40:02:41:28:24:7d:7f:87:e8:a9:9e:18:3e:7e:3d: c9:93:86:a0:3b:7e:df:ac:ef:78:a1:31:5a:d2:2a: 5d:13:21:8f:e6:7c:88:41:44:f5:a0:1b:3f:41:52: 35:6f:8c:02:1f:49:5e:5d:a2:b3:d6:f4:84:6f:d0: 92:37:43:dd:44:f5:b7:83:fa:dd:9a:43:f0:2b:76: f0:09:34:37:98:d8:c7:37:f2:bf:57:57:43:64:c2: c4:03:76:82:2d:36:7a:7b:c4:a1:35:77:04:2c:ca: 82:21:74:34:51:78:16:42:01:60:8d:3e:7f:3d:c3: 6e:f5:90:bf:8b:f2:38:e1:d4:16:bd:93:ce:ae:bb: e3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4B:67:2A:46:DF:A2:CF:7A:CC:DD:7A:ED:36:18:6C:22:E9:3D:0D X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.24.0/24 Signature Algorithm: sha256WithRSAEncryption 40:17:cb:f7:7e:ee:81:49:62:a6:6c:12:f8:e4:53:a2:fb:99: c0:65:47:a7:3c:0c:92:6f:79:1b:b3:d2:2e:48:4e:b2:14:c8: b8:54:ee:79:0b:95:9b:f1:09:64:8b:55:39:a2:d4:a7:86:d0: c8:b4:16:f2:e1:8d:e7:88:3d:07:2c:c3:e4:4f:fb:92:9c:f9: 15:86:73:f9:91:92:a4:37:0c:5b:bb:eb:96:52:56:e0:d0:18: 8d:c5:32:33:38:cd:62:aa:6e:61:51:6b:bd:92:58:f5:b2:4c: ce:84:43:2e:73:63:bb:4b:39:28:9f:2a:55:cb:86:c4:cc:6d: db:3f:fa:f4:6f:2d:c3:c4:70:80:af:fd:3a:ad:79:4e:35:f9: f3:92:e8:41:f9:f8:6c:23:cc:50:48:c0:cc:66:b9:41:9f:d2: cb:b9:ab:54:6c:cc:79:a0:74:a2:c7:de:20:b9:2c:bc:72:4e: 41:8d:8b:49:fa:54:d1:41:11:eb:7a:e9:7c:9c:7c:1f:ea:14: d4:c2:72:9c:c8:57:bd:91:9c:20:e4:f6:6f:68:e7:ab:f1:92: 2a:d0:cd:12:9c:4c:d8:e2:3e:7d:d9:58:a9:ac:3c:c5:68:b3: b5:0c:05:51:cb:93:75:1e:97:1d:4d:08:dc:72:40:e1:d4:13: 62:9c:9f:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHdSKnQ7LtuwMTNDnZHmf8Xr6buYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4NDJaFw0yNzA1MDIwMzAzNDJaMDMxMTAvBgNV BAMTKDlENEI2NzJBNDZERkEyQ0Y3QUNDREQ3QUVEMzYxODZDMjJFOTNEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDexx4Vkdgjnlaby5abRX3zkD64 HCp6qCp2v3mmSagQRTPHvXiZUoQfStcescFIg+Yl/rHzDaQd4svFCKMW9TwLoboq K+Og3vkm9zFAcEDxRzJln3E4A+H5f+zlwkMvUNoL0SES1u8mdVzgOipb6VF+sLhq PqjN6UACQSgkfX+H6KmeGD5+PcmThqA7ft+s73ihMVrSKl0TIY/mfIhBRPWgGz9B UjVvjAIfSV5dorPW9IRv0JI3Q91E9beD+t2aQ/ArdvAJNDeY2Mc38r9XV0NkwsQD doItNnp7xKE1dwQsyoIhdDRReBZCAWCNPn89w271kL+L8jjh1Ba9k86uu+NPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnUtnKkbfos96zN167TYYbCLpPQ0wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAGDANBgkqhkiG 9w0BAQsFAAOCAQEAQBfL937ugUlipmwS+ORTovuZwGVHpzwMkm95G7PSLkhOshTI uFTueQuVm/EJZItVOaLUp4bQyLQW8uGN54g9ByzD5E/7kpz5FYZz+ZGSpDcMW7vr llJW4NAYjcUyMzjNYqpuYVFrvZJY9bJMzoRDLnNju0s5KJ8qVcuGxMxt2z/69G8t w8RwgK/9Oq15TjX585LoQfn4bCPMUEjAzGa5QZ/Sy7mrVGzMeaB0osfeILksvHJO QY2LSfpU0UER63rpfJx8H+oU1MJynMhXvZGcIOT2b2jnq/GSKtDNEpxM2OI+fdlY qaw8xWiztQwFUcuTdR6XHU0I3HJA4dQTYpyfSw== -----END CERTIFICATE-----Generated at Wed May 13 04:02:27 2026 by rpki-client