$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e32362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 75crHWp3NqP+TnnKOTDz85g+I4+VHbueY2gzuAPwmDI= Subject key identifier: 77:D3:F3:19:51:42:2B:05:8B:3E:86:D1:8B:B1:56:31:99:03:58:FE Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 4A1EBDD98B14B22F3AD8D611317E8D091584A8B4 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:36 +0000 ROA not before: Sun 03 May 2026 02:58:36 +0000 ROA not after: Sun 02 May 2027 03:03:36 +0000 asID: 18059 IP address blocks: 122.128.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:1e:bd:d9:8b:14:b2:2f:3a:d8:d6:11:31:7e:8d:09:15:84:a8:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:36 2026 GMT Not After : May 2 03:03:36 2027 GMT Subject: CN=77D3F31951422B058B3E86D18BB15631990358FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3e:85:57:11:e6:a4:b8:09:00:4c:32:ee:01: 27:a3:e9:c5:a2:f2:6e:60:98:a9:b6:8a:7a:11:02: 73:51:7b:44:8c:6d:4e:94:3a:21:07:06:e4:0f:c4: b5:b7:ae:bb:c5:b5:30:1a:25:f5:24:05:92:e4:46: 5f:1d:5b:c7:ce:68:87:b3:49:12:5b:ef:1d:31:6e: 93:90:5f:95:5d:67:3f:00:0d:85:58:ba:69:48:e2: 57:22:bd:86:ee:4d:8f:a3:43:6b:0c:30:65:3a:a4: ec:06:2d:d1:2c:ef:e2:5b:7f:65:48:3c:0a:11:d5: bc:21:ef:3b:4c:7f:0f:37:df:df:c5:8f:55:dd:1b: 76:38:4e:57:2f:17:83:bd:44:53:9c:43:64:17:c4: a9:13:8a:85:95:47:a5:49:42:f3:83:14:37:80:f4: 4e:4b:da:4b:8b:61:66:67:b3:ce:8e:94:36:b1:c7: 4f:05:b0:ed:fe:6b:9f:05:44:ad:47:3d:66:fd:77: e6:d3:43:f6:54:b3:a2:7c:05:9e:36:29:81:e7:5d: 5c:49:7e:dd:70:39:a8:7b:d2:8b:b8:a6:74:97:22: 81:23:b3:3b:a2:67:82:bc:0b:17:70:b9:45:d3:5e: 2d:b4:2e:26:0c:d8:2b:26:3a:d2:f4:14:e0:19:33: ef:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D3:F3:19:51:42:2B:05:8B:3E:86:D1:8B:B1:56:31:99:03:58:FE X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.26.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a5:56:ca:c4:20:59:d8:9d:5c:e3:fb:74:4d:43:6c:39:7c: be:11:06:31:17:07:5c:b4:5e:8f:19:f8:0a:07:0e:03:b7:bc: 22:81:a2:bd:00:34:ae:c5:a0:8b:45:bc:ed:92:fc:26:35:bf: 6c:66:07:9a:7f:92:e4:43:49:f5:44:ea:fa:96:40:1a:99:eb: a3:31:1b:34:10:0c:63:37:e7:4b:fa:79:e7:85:46:f5:20:fe: d8:29:96:d6:42:42:7e:98:80:97:4a:5a:87:e4:3a:e9:44:a2: c8:f5:d4:99:55:3c:c2:ed:57:c7:3e:5c:47:92:66:35:70:5d: aa:38:9a:dc:17:8e:b3:41:74:6d:d9:13:85:af:bb:5a:46:4b: 03:c7:5c:cd:bc:1c:a3:b1:88:76:da:d6:8d:30:86:85:28:9a: f5:76:a7:cd:9c:95:ca:ce:3f:7f:f1:ce:39:bd:62:d2:29:8d: 10:41:6f:be:55:a2:55:39:38:1f:17:01:b2:03:ba:ae:59:8c: 1f:c7:09:18:f8:72:f3:27:98:f8:c6:ba:30:fe:45:d4:3d:47: 1a:8a:41:59:52:ea:db:14:25:bd:91:9c:fe:98:5d:95:e5:db: e9:64:e4:e6:7f:c1:77:f7:06:89:e2:36:1c:10:96:cb:fb:e1: 69:9f:4b:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSh692YsUsi862NYRMX6NCRWEqLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzZaFw0yNzA1MDIwMzAzMzZaMDMxMTAvBgNV BAMTKDc3RDNGMzE5NTE0MjJCMDU4QjNFODZEMThCQjE1NjMxOTkwMzU4RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8PoVXEeakuAkATDLuASej6cWi 8m5gmKm2inoRAnNRe0SMbU6UOiEHBuQPxLW3rrvFtTAaJfUkBZLkRl8dW8fOaIez SRJb7x0xbpOQX5VdZz8ADYVYumlI4lcivYbuTY+jQ2sMMGU6pOwGLdEs7+Jbf2VI PAoR1bwh7ztMfw8339/Fj1XdG3Y4TlcvF4O9RFOcQ2QXxKkTioWVR6VJQvODFDeA 9E5L2kuLYWZns86OlDaxx08FsO3+a58FRK1HPWb9d+bTQ/ZUs6J8BZ42KYHnXVxJ ft1wOah70ou4pnSXIoEjszuiZ4K8CxdwuUXTXi20LiYM2CsmOtL0FOAZM+8vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd9PzGVFCKwWLPobRi7FWMZkDWP4wHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAGjANBgkqhkiG 9w0BAQsFAAOCAQEAA6VWysQgWdidXOP7dE1DbDl8vhEGMRcHXLRejxn4CgcOA7e8 IoGivQA0rsWgi0W87ZL8JjW/bGYHmn+S5ENJ9UTq+pZAGpnrozEbNBAMYzfnS/p5 54VG9SD+2CmW1kJCfpiAl0pah+Q66USiyPXUmVU8wu1Xxz5cR5JmNXBdqjia3BeO s0F0bdkTha+7WkZLA8dczbwco7GIdtrWjTCGhSia9XanzZyVys4/f/HOOb1i0imN EEFvvlWiVTk4HxcBsgO6rlmMH8cJGPhy8yeY+Ma6MP5F1D1HGopBWVLq2xQlvZGc /phdleXb6WTk5n/Bd/cGieI2HBCWy/vhaZ9LTQ== -----END CERTIFICATE-----Generated at Wed May 13 10:36:49 2026 by rpki-client