$ rpki-client -vvf rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: 9cSUjwh9z6+6ZJ3LgshkbKPWLwwzg4ImlK/YQG0hafg= Subject key identifier: D5:D6:04:67:83:47:BA:E6:78:EB:F9:25:E5:19:B6:45:E5:12:C6:F9 Certificate issuer: /CN=0453EE44B6298E574434A213BFD59854FBBC1AC9 Certificate serial: 20162E3EE3A5F3072A2B4D35DDCB3C074A34FF54 Authority key identifier: 04:53:EE:44:B6:29:8E:57:44:34:A2:13:BF:D5:98:54:FB:BC:1A:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0453EE44B6298E574434A213BFD59854FBBC1AC9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa Signing time: Sun 03 May 2026 03:05:00 +0000 ROA not before: Sun 03 May 2026 03:00:00 +0000 ROA not after: Sun 02 May 2027 03:05:00 +0000 asID: 46032 IP address blocks: 118.151.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/0453EE44B6298E574434A213BFD59854FBBC1AC9.crl rsync://rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/0453EE44B6298E574434A213BFD59854FBBC1AC9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0453EE44B6298E574434A213BFD59854FBBC1AC9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:16:2e:3e:e3:a5:f3:07:2a:2b:4d:35:dd:cb:3c:07:4a:34:ff:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0453EE44B6298E574434A213BFD59854FBBC1AC9 Validity Not Before: May 3 03:00:00 2026 GMT Not After : May 2 03:05:00 2027 GMT Subject: CN=D5D604678347BAE678EBF925E519B645E512C6F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:f9:ee:ee:f1:5e:29:ec:7d:8d:44:57:38: 80:bc:93:60:db:93:7e:29:2c:30:fe:1e:ed:99:e0: 83:bb:d2:e5:20:24:9d:b4:16:d5:d9:c8:df:6a:31: f6:eb:f1:cb:27:f5:1c:0a:d5:0c:3d:f9:ed:40:14: fd:2d:e6:b5:0b:dc:49:e8:de:48:4b:e1:f0:9d:64: bd:e7:59:7a:9a:74:ca:10:60:37:39:a5:7e:f0:40: cf:0d:e8:44:8c:c9:4c:e5:2d:80:78:60:13:17:16: b2:86:ea:66:65:6b:01:c5:92:4c:c1:35:d3:d8:9f: 93:2d:28:2f:cf:cf:6b:d4:89:44:7b:c0:30:a5:8d: f5:d8:2f:98:98:d3:1e:4b:35:b6:8c:bb:78:42:c8: a0:bc:88:82:0c:2b:86:cf:94:09:ae:95:a8:c2:92: 9c:08:50:ba:71:a6:59:68:30:bb:15:21:74:51:54: f1:42:04:1f:c8:07:5a:3a:4e:00:b6:c8:e1:46:71: 16:90:6d:3d:0b:80:6a:03:4d:f6:75:d5:ac:55:0d: 2d:57:f0:f6:f3:41:3f:c9:3f:25:a6:5e:0a:85:cd: c6:eb:a5:60:89:fb:eb:73:1a:b7:f6:a3:df:d2:df: ef:13:d7:3a:34:de:cb:39:7e:9c:b2:98:21:7c:e7: 0d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D6:04:67:83:47:BA:E6:78:EB:F9:25:E5:19:B6:45:E5:12:C6:F9 X509v3 Authority Key Identifier: keyid:04:53:EE:44:B6:29:8E:57:44:34:A2:13:BF:D5:98:54:FB:BC:1A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/0453EE44B6298E574434A213BFD59854FBBC1AC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0453EE44B6298E574434A213BFD59854FBBC1AC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.223.0/24 Signature Algorithm: sha256WithRSAEncryption 90:df:ee:8f:21:f5:da:45:f1:a6:ea:4f:43:b9:1c:19:b3:9f: e2:e7:0c:bc:18:eb:63:ab:1a:b7:d4:22:5f:c9:02:a1:21:fd: 2b:68:83:f7:40:d1:cb:c7:cc:c6:cc:9c:10:8e:02:d9:9a:bf: 87:fe:20:34:bb:24:b9:1b:eb:3f:02:b2:ff:71:22:0c:6c:f4: 18:26:40:59:37:74:5c:18:c0:5c:ab:7a:8b:c0:f8:13:d1:f7: 1a:a0:07:12:78:a1:25:83:1d:0a:46:ff:b6:ea:61:1e:07:5c: 34:25:b5:c7:f8:74:46:f5:c3:f6:30:d7:00:bc:bc:84:ec:6a: 94:fa:70:db:f5:2f:d1:89:48:33:3c:83:7a:57:30:8c:e8:d8: 9e:74:2f:94:a0:84:f9:ae:e0:90:88:22:43:ba:80:c5:53:30: 57:cd:f9:05:46:e4:d5:d7:22:a3:1b:6b:11:3d:24:43:4c:b3: f0:15:52:53:f7:f6:e5:08:85:db:7c:b4:12:68:25:ce:1b:93: 27:8b:06:b3:d4:b0:e4:d8:f3:f1:47:d2:4e:ed:f4:c4:4c:1d: 2b:b5:69:10:4f:90:60:d8:8b:26:e7:e6:fa:7f:26:9b:ef:e5: 76:eb:26:b1:b3:77:af:90:60:bc:3f:fb:c0:62:4b:c0:62:ec: 5b:80:fb:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIBYuPuOl8wcqK0013cs8B0o0/1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQ1M0VFNDRCNjI5OEU1NzQ0MzRBMjEzQkZENTk4NTRG QkJDMUFDOTAeFw0yNjA1MDMwMzAwMDBaFw0yNzA1MDIwMzA1MDBaMDMxMTAvBgNV BAMTKEQ1RDYwNDY3ODM0N0JBRTY3OEVCRjkyNUU1MTlCNjQ1RTUxMkM2RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rfnu7vFeKex9jURXOIC8k2Db k34pLDD+Hu2Z4IO70uUgJJ20FtXZyN9qMfbr8csn9RwK1Qw9+e1AFP0t5rUL3Eno 3khL4fCdZL3nWXqadMoQYDc5pX7wQM8N6ESMyUzlLYB4YBMXFrKG6mZlawHFkkzB NdPYn5MtKC/Pz2vUiUR7wDCljfXYL5iY0x5LNbaMu3hCyKC8iIIMK4bPlAmulajC kpwIULpxplloMLsVIXRRVPFCBB/IB1o6TgC2yOFGcRaQbT0LgGoDTfZ11axVDS1X 8PbzQT/JPyWmXgqFzcbrpWCJ++tzGrf2o9/S3+8T1zo03ss5fpyymCF85w2PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1dYEZ4NHuuZ46/kl5Rm2ReUSxvkwHwYDVR0j BBgwFoAUBFPuRLYpjldENKITv9WYVPu8GskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzU3YjkwY2ItOGViZC00YzdiLThjMzEtMTMzYThiNGVkNjljLzAvMDQ1M0VFNDRC NjI5OEU1NzQ0MzRBMjEzQkZENTk4NTRGQkJDMUFDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNDUzRUU0NEI2Mjk4RTU3NDQzNEEyMTNCRkQ1OTg1NEZCQkMx QUM5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpffMA0GCSqG SIb3DQEBCwUAA4IBAQCQ3+6PIfXaRfGm6k9DuRwZs5/i5wy8GOtjqxq31CJfyQKh If0raIP3QNHLx8zGzJwQjgLZmr+H/iA0uyS5G+s/ArL/cSIMbPQYJkBZN3RcGMBc q3qLwPgT0fcaoAcSeKElgx0KRv+26mEeB1w0JbXH+HRG9cP2MNcAvLyE7GqU+nDb 9S/RiUgzPIN6VzCM6NiedC+UoIT5ruCQiCJDuoDFUzBXzfkFRuTV1yKjG2sRPSRD TLPwFVJT9/blCIXbfLQSaCXOG5Mniwaz1LDk2PPxR9JO7fTETB0rtWkQT5Bg2Ism 5+b6fyab7+V26yaxs3evkGC8P/vAYkvAYuxbgPv0 -----END CERTIFICATE-----Generated at Wed May 13 07:35:58 2026 by rpki-client