$ rpki-client -vvf rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: FscfLd+VmMO0VIBUn9YaLAaHtn1/p9aWzjIEPbsat1U= Subject key identifier: AC:96:60:3E:CE:0A:18:20:FF:B9:7A:20:CF:24:0C:5C:BA:36:4F:CF Certificate issuer: /CN=38D72675FCFA53571947E587993417F0A2E84774 Certificate serial: 54D2AF77CC556B0CF78045F34B2417C227884723 Authority key identifier: 38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa Signing time: Sun 03 May 2026 03:05:57 +0000 ROA not before: Sun 03 May 2026 03:00:57 +0000 ROA not after: Sun 02 May 2027 03:05:57 +0000 asID: 38773 IP address blocks: 114.141.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d2:af:77:cc:55:6b:0c:f7:80:45:f3:4b:24:17:c2:27:88:47:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38D72675FCFA53571947E587993417F0A2E84774 Validity Not Before: May 3 03:00:57 2026 GMT Not After : May 2 03:05:57 2027 GMT Subject: CN=AC96603ECE0A1820FFB97A20CF240C5CBA364FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:0b:95:53:a2:de:a9:4f:87:6f:a5:ad:4d: 58:01:36:58:9b:88:14:e5:55:fd:42:33:2a:73:fd: 20:8d:3b:d6:20:0b:f2:fb:5c:51:48:34:ac:1a:be: c9:93:71:79:0e:6f:c3:7a:1a:e6:c1:99:0d:47:2b: 96:70:f7:d4:66:99:46:75:16:81:1d:ce:4d:8c:c9: b6:11:e2:d6:66:62:f5:76:c6:8e:17:21:3c:21:60: 3c:f3:fa:65:a5:d2:40:e8:42:52:5a:46:36:06:4c: 43:88:54:74:b2:c4:90:34:f8:44:cf:9d:8e:01:07: 6e:76:00:73:8d:54:20:f1:1c:65:3e:21:5b:bf:d6: be:c1:49:a3:93:b8:d6:2b:b1:15:da:40:32:cb:ef: 19:50:65:84:5d:5d:f1:38:0f:0a:6e:dd:d8:51:ca: 70:02:8a:15:29:27:9b:cb:e2:e6:93:62:d2:db:7a: 21:38:b9:40:a0:7c:1e:05:e8:65:d5:1e:48:3b:33: c2:90:24:00:c6:8e:3e:e2:06:e8:c9:43:2e:bd:23: 87:6e:26:e3:03:c7:d0:a2:f5:7b:5c:19:85:99:fd: d1:72:88:a1:1b:a7:2d:de:60:b1:7b:33:c2:a8:ec: c8:34:2c:63:1c:c7:2b:17:4f:b0:3c:27:1e:78:df: ca:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:96:60:3E:CE:0A:18:20:FF:B9:7A:20:CF:24:0C:5C:BA:36:4F:CF X509v3 Authority Key Identifier: keyid:38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.88.0/24 Signature Algorithm: sha256WithRSAEncryption 98:7a:33:2c:40:be:c9:f5:fe:9c:21:9a:3e:7c:dd:ad:2f:32: 84:9c:1d:0b:da:01:c9:32:f4:60:7f:a7:87:70:76:a2:86:2e: 61:92:d5:34:a3:46:68:b1:9d:d1:e6:59:11:91:93:d7:ca:04: 11:2c:b8:94:ca:2e:94:3c:97:71:c3:89:0e:67:9b:91:27:a6: 3e:11:c1:70:bc:b0:a1:14:aa:4a:a6:a3:a7:c8:02:ba:c3:3a: 94:03:42:f3:75:e3:63:d9:10:05:d4:3d:de:e3:3d:7b:d2:3e: 5d:4f:7f:ee:ab:1c:a0:39:68:00:98:a3:14:45:cb:b8:33:8b: ea:7e:e7:e4:80:8f:85:5b:48:85:60:77:f1:27:c8:22:99:2a: 22:85:40:a2:0d:a5:1a:51:e3:43:5e:90:21:97:af:9f:2e:2c: 39:26:c4:2c:78:bb:ef:fc:73:86:b5:dc:ee:a4:6c:61:f3:63: 84:e4:65:0a:dc:d6:12:f1:88:d0:cb:02:7d:d7:0f:59:97:12: d4:6e:59:71:9f:e2:d1:6e:5c:9e:be:9f:9d:95:dd:1e:4d:d5: 45:96:32:76:76:fd:5f:e4:1e:75:08:0d:23:2d:7b:22:10:bd: b7:ce:63:27:c9:3f:7f:01:e9:f7:db:47:20:af:d6:c7:f8:1f: 9f:78:5d:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVNKvd8xVawz3gEXzSyQXwieIRyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhENzI2NzVGQ0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBB MkU4NDc3NDAeFw0yNjA1MDMwMzAwNTdaFw0yNzA1MDIwMzA1NTdaMDMxMTAvBgNV BAMTKEFDOTY2MDNFQ0UwQTE4MjBGRkI5N0EyMENGMjQwQzVDQkEzNjRGQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDeQuVU6LeqU+Hb6WtTVgBNlib iBTlVf1CMypz/SCNO9YgC/L7XFFINKwavsmTcXkOb8N6GubBmQ1HK5Zw99RmmUZ1 FoEdzk2MybYR4tZmYvV2xo4XITwhYDzz+mWl0kDoQlJaRjYGTEOIVHSyxJA0+ETP nY4BB252AHONVCDxHGU+IVu/1r7BSaOTuNYrsRXaQDLL7xlQZYRdXfE4Dwpu3dhR ynACihUpJ5vL4uaTYtLbeiE4uUCgfB4F6GXVHkg7M8KQJADGjj7iBujJQy69I4du JuMDx9Ci9XtcGYWZ/dFyiKEbpy3eYLF7M8Ko7Mg0LGMcxysXT7A8Jx5438rnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrJZgPs4KGCD/uXogzyQMXLo2T88wHwYDVR0j BBgwFoAUONcmdfz6U1cZR+WHmTQX8KLoR3QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzdmYzU0ZmItNzI0ZS00MzE2LWI5YmMtMWM0YjA2ZWE1N2FlLzAvMzhENzI2NzVG Q0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBBMkU4NDc3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEQ3MjY3NUZDRkE1MzU3MTk0N0U1ODc5OTM0MTdGMEEyRTg0 Nzc0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWDANBgkqhkiG 9w0BAQsFAAOCAQEAmHozLEC+yfX+nCGaPnzdrS8yhJwdC9oByTL0YH+nh3B2ooYu YZLVNKNGaLGd0eZZEZGT18oEESy4lMoulDyXccOJDmebkSemPhHBcLywoRSqSqaj p8gCusM6lANC83XjY9kQBdQ93uM9e9I+XU9/7qscoDloAJijFEXLuDOL6n7n5ICP hVtIhWB38SfIIpkqIoVAog2lGlHjQ16QIZevny4sOSbELHi77/xzhrXc7qRsYfNj hORlCtzWEvGI0MsCfdcPWZcS1G5ZcZ/i0W5cnr6fnZXdHk3VRZYydnb9X+QedQgN Iy17IhC9t85jJ8k/fwHp99tHIK/Wx/gfn3hdsA== -----END CERTIFICATE-----Generated at Wed May 13 00:20:31 2026 by rpki-client