$ rpki-client -vvf rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e39312e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: 4dNfe19s0fvjSguokSLbqrRLsnLRnuoEvEhmGuqBlvY= Subject key identifier: 95:DD:79:BE:A6:2A:D4:97:78:30:20:6A:76:C9:A9:06:FA:08:FB:FC Certificate issuer: /CN=38D72675FCFA53571947E587993417F0A2E84774 Certificate serial: 1EE9801155FCD04622B20EF7F125B2DAA157CD3D Authority key identifier: 38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa Signing time: Sun 03 May 2026 03:05:55 +0000 ROA not before: Sun 03 May 2026 03:00:55 +0000 ROA not after: Sun 02 May 2027 03:05:55 +0000 asID: 38773 IP address blocks: 114.141.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e9:80:11:55:fc:d0:46:22:b2:0e:f7:f1:25:b2:da:a1:57:cd:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38D72675FCFA53571947E587993417F0A2E84774 Validity Not Before: May 3 03:00:55 2026 GMT Not After : May 2 03:05:55 2027 GMT Subject: CN=95DD79BEA62AD4977830206A76C9A906FA08FBFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:f4:5d:ee:8b:d4:12:80:41:33:a3:31:2c: d9:ce:6f:03:3c:d3:eb:52:fa:2c:6a:fd:07:32:cb: 27:0b:42:45:05:91:55:f8:a6:97:62:be:44:d7:22: 51:c8:94:ac:2c:0f:9d:bf:0d:07:da:80:27:cc:7e: 87:73:a7:50:92:ee:0c:53:13:3d:98:c4:1f:a2:83: c7:a6:b4:fa:3e:c5:06:30:6a:9a:65:54:2b:f6:71: 5a:f4:2c:db:98:09:fc:a6:00:68:ad:33:b7:44:10: 69:9f:43:8c:69:23:77:80:c1:93:ec:65:63:46:22: d2:78:50:94:ee:ec:bd:6e:14:47:5c:41:fd:30:3e: ff:7d:db:73:5b:d3:c1:a2:80:8c:83:2f:b2:eb:29: 77:72:3c:8d:e4:3f:19:0d:78:76:a1:d3:99:5a:c2: 7e:90:1a:3e:c6:b8:e1:10:c2:56:a0:01:38:48:e6: bf:67:28:da:30:04:06:f0:f2:89:96:ac:46:6d:3e: 90:24:88:1d:19:a8:69:cc:cb:8c:c2:9d:6f:18:5d: 74:80:5f:3b:04:1e:83:f3:7c:3f:87:8c:45:13:8e: 98:2b:21:fa:19:98:b6:21:39:1d:4d:c4:d7:64:26: 59:81:ef:b6:ee:3f:45:43:b4:c7:25:bb:e5:05:84: b0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DD:79:BE:A6:2A:D4:97:78:30:20:6A:76:C9:A9:06:FA:08:FB:FC X509v3 Authority Key Identifier: keyid:38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.91.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:7d:8f:ec:80:bc:c7:15:90:a4:95:5d:22:c6:e6:48:8c:7c: 69:2e:c5:6f:36:be:e1:a8:79:07:30:61:8c:b0:48:c2:48:ef: 81:1a:78:0f:a9:98:c3:80:6c:e2:47:1a:52:0d:4f:4d:b0:ff: da:09:4e:eb:5b:0c:cb:ed:a2:14:23:5f:4c:d6:5c:42:7c:a1: 45:a5:9a:ab:64:11:91:b9:72:95:2f:91:3e:ff:fe:cb:c1:fc: 88:6a:36:6f:c1:10:e4:61:b6:b2:4a:a7:7c:30:3e:9a:21:44: da:c8:4f:2c:80:85:0f:bb:01:f2:f1:85:16:8b:18:a6:88:c6: dc:ec:3a:45:bb:33:69:45:97:88:3b:f9:c2:64:09:fb:a2:92: 8e:30:5f:9d:01:c3:e3:f1:1d:1c:f5:ec:bb:36:30:4a:6f:45: 52:b6:d7:ad:aa:85:7f:3a:ed:08:93:29:7c:b1:ac:ff:b0:8e: e1:3f:fb:c2:96:cf:f9:c1:4b:06:23:f2:6c:75:34:a7:33:e6: 14:78:31:57:bf:9b:23:59:b8:63:30:7f:44:de:4e:82:e2:46: 9b:e1:65:7e:0f:4b:d3:e7:eb:80:ba:c5:c2:97:9d:6f:dd:23: 1c:b4:44:11:e9:04:69:1a:6a:2b:d0:48:ef:2a:75:3a:7d:22: 00:43:5f:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHumAEVX80EYisg738SWy2qFXzT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhENzI2NzVGQ0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBB MkU4NDc3NDAeFw0yNjA1MDMwMzAwNTVaFw0yNzA1MDIwMzA1NTVaMDMxMTAvBgNV BAMTKDk1REQ3OUJFQTYyQUQ0OTc3ODMwMjA2QTc2QzlBOTA2RkEwOEZCRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwAPRd7ovUEoBBM6MxLNnObwM8 0+tS+ixq/QcyyycLQkUFkVX4ppdivkTXIlHIlKwsD52/DQfagCfMfodzp1CS7gxT Ez2YxB+ig8emtPo+xQYwapplVCv2cVr0LNuYCfymAGitM7dEEGmfQ4xpI3eAwZPs ZWNGItJ4UJTu7L1uFEdcQf0wPv9923Nb08GigIyDL7LrKXdyPI3kPxkNeHah05la wn6QGj7GuOEQwlagAThI5r9nKNowBAbw8omWrEZtPpAkiB0ZqGnMy4zCnW8YXXSA XzsEHoPzfD+HjEUTjpgrIfoZmLYhOR1NxNdkJlmB77buP0VDtMclu+UFhLC5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUld15vqYq1Jd4MCBqdsmpBvoI+/wwHwYDVR0j BBgwFoAUONcmdfz6U1cZR+WHmTQX8KLoR3QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzdmYzU0ZmItNzI0ZS00MzE2LWI5YmMtMWM0YjA2ZWE1N2FlLzAvMzhENzI2NzVG Q0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBBMkU4NDc3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEQ3MjY3NUZDRkE1MzU3MTk0N0U1ODc5OTM0MTdGMEEyRTg0 Nzc0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNWzANBgkqhkiG 9w0BAQsFAAOCAQEAjX2P7IC8xxWQpJVdIsbmSIx8aS7Fbza+4ah5BzBhjLBIwkjv gRp4D6mYw4Bs4kcaUg1PTbD/2glO61sMy+2iFCNfTNZcQnyhRaWaq2QRkblylS+R Pv/+y8H8iGo2b8EQ5GG2skqnfDA+miFE2shPLICFD7sB8vGFFosYpojG3Ow6Rbsz aUWXiDv5wmQJ+6KSjjBfnQHD4/EdHPXsuzYwSm9FUrbXraqFfzrtCJMpfLGs/7CO 4T/7wpbP+cFLBiPybHU0pzPmFHgxV7+bI1m4YzB/RN5OguJGm+Flfg9L0+frgLrF wpedb90jHLREEekEaRpqK9BI7yp1On0iAENf5Q== -----END CERTIFICATE-----Generated at Wed May 13 00:44:10 2026 by rpki-client