$ rpki-client -vvf rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39322e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e39322e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: 81ry6DUJ7vS8X5kvVlKujeT3BQmxdahLH8ZK0O09vk0= Subject key identifier: 78:23:DA:79:86:D0:B4:C1:A1:76:FE:BA:F2:46:67:FA:AB:10:E7:FA Certificate issuer: /CN=38D72675FCFA53571947E587993417F0A2E84774 Certificate serial: 6D6CFB7736A76138B49418A05411E45CF1B55ABB Authority key identifier: 38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39322e302f32342d3234203d3e203338373733.roa Signing time: Sun 03 May 2026 03:05:57 +0000 ROA not before: Sun 03 May 2026 03:00:57 +0000 ROA not after: Sun 02 May 2027 03:05:57 +0000 asID: 38773 IP address blocks: 114.141.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:6c:fb:77:36:a7:61:38:b4:94:18:a0:54:11:e4:5c:f1:b5:5a:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38D72675FCFA53571947E587993417F0A2E84774 Validity Not Before: May 3 03:00:57 2026 GMT Not After : May 2 03:05:57 2027 GMT Subject: CN=7823DA7986D0B4C1A176FEBAF24667FAAB10E7FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:2d:89:a0:dc:0e:2c:d3:78:46:a9:61:0a: 31:bc:11:5e:86:5c:8e:ab:b2:36:b7:2e:d6:65:2c: 62:8f:7d:e6:d5:94:7f:62:ff:33:8b:8c:15:f3:0e: d7:38:51:82:cb:22:d7:19:cc:97:25:36:69:cf:6e: 61:1e:64:41:dc:50:e9:05:4c:ce:db:0e:67:a9:9c: de:6d:27:0a:2a:6f:05:b0:e4:ff:13:46:ac:69:f8: c4:3b:3f:52:77:44:14:59:16:fd:31:ff:17:08:4a: 81:63:cb:4f:7e:d8:be:45:f1:08:de:4e:fd:86:60: 93:ea:12:e4:ed:1c:ee:03:97:10:68:fe:fe:06:50: 65:1a:96:1e:a3:75:dc:dc:27:ad:a5:53:78:74:ec: 93:5a:72:f9:22:54:54:2e:13:b3:59:8e:b0:9e:47: 81:ef:41:e8:d8:fd:8e:3c:15:47:fa:b0:d5:a6:d5: 7c:44:96:c3:a5:e2:7c:36:a2:2d:d8:10:40:0d:2d: 0c:13:c2:34:d0:f2:99:49:01:8f:85:94:b4:b3:9a: 54:40:c6:08:47:95:a3:5e:d8:96:62:fb:1c:c1:7d: b8:cf:15:d7:fe:28:d4:1e:d1:f7:d0:dc:ae:68:c0: 77:0d:df:47:3b:ac:54:3e:80:d6:ef:46:85:66:dc: d8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:23:DA:79:86:D0:B4:C1:A1:76:FE:BA:F2:46:67:FA:AB:10:E7:FA X509v3 Authority Key Identifier: keyid:38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39322e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.92.0/24 Signature Algorithm: sha256WithRSAEncryption 52:db:26:5e:60:01:00:6d:b4:c4:2b:96:e9:e8:80:53:2e:88: bd:7e:44:fb:0b:84:f2:83:db:dc:bb:e8:bd:b1:62:1a:fc:42: 00:b6:f1:97:7a:a4:65:cd:3b:49:db:13:c7:5a:b4:61:d9:ed: 35:75:6e:91:5b:c2:ab:53:58:38:ba:40:bf:77:d4:45:0c:d1: 51:a5:f8:ab:11:f0:f3:1e:61:8c:d9:45:48:c9:b8:95:15:32: 84:c1:99:91:31:a2:c2:f0:2e:12:c4:63:c1:67:00:9d:8d:55: 67:ac:c8:ef:dc:e1:2d:15:cf:f4:a3:13:52:cf:6b:51:74:c9: cf:75:8d:4f:51:18:69:08:5c:86:60:e0:d4:5a:ea:ec:3f:d0: ca:93:b6:5c:2a:0c:78:aa:98:4b:c6:d8:66:15:ef:1c:2a:28: ba:2c:49:81:a7:ab:17:c9:63:3d:8e:7f:b8:54:d5:63:dc:c4: db:9f:cc:77:0d:79:8b:b0:29:ff:a7:88:ac:27:da:e9:14:9e: 36:d2:bc:47:b5:56:5e:5b:ce:ba:ec:a5:ba:2a:87:65:14:b2: cd:e1:2c:4f:b8:df:6b:e0:b1:e0:8e:d1:02:bd:97:e1:45:f2: 57:b1:01:d2:bb:6c:58:35:a4:40:59:71:d1:bb:28:a7:b2:24: bf:95:cd:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbWz7dzanYTi0lBigVBHkXPG1WrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhENzI2NzVGQ0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBB MkU4NDc3NDAeFw0yNjA1MDMwMzAwNTdaFw0yNzA1MDIwMzA1NTdaMDMxMTAvBgNV BAMTKDc4MjNEQTc5ODZEMEI0QzFBMTc2RkVCQUYyNDY2N0ZBQUIxMEU3RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqi2JoNwOLNN4RqlhCjG8EV6G XI6rsja3LtZlLGKPfebVlH9i/zOLjBXzDtc4UYLLItcZzJclNmnPbmEeZEHcUOkF TM7bDmepnN5tJwoqbwWw5P8TRqxp+MQ7P1J3RBRZFv0x/xcISoFjy09+2L5F8Qje Tv2GYJPqEuTtHO4DlxBo/v4GUGUalh6jddzcJ62lU3h07JNacvkiVFQuE7NZjrCe R4HvQejY/Y48FUf6sNWm1XxElsOl4nw2oi3YEEANLQwTwjTQ8plJAY+FlLSzmlRA xghHlaNe2JZi+xzBfbjPFdf+KNQe0ffQ3K5owHcN30c7rFQ+gNbvRoVm3Ng5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeCPaeYbQtMGhdv668kZn+qsQ5/owHwYDVR0j BBgwFoAUONcmdfz6U1cZR+WHmTQX8KLoR3QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzdmYzU0ZmItNzI0ZS00MzE2LWI5YmMtMWM0YjA2ZWE1N2FlLzAvMzhENzI2NzVG Q0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBBMkU4NDc3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEQ3MjY3NUZDRkE1MzU3MTk0N0U1ODc5OTM0MTdGMEEyRTg0 Nzc0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNXDANBgkqhkiG 9w0BAQsFAAOCAQEAUtsmXmABAG20xCuW6eiAUy6IvX5E+wuE8oPb3LvovbFiGvxC ALbxl3qkZc07SdsTx1q0YdntNXVukVvCq1NYOLpAv3fURQzRUaX4qxHw8x5hjNlF SMm4lRUyhMGZkTGiwvAuEsRjwWcAnY1VZ6zI79zhLRXP9KMTUs9rUXTJz3WNT1EY aQhchmDg1Frq7D/QypO2XCoMeKqYS8bYZhXvHCoouixJgaerF8ljPY5/uFTVY9zE 25/Mdw15i7Ap/6eIrCfa6RSeNtK8R7VWXlvOuuyluiqHZRSyzeEsT7jfa+Cx4I7R Ar2X4UXyV7EB0rtsWDWkQFlx0bsop7Ikv5XN8A== -----END CERTIFICATE-----Generated at Wed May 13 00:13:49 2026 by rpki-client