$ rpki-client -vvf rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e203338373733.roa File: 3131342e3134312e39352e302f32342d3234203d3e203338373733.roa (raw, json) Hash identifier: BtBofw2ddLFZvd8330UeqRlGDcKEpNlQwCfV2FpF8/w= Subject key identifier: B8:42:0F:56:5C:22:3D:65:5F:FF:9E:B8:4E:F3:C3:1C:41:C4:8B:CE Certificate issuer: /CN=38D72675FCFA53571947E587993417F0A2E84774 Certificate serial: 282BD4C786CB1FED78B77AFDE923193AF2DBD269 Authority key identifier: 38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e203338373733.roa Signing time: Sun 03 May 2026 03:05:56 +0000 ROA not before: Sun 03 May 2026 03:00:56 +0000 ROA not after: Sun 02 May 2027 03:05:56 +0000 asID: 38773 IP address blocks: 114.141.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:2b:d4:c7:86:cb:1f:ed:78:b7:7a:fd:e9:23:19:3a:f2:db:d2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38D72675FCFA53571947E587993417F0A2E84774 Validity Not Before: May 3 03:00:56 2026 GMT Not After : May 2 03:05:56 2027 GMT Subject: CN=B8420F565C223D655FFF9EB84EF3C31C41C48BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:28:13:e4:a8:4c:a5:8f:87:90:23:47:05:80: 46:36:2b:8b:89:de:d8:86:87:1d:74:67:30:ce:41: de:9f:75:db:5f:9b:e0:4f:12:b1:80:0d:da:b2:d8: 8b:6f:67:b4:f4:43:cc:c6:ae:8a:c5:78:06:c7:97: ec:87:e0:f1:a9:71:9e:81:f1:4b:a5:84:2e:7c:6a: 29:fe:1c:71:9a:59:11:e5:2f:57:f3:f5:e6:1b:e0: ae:b3:69:2a:23:7a:12:66:e6:1b:76:71:f4:05:ac: 0f:5b:1d:63:61:7d:ef:49:fb:14:97:3c:bd:c8:d6: 80:30:df:03:30:1d:1e:8e:cd:27:f4:df:8e:f3:f3: 5e:c3:f4:0f:29:92:d8:8b:02:46:c7:5b:5a:5a:8d: 1e:b2:4b:ab:c2:d5:50:cf:00:c3:91:61:ba:50:95: d2:c1:24:48:05:80:bc:20:e1:0a:2e:91:68:9c:1d: 17:89:c4:a7:40:9b:4b:50:30:47:21:90:11:0a:56: 1b:b2:2f:c8:d0:e9:6a:ca:8c:10:44:c7:e6:7e:b4: 02:9a:2e:b1:6d:e3:85:71:08:13:13:d7:ff:10:70: 27:4b:51:ef:3b:ce:1e:03:4e:1d:19:c6:4d:54:00: 56:31:98:60:4e:a4:1a:70:6d:a1:2c:da:f0:9f:c0: 7e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:42:0F:56:5C:22:3D:65:5F:FF:9E:B8:4E:F3:C3:1C:41:C4:8B:CE X509v3 Authority Key Identifier: keyid:38:D7:26:75:FC:FA:53:57:19:47:E5:87:99:34:17:F0:A2:E8:47:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/38D72675FCFA53571947E587993417F0A2E84774.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/38D72675FCFA53571947E587993417F0A2E84774.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39352e302f32342d3234203d3e203338373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.141.95.0/24 Signature Algorithm: sha256WithRSAEncryption a8:54:8e:00:82:94:fe:09:19:cf:98:28:c1:05:02:06:7c:06: c3:d9:df:8f:cb:09:96:7b:9c:f0:ef:aa:39:78:82:32:80:5b: 18:93:aa:e8:f4:97:9e:22:d7:a0:41:4d:70:c6:c3:e2:02:3b: 66:3e:cd:6d:02:87:48:84:bd:49:7b:42:72:03:7d:1d:1a:dc: ad:e4:61:55:16:02:4d:5b:73:d7:fb:b7:09:f6:48:b5:46:a4: e2:2d:74:21:18:75:97:60:5d:f4:64:0b:00:82:6f:f6:e8:da: 27:ed:37:e7:a8:16:f2:32:4e:23:45:e2:1b:60:7e:f6:23:31: 27:ac:5c:67:ec:1c:10:be:62:e7:83:b4:46:94:f3:c1:fc:8b: 4e:f5:df:98:92:a0:89:d7:39:5c:9e:23:d7:61:73:77:94:20: 4e:9d:56:e7:80:1d:e7:b7:b1:bf:3c:91:21:0f:7a:e6:e0:fc: 88:ef:63:b4:79:92:c8:c2:d8:ef:b0:09:de:5e:ee:48:02:86: 93:65:b2:16:2e:b7:8b:09:e9:2e:9d:78:de:fa:bc:7c:e0:3f: 0c:1f:b7:72:91:8e:50:ae:6c:6d:0c:e9:65:10:24:2f:59:1f: cb:4d:0b:71:c9:dc:c6:54:8e:60:06:00:21:40:a9:51:a0:c9: fa:de:78:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKCvUx4bLH+14t3r96SMZOvLb0mkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhENzI2NzVGQ0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBB MkU4NDc3NDAeFw0yNjA1MDMwMzAwNTZaFw0yNzA1MDIwMzA1NTZaMDMxMTAvBgNV BAMTKEI4NDIwRjU2NUMyMjNENjU1RkZGOUVCODRFRjNDMzFDNDFDNDhCQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5KBPkqEylj4eQI0cFgEY2K4uJ 3tiGhx10ZzDOQd6fddtfm+BPErGADdqy2ItvZ7T0Q8zGrorFeAbHl+yH4PGpcZ6B 8UulhC58ain+HHGaWRHlL1fz9eYb4K6zaSojehJm5ht2cfQFrA9bHWNhfe9J+xSX PL3I1oAw3wMwHR6OzSf0347z817D9A8pktiLAkbHW1pajR6yS6vC1VDPAMORYbpQ ldLBJEgFgLwg4QoukWicHReJxKdAm0tQMEchkBEKVhuyL8jQ6WrKjBBEx+Z+tAKa LrFt44VxCBMT1/8QcCdLUe87zh4DTh0Zxk1UAFYxmGBOpBpwbaEs2vCfwH4bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuEIPVlwiPWVf/564TvPDHEHEi84wHwYDVR0j BBgwFoAUONcmdfz6U1cZR+WHmTQX8KLoR3QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzdmYzU0ZmItNzI0ZS00MzE2LWI5YmMtMWM0YjA2ZWE1N2FlLzAvMzhENzI2NzVG Q0ZBNTM1NzE5NDdFNTg3OTkzNDE3RjBBMkU4NDc3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zOEQ3MjY3NUZDRkE1MzU3MTk0N0U1ODc5OTM0MTdGMEEyRTg0 Nzc0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M3ZmM1NGZiLTcyNGUtNDMxNi1i OWJjLTFjNGIwNmVhNTdhZS8wLzMxMzEzNDJlMzEzNDMxMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHKNXzANBgkqhkiG 9w0BAQsFAAOCAQEAqFSOAIKU/gkZz5gowQUCBnwGw9nfj8sJlnuc8O+qOXiCMoBb GJOq6PSXniLXoEFNcMbD4gI7Zj7NbQKHSIS9SXtCcgN9HRrcreRhVRYCTVtz1/u3 CfZItUak4i10IRh1l2Bd9GQLAIJv9ujaJ+0356gW8jJOI0XiG2B+9iMxJ6xcZ+wc EL5i54O0RpTzwfyLTvXfmJKgidc5XJ4j12Fzd5QgTp1W54Ad57exvzyRIQ965uD8 iO9jtHmSyMLY77AJ3l7uSAKGk2WyFi63iwnpLp143vq8fOA/DB+3cpGOUK5sbQzp ZRAkL1kfy00LccncxlSOYAYAIUCpUaDJ+t54rw== -----END CERTIFICATE-----Generated at Wed May 13 00:44:23 2026 by rpki-client