$ rpki-client -vvf rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36362e302f32342d3234203d3e20313333373939.roa File: 3132332e3130382e36362e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: 8jDBZmOFO+S+850pEsvDYW4W20r9Hsau0EHTD7knxQg= Subject key identifier: 38:E3:E3:D4:3D:73:53:AB:F9:36:70:A6:91:35:F5:07:43:57:C9:A0 Certificate issuer: /CN=51F28FDA0EA4620C617F32218CB294E10169884C Certificate serial: 57871F8929FE9C9F273B97735773EC8B55292BE7 Authority key identifier: 51:F2:8F:DA:0E:A4:62:0C:61:7F:32:21:8C:B2:94:E1:01:69:88:4C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51F28FDA0EA4620C617F32218CB294E10169884C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36362e302f32342d3234203d3e20313333373939.roa Signing time: Sun 03 May 2026 03:07:03 +0000 ROA not before: Sun 03 May 2026 03:02:03 +0000 ROA not after: Sun 02 May 2027 03:07:03 +0000 asID: 133799 IP address blocks: 123.108.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/51F28FDA0EA4620C617F32218CB294E10169884C.crl rsync://rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/51F28FDA0EA4620C617F32218CB294E10169884C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51F28FDA0EA4620C617F32218CB294E10169884C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:87:1f:89:29:fe:9c:9f:27:3b:97:73:57:73:ec:8b:55:29:2b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51F28FDA0EA4620C617F32218CB294E10169884C Validity Not Before: May 3 03:02:03 2026 GMT Not After : May 2 03:07:03 2027 GMT Subject: CN=38E3E3D43D7353ABF93670A69135F5074357C9A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:01:a3:77:8b:44:10:d0:d4:bb:59:a0:e7:64: b0:27:1e:68:7f:b5:51:81:b6:a9:3c:e8:d3:33:82: 71:72:cc:7d:e1:7a:da:34:c1:96:20:4a:9c:32:47: 11:45:cc:fd:69:2c:b8:0d:39:0d:73:51:01:94:c2: d0:14:ba:a5:46:39:19:56:94:b0:52:1c:f5:a0:c4: 37:ae:ac:60:2f:ff:07:f4:7c:38:c1:48:88:ba:9b: cd:bd:b0:ff:97:0b:8c:74:a6:7e:97:79:8a:97:6e: fe:05:fe:e4:01:6c:d0:ee:e6:68:51:23:d4:07:89: 32:92:88:6e:73:66:58:7b:e8:6b:17:be:1d:3b:04: 07:43:01:07:e7:3b:cb:ab:59:ad:b9:5b:8a:b1:40: 54:57:b8:5b:bd:13:e0:91:8b:b7:ba:77:56:57:ff: 2e:5c:b6:78:fa:e3:ad:59:d0:e0:1b:b9:d1:4d:7e: ab:bb:47:bc:16:48:c5:01:36:79:b6:ec:19:01:7e: e9:32:32:09:71:49:b6:50:75:ae:a3:87:92:72:bd: 66:6d:23:f0:a7:4e:cb:77:83:f0:b6:c5:1a:1f:54: 12:8a:40:89:0c:e3:a1:5b:c9:d5:ad:16:58:fe:36: 3e:4b:89:2f:0d:9c:56:b4:d4:cb:71:1d:aa:72:4c: da:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E3:E3:D4:3D:73:53:AB:F9:36:70:A6:91:35:F5:07:43:57:C9:A0 X509v3 Authority Key Identifier: keyid:51:F2:8F:DA:0E:A4:62:0C:61:7F:32:21:8C:B2:94:E1:01:69:88:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/51F28FDA0EA4620C617F32218CB294E10169884C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51F28FDA0EA4620C617F32218CB294E10169884C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36362e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.66.0/24 Signature Algorithm: sha256WithRSAEncryption 48:0a:55:70:b8:4d:f7:f1:92:3f:e3:28:41:26:cf:81:35:15: 5f:70:88:06:f1:e6:fb:73:70:f8:e3:53:cf:19:b1:be:7e:07: fe:d2:ec:aa:05:de:b5:81:78:1e:84:65:44:3a:08:ad:3b:45: 86:5e:ea:0d:ac:12:ac:ae:81:e0:84:81:84:4e:a6:3c:7e:f1: 75:97:9e:14:d1:ea:6a:24:c5:af:d6:36:69:d2:82:66:5c:ae: 8c:a7:11:d4:92:aa:ea:36:5c:48:af:39:4c:be:72:c1:df:67: f7:53:a4:51:04:2e:25:ec:7b:1e:db:c9:35:f0:e6:92:f4:1c: cc:53:7f:85:43:60:d5:43:30:56:c5:6b:ee:63:07:2a:6c:4e: 8e:7b:c2:9a:67:e3:0a:9d:84:c6:19:44:96:3e:78:24:a2:83: 0d:f3:56:27:1b:b2:0d:ea:ee:59:f6:1c:5d:58:c7:40:38:9e: 98:39:00:f1:d7:85:28:26:5f:57:31:06:40:ef:ac:82:64:e4: be:f4:fd:b2:00:58:78:e0:e7:7c:d4:75:8a:e0:b0:05:88:e3: db:ed:3f:f6:f6:fa:50:3c:3f:b2:b3:3b:d3:8e:b2:ba:4a:cd: 22:71:68:45:d7:7b:c2:c6:07:79:9a:48:97:27:4c:42:ac:e5: b2:07:79:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV4cfiSn+nJ8nO5dzV3Psi1UpK+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTFGMjhGREEwRUE0NjIwQzYxN0YzMjIxOENCMjk0RTEw MTY5ODg0QzAeFw0yNjA1MDMwMzAyMDNaFw0yNzA1MDIwMzA3MDNaMDMxMTAvBgNV BAMTKDM4RTNFM0Q0M0Q3MzUzQUJGOTM2NzBBNjkxMzVGNTA3NDM1N0M5QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjAaN3i0QQ0NS7WaDnZLAnHmh/ tVGBtqk86NMzgnFyzH3heto0wZYgSpwyRxFFzP1pLLgNOQ1zUQGUwtAUuqVGORlW lLBSHPWgxDeurGAv/wf0fDjBSIi6m829sP+XC4x0pn6XeYqXbv4F/uQBbNDu5mhR I9QHiTKSiG5zZlh76GsXvh07BAdDAQfnO8urWa25W4qxQFRXuFu9E+CRi7e6d1ZX /y5ctnj6461Z0OAbudFNfqu7R7wWSMUBNnm27BkBfukyMglxSbZQda6jh5JyvWZt I/CnTst3g/C2xRofVBKKQIkM46FbydWtFlj+Nj5LiS8NnFa01MtxHapyTNqzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOOPj1D1zU6v5NnCmkTX1B0NXyaAwHwYDVR0j BBgwFoAUUfKP2g6kYgxhfzIhjLKU4QFpiEwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2I2M2Y3NzEtYTk1Zi00YjUzLTg3YmMtOGJmZjUwNGRhMWY0LzAvNTFGMjhGREEw RUE0NjIwQzYxN0YzMjIxOENCMjk0RTEwMTY5ODg0Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MUYyOEZEQTBFQTQ2MjBDNjE3RjMyMjE4Q0IyOTRFMTAxNjk4 ODRDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzIzMzJlMzEzMDM4MmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAe2xCMA0GCSqG SIb3DQEBCwUAA4IBAQBIClVwuE338ZI/4yhBJs+BNRVfcIgG8eb7c3D441PPGbG+ fgf+0uyqBd61gXgehGVEOgitO0WGXuoNrBKsroHghIGETqY8fvF1l54U0epqJMWv 1jZp0oJmXK6MpxHUkqrqNlxIrzlMvnLB32f3U6RRBC4l7Hse28k18OaS9BzMU3+F Q2DVQzBWxWvuYwcqbE6Oe8KaZ+MKnYTGGUSWPngkooMN81YnG7IN6u5Z9hxdWMdA OJ6YOQDx14UoJl9XMQZA76yCZOS+9P2yAFh44Od81HWK4LAFiOPb7T/29vpQPD+y szvTjrK6Ss0icWhF13vCxgd5mkiXJ0xCrOWyB3mt -----END CERTIFICATE-----Generated at Wed May 13 12:03:02 2026 by rpki-client