$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130362e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: EBKeTc+pe/I/IZM4dPRmF8QsdTIf1ZO1Qbi6i9KaZgA= Subject key identifier: B8:E6:D5:B9:50:CE:B7:A5:14:8F:5C:94:AA:7C:82:EE:C4:F9:AC:AE Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 0716367220A24B732C06D77B69CC1B11FE9B5210 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32332d3233203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:55 +0000 ROA not before: Sun 03 May 2026 03:03:55 +0000 ROA not after: Sun 02 May 2027 03:08:55 +0000 asID: 24525 IP address blocks: 114.199.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:16:36:72:20:a2:4b:73:2c:06:d7:7b:69:cc:1b:11:fe:9b:52:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:55 2026 GMT Not After : May 2 03:08:55 2027 GMT Subject: CN=B8E6D5B950CEB7A5148F5C94AA7C82EEC4F9ACAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:ff:bd:cb:a2:20:5e:a7:b4:1e:86:83:3e: 35:41:c4:34:a9:79:17:7d:d0:30:b9:d1:41:6d:3b: 27:43:5c:6f:0a:42:38:4b:5e:25:98:4d:5b:50:ef: 17:02:3a:dd:f3:64:8c:b3:3f:f6:89:7e:c2:32:e4: 30:be:78:2c:e9:ef:87:3a:57:0d:6e:e7:72:3f:91: c7:a9:55:43:f9:24:54:b2:52:49:96:4c:16:40:4a: 0a:e4:ba:a2:7c:cf:65:fc:f6:95:47:da:12:71:30: 01:12:90:86:23:c9:d6:4d:8f:04:7c:7a:8b:31:9e: 23:cc:f6:b7:9c:80:ec:73:39:f1:d8:78:08:85:36: 2d:76:bd:ba:38:7d:13:fa:0e:ac:1e:ed:cb:57:fa: 42:a9:b8:19:cc:b7:d2:f9:5d:80:36:ef:62:e9:1b: a1:7c:78:a4:70:cc:2c:7e:5f:80:60:d3:b6:9e:79: 58:55:df:78:26:88:d1:fc:47:5f:33:15:77:55:c0: 5d:c9:12:88:74:19:38:99:29:fa:be:d2:40:8f:da: cb:a0:e7:15:3c:14:55:c3:c6:f9:b1:b7:94:a0:dd: e5:e3:85:1b:df:32:47:6d:81:20:62:c1:e4:0e:c2: 92:29:50:b4:10:bb:67:63:d1:f2:de:fd:bf:8c:d3: f7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E6:D5:B9:50:CE:B7:A5:14:8F:5C:94:AA:7C:82:EE:C4:F9:AC:AE X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130362e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.106.0/23 Signature Algorithm: sha256WithRSAEncryption 16:67:7d:bb:63:21:7b:3f:e8:5c:ab:40:bb:72:85:e4:81:7a: ff:55:b9:4b:77:82:00:3a:59:0e:3e:5a:e3:e6:9d:0e:b1:4d: 9d:79:4d:d1:24:0b:1e:d1:fb:95:d5:9f:0c:e5:70:c5:17:ab: 2c:32:b7:13:13:be:7f:11:2f:03:c9:c3:77:73:a0:26:49:e2: a6:69:22:c0:43:6a:cb:3d:08:0b:5e:0a:ab:68:30:97:13:25: ea:72:1a:20:f5:3d:d9:86:b1:c9:a5:35:00:6c:a1:6d:21:6c: 32:90:f4:c6:ec:77:48:b2:6b:ee:41:a2:55:64:11:c5:27:22: 6c:f7:de:22:2a:0c:bd:d8:b7:c5:b4:b7:62:ee:d7:53:35:97: 46:21:10:97:18:fc:7a:24:3a:56:dd:90:6a:bf:72:d7:2d:88: d6:3f:9b:04:f5:7d:6b:0b:7d:90:49:13:2b:de:ec:8f:ee:60: 98:2e:39:17:05:7b:44:e0:72:e1:5a:8d:58:d5:48:9b:7a:6f: 12:d6:0a:1f:be:2b:eb:a0:a6:19:4e:86:11:f0:66:0d:a5:87: 8f:45:d0:42:11:54:26:ed:c7:7e:e3:73:45:92:0e:f4:45:e0: a6:fd:74:19:93:08:87:fd:55:72:b1:a9:5e:12:d4:e0:d5:e8: c7:8e:2d:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBxY2ciCiS3MsBtd7acwbEf6bUhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTVaFw0yNzA1MDIwMzA4NTVaMDMxMTAvBgNV BAMTKEI4RTZENUI5NTBDRUI3QTUxNDhGNUM5NEFBN0M4MkVFQzRGOUFDQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClq/+9y6IgXqe0HoaDPjVBxDSp eRd90DC50UFtOydDXG8KQjhLXiWYTVtQ7xcCOt3zZIyzP/aJfsIy5DC+eCzp74c6 Vw1u53I/kcepVUP5JFSyUkmWTBZASgrkuqJ8z2X89pVH2hJxMAESkIYjydZNjwR8 eosxniPM9recgOxzOfHYeAiFNi12vbo4fRP6Dqwe7ctX+kKpuBnMt9L5XYA272Lp G6F8eKRwzCx+X4Bg07aeeVhV33gmiNH8R18zFXdVwF3JEoh0GTiZKfq+0kCP2sug 5xU8FFXDxvmxt5Sg3eXjhRvfMkdtgSBiweQOwpIpULQQu2dj0fLe/b+M0/dpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuObVuVDOt6UUj1yUqnyC7sT5rK4wHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdqMA0GCSqG SIb3DQEBCwUAA4IBAQAWZ327YyF7P+hcq0C7coXkgXr/VblLd4IAOlkOPlrj5p0O sU2deU3RJAse0fuV1Z8M5XDFF6ssMrcTE75/ES8DycN3c6AmSeKmaSLAQ2rLPQgL XgqraDCXEyXqchog9T3ZhrHJpTUAbKFtIWwykPTG7HdIsmvuQaJVZBHFJyJs994i Kgy92LfFtLdi7tdTNZdGIRCXGPx6JDpW3ZBqv3LXLYjWP5sE9X1rC32QSRMr3uyP 7mCYLjkXBXtE4HLhWo1Y1Uibem8S1gofvivroKYZToYR8GYNpYePRdBCEVQm7cd+ 43NFkg70ReCm/XQZkwiH/VVysaleEtTg1ejHji12 -----END CERTIFICATE-----Generated at Wed May 13 02:26:43 2026 by rpki-client