$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: 2lss3nSMi02TN1ZODe9e2D7bLUPRevKlz6TgyqTjJQQ= Subject key identifier: D2:F6:2D:8F:45:6D:B8:47:F4:69:A1:49:04:B6:AE:4B:EA:07:1C:58 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 48C7402E8A239C4E975A12647A76D915CE9F5DB9 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:50 +0000 ROA not before: Sun 03 May 2026 03:03:50 +0000 ROA not after: Sun 02 May 2027 03:08:50 +0000 asID: 24525 IP address blocks: 114.199.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c7:40:2e:8a:23:9c:4e:97:5a:12:64:7a:76:d9:15:ce:9f:5d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:50 2026 GMT Not After : May 2 03:08:50 2027 GMT Subject: CN=D2F62D8F456DB847F469A14904B6AE4BEA071C58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b3:e0:8d:44:32:6e:4c:67:82:60:c3:73:bc: c2:2f:fc:6d:d2:40:db:50:79:b5:ee:a4:69:98:86: 50:1a:fc:46:96:9e:60:cb:fa:ef:db:40:47:f3:98: 2b:35:67:7a:e1:f1:04:03:c7:d4:79:48:12:86:16: ee:8c:cc:08:1b:06:26:c3:a3:e8:c5:c5:73:e5:ee: fd:e5:c4:35:ae:36:ad:4a:ed:5d:4d:db:dc:c0:b0: f0:02:da:31:1e:ac:c4:30:43:19:75:54:cd:db:28: f9:77:bc:3d:21:21:6b:e2:d6:12:e0:a1:d2:fa:cd: 9f:a5:67:d0:50:7b:26:9f:0b:8c:91:65:37:8b:d1: 44:3c:c0:71:55:96:32:70:25:d3:87:34:4f:bd:0b: 66:35:9c:ee:df:a5:63:3d:3d:35:7f:ec:3a:db:ba: df:bd:49:c5:3b:75:e3:35:49:e6:66:2b:d5:88:9d: e9:a8:24:da:2f:7f:d3:ad:3a:15:1d:dd:30:03:3f: df:81:aa:c3:0f:59:ab:e9:94:1a:83:66:a5:7d:0a: f3:ad:f9:74:eb:b6:09:6c:d7:f5:9f:aa:cc:28:9a: 1a:5a:36:6f:66:34:49:ba:98:3c:bb:c7:39:a7:3d: ae:7b:4c:82:0c:83:f0:63:e4:91:a9:ff:d6:5e:75: 2e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F6:2D:8F:45:6D:B8:47:F4:69:A1:49:04:B6:AE:4B:EA:07:1C:58 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/22 Signature Algorithm: sha256WithRSAEncryption bc:7f:78:62:c0:80:97:f8:9e:e2:12:49:c1:75:c5:d7:f1:0f: bf:8b:a5:84:b0:16:3f:5c:72:ea:d1:7d:94:5d:5e:d8:54:83: 19:c1:a8:78:34:6f:d9:fb:3e:bb:f4:8b:9d:10:c2:7a:ec:ea: 5c:b4:ac:92:b5:cd:9f:74:e8:5e:31:8f:2d:17:31:f8:e1:e8: 8b:fe:f3:50:0b:75:b4:c3:a7:96:0f:7f:97:4b:54:84:30:de: 43:f4:9b:23:32:fd:82:43:5c:6d:a1:43:87:34:c1:d0:6e:a0: 69:6b:60:42:87:10:4f:cc:8f:b9:61:b3:75:4f:6c:37:cf:51: 19:1f:05:62:25:36:64:17:f5:81:67:d8:76:4c:9d:ef:7f:12: b0:99:49:96:4b:e6:00:92:27:30:fd:9d:a6:1e:a5:7d:9c:4b: a5:87:d3:b5:87:eb:74:b4:d7:58:ee:c5:ff:87:33:c4:1a:8b: 5e:a6:be:02:ed:e8:cd:48:a1:78:44:ed:65:bc:c1:26:9b:9c: 18:ac:23:a1:3d:c8:07:57:6b:40:91:e2:83:f1:35:4e:a9:fe: db:37:3f:88:ba:7b:b7:a4:48:3e:1d:2b:c1:e4:36:71:69:3c: b6:1e:92:de:e5:7b:8f:bb:d6:e0:67:b5:69:dd:14:63:5a:72: c9:6e:70:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSMdALoojnE6XWhJkenbZFc6fXbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTBaFw0yNzA1MDIwMzA4NTBaMDMxMTAvBgNV BAMTKEQyRjYyRDhGNDU2REI4NDdGNDY5QTE0OTA0QjZBRTRCRUEwNzFDNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1s+CNRDJuTGeCYMNzvMIv/G3S QNtQebXupGmYhlAa/EaWnmDL+u/bQEfzmCs1Z3rh8QQDx9R5SBKGFu6MzAgbBibD o+jFxXPl7v3lxDWuNq1K7V1N29zAsPAC2jEerMQwQxl1VM3bKPl3vD0hIWvi1hLg odL6zZ+lZ9BQeyafC4yRZTeL0UQ8wHFVljJwJdOHNE+9C2Y1nO7fpWM9PTV/7Drb ut+9ScU7deM1SeZmK9WInemoJNovf9OtOhUd3TADP9+BqsMPWavplBqDZqV9CvOt +XTrtgls1/WfqswomhpaNm9mNEm6mDy7xzmnPa57TIIMg/Bj5JGp/9ZedS5/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0vYtj0VtuEf0aaFJBLauS+oHHFgwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQC8f3hiwICX+J7iEknBdcXX8Q+/i6WEsBY/XHLq0X2UXV7Y VIMZwah4NG/Z+z679IudEMJ67OpctKyStc2fdOheMY8tFzH44eiL/vNQC3W0w6eW D3+XS1SEMN5D9JsjMv2CQ1xtoUOHNMHQbqBpa2BChxBPzI+5YbN1T2w3z1EZHwVi JTZkF/WBZ9h2TJ3vfxKwmUmWS+YAkicw/Z2mHqV9nEulh9O1h+t0tNdY7sX/hzPE Gotepr4C7ejNSKF4RO1lvMEmm5wYrCOhPcgHV2tAkeKD8TVOqf7bNz+Iunu3pEg+ HSvB5DZxaTy2HpLe5XuPu9bgZ7Vp3RRjWnLJbnDg -----END CERTIFICATE-----Generated at Wed May 13 04:26:12 2026 by rpki-client