$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: DXAQqwPX3O3/EbtjPAKgAQ37frJHURRa8imzWWBC/y0= Subject key identifier: 5A:88:F3:09:6E:A7:38:0C:2E:07:7C:E3:50:96:7E:3C:83:F6:8E:A7 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 38169BE743DC942C851581F647DAF5AC2ACAC00D Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:51 +0000 ROA not before: Sun 03 May 2026 03:03:51 +0000 ROA not after: Sun 02 May 2027 03:08:51 +0000 asID: 24525 IP address blocks: 114.199.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:16:9b:e7:43:dc:94:2c:85:15:81:f6:47:da:f5:ac:2a:ca:c0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:51 2026 GMT Not After : May 2 03:08:51 2027 GMT Subject: CN=5A88F3096EA7380C2E077CE350967E3C83F68EA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:73:fe:4e:c3:76:34:7b:de:32:f7:92:2d:cd: 14:93:40:69:0b:f2:bf:51:05:0d:65:a4:d5:1b:db: bf:c7:b3:ec:4a:8f:21:b0:23:c4:19:fe:57:61:76: 8a:be:3a:78:8e:17:83:0e:d2:25:bf:8f:ab:12:a2: 49:c1:a0:3f:54:01:d0:99:59:15:36:ce:b2:ac:84: 6c:f6:83:f5:1c:81:24:e1:53:c3:81:ed:30:c8:2b: f8:26:a1:35:3d:b9:7f:12:81:38:5e:5c:28:a3:df: 75:54:df:85:a3:b5:8f:34:ef:65:a5:38:76:0b:6e: 4d:86:e7:19:13:05:17:1d:eb:25:0c:52:37:3a:c9: ff:ec:2f:4b:95:f1:c7:be:3e:e3:8e:f7:30:d8:76: 39:29:ea:21:7f:2f:db:e2:69:cc:48:c2:25:bb:4e: 85:da:25:72:7d:bf:1a:4f:52:01:b1:9f:ed:9c:e1: de:b6:51:e5:40:15:ba:e9:90:43:8f:2f:f6:7c:a0: bf:e5:c3:ee:ea:75:0e:42:4c:fc:bc:11:6e:12:33: b3:ad:36:5c:2b:41:68:aa:ac:b6:ca:42:b5:b5:11: 3b:7b:31:60:01:10:c7:1f:b9:e9:b2:8c:d9:4c:17: b3:13:4c:1a:c4:f3:7f:45:4c:00:df:a6:d9:67:d4: 42:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:88:F3:09:6E:A7:38:0C:2E:07:7C:E3:50:96:7E:3C:83:F6:8E:A7 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130392e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.109.0/24 Signature Algorithm: sha256WithRSAEncryption 82:0a:25:f4:b9:92:3b:6c:2e:ce:10:c9:de:1b:28:89:88:47: df:78:02:18:5b:19:11:83:c7:9c:a9:b5:6a:59:1c:d0:e0:25: 79:b7:fb:05:2a:7e:f7:70:a1:98:29:4d:58:1f:4f:13:b6:9f: b1:a6:d1:ce:4e:fa:a1:7c:df:6f:53:1d:e4:da:06:3d:b5:d4: 8d:8e:65:e3:57:d4:e3:5f:43:61:eb:14:b4:d5:78:66:74:27: 8e:d5:7d:80:80:e0:65:f9:c6:1e:79:cd:20:60:44:9c:76:1d: e2:93:f7:58:ef:43:d3:0f:0e:bc:64:be:f2:61:cd:63:68:01: 51:d5:76:93:d1:45:df:55:5a:06:18:b6:23:75:e1:08:b5:db: 65:0d:5c:2e:e2:9a:b1:12:6e:da:89:79:21:b2:ad:bd:ea:5e: 48:bc:51:e4:5b:00:03:08:dd:cf:f1:f2:d9:46:00:c4:e1:e7: a6:72:ce:6c:64:31:76:f4:b4:79:2f:86:9d:bf:ee:75:1f:9e: d3:49:40:32:74:8f:fd:6d:0a:26:2c:53:fb:57:60:d1:47:3b: ac:bc:d0:03:ab:64:d0:be:5b:f0:9e:dc:e6:ee:7e:f0:0c:ce: 89:84:07:83:62:d0:5d:2c:1c:67:79:2b:b2:0a:10:92:48:f0: 60:4e:f5:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOBab50PclCyFFYH2R9r1rCrKwA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTFaFw0yNzA1MDIwMzA4NTFaMDMxMTAvBgNV BAMTKDVBODhGMzA5NkVBNzM4MEMyRTA3N0NFMzUwOTY3RTNDODNGNjhFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCc/5Ow3Y0e94y95ItzRSTQGkL 8r9RBQ1lpNUb27/Hs+xKjyGwI8QZ/ldhdoq+OniOF4MO0iW/j6sSoknBoD9UAdCZ WRU2zrKshGz2g/UcgSThU8OB7TDIK/gmoTU9uX8SgTheXCij33VU34WjtY8072Wl OHYLbk2G5xkTBRcd6yUMUjc6yf/sL0uV8ce+PuOO9zDYdjkp6iF/L9viacxIwiW7 ToXaJXJ9vxpPUgGxn+2c4d62UeVAFbrpkEOPL/Z8oL/lw+7qdQ5CTPy8EW4SM7Ot NlwrQWiqrLbKQrW1ETt7MWABEMcfuemyjNlMF7MTTBrE839FTADfptln1ELfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWojzCW6nOAwuB3zjUJZ+PIP2jqcwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsdtMA0GCSqG SIb3DQEBCwUAA4IBAQCCCiX0uZI7bC7OEMneGyiJiEffeAIYWxkRg8ecqbVqWRzQ 4CV5t/sFKn73cKGYKU1YH08Ttp+xptHOTvqhfN9vUx3k2gY9tdSNjmXjV9TjX0Nh 6xS01XhmdCeO1X2AgOBl+cYeec0gYEScdh3ik/dY70PTDw68ZL7yYc1jaAFR1XaT 0UXfVVoGGLYjdeEItdtlDVwu4pqxEm7aiXkhsq296l5IvFHkWwADCN3P8fLZRgDE 4eemcs5sZDF29LR5L4adv+51H57TSUAydI/9bQomLFP7V2DRRzusvNADq2TQvlvw ntzm7n7wDM6JhAeDYtBdLBxneSuyChCSSPBgTvUQ -----END CERTIFICATE-----Generated at Wed May 13 04:48:02 2026 by rpki-client