$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: Asai8B7FSBiw8J12CmCxL5WDVe62ePoqBm3NeLVjW9k= Subject key identifier: 54:6F:B1:A2:1F:BF:1F:0C:CE:E7:59:32:17:01:ED:87:90:AE:C9:D0 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 61705AA10958558FC5968FA960170BF5D3B08C73 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:59 +0000 ROA not before: Sun 03 May 2026 03:03:59 +0000 ROA not after: Sun 02 May 2027 03:08:59 +0000 asID: 24525 IP address blocks: 114.199.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:70:5a:a1:09:58:55:8f:c5:96:8f:a9:60:17:0b:f5:d3:b0:8c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:59 2026 GMT Not After : May 2 03:08:59 2027 GMT Subject: CN=546FB1A21FBF1F0CCEE759321701ED8790AEC9D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:31:b6:9f:48:46:ab:2a:3f:15:7a:05:71: f1:6c:36:1c:78:11:39:84:a6:83:19:18:29:37:16: 65:89:83:43:6d:28:23:2b:51:a9:fa:2e:aa:3a:38: d7:12:d1:92:29:4e:8b:4b:0b:47:02:b9:8e:94:c7: a1:aa:3b:6d:0d:43:06:d5:09:41:ef:af:0e:e5:46: 63:82:39:3d:77:8c:d2:b1:a8:38:5a:c5:01:e9:20: 97:26:e9:fb:0c:68:6f:33:c4:09:8b:7d:46:8d:8a: 52:5f:39:0f:8c:e7:62:25:66:c4:bd:11:fa:a4:f4: 0f:f8:d5:8a:31:d0:72:3b:41:51:30:de:12:12:ca: d7:22:54:3f:03:37:54:a1:d5:8e:ce:b7:d3:67:69: 02:f7:19:b5:31:89:2d:3b:9a:e1:4d:7a:6c:32:ff: e7:f5:df:fb:e2:3a:97:80:24:31:12:02:a1:59:8d: 1c:1a:de:6b:a0:f0:7e:5a:d8:6f:38:33:99:cc:53: 41:d5:5b:45:e3:2c:21:54:8a:67:bb:11:a6:27:76: fc:eb:f8:52:d3:16:3f:fc:0e:fc:1c:38:66:a8:57: 0b:57:e0:eb:0e:a2:3b:77:b7:81:b1:e9:0f:49:42: f0:08:b5:9a:c3:ce:9b:92:bf:74:eb:7b:21:99:40: 70:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6F:B1:A2:1F:BF:1F:0C:CE:E7:59:32:17:01:ED:87:90:AE:C9:D0 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131322e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.112.0/21 Signature Algorithm: sha256WithRSAEncryption 23:a5:44:5d:e3:bb:35:52:a2:2b:58:71:a4:ba:8e:8d:fe:85: de:92:c7:fc:2b:98:fc:6b:05:bf:d4:f2:fb:c0:7a:b8:da:c0: 4d:15:8e:a4:6f:bd:cf:6e:18:a4:3b:e6:e9:c5:df:9a:a3:46: b3:23:ec:c1:83:c9:bd:af:c2:cb:65:b7:ad:bb:3e:cb:1e:1c: 1c:17:f8:f3:23:c1:3e:87:9f:93:fd:21:81:e5:f3:e4:36:0c: 0c:1d:48:a9:22:4a:b9:7b:94:91:b2:96:f3:49:e5:14:51:4f: 80:83:53:7a:49:ab:86:d6:4f:89:97:ac:1f:b3:e8:4f:36:bc: 3c:1e:b0:2c:ba:29:77:f6:9c:64:86:a5:aa:10:29:dd:8b:4c: cd:97:dd:b8:ce:14:04:12:f7:01:8d:2c:01:21:09:48:f9:f3: b7:92:58:51:a6:d0:d6:20:9d:19:d1:39:18:ea:f3:36:2c:17: dd:27:ab:b5:ec:0f:99:c1:e0:1b:cc:df:a3:33:6e:db:e4:ea: b8:49:96:0f:ee:cb:8f:2f:c2:ae:5b:e8:2e:4f:fe:14:27:4b: 8e:03:04:55:cc:53:2b:1d:b8:a7:df:41:81:c8:bf:6c:cf:df: 9d:0f:a0:15:84:e2:0d:dd:2d:1a:58:55:c3:a8:ba:72:af:c2: ef:ef:8b:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYXBaoQlYVY/Flo+pYBcL9dOwjHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTlaFw0yNzA1MDIwMzA4NTlaMDMxMTAvBgNV BAMTKDU0NkZCMUEyMUZCRjFGMENDRUU3NTkzMjE3MDFFRDg3OTBBRUM5RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKCjG2n0hGqyo/FXoFcfFsNhx4 ETmEpoMZGCk3FmWJg0NtKCMrUan6Lqo6ONcS0ZIpTotLC0cCuY6Ux6GqO20NQwbV CUHvrw7lRmOCOT13jNKxqDhaxQHpIJcm6fsMaG8zxAmLfUaNilJfOQ+M52IlZsS9 Efqk9A/41Yox0HI7QVEw3hISytciVD8DN1Sh1Y7Ot9NnaQL3GbUxiS07muFNemwy /+f13/viOpeAJDESAqFZjRwa3mug8H5a2G84M5nMU0HVW0XjLCFUime7EaYndvzr +FLTFj/8DvwcOGaoVwtX4OsOojt3t4Gx6Q9JQvAItZrDzpuSv3TreyGZQHDbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVG+xoh+/HwzO51kyFwHth5CuydAwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsdwMA0GCSqG SIb3DQEBCwUAA4IBAQAjpURd47s1UqIrWHGkuo6N/oXeksf8K5j8awW/1PL7wHq4 2sBNFY6kb73PbhikO+bpxd+ao0azI+zBg8m9r8LLZbetuz7LHhwcF/jzI8E+h5+T /SGB5fPkNgwMHUipIkq5e5SRspbzSeUUUU+Ag1N6SauG1k+Jl6wfs+hPNrw8HrAs uil39pxkhqWqECndi0zNl924zhQEEvcBjSwBIQlI+fO3klhRptDWIJ0Z0TkY6vM2 LBfdJ6u17A+ZweAbzN+jM27b5Oq4SZYP7suPL8KuW+guT/4UJ0uOAwRVzFMrHbin 30GByL9sz9+dD6AVhOIN3S0aWFXDqLpyr8Lv74to -----END CERTIFICATE-----Generated at Wed May 13 04:25:57 2026 by rpki-client