$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa File: 3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: IPwMggZq7Hc2Rtcu2sXYz/eWJig5vE0cug5ZwdxGzAg= Subject key identifier: 83:23:32:33:E1:9D:75:53:5E:0A:CC:2E:CE:02:7E:30:1F:EF:8C:DA Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 6BD84AF28F66AFA05918FC692B07841CB9DFD6CE Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:57 +0000 ROA not before: Sun 03 May 2026 03:03:57 +0000 ROA not after: Sun 02 May 2027 03:08:57 +0000 asID: 24525 IP address blocks: 114.199.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d8:4a:f2:8f:66:af:a0:59:18:fc:69:2b:07:84:1c:b9:df:d6:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:57 2026 GMT Not After : May 2 03:08:57 2027 GMT Subject: CN=83233233E19D75535E0ACC2ECE027E301FEF8CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c0:f4:eb:17:91:99:fc:41:3b:35:f2:f5:ab: e5:59:ee:5e:e8:39:67:6a:7f:bf:a3:b9:2e:19:7b: 87:a7:a4:8d:f2:da:46:3f:66:d4:c1:70:51:de:56: a2:6a:81:b4:3e:bf:ac:fd:8e:d7:c3:17:47:08:28: 8f:b4:af:88:f0:56:a8:dd:26:34:01:3f:bf:bc:df: 55:40:af:c6:90:92:25:dc:47:65:ec:4a:7c:a5:ab: 71:f6:de:ee:7a:4a:04:22:ad:ad:9d:de:53:1d:0c: e7:10:02:b7:a0:b1:e6:0f:9a:b6:7d:c1:5f:d7:e6: 6a:04:09:fb:9d:14:c7:69:a6:78:e2:0f:e4:9f:ae: 10:54:67:cf:0c:54:f7:01:45:20:fd:76:b0:e6:05: 4d:a4:bc:f3:a2:6d:69:26:8a:a9:7c:35:4a:c8:c4: 3b:01:5e:79:49:f2:b1:57:0f:89:2a:3a:cd:b4:64: f0:19:84:05:f9:f7:62:5b:1d:80:c0:61:5e:a8:1f: e1:56:ba:70:50:64:db:cf:25:1e:24:1e:80:df:dc: 2d:be:c6:93:68:ad:55:24:58:60:99:7a:70:3a:7e: 59:45:17:bc:12:0c:6d:24:6f:60:6f:a7:55:94:db: ff:db:fc:38:5f:7f:7b:d9:9c:7d:55:d5:95:f0:01: dc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:23:32:33:E1:9D:75:53:5E:0A:CC:2E:CE:02:7E:30:1F:EF:8C:DA X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:98:89:75:98:2f:9d:2b:0c:28:e7:20:52:a7:da:d9:5d:6b: 4a:3e:83:0d:6a:40:c2:8e:02:a5:45:cb:fc:f9:6c:bc:31:f7: b0:63:89:db:23:f3:f7:db:6f:53:e2:5a:dd:e0:f2:b5:01:cd: e3:66:4b:3e:36:c8:07:d4:d2:81:b7:d7:5d:b9:20:8e:a9:79: f2:a8:36:27:d4:2a:e7:20:8f:eb:82:2c:6b:a7:b7:c8:c8:a2: de:bc:57:16:88:b2:7f:c4:a4:12:9d:62:42:2b:1e:72:74:94: 5f:01:5d:8d:9a:94:f3:54:78:6e:42:c0:c7:e5:aa:b6:c8:fe: e4:bd:69:2d:de:61:3a:ed:64:99:bf:3a:d7:c6:fc:81:1f:75: bc:65:52:41:ec:82:1c:77:13:49:d2:7a:6e:44:bb:cb:02:f4: e7:84:6d:1b:d8:14:40:1c:d1:2b:8c:2c:2f:75:cc:d7:97:45: f4:40:23:f2:4e:7a:21:b7:a3:e4:cf:7f:0d:2f:38:db:63:1b: 87:9b:1f:d9:c1:ba:46:e6:e2:69:bc:71:4c:ca:45:c7:d2:15: 72:bf:62:a6:80:c0:65:97:f1:af:6e:ae:df:eb:cb:37:5a:d5: 33:dc:f5:ac:6f:18:e7:3c:3c:ba:79:e0:28:47:db:9c:d7:97: ae:c4:17:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa9hK8o9mr6BZGPxpKweEHLnf1s4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTdaFw0yNzA1MDIwMzA4NTdaMDMxMTAvBgNV BAMTKDgzMjMzMjMzRTE5RDc1NTM1RTBBQ0MyRUNFMDI3RTMwMUZFRjhDREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmwPTrF5GZ/EE7NfL1q+VZ7l7o OWdqf7+juS4Ze4enpI3y2kY/ZtTBcFHeVqJqgbQ+v6z9jtfDF0cIKI+0r4jwVqjd JjQBP7+831VAr8aQkiXcR2XsSnylq3H23u56SgQira2d3lMdDOcQAregseYPmrZ9 wV/X5moECfudFMdppnjiD+SfrhBUZ88MVPcBRSD9drDmBU2kvPOibWkmiql8NUrI xDsBXnlJ8rFXD4kqOs20ZPAZhAX592JbHYDAYV6oH+FWunBQZNvPJR4kHoDf3C2+ xpNorVUkWGCZenA6fllFF7wSDG0kb2Bvp1WU2//b/Dhff3vZnH1V1ZXwAdyjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgyMyM+GddVNeCswuzgJ+MB/vjNowHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQB/mIl1mC+dKwwo5yBSp9rZXWtKPoMNakDCjgKlRcv8+Wy8 MfewY4nbI/P3229T4lrd4PK1Ac3jZks+NsgH1NKBt9dduSCOqXnyqDYn1CrnII/r gixrp7fIyKLevFcWiLJ/xKQSnWJCKx5ydJRfAV2NmpTzVHhuQsDH5aq2yP7kvWkt 3mE67WSZvzrXxvyBH3W8ZVJB7IIcdxNJ0npuRLvLAvTnhG0b2BRAHNErjCwvdczX l0X0QCPyTnoht6Pkz38NLzjbYxuHmx/ZwbpG5uJpvHFMykXH0hVyv2KmgMBll/Gv bq7f68s3WtUz3PWsbxjnPDy6eeAoR9uc15euxBcQ -----END CERTIFICATE-----Generated at Wed May 13 03:59:04 2026 by rpki-client