$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3132302e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: W6N+DXaPBZaClMEycShRyCw/U7bnGh0R93FwKhAiPC0= Subject key identifier: 7A:84:17:20:44:84:32:39:D3:59:E8:C8:93:05:17:48:D8:C2:B1:85 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 54714EB91056DB95DBADAA2DA147009E21C8D5CA Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32332d3233203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:58 +0000 ROA not before: Sun 03 May 2026 03:03:58 +0000 ROA not after: Sun 02 May 2027 03:08:58 +0000 asID: 24525 IP address blocks: 114.199.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:71:4e:b9:10:56:db:95:db:ad:aa:2d:a1:47:00:9e:21:c8:d5:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:58 2026 GMT Not After : May 2 03:08:58 2027 GMT Subject: CN=7A84172044843239D359E8C893051748D8C2B185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ba:0e:a6:63:46:17:9c:42:c7:1c:07:c5:e8: 5f:dc:8c:6a:ed:f2:23:99:e6:dd:dd:fd:da:86:e6: be:32:20:b6:ad:aa:89:72:04:42:a1:ad:03:b7:d0: 36:c5:13:16:81:82:14:df:76:4c:e5:02:cc:b2:45: 8f:b8:4d:92:1c:f9:f7:68:46:96:be:03:ae:38:7d: 35:f6:fb:b9:72:e4:89:fd:fb:72:87:d0:92:96:ba: 3a:a7:9c:db:67:43:82:00:83:f6:37:e8:e1:ec:c1: 37:f6:66:b9:e1:a2:f8:19:72:f8:16:1e:f2:76:19: 4b:8d:29:61:b7:a1:90:ad:88:1b:8d:ae:33:fc:ef: f7:c0:ac:15:15:75:8c:a3:d2:c3:a9:bf:f4:03:08: 7c:8a:51:44:38:a3:dc:45:d5:d9:94:bb:a6:59:b1: 54:ef:e4:06:bb:7d:6b:86:81:af:a0:02:6a:40:c9: 7f:aa:04:93:c3:42:c2:cd:fb:16:bd:98:b8:11:35: c7:0d:c2:b0:70:d8:23:92:ba:c5:84:d1:7b:c7:dd: cb:e5:88:be:ea:e3:44:e1:3a:76:db:98:48:53:ae: 6c:4b:ca:70:08:37:c4:3f:b7:78:84:fc:2a:c9:d5: 24:84:de:f6:f7:7b:26:88:04:7d:2d:35:0c:cb:bc: 5c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:84:17:20:44:84:32:39:D3:59:E8:C8:93:05:17:48:D8:C2:B1:85 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/23 Signature Algorithm: sha256WithRSAEncryption 29:84:09:8d:c3:a9:11:58:b6:aa:6f:3a:06:73:b3:43:70:57: db:2e:37:50:47:c2:50:a1:e6:29:b5:bf:81:34:4a:bc:79:3e: 23:bb:04:02:a4:72:63:61:b7:44:f3:a5:cd:3d:76:83:5c:04: 65:de:18:88:89:d4:99:49:0a:19:09:9f:a5:1f:54:eb:fb:e6: 0f:5b:b3:ba:06:69:dd:f9:da:39:f0:d5:22:5a:7d:81:96:d4: 25:a1:e0:31:e0:15:73:bf:87:4e:10:05:04:ed:63:35:36:50: 5f:a7:c1:05:7a:52:34:68:c9:96:3c:ac:1d:9c:59:6c:93:29: 82:bb:3a:48:24:f7:0e:dc:8b:41:c0:d3:d3:78:a5:55:1c:0b: af:3e:57:57:05:f0:6b:d3:f3:c4:e8:76:c2:78:9a:9f:1e:11: b6:bc:d6:c2:02:00:c5:90:c2:0f:57:4a:39:df:5b:aa:00:92: 67:8b:84:0d:a0:00:c0:2a:a1:d0:c4:63:5b:f1:e8:9b:29:05: 85:54:75:dd:89:02:7f:4b:10:32:41:b5:1a:71:9c:4b:3b:55: d4:73:59:14:7e:a4:bc:67:26:ae:2b:00:f8:ed:ae:10:fd:4f: d3:c8:6d:12:2b:27:e8:50:b6:2e:16:0e:52:b7:45:30:81:24: 44:72:dc:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVHFOuRBW25XbraotoUcAniHI1cowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNThaFw0yNzA1MDIwMzA4NThaMDMxMTAvBgNV BAMTKDdBODQxNzIwNDQ4NDMyMzlEMzU5RThDODkzMDUxNzQ4RDhDMkIxODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGug6mY0YXnELHHAfF6F/cjGrt 8iOZ5t3d/dqG5r4yILatqolyBEKhrQO30DbFExaBghTfdkzlAsyyRY+4TZIc+fdo Rpa+A644fTX2+7ly5In9+3KH0JKWujqnnNtnQ4IAg/Y36OHswTf2ZrnhovgZcvgW HvJ2GUuNKWG3oZCtiBuNrjP87/fArBUVdYyj0sOpv/QDCHyKUUQ4o9xF1dmUu6ZZ sVTv5Aa7fWuGga+gAmpAyX+qBJPDQsLN+xa9mLgRNccNwrBw2COSusWE0XvH3cvl iL7q40ThOnbbmEhTrmxLynAIN8Q/t3iE/CrJ1SSE3vb3eyaIBH0tNQzLvFwRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeoQXIESEMjnTWejIkwUXSNjCsYUwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQAphAmNw6kRWLaqbzoGc7NDcFfbLjdQR8JQoeYptb+BNEq8 eT4juwQCpHJjYbdE86XNPXaDXARl3hiIidSZSQoZCZ+lH1Tr++YPW7O6Bmnd+do5 8NUiWn2BltQloeAx4BVzv4dOEAUE7WM1NlBfp8EFelI0aMmWPKwdnFlskymCuzpI JPcO3ItBwNPTeKVVHAuvPldXBfBr0/PE6HbCeJqfHhG2vNbCAgDFkMIPV0o531uq AJJni4QNoADAKqHQxGNb8eibKQWFVHXdiQJ/SxAyQbUacZxLO1XUc1kUfqS8Zyau KwD47a4Q/U/TyG0SKyfoULYuFg5St0UwgSREctzx -----END CERTIFICATE-----Generated at Wed May 13 02:16:23 2026 by rpki-client