$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa File: 3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 82WydRC+0jIl7QK+wcNPWeVz76n2YPwYgPFzCUlVoNE= Subject key identifier: A5:12:A0:22:7A:CC:CC:65:55:F4:71:E6:6D:43:B0:7D:90:E8:88:B2 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 4106D3C59CCBE58427A964119C46ACEF39DBBC7B Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:48 +0000 ROA not before: Sun 03 May 2026 03:03:48 +0000 ROA not after: Sun 02 May 2027 03:08:48 +0000 asID: 24525 IP address blocks: 114.199.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:06:d3:c5:9c:cb:e5:84:27:a9:64:11:9c:46:ac:ef:39:db:bc:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:48 2026 GMT Not After : May 2 03:08:48 2027 GMT Subject: CN=A512A0227ACCCC6555F471E66D43B07D90E888B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:cd:16:b6:34:e2:13:0d:1d:65:d7:3e:74: 59:d1:e6:fd:35:81:a6:19:c5:f7:c5:d6:be:4d:fa: 2a:9d:80:cb:50:81:6d:9f:8d:40:31:d7:14:27:58: 50:e8:0b:6b:a3:66:f8:e6:5d:a2:c9:4b:c7:e4:4a: 69:71:af:73:7b:9f:9f:8a:98:e2:55:3a:89:be:0d: d4:1e:67:e8:40:52:90:ac:5a:0e:9d:93:0d:48:11: 73:0d:54:f6:42:ff:e5:e1:9b:64:59:14:16:f4:9f: 7b:ac:9f:e3:e0:16:11:fe:c3:ff:4a:8f:af:3d:60: fa:0a:a7:58:13:89:8e:41:95:33:0c:35:b7:b3:3b: 58:1a:e2:d4:54:24:70:ce:2f:a2:5f:ed:51:9e:54: 59:7c:5c:28:c0:fd:e1:83:46:b5:81:3c:3f:18:83: ba:1a:4f:65:4f:89:8d:ff:04:98:1f:c9:a5:c6:5c: 6c:50:53:bc:37:16:ea:91:b6:0d:2c:aa:c8:cf:0f: ae:aa:97:f6:32:85:6e:54:de:ec:be:75:13:c4:d4: 18:b1:2e:06:0b:24:b1:9a:0f:07:12:8a:d8:a7:1e: 59:a7:fd:c8:f1:5d:e6:0b:44:0d:a8:2e:15:2a:db: 1a:dc:da:f9:c1:8e:d6:97:c4:5d:ae:5b:7b:58:c2: 21:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:12:A0:22:7A:CC:CC:65:55:F4:71:E6:6D:43:B0:7D:90:E8:88:B2 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.120.0/24 Signature Algorithm: sha256WithRSAEncryption d7:77:b7:cb:52:11:ec:0c:09:13:fb:e1:5d:c1:24:95:d9:cc: b6:e0:89:f2:70:05:67:ce:c9:ad:f4:ba:d2:0d:dd:bd:89:11: 2f:04:18:89:2d:a9:d0:bb:3a:17:7f:60:e5:b2:8f:7f:d4:86: 9d:e1:15:55:d2:7e:d6:5b:28:1c:35:b2:b1:ad:2b:17:e3:6a: ce:a0:78:ce:30:25:d7:b4:37:18:bf:6c:dd:3e:69:ac:9a:e5: cf:f6:b5:15:7b:a6:30:34:3b:ca:69:5e:97:ed:39:be:83:64: 6e:9d:f4:6f:73:f8:c4:0d:89:31:76:90:84:69:5c:f0:43:3e: 71:cd:98:3e:31:2a:3c:ef:db:ec:5a:f5:5e:57:b3:31:77:40: fe:57:7f:9c:1c:ce:74:92:3f:3a:b9:25:ff:6e:11:42:05:d5: 32:7e:b3:5c:97:8f:0f:62:4b:79:f6:93:7a:65:ff:0e:b6:d3: 73:7a:4e:13:50:8d:60:9b:73:1b:fc:1e:73:79:00:50:b0:59: 54:0e:b7:5d:e6:9d:27:06:90:a9:6d:4e:af:07:ff:8d:a4:43: ba:3e:6d:e3:74:aa:76:79:76:e9:14:54:a8:35:b7:94:16:67: f5:2a:4b:45:d3:ec:26:33:f7:1c:33:42:70:27:1a:1c:e0:9c: d9:dc:4b:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQQbTxZzL5YQnqWQRnEas7znbvHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNDhaFw0yNzA1MDIwMzA4NDhaMDMxMTAvBgNV BAMTKEE1MTJBMDIyN0FDQ0NDNjU1NUY0NzFFNjZENDNCMDdEOTBFODg4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJBc0WtjTiEw0dZdc+dFnR5v01 gaYZxffF1r5N+iqdgMtQgW2fjUAx1xQnWFDoC2ujZvjmXaLJS8fkSmlxr3N7n5+K mOJVOom+DdQeZ+hAUpCsWg6dkw1IEXMNVPZC/+Xhm2RZFBb0n3usn+PgFhH+w/9K j689YPoKp1gTiY5BlTMMNbezO1ga4tRUJHDOL6Jf7VGeVFl8XCjA/eGDRrWBPD8Y g7oaT2VPiY3/BJgfyaXGXGxQU7w3FuqRtg0sqsjPD66ql/YyhW5U3uy+dRPE1Bix LgYLJLGaDwcSitinHlmn/cjxXeYLRA2oLhUq2xrc2vnBjtaXxF2uW3tYwiEPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpRKgInrMzGVV9HHmbUOwfZDoiLIwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsd4MA0GCSqG SIb3DQEBCwUAA4IBAQDXd7fLUhHsDAkT++FdwSSV2cy24InycAVnzsmt9LrSDd29 iREvBBiJLanQuzoXf2Dlso9/1Iad4RVV0n7WWygcNbKxrSsX42rOoHjOMCXXtDcY v2zdPmmsmuXP9rUVe6YwNDvKaV6X7Tm+g2RunfRvc/jEDYkxdpCEaVzwQz5xzZg+ MSo879vsWvVeV7Mxd0D+V3+cHM50kj86uSX/bhFCBdUyfrNcl48PYkt59pN6Zf8O ttNzek4TUI1gm3Mb/B5zeQBQsFlUDrdd5p0nBpCpbU6vB/+NpEO6Pm3jdKp2eXbp FFSoNbeUFmf1KktF0+wmM/ccM0JwJxoc4JzZ3Euv -----END CERTIFICATE-----Generated at Wed May 13 03:55:20 2026 by rpki-client