$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa File: 3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: UtpxYRMYK63hcNpSKTeNEX8zOXdEEOnXOMlXOdUhFJs= Subject key identifier: BA:BA:33:24:94:5B:7E:5F:6C:99:88:49:23:8F:CA:5E:43:B0:73:7F Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 7823091C7EAFBA697604406A45A4BCB126E05125 Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa Signing time: Sun 03 May 2026 03:08:59 +0000 ROA not before: Sun 03 May 2026 03:03:59 +0000 ROA not after: Sun 02 May 2027 03:08:59 +0000 asID: 24525 IP address blocks: 114.199.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:23:09:1c:7e:af:ba:69:76:04:40:6a:45:a4:bc:b1:26:e0:51:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:59 2026 GMT Not After : May 2 03:08:59 2027 GMT Subject: CN=BABA3324945B7E5F6C998849238FCA5E43B0737F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:48:97:84:3b:74:e6:fe:94:6d:b5:b6:84:93: 53:d2:cb:14:a3:ee:d0:f5:24:ba:51:97:40:64:25: e8:27:6b:24:c7:96:5c:01:4b:ab:da:d7:c4:31:2c: 07:73:bf:4c:63:a1:f3:b4:01:2b:43:60:9f:f0:96: 99:4c:74:0d:c2:62:73:c0:aa:51:da:38:d5:dd:a1: 3e:00:d2:8b:1c:63:13:58:45:49:b6:86:ff:8e:12: 90:fb:7b:fc:42:c3:91:17:d2:83:87:13:65:a8:69: 3e:05:ac:ec:f3:46:3b:a7:63:f4:66:8e:57:22:81: 1e:f4:ab:e1:b9:3e:34:62:e0:c8:b1:73:c1:cd:ad: 8b:75:e8:26:f9:c3:e2:a3:30:b1:a0:e4:af:94:82: a6:1b:76:ca:48:64:62:1b:07:bd:71:7f:37:eb:bb: 7c:16:e9:bf:bf:7c:cf:11:94:60:47:1a:7a:cc:40: 06:81:17:b4:12:0f:1e:b0:c2:cd:f8:4d:fe:1b:99: 31:4b:63:41:b2:b9:e4:eb:72:3b:1e:b8:ee:60:4f: b4:26:5a:fc:84:32:8d:c7:9d:7f:a3:7b:a9:55:89: 9c:cc:00:9b:51:ec:14:58:9b:4c:53:f7:56:ed:39: c0:e4:ae:51:41:a1:ff:e7:28:0d:22:7e:e0:d5:2f: 15:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BA:33:24:94:5B:7E:5F:6C:99:88:49:23:8F:CA:5E:43:B0:73:7F X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.124.0/22 Signature Algorithm: sha256WithRSAEncryption b5:4b:9f:09:72:c2:18:79:9a:38:53:d2:b0:5d:8d:17:92:40: 86:cb:b6:13:90:87:05:41:d0:66:14:86:e9:48:f7:3e:6d:24: a8:64:32:a7:84:ed:53:c6:da:b0:5f:e3:15:32:c2:bd:f0:2d: 12:86:61:72:67:24:3f:86:43:f9:2d:ac:af:a7:b6:0b:22:df: f2:70:c9:23:7a:a9:e5:36:32:7c:2d:61:84:e7:29:63:bc:1b: 9f:fc:a7:df:8f:64:f5:ff:58:ca:fc:9d:82:a9:38:7c:44:31: a9:4f:6d:3d:38:55:79:f7:16:34:9a:ab:6e:04:c8:93:00:a5: 25:e6:0b:53:d0:13:50:f7:70:66:d3:5f:6b:38:38:c6:70:9e: cd:95:4d:72:f8:86:6c:12:6f:1a:f6:8b:19:ef:ee:e1:a8:b1: 63:33:9d:58:ad:20:a6:fe:3f:2a:f7:f0:ee:e5:88:4f:0d:47: 9d:6f:95:95:2f:05:32:d7:4a:86:b0:60:9d:10:92:77:c7:80: 72:c1:bf:84:4d:a4:bb:5f:c4:63:94:29:b2:45:7a:c0:6e:be: 8a:8c:1e:61:f9:c5:12:5e:98:c2:c6:23:04:a9:b0:3f:70:59: 69:22:cd:e7:1e:6c:f2:78:94:79:7e:53:f1:88:88:3e:b1:8e: 52:85:aa:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeCMJHH6vuml2BEBqRaS8sSbgUSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNTlaFw0yNzA1MDIwMzA4NTlaMDMxMTAvBgNV BAMTKEJBQkEzMzI0OTQ1QjdFNUY2Qzk5ODg0OTIzOEZDQTVFNDNCMDczN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpSJeEO3Tm/pRttbaEk1PSyxSj 7tD1JLpRl0BkJegnayTHllwBS6va18QxLAdzv0xjofO0AStDYJ/wlplMdA3CYnPA qlHaONXdoT4A0oscYxNYRUm2hv+OEpD7e/xCw5EX0oOHE2WoaT4FrOzzRjunY/Rm jlcigR70q+G5PjRi4Mixc8HNrYt16Cb5w+KjMLGg5K+UgqYbdspIZGIbB71xfzfr u3wW6b+/fM8RlGBHGnrMQAaBF7QSDx6wws34Tf4bmTFLY0GyueTrcjseuO5gT7Qm WvyEMo3HnX+je6lViZzMAJtR7BRYm0xT91btOcDkrlFBof/nKA0ifuDVLxUFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUurozJJRbfl9smYhJI4/KXkOwc38wHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCcsd8MA0GCSqG SIb3DQEBCwUAA4IBAQC1S58JcsIYeZo4U9KwXY0XkkCGy7YTkIcFQdBmFIbpSPc+ bSSoZDKnhO1TxtqwX+MVMsK98C0ShmFyZyQ/hkP5Layvp7YLIt/ycMkjeqnlNjJ8 LWGE5yljvBuf/Kffj2T1/1jK/J2CqTh8RDGpT209OFV59xY0mqtuBMiTAKUl5gtT 0BNQ93Bm019rODjGcJ7NlU1y+IZsEm8a9osZ7+7hqLFjM51YrSCm/j8q9/Du5YhP DUedb5WVLwUy10qGsGCdEJJ3x4Bywb+ETaS7X8RjlCmyRXrAbr6KjB5h+cUSXpjC xiMEqbA/cFlpIs3nHmzyeJR5flPxiIg+sY5Shao7 -----END CERTIFICATE-----Generated at Wed May 13 02:19:40 2026 by rpki-client