$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e2034373837.roa File: 3131342e3139392e3132372e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: vpNuSfj/irj9X8lHiicLbpAhZM9vpHuIeSzWVfBo1TQ= Subject key identifier: 18:23:3E:4E:7B:05:51:82:3A:40:5D:E2:62:6C:8E:79:95:6D:B4:75 Certificate issuer: /CN=167383438D537B2E966FD22726DD3B827DF002FE Certificate serial: 383788F2D27206E679CEB794CB742777F7126A6F Authority key identifier: 16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 03:08:41 +0000 ROA not before: Sun 03 May 2026 03:03:41 +0000 ROA not after: Sun 02 May 2027 03:08:41 +0000 asID: 4787 IP address blocks: 114.199.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:37:88:f2:d2:72:06:e6:79:ce:b7:94:cb:74:27:77:f7:12:6a:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=167383438D537B2E966FD22726DD3B827DF002FE Validity Not Before: May 3 03:03:41 2026 GMT Not After : May 2 03:08:41 2027 GMT Subject: CN=18233E4E7B0551823A405DE2626C8E79956DB475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:49:e0:54:c2:56:7f:32:ad:ed:f0:86:10:d2: 99:4a:d8:1c:86:4b:25:fd:33:87:5b:8e:51:b2:44: b5:c2:47:5b:df:a2:18:38:36:5e:58:e6:ed:3b:e7: e5:2f:fc:55:8f:94:5d:30:3f:98:e7:8f:66:9b:d7: 3f:84:e7:9a:12:bb:07:61:3d:59:f1:72:04:64:87: 84:9b:8a:bc:05:1d:75:f8:22:3d:c0:c5:a8:21:57: 75:ae:13:b3:34:57:0e:2c:8a:d2:8e:0a:c3:2f:43: 49:3a:1e:3f:83:8f:04:d2:e3:d1:e0:d1:12:a4:a6: 37:96:fb:57:a5:ef:d2:d7:9e:d0:09:af:30:cb:ad: 58:6a:b5:e5:36:96:cd:e2:fe:59:4d:29:63:c9:15: 72:04:c3:c2:63:a0:ed:5a:93:9f:c9:1c:bd:15:d2: 0d:69:7d:63:c8:0e:28:02:47:f4:55:55:af:b1:f4: b5:f0:c9:d8:46:22:29:7e:98:60:7b:d7:92:d2:3b: a2:27:b2:8f:90:93:68:d1:06:11:6e:44:4d:f1:d0: d3:63:d2:a1:09:81:b8:f2:d6:a5:f3:23:18:c1:6d: 22:5c:4f:4c:5d:e1:99:ac:9a:3a:10:03:8d:22:93: 92:97:1c:a9:c8:a9:2c:1f:73:2f:c4:22:a2:9c:37: c1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:23:3E:4E:7B:05:51:82:3A:40:5D:E2:62:6C:8E:79:95:6D:B4:75 X509v3 Authority Key Identifier: keyid:16:73:83:43:8D:53:7B:2E:96:6F:D2:27:26:DD:3B:82:7D:F0:02:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/167383438D537B2E966FD22726DD3B827DF002FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/167383438D537B2E966FD22726DD3B827DF002FE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132372e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.127.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:f4:8b:80:f1:d4:9f:11:fb:21:0b:e3:3b:bd:07:2d:c3:81: 17:28:cb:55:46:e1:73:d2:97:32:87:f2:53:48:cd:c1:16:c1: 5d:ce:63:d4:c5:7b:52:c4:88:da:af:fa:c4:2e:6b:91:17:0e: 19:ee:21:a1:c2:e2:f2:8c:96:67:16:9e:86:63:f1:db:60:2d: eb:38:27:dd:fd:12:d2:b2:f4:89:02:c4:7b:d2:cb:13:61:ed: fa:2c:f8:46:1a:d3:1d:45:0e:29:cb:fc:69:c7:58:63:b8:b1: 98:ba:1e:6c:91:cc:84:f1:66:89:fc:69:06:fa:62:21:81:98: e1:5f:7e:bd:72:83:04:ef:b5:d5:69:e7:04:7c:b7:85:8d:7c: b1:f1:81:2e:c7:41:6c:40:09:73:68:1d:c3:8d:c4:4a:d0:3b: b7:67:a9:f7:8c:85:b4:ec:5c:3c:5a:1a:56:b2:0b:f6:52:fe: 5a:35:07:56:3b:5a:3c:f3:92:6f:e5:cf:83:80:cc:20:d4:4f: ab:34:a2:2e:66:09:ca:b6:21:95:c0:d5:96:27:36:7e:bb:a5: ad:ac:f4:0d:81:03:ff:7c:88:20:7a:4b:4b:78:d6:b6:14:42: 21:b3:be:0e:1c:e0:98:61:20:6a:c0:28:91:25:d9:7f:63:1c: ba:90:66:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUODeI8tJyBuZ5zreUy3Qnd/cSam8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3MzgzNDM4RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3 REYwMDJGRTAeFw0yNjA1MDMwMzAzNDFaFw0yNzA1MDIwMzA4NDFaMDMxMTAvBgNV BAMTKDE4MjMzRTRFN0IwNTUxODIzQTQwNURFMjYyNkM4RTc5OTU2REI0NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxSeBUwlZ/Mq3t8IYQ0plK2ByG SyX9M4dbjlGyRLXCR1vfohg4Nl5Y5u075+Uv/FWPlF0wP5jnj2ab1z+E55oSuwdh PVnxcgRkh4SbirwFHXX4Ij3AxaghV3WuE7M0Vw4sitKOCsMvQ0k6Hj+DjwTS49Hg 0RKkpjeW+1el79LXntAJrzDLrVhqteU2ls3i/llNKWPJFXIEw8JjoO1ak5/JHL0V 0g1pfWPIDigCR/RVVa+x9LXwydhGIil+mGB715LSO6Inso+Qk2jRBhFuRE3x0NNj 0qEJgbjy1qXzIxjBbSJcT0xd4ZmsmjoQA40ik5KXHKnIqSwfcy/EIqKcN8HNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGCM+TnsFUYI6QF3iYmyOeZVttHUwHwYDVR0j BBgwFoAUFnODQ41Tey6Wb9InJt07gn3wAv4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDFmNGZkMzgtNzgyNi00MjAxLTlmOWItMWQ3Yzc2YWEyNGRkLzAvMTY3MzgzNDM4 RDUzN0IyRTk2NkZEMjI3MjZERDNCODI3REYwMDJGRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjczODM0MzhENTM3QjJFOTY2RkQyMjcyNkREM0I4MjdERjAw MkZFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHLHfzANBgkqhkiG 9w0BAQsFAAOCAQEAXfSLgPHUnxH7IQvjO70HLcOBFyjLVUbhc9KXMofyU0jNwRbB Xc5j1MV7UsSI2q/6xC5rkRcOGe4hocLi8oyWZxaehmPx22At6zgn3f0S0rL0iQLE e9LLE2Ht+iz4RhrTHUUOKcv8acdYY7ixmLoebJHMhPFmifxpBvpiIYGY4V9+vXKD BO+11WnnBHy3hY18sfGBLsdBbEAJc2gdw43EStA7t2ep94yFtOxcPFoaVrIL9lL+ WjUHVjtaPPOSb+XPg4DMINRPqzSiLmYJyrYhlcDVlic2frulraz0DYED/3yIIHpL S3jWthRCIbO+DhzgmGEgasAokSXZf2McupBmMQ== -----END CERTIFICATE-----Generated at Wed May 13 02:26:54 2026 by rpki-client