$ rpki-client -vvf rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa File: 3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa (raw, json) Hash identifier: z7Lqa5CkkfTSXbCBFY/k+Fz/ISz+SJw0HySx4HiNPMc= Subject key identifier: 1C:33:3C:56:39:C1:A4:F1:63:E0:8D:B9:9C:5B:AF:61:4E:95:DF:5D Certificate issuer: /CN=2CFE6C04191B28EDA13984F5549231D1840AACEC Certificate serial: 691165A882DD2EECBF546EC4602ADF1D4C4BF6FF Authority key identifier: 2C:FE:6C:04:19:1B:28:ED:A1:39:84:F5:54:92:31:D1:84:0A:AC:EC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa Signing time: Sun 03 May 2026 03:09:48 +0000 ROA not before: Sun 03 May 2026 03:04:48 +0000 ROA not after: Sun 02 May 2027 03:09:48 +0000 asID: 23666 IP address blocks: 117.104.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.crl rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:11:65:a8:82:dd:2e:ec:bf:54:6e:c4:60:2a:df:1d:4c:4b:f6:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFE6C04191B28EDA13984F5549231D1840AACEC Validity Not Before: May 3 03:04:48 2026 GMT Not After : May 2 03:09:48 2027 GMT Subject: CN=1C333C5639C1A4F163E08DB99C5BAF614E95DF5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:67:42:12:9c:f5:3e:87:f9:33:88:6e:ce:30: b4:12:6f:d6:ca:c9:e5:3a:d8:ed:85:a3:b4:3d:5e: 5a:84:0d:20:0e:c1:5b:af:f1:ee:ce:75:10:c7:89: 1b:50:0a:83:db:2d:30:a5:6a:27:01:d8:7b:8c:bb: 1b:2a:32:25:ea:cd:43:df:23:b2:fe:67:5a:9a:78: 3e:91:63:24:a9:81:5e:d8:ee:39:2a:6d:ea:d9:61: de:95:ad:d2:09:bd:ef:13:65:37:87:51:aa:78:4a: ea:83:d8:1d:0d:b9:d4:df:68:0c:22:d4:5d:e7:8d: 83:c8:48:b3:75:7c:c8:11:59:e0:d9:82:19:b2:bb: b7:db:fe:38:c5:fc:d9:77:4b:d8:33:f1:68:78:a1: c3:62:0a:d6:df:b3:7f:8d:a0:46:95:07:1c:9a:91: 9c:e7:63:80:33:52:4d:7a:40:6a:79:4a:17:7b:83: 25:bb:8b:01:be:c6:dd:21:93:99:f7:ff:db:5a:1f: c8:2a:bf:a4:15:43:e8:f4:90:38:16:4e:72:09:1b: e7:7f:c8:0d:c7:10:86:63:b1:11:b0:c5:31:0d:84: dd:ee:73:0d:ea:89:4a:75:7a:9c:37:e4:7d:4d:bc: be:f4:16:09:24:02:74:42:51:9a:04:6a:dc:2d:67: aa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:33:3C:56:39:C1:A4:F1:63:E0:8D:B9:9C:5B:AF:61:4E:95:DF:5D X509v3 Authority Key Identifier: keyid:2C:FE:6C:04:19:1B:28:ED:A1:39:84:F5:54:92:31:D1:84:0A:AC:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/2CFE6C04191B28EDA13984F5549231D1840AACEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CFE6C04191B28EDA13984F5549231D1840AACEC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3131372e3130342e3139322e302f31392d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.104.192.0/19 Signature Algorithm: sha256WithRSAEncryption 78:71:a6:b4:a7:c9:4f:c7:b2:fd:ec:39:d3:07:4a:ac:63:4a: 0e:02:ab:49:bf:2b:e5:be:ab:a1:dc:90:17:3a:af:1e:bf:2c: 86:85:e6:65:3a:7f:8b:2d:9e:05:7d:23:43:97:2a:26:69:38: 41:0a:85:e1:44:03:0f:fd:05:d2:d0:7d:d0:4e:c7:8a:39:41: ea:20:7c:84:13:e4:09:0a:ba:7c:e3:03:6f:68:16:ea:43:69: 8d:7c:22:38:42:5c:cb:5f:02:bc:7c:89:65:8e:10:85:80:b4: a8:a0:32:f5:aa:00:8a:8d:33:23:0e:dc:7a:36:70:0d:b9:ab: 39:7b:7c:9e:cd:b7:56:5d:f6:55:0a:eb:05:35:c0:f3:88:32: 11:8c:6c:f0:f6:b3:2b:fa:0c:e9:81:1c:f8:0a:c5:49:a5:f3: 91:77:21:71:43:84:79:43:d6:06:da:a9:c1:5f:aa:b3:b2:1c: e5:b8:43:9c:47:4a:34:d0:e9:77:24:de:4e:2d:f7:98:ee:56: 9d:19:ca:5a:38:aa:08:18:5e:e1:f3:d4:71:d6:83:af:47:bf: ee:32:b7:14:65:0a:5a:f3:5c:a5:7e:52:bc:3e:1d:3d:20:c2: 73:55:89:d4:f0:39:c7:27:9a:ee:10:1a:92:d2:d9:4e:97:25: 3d:32:36:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaRFlqILdLuy/VG7EYCrfHUxL9v8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRTZDMDQxOTFCMjhFREExMzk4NEY1NTQ5MjMxRDE4 NDBBQUNFQzAeFw0yNjA1MDMwMzA0NDhaFw0yNzA1MDIwMzA5NDhaMDMxMTAvBgNV BAMTKDFDMzMzQzU2MzlDMUE0RjE2M0UwOERCOTlDNUJBRjYxNEU5NURGNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrZ0ISnPU+h/kziG7OMLQSb9bK yeU62O2Fo7Q9XlqEDSAOwVuv8e7OdRDHiRtQCoPbLTClaicB2HuMuxsqMiXqzUPf I7L+Z1qaeD6RYySpgV7Y7jkqberZYd6VrdIJve8TZTeHUap4SuqD2B0NudTfaAwi 1F3njYPISLN1fMgRWeDZghmyu7fb/jjF/Nl3S9gz8Wh4ocNiCtbfs3+NoEaVBxya kZznY4AzUk16QGp5Shd7gyW7iwG+xt0hk5n3/9taH8gqv6QVQ+j0kDgWTnIJG+d/ yA3HEIZjsRGwxTENhN3ucw3qiUp1epw35H1NvL70FgkkAnRCUZoEatwtZ6rdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHDM8VjnBpPFj4I25nFuvYU6V310wHwYDVR0j BBgwFoAULP5sBBkbKO2hOYT1VJIx0YQKrOwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDU5MDhiODMtN2Y0NC00NmUwLTg1MzUtNmZiODRiNTlkNThhLzAvMkNGRTZDMDQx OTFCMjhFREExMzk4NEY1NTQ5MjMxRDE4NDBBQUNFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0ZFNkMwNDE5MUIyOEVEQTEzOTg0RjU1NDkyMzFEMTg0MEFB Q0VDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMxMzEzNzJlMzEzMDM0MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFdWjAMA0GCSqG SIb3DQEBCwUAA4IBAQB4caa0p8lPx7L97DnTB0qsY0oOAqtJvyvlvquh3JAXOq8e vyyGheZlOn+LLZ4FfSNDlyomaThBCoXhRAMP/QXS0H3QTseKOUHqIHyEE+QJCrp8 4wNvaBbqQ2mNfCI4QlzLXwK8fIlljhCFgLSooDL1qgCKjTMjDtx6NnANuas5e3ye zbdWXfZVCusFNcDziDIRjGzw9rMr+gzpgRz4CsVJpfORdyFxQ4R5Q9YG2qnBX6qz shzluEOcR0o00Ol3JN5OLfeY7ladGcpaOKoIGF7h89Rx1oOvR7/uMrcUZQpa81yl flK8Ph09IMJzVYnU8DnHJ5ruEBqS0tlOlyU9MjaF -----END CERTIFICATE-----Generated at Wed May 13 06:55:28 2026 by rpki-client