$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3134382e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: C5UaoWndqT8fkT/kUA+ky572u7b6+Zi84mEQVPG7UEk= Subject key identifier: 6D:A2:EB:5F:54:A3:25:5E:4D:71:8A:36:DF:F1:DE:E8:98:29:54:59 Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 0A466FAF4B83A6AE334AEB6D50A24A18EED15112 Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:13 +0000 ROA not before: Sun 03 May 2026 03:06:13 +0000 ROA not after: Sun 02 May 2027 03:11:13 +0000 asID: 58397 IP address blocks: 117.53.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:46:6f:af:4b:83:a6:ae:33:4a:eb:6d:50:a2:4a:18:ee:d1:51:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:13 2026 GMT Not After : May 2 03:11:13 2027 GMT Subject: CN=6DA2EB5F54A3255E4D718A36DFF1DEE898295459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f1:ce:f5:1a:a8:e0:1b:19:b6:9b:f4:69:66: a5:60:96:77:77:ce:53:26:74:c5:de:a9:fc:1b:b4: ea:7f:2a:30:1e:28:51:4d:b6:d5:d4:0a:0b:fc:99: a3:62:36:23:5a:b5:0f:b0:d8:91:80:77:40:8d:5b: 34:79:ae:45:c7:6e:c5:57:f0:e0:de:b1:df:86:69: 33:59:b4:10:80:3b:a6:db:e8:88:de:40:32:e9:c4: c8:b8:51:3a:a1:94:cf:ba:ef:6c:e6:b0:61:ca:e5: ec:e5:07:09:fc:0e:42:12:b0:a8:5e:a8:13:0b:9e: 9d:89:05:38:c4:2e:a1:f2:ab:9c:a1:0b:ac:fd:81: 18:cc:05:57:5d:0e:ff:a2:d9:38:35:c3:27:8c:79: 58:0f:f7:11:b9:fa:80:19:8e:1f:b2:d4:55:d4:aa: a5:34:29:94:d5:9a:1c:f7:72:40:4d:41:ed:9c:0f: a8:78:ea:40:c3:6d:d9:21:b5:7f:38:10:7a:da:8e: f7:b3:16:cc:90:f6:12:17:75:a3:77:f0:28:75:0e: c3:ba:be:a2:75:dd:d7:0f:be:0b:58:e7:c1:8d:e9: c3:3f:f9:5e:bb:0c:3c:91:9f:63:20:d5:84:fe:45: 58:55:4a:f2:a0:7f:bc:ca:1c:63:e5:83:b4:91:1f: 65:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A2:EB:5F:54:A3:25:5E:4D:71:8A:36:DF:F1:DE:E8:98:29:54:59 X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134382e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.148.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:64:98:10:df:90:bd:ba:08:e9:e3:81:53:d2:64:40:ef:5a: 97:c7:2a:4a:b5:f6:bf:f7:0b:15:09:90:1d:da:06:91:b1:52: b1:77:ca:52:5f:15:91:90:65:b0:7e:81:db:b3:b8:a8:00:13: e3:5a:a8:05:64:d6:94:a0:09:c4:f3:9c:01:91:63:1e:2d:5c: 86:02:9e:b3:fd:18:2c:51:0a:98:bf:a7:c1:1a:92:b4:93:76: ed:3e:ab:ed:7a:1d:27:4b:08:8d:6f:9d:93:b8:12:5c:c1:90: 46:60:1a:99:7e:8d:86:01:16:92:12:77:0c:ea:cc:66:d1:43: 79:5e:1a:ec:05:75:58:55:58:f8:28:1e:2e:86:94:c3:84:44: 5a:ef:f0:2f:6c:b2:c7:cb:41:5a:37:89:61:a0:98:a5:63:b4: 81:87:0d:6a:9b:0e:94:28:ed:ed:42:da:1d:03:83:50:70:48: 5a:84:e7:c9:8b:de:63:5b:bd:d3:9e:35:1e:6d:2f:46:8a:94: eb:c0:6b:e3:6c:93:f7:40:d7:80:7d:c3:28:00:d9:3e:25:ce: 07:b6:02:9a:ae:c1:26:b9:b0:75:df:3c:cc:eb:2e:a3:fb:29: b1:89:62:57:88:c1:18:66:16:b1:8f:0e:d6:32:7c:7f:b3:1b: ad:98:05:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCkZvr0uDpq4zSuttUKJKGO7RURIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTNaFw0yNzA1MDIwMzExMTNaMDMxMTAvBgNV BAMTKDZEQTJFQjVGNTRBMzI1NUU0RDcxOEEzNkRGRjFERUU4OTgyOTU0NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn8c71GqjgGxm2m/RpZqVglnd3 zlMmdMXeqfwbtOp/KjAeKFFNttXUCgv8maNiNiNatQ+w2JGAd0CNWzR5rkXHbsVX 8ODesd+GaTNZtBCAO6bb6IjeQDLpxMi4UTqhlM+672zmsGHK5ezlBwn8DkISsKhe qBMLnp2JBTjELqHyq5yhC6z9gRjMBVddDv+i2Tg1wyeMeVgP9xG5+oAZjh+y1FXU qqU0KZTVmhz3ckBNQe2cD6h46kDDbdkhtX84EHrajvezFsyQ9hIXdaN38Ch1DsO6 vqJ13dcPvgtY58GN6cM/+V67DDyRn2Mg1YT+RVhVSvKgf7zKHGPlg7SRH2WbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbaLrX1SjJV5NcYo23/He6JgpVFkwHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lDANBgkqhkiG 9w0BAQsFAAOCAQEAPmSYEN+QvboI6eOBU9JkQO9al8cqSrX2v/cLFQmQHdoGkbFS sXfKUl8VkZBlsH6B27O4qAAT41qoBWTWlKAJxPOcAZFjHi1chgKes/0YLFEKmL+n wRqStJN27T6r7XodJ0sIjW+dk7gSXMGQRmAamX6NhgEWkhJ3DOrMZtFDeV4a7AV1 WFVY+CgeLoaUw4REWu/wL2yyx8tBWjeJYaCYpWO0gYcNapsOlCjt7ULaHQODUHBI WoTnyYveY1u90541Hm0vRoqU68Br42yT90DXgH3DKADZPiXOB7YCmq7BJrmwdd88 zOsuo/spsYliV4jBGGYWsY8O1jJ8f7MbrZgFsw== -----END CERTIFICATE-----Generated at Wed May 13 08:28:55 2026 by rpki-client