$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3134392e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: YWldloNKuf6nODMaL6FjFspEktId/aPkL38Pfe/uoXQ= Subject key identifier: 43:83:F4:13:DA:48:AC:FB:24:D1:A6:D7:A6:F6:EC:45:6C:61:AF:57 Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 1638D71E6E303AD2E3BCFB28A0CCC251E756B8CD Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:10 +0000 ROA not before: Sun 03 May 2026 03:06:10 +0000 ROA not after: Sun 02 May 2027 03:11:10 +0000 asID: 58397 IP address blocks: 117.53.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:38:d7:1e:6e:30:3a:d2:e3:bc:fb:28:a0:cc:c2:51:e7:56:b8:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:10 2026 GMT Not After : May 2 03:11:10 2027 GMT Subject: CN=4383F413DA48ACFB24D1A6D7A6F6EC456C61AF57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:c5:78:5c:70:2e:c7:88:87:a3:ee:10:27: 86:37:b9:a6:46:03:a6:79:7a:b1:10:09:0a:ca:ce: 4b:56:0e:69:e2:e2:72:fb:80:ba:ab:42:b3:b6:da: 1e:c7:4a:93:e8:00:f7:cd:52:9c:94:6b:ca:39:76: bf:2b:89:9d:7f:ff:d7:56:1f:51:43:53:9e:a8:d8: 12:56:bf:d9:6e:88:53:8f:91:39:80:b9:b4:06:bc: 26:a1:da:41:40:6d:58:00:41:b2:21:82:ec:a6:87: a1:e5:1b:c5:77:d6:2d:52:6c:aa:9b:4f:13:d3:7c: 70:2b:83:54:ab:00:c0:a9:f2:4a:98:f6:75:48:c3: 26:38:87:7d:99:d0:b8:a0:67:72:b4:22:aa:f6:a5: 6f:44:9d:a4:cd:52:53:d2:5f:6a:ba:37:2c:4c:05: 19:6a:38:36:34:70:dd:db:31:21:1c:4c:67:6d:96: b0:42:27:2e:a8:4e:d5:bf:97:d6:80:32:bd:a2:bb: 42:cb:3c:ae:99:50:f2:39:ac:5f:cb:3b:4b:63:f7: 59:27:cc:cc:bd:83:f5:40:b4:2f:c7:bd:aa:4d:79: 29:96:8f:26:54:1a:67:40:4e:db:db:e9:f9:99:9a: 31:95:a7:db:98:a8:87:4f:d1:99:2f:47:8e:4b:7f: c3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:83:F4:13:DA:48:AC:FB:24:D1:A6:D7:A6:F6:EC:45:6C:61:AF:57 X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3134392e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.149.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:5f:26:3d:41:09:8d:60:88:3b:fb:0a:b2:78:d1:6b:bb:67: 20:be:53:a8:62:1e:71:97:a0:e1:c5:b1:f9:cc:91:aa:13:c0: ff:21:5c:a3:73:ce:1e:88:ed:22:cf:0e:9a:aa:28:f0:a4:84: 73:16:10:d2:b2:36:33:d9:32:fd:f5:ab:67:aa:c0:95:52:86: 4b:fc:69:df:38:dc:5c:03:67:b8:41:30:27:b0:db:db:e3:73: db:d6:83:c3:80:74:44:88:fd:12:4e:ee:45:58:8b:5a:c3:e6: 36:b3:48:f2:24:7c:d6:00:a2:15:99:5e:43:1c:46:da:a1:8a: 88:9c:78:8d:14:99:5b:31:bb:b4:87:71:cd:36:9c:61:99:f8: c2:41:35:f0:16:9a:a6:bd:87:48:f9:ec:51:7b:9f:bf:0f:03: 46:e7:bf:39:97:4f:d2:c5:c6:07:72:26:3b:d0:6e:0a:2b:b2: 2f:5f:30:b1:c3:8f:cc:78:58:70:4e:04:77:50:84:5b:42:5d: 0a:2d:50:89:4e:9c:70:67:e0:14:4e:c7:6f:a4:f2:e8:30:ec: bd:0d:15:1a:ac:e9:d0:a3:d0:a6:99:6d:c8:e2:57:a5:95:77: 06:55:45:0e:4f:de:ef:08:b6:55:15:91:09:e5:ca:d4:e5:cc: 24:64:c3:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFjjXHm4wOtLjvPsooMzCUedWuM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTBaFw0yNzA1MDIwMzExMTBaMDMxMTAvBgNV BAMTKDQzODNGNDEzREE0OEFDRkIyNEQxQTZEN0E2RjZFQzQ1NkM2MUFGNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxsMV4XHAux4iHo+4QJ4Y3uaZG A6Z5erEQCQrKzktWDmni4nL7gLqrQrO22h7HSpPoAPfNUpyUa8o5dr8riZ1//9dW H1FDU56o2BJWv9luiFOPkTmAubQGvCah2kFAbVgAQbIhguymh6HlG8V31i1SbKqb TxPTfHArg1SrAMCp8kqY9nVIwyY4h32Z0LigZ3K0Iqr2pW9EnaTNUlPSX2q6NyxM BRlqODY0cN3bMSEcTGdtlrBCJy6oTtW/l9aAMr2iu0LLPK6ZUPI5rF/LO0tj91kn zMy9g/VAtC/HvapNeSmWjyZUGmdATtvb6fmZmjGVp9uYqIdP0ZkvR45Lf8M3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQ4P0E9pIrPsk0abXpvbsRWxhr1cwHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lTANBgkqhkiG 9w0BAQsFAAOCAQEAil8mPUEJjWCIO/sKsnjRa7tnIL5TqGIecZeg4cWx+cyRqhPA /yFco3POHojtIs8Omqoo8KSEcxYQ0rI2M9ky/fWrZ6rAlVKGS/xp3zjcXANnuEEw J7Db2+Nz29aDw4B0RIj9Ek7uRViLWsPmNrNI8iR81gCiFZleQxxG2qGKiJx4jRSZ WzG7tIdxzTacYZn4wkE18Baapr2HSPnsUXufvw8DRue/OZdP0sXGB3ImO9BuCiuy L18wscOPzHhYcE4Ed1CEW0JdCi1QiU6ccGfgFE7Hb6Ty6DDsvQ0VGqzp0KPQpplt yOJXpZV3BlVFDk/e7wi2VRWRCeXK1OXMJGTD8A== -----END CERTIFICATE-----Generated at Wed May 13 08:40:03 2026 by rpki-client