$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3135302e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: Mw5Rq159HgAFkzwo+iOGAJH0lBRwzFfI8gCzOg4CwLQ= Subject key identifier: 73:C3:BB:D1:47:69:3E:C2:1C:BF:3B:27:78:54:21:B0:D1:B3:95:DA Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 5D4D4BA275BE95CD245E5E11FFB3F8DDA9DBEF23 Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa Signing time: Sun 03 May 2026 03:11:12 +0000 ROA not before: Sun 03 May 2026 03:06:12 +0000 ROA not after: Sun 02 May 2027 03:11:12 +0000 asID: 58397 IP address blocks: 117.53.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:4d:4b:a2:75:be:95:cd:24:5e:5e:11:ff:b3:f8:dd:a9:db:ef:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: May 3 03:06:12 2026 GMT Not After : May 2 03:11:12 2027 GMT Subject: CN=73C3BBD147693EC21CBF3B27785421B0D1B395DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:95:dd:5c:cf:c6:23:09:13:ad:35:3a:28: 83:bc:75:6f:75:77:3c:fe:5b:ac:4a:e5:96:ec:03: 59:4f:d0:51:f9:51:03:95:d5:06:fb:3c:51:e6:55: a2:8c:68:de:45:c2:45:b0:27:ac:0e:ea:20:fc:ba: fd:94:d6:01:43:c3:3e:08:6c:ea:a7:65:c2:a0:92: 1b:55:c1:e7:f5:2e:f8:cc:2c:db:14:7b:53:55:2e: da:0a:f4:8b:74:c8:9c:3c:40:17:b2:c0:91:71:cd: 4e:e1:16:ea:40:7b:f2:a9:99:dc:9f:10:a0:10:41: b2:75:57:33:dc:07:8a:9d:e7:5e:17:30:ce:14:fa: 60:6c:26:6e:8d:6f:86:58:5d:c6:c6:8d:4d:eb:51: d7:5d:52:f6:a6:19:c5:eb:67:63:96:88:b2:81:ef: 72:e6:77:27:ec:c0:33:1e:49:2c:ce:40:56:2b:d6: e6:e6:f4:81:f6:97:52:52:79:ad:45:e9:8c:c7:1f: d6:d1:a2:13:51:3a:81:04:a9:0f:c1:cb:d3:f0:26: 57:ce:e6:9c:47:f9:0e:07:00:a2:d6:0d:88:07:69: cd:68:7c:aa:6f:61:f8:d4:be:f7:5f:aa:46:6c:a0: 7f:55:b6:c2:97:26:2e:2c:7a:8c:4e:eb:9b:d2:cf: 75:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C3:BB:D1:47:69:3E:C2:1C:BF:3B:27:78:54:21:B0:D1:B3:95:DA X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135302e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.150.0/24 Signature Algorithm: sha256WithRSAEncryption 75:c4:c3:8f:c2:3b:81:e2:dd:77:ae:df:d2:15:ec:f5:4a:43: a6:55:37:b9:4d:41:9e:c1:fa:3d:e9:be:58:1b:eb:14:fe:0a: 1c:0d:5d:92:7c:e9:27:e7:be:8c:4e:04:dc:7d:12:f7:6b:76: 54:5d:b1:5e:27:2b:c9:ed:d1:4b:4d:3b:69:5e:e6:aa:19:46: 39:07:8f:e2:b8:39:c6:21:a9:3e:83:d1:30:7f:39:ab:71:c0: 00:56:1a:7a:ee:37:98:80:a5:ad:ee:88:c4:cc:79:a7:14:47: 72:e2:41:e3:25:95:d3:63:7b:6c:62:76:26:f0:e1:a5:c3:76: c8:04:13:97:cb:ff:f5:ef:bf:0f:6e:df:05:5e:f7:65:4d:42: 95:92:e1:ad:8b:0d:bc:82:15:1f:aa:cf:99:9a:5f:1f:1e:6d: 06:fc:af:65:d8:3c:57:fb:04:89:1d:df:e5:bb:77:74:2a:77: ef:50:95:c4:85:f6:4a:cc:a0:ff:32:42:72:69:82:b7:2d:df: ed:43:f1:27:83:6c:43:c4:9c:2c:e3:71:1f:ee:ca:0b:f0:54: e8:13:ad:e7:31:cc:5a:99:32:f8:3f:dc:ac:90:27:b5:8f:4b: 7c:05:52:c4:e2:da:43:d5:09:30:97:23:06:3d:39:1c:69:1f: 64:dc:9a:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXU1LonW+lc0kXl4R/7P43anb7yMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA1MDMwMzA2MTJaFw0yNzA1MDIwMzExMTJaMDMxMTAvBgNV BAMTKDczQzNCQkQxNDc2OTNFQzIxQ0JGM0IyNzc4NTQyMUIwRDFCMzk1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3SJXdXM/GIwkTrTU6KIO8dW91 dzz+W6xK5ZbsA1lP0FH5UQOV1Qb7PFHmVaKMaN5FwkWwJ6wO6iD8uv2U1gFDwz4I bOqnZcKgkhtVwef1LvjMLNsUe1NVLtoK9It0yJw8QBeywJFxzU7hFupAe/Kpmdyf EKAQQbJ1VzPcB4qd514XMM4U+mBsJm6Nb4ZYXcbGjU3rUdddUvamGcXrZ2OWiLKB 73LmdyfswDMeSSzOQFYr1ubm9IH2l1JSea1F6YzHH9bRohNROoEEqQ/By9PwJlfO 5pxH+Q4HAKLWDYgHac1ofKpvYfjUvvdfqkZsoH9VtsKXJi4seoxO65vSz3WFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc8O70UdpPsIcvzsneFQhsNGzldowHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1ljANBgkqhkiG 9w0BAQsFAAOCAQEAdcTDj8I7geLdd67f0hXs9UpDplU3uU1BnsH6Pem+WBvrFP4K HA1dknzpJ+e+jE4E3H0S92t2VF2xXicrye3RS007aV7mqhlGOQeP4rg5xiGpPoPR MH85q3HAAFYaeu43mIClre6IxMx5pxRHcuJB4yWV02N7bGJ2JvDhpcN2yAQTl8v/ 9e+/D27fBV73ZU1ClZLhrYsNvIIVH6rPmZpfHx5tBvyvZdg8V/sEiR3f5bt3dCp3 71CVxIX2Ssyg/zJCcmmCty3f7UPxJ4NsQ8ScLONxH+7KC/BU6BOt5zHMWpky+D/c rJAntY9LfAVSxOLaQ9UJMJcjBj05HGkfZNyapQ== -----END CERTIFICATE-----Generated at Wed May 13 08:24:56 2026 by rpki-client