$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e20313431313432.roa File: 3132322e3234382e34322e302f32342d3234203d3e20313431313432.roa (raw, json) Hash identifier: 9A3NELKN62n/Uv+kjUVb0RNEBPpV0EUgsvMetodVNuE= Subject key identifier: 79:42:4F:86:01:63:0B:A8:00:8A:FA:12:C1:EA:73:65:86:04:B4:6A Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 535E6D579550FBE533A04C7F52442BA6FB306E27 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e20313431313432.roa Signing time: Sun 03 May 2026 03:12:01 +0000 ROA not before: Sun 03 May 2026 03:07:01 +0000 ROA not after: Sun 02 May 2027 03:12:01 +0000 asID: 141142 IP address blocks: 122.248.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:5e:6d:57:95:50:fb:e5:33:a0:4c:7f:52:44:2b:a6:fb:30:6e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:01 2026 GMT Not After : May 2 03:12:01 2027 GMT Subject: CN=79424F8601630BA8008AFA12C1EA73658604B46A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:72:a5:11:d6:85:57:27:b1:eb:d9:0d:c5:9a: 7e:75:7d:f3:dc:16:0f:6b:16:d2:8d:62:e8:3b:27: d5:96:b2:05:e9:d6:36:90:30:61:21:59:09:94:3e: f1:bb:96:5c:c5:dd:ce:1c:81:e0:b0:0a:30:a8:27: 27:ff:53:74:1b:9e:b3:1d:66:ff:35:83:2f:d5:87: 2f:d0:79:09:d5:93:95:15:7b:dd:6b:10:df:cf:4b: 31:bb:02:87:16:95:89:7c:fe:4d:b6:06:71:0d:dd: d4:bf:65:b5:ec:60:3b:aa:5b:dd:f3:b9:99:9c:3d: 1f:b0:46:c3:eb:72:04:5c:e7:e9:6b:ec:33:03:1d: 29:09:d6:52:05:02:22:85:43:92:36:af:65:eb:f4: 6d:59:69:1c:18:c5:c4:07:1b:0f:d9:30:56:67:60: 6c:90:60:62:c1:51:72:f8:c0:e2:9b:c3:51:76:c2: b3:a4:18:54:c1:cb:7b:bb:32:98:31:94:3b:bc:99: 6f:4c:cb:fe:19:93:0b:b8:19:9e:a4:c7:8d:c2:6f: 75:30:81:b4:c2:6f:09:4f:19:90:f2:95:d0:30:c6: 6c:82:3a:df:de:65:e8:ca:73:49:01:b9:8f:e9:38: 91:a4:81:c6:39:7c:47:48:a1:6a:63:31:89:48:aa: 0d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:42:4F:86:01:63:0B:A8:00:8A:FA:12:C1:EA:73:65:86:04:B4:6A X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e20313431313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.42.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:46:b5:48:cb:d9:1d:5d:97:28:4c:fb:c2:17:f1:74:84:99: 09:af:db:7c:fa:16:fc:f7:7a:2c:e3:a4:87:9c:9a:a6:70:90: bf:d3:ad:95:89:0e:1b:2d:71:08:fb:4c:9a:ae:f2:f4:a9:0b: f1:30:e5:45:1f:96:cc:ae:ce:80:ed:fb:2a:f3:45:f1:4e:4d: ce:f3:66:b7:7b:83:f5:bb:25:4b:ab:a0:79:b6:3d:e7:2b:ba: f2:cb:60:a7:5f:5d:e8:74:e4:4d:63:c9:9a:ca:eb:84:68:f5: 76:70:c2:a2:d7:f7:bc:df:f6:be:a7:a8:a0:3d:d9:27:b6:20: 11:37:9e:80:f3:7d:1a:4a:21:5f:4f:15:7b:a3:35:ee:1f:2e: 05:8b:6c:d6:4f:c8:6b:af:f0:fe:2b:df:67:21:35:70:2d:77: 1a:4a:3e:b3:43:37:d6:84:59:e3:c9:d0:db:ac:47:83:84:59: 90:94:b0:00:28:68:12:42:88:3e:39:e3:c0:35:1f:e8:81:fe: 9e:70:1f:ea:ac:fd:21:58:1f:e5:fc:55:07:30:64:1a:06:fa: 9e:3f:ee:c8:22:02:dd:88:20:71:ee:b2:f9:e5:6e:00:19:72: 52:6e:aa:f0:86:ae:c4:56:e7:3c:39:44:a3:f5:be:16:f6:74: f1:f9:9f:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU15tV5VQ++UzoEx/UkQrpvswbicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDFaFw0yNzA1MDIwMzEyMDFaMDMxMTAvBgNV BAMTKDc5NDI0Rjg2MDE2MzBCQTgwMDhBRkExMkMxRUE3MzY1ODYwNEI0NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCscqUR1oVXJ7Hr2Q3Fmn51ffPc Fg9rFtKNYug7J9WWsgXp1jaQMGEhWQmUPvG7llzF3c4cgeCwCjCoJyf/U3QbnrMd Zv81gy/Vhy/QeQnVk5UVe91rEN/PSzG7AocWlYl8/k22BnEN3dS/ZbXsYDuqW93z uZmcPR+wRsPrcgRc5+lr7DMDHSkJ1lIFAiKFQ5I2r2Xr9G1ZaRwYxcQHGw/ZMFZn YGyQYGLBUXL4wOKbw1F2wrOkGFTBy3u7MpgxlDu8mW9My/4Zkwu4GZ6kx43Cb3Uw gbTCbwlPGZDyldAwxmyCOt/eZejKc0kBuY/pOJGkgcY5fEdIoWpjMYlIqg29AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeUJPhgFjC6gAivoSwepzZYYEtGowHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAevgqMA0GCSqG SIb3DQEBCwUAA4IBAQA9RrVIy9kdXZcoTPvCF/F0hJkJr9t8+hb893os46SHnJqm cJC/062ViQ4bLXEI+0yarvL0qQvxMOVFH5bMrs6A7fsq80XxTk3O82a3e4P1uyVL q6B5tj3nK7ryy2CnX13odORNY8mayuuEaPV2cMKi1/e83/a+p6igPdkntiARN56A 830aSiFfTxV7ozXuHy4Fi2zWT8hrr/D+K99nITVwLXcaSj6zQzfWhFnjydDbrEeD hFmQlLAAKGgSQog+OePANR/ogf6ecB/qrP0hWB/l/FUHMGQaBvqeP+7IIgLdiCBx 7rL55W4AGXJSbqrwhq7EVuc8OUSj9b4W9nTx+Z9v -----END CERTIFICATE-----Generated at Wed May 13 02:26:33 2026 by rpki-client