$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313335343738.roa File: 3130312e3132382e36342e302f31382d3234203d3e20313335343738.roa (raw, json) Hash identifier: 99+LHdnDZ+xXSQ4fS/K7+l08VVwSgr8ZFAwx6f4ta24= Subject key identifier: 0F:BD:A7:7D:5A:53:E9:F8:91:73:DA:ED:E6:EB:9C:DE:8F:06:75:D4 Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 175196B3FEB0551EAE1AD6A7077E4B565001B44B Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 03:15:09 +0000 ROA not before: Sun 03 May 2026 03:10:09 +0000 ROA not after: Sun 02 May 2027 03:15:09 +0000 asID: 135478 IP address blocks: 101.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:51:96:b3:fe:b0:55:1e:ae:1a:d6:a7:07:7e:4b:56:50:01:b4:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:09 2026 GMT Not After : May 2 03:15:09 2027 GMT Subject: CN=0FBDA77D5A53E9F89173DAEDE6EB9CDE8F0675D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7c:fe:d4:67:79:68:62:d1:c2:74:be:f3:4c: e1:b6:1a:30:b8:77:e0:07:fa:b9:8a:09:da:e3:b0: ad:56:8d:92:70:d0:56:77:1a:35:16:f4:ca:5a:2e: e0:4c:a2:59:c7:26:c5:36:d9:03:12:a6:ef:79:2a: ef:fd:d8:cf:5d:ce:48:09:e2:2f:22:84:b3:88:a1: 57:78:80:dd:68:a1:91:2d:33:45:e0:9a:b2:0d:b8: a8:23:f6:fb:46:a3:52:99:ac:ec:b6:c9:e7:f6:83: 6e:f9:30:97:e4:47:4d:4b:16:43:da:89:41:66:b3: ec:c2:9e:a8:d0:cb:34:2c:da:25:db:fd:61:b4:58: 83:36:77:05:b0:4c:76:2c:68:00:3e:31:46:1d:1d: 1c:2e:89:e7:4b:ac:ac:c1:db:33:21:6f:17:1a:34: c8:cf:e7:14:83:5f:98:01:00:d7:e1:64:d8:3f:23: 2b:7d:0e:06:79:bd:41:1a:1f:08:d1:a0:56:64:a2: ef:00:48:d3:e2:ee:a4:5f:10:e2:94:92:0c:68:2d: a4:ec:d7:d8:c1:76:b7:cc:d8:a6:fa:a3:8e:2b:a1: 40:4e:df:e6:b3:9e:a3:16:f5:97:56:e8:cc:92:ba: c3:df:f1:4b:19:02:35:bb:50:52:a7:a8:6f:5a:27: c8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BD:A7:7D:5A:53:E9:F8:91:73:DA:ED:E6:EB:9C:DE:8F:06:75:D4 X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36342e302f31382d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption 01:0b:72:ce:40:75:3f:df:5c:b5:1a:2f:26:19:e1:a3:8b:0c: bf:59:e7:fd:f2:aa:f3:d9:ae:0e:94:1f:b8:31:eb:4a:9a:ae: f9:db:fd:6e:71:f0:f3:73:d1:db:27:19:69:e8:03:89:db:80: 2b:14:45:09:eb:67:24:3b:e4:34:19:9f:4d:51:55:e9:f5:c3: 0f:30:30:c2:dc:b0:3c:b0:2d:5d:2a:ba:aa:9e:80:97:ab:b4: 14:bc:a9:97:c0:22:72:95:57:63:9f:7b:25:f6:92:41:76:8d: b2:fb:ba:83:7c:08:3b:de:51:a5:c0:4d:04:17:32:40:b4:ef: 5a:0f:09:9e:df:70:0f:65:56:26:85:8a:b1:cf:71:69:00:65: 40:a2:fd:f6:35:1e:c2:a9:07:35:b7:b0:bc:bd:d4:67:66:d5: e0:e1:e2:df:92:ff:82:a6:dc:ca:db:e0:ee:63:6f:c3:cc:b9: d2:25:d4:c8:e5:d8:a5:19:1c:d9:4e:cd:ee:9b:d6:5b:3b:61: f6:e7:d8:32:d9:69:42:cf:23:99:8a:f7:e3:fd:10:13:15:54: 6d:24:fc:aa:33:5a:11:2e:a4:b5:d3:fa:07:3d:ec:d5:d9:7a: 95:bf:6e:51:56:73:3e:56:a2:27:f9:d0:2f:9c:bb:ec:03:93: ac:2c:03:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF1GWs/6wVR6uGtanB35LVlABtEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMDlaFw0yNzA1MDIwMzE1MDlaMDMxMTAvBgNV BAMTKDBGQkRBNzdENUE1M0U5Rjg5MTczREFFREU2RUI5Q0RFOEYwNjc1RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqfP7UZ3loYtHCdL7zTOG2GjC4 d+AH+rmKCdrjsK1WjZJw0FZ3GjUW9MpaLuBMolnHJsU22QMSpu95Ku/92M9dzkgJ 4i8ihLOIoVd4gN1ooZEtM0XgmrINuKgj9vtGo1KZrOy2yef2g275MJfkR01LFkPa iUFms+zCnqjQyzQs2iXb/WG0WIM2dwWwTHYsaAA+MUYdHRwuiedLrKzB2zMhbxca NMjP5xSDX5gBANfhZNg/Iyt9DgZ5vUEaHwjRoFZkou8ASNPi7qRfEOKUkgxoLaTs 19jBdrfM2Kb6o44roUBO3+aznqMW9ZdW6MySusPf8UsZAjW7UFKnqG9aJ8jnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD72nfVpT6fiRc9rt5uuc3o8GddQwHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzNjM0MmUzMDJmMzEz ODJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGZYBAMA0GCSqG SIb3DQEBCwUAA4IBAQABC3LOQHU/31y1Gi8mGeGjiwy/Wef98qrz2a4OlB+4MetK mq752/1ucfDzc9HbJxlp6AOJ24ArFEUJ62ckO+Q0GZ9NUVXp9cMPMDDC3LA8sC1d KrqqnoCXq7QUvKmXwCJylVdjn3sl9pJBdo2y+7qDfAg73lGlwE0EFzJAtO9aDwme 33APZVYmhYqxz3FpAGVAov32NR7CqQc1t7C8vdRnZtXg4eLfkv+CptzK2+DuY2/D zLnSJdTI5dilGRzZTs3um9ZbO2H259gy2WlCzyOZivfj/RATFVRtJPyqM1oRLqS1 0/oHPezV2XqVv25RVnM+VqIn+dAvnLvsA5OsLAMi -----END CERTIFICATE-----Generated at Wed May 13 04:20:04 2026 by rpki-client