$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36362e302f32332d3234203d3e20313335343738.roa File: 3130312e3132382e36362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 1H3PSuEvCc4YKCR6kgpSZidVqJxCnAhidJTquYvi5XY= Subject key identifier: A9:D5:BB:71:56:F5:3B:3D:2C:A9:BC:7D:4C:0A:5D:6C:07:16:ED:8F Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 3B22F739847E368B2F66D89FFEDF9C56CC357AEC Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36362e302f32332d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 03:15:08 +0000 ROA not before: Sun 03 May 2026 03:10:08 +0000 ROA not after: Sun 02 May 2027 03:15:08 +0000 asID: 135478 IP address blocks: 101.128.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:22:f7:39:84:7e:36:8b:2f:66:d8:9f:fe:df:9c:56:cc:35:7a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:08 2026 GMT Not After : May 2 03:15:08 2027 GMT Subject: CN=A9D5BB7156F53B3D2CA9BC7D4C0A5D6C0716ED8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:33:2e:27:3b:b4:d3:0a:1a:00:2e:6f:1a:9f: 3c:a0:50:68:b0:00:fa:78:47:d1:06:0d:55:07:83: 0e:0a:e1:46:23:60:88:fd:49:f5:59:f7:fc:d4:6b: 89:2b:07:81:cd:5f:92:23:86:ec:56:65:b1:24:64: c0:01:3b:f7:e8:7e:58:4e:22:60:3b:fc:a1:e7:bc: c4:48:53:fc:3c:6c:76:bf:f7:89:01:05:73:22:30: a2:a2:ba:3d:1a:02:71:4a:17:c5:d5:27:24:09:cb: 07:ff:6f:40:ff:d9:c1:e7:a9:f3:bc:01:bc:09:ea: 9b:5d:8f:89:78:f2:ca:b5:a9:cc:8b:99:a4:9c:c4: 63:e1:47:c7:f4:66:46:6a:be:87:1f:da:85:81:25: 3a:f0:1a:43:eb:05:c3:53:94:fe:68:d4:cb:ec:9f: 6a:45:12:f3:7a:b8:1b:df:51:7f:7b:98:19:4b:54: 9a:13:0d:bf:c4:86:59:3b:3d:8a:5d:a0:06:b7:0d: 91:34:4b:f9:4b:c1:6d:c4:64:29:c8:73:0f:b2:33: de:f8:f5:c2:e0:7f:48:dd:41:90:fa:40:28:f6:ac: 44:00:0e:0b:8b:16:f0:ba:ec:d1:c2:bb:ea:ae:86: da:c6:30:75:89:25:86:82:28:ad:64:f6:bf:00:09: 84:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D5:BB:71:56:F5:3B:3D:2C:A9:BC:7D:4C:0A:5D:6C:07:16:ED:8F X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e3132382e36362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.128.66.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:c0:52:1e:1b:c9:d5:da:96:5b:4e:28:05:63:fd:9a:d9:43: bd:cf:1d:a2:b9:b0:bf:a6:dc:4a:ce:c8:81:0b:b4:51:5b:b2: d8:51:4b:94:29:57:f4:74:20:12:c2:12:50:59:fa:a4:bd:03: a9:d1:b3:ae:43:a5:c3:63:59:cc:8e:51:11:26:25:1d:da:9f: 3c:0d:a8:b0:aa:dd:11:4d:93:8c:98:e8:27:f4:47:d1:1f:30: dc:06:bd:5e:25:5b:00:28:6f:60:3a:b6:ad:17:44:5d:9f:10: ab:27:8e:9f:7f:6e:72:dd:8f:ed:2e:78:48:bf:e4:ab:cf:5a: 21:59:15:c4:af:11:61:10:85:b2:e2:e9:e9:b3:2d:f4:b8:39: 66:3f:6a:0d:7a:35:2e:7c:09:2d:33:f7:ea:01:1f:15:41:92: 15:87:d5:b6:3c:85:ef:4a:40:73:7d:d2:0b:a8:8d:50:f1:68: c2:09:41:16:20:83:3b:b0:fd:4b:c8:bb:d4:06:a0:0e:07:6b: 6b:a5:03:fa:70:ff:10:2c:e0:b6:e1:5a:36:df:2d:83:16:aa: 72:02:50:28:d3:bb:fd:38:90:5d:2e:ba:0e:66:d8:5b:b8:b5: 7e:bf:39:c4:29:cd:46:e4:08:b2:07:92:1f:9a:15:30:82:0e: ec:d5:f5:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOyL3OYR+NosvZtif/t+cVsw1euwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMDhaFw0yNzA1MDIwMzE1MDhaMDMxMTAvBgNV BAMTKEE5RDVCQjcxNTZGNTNCM0QyQ0E5QkM3RDRDMEE1RDZDMDcxNkVEOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbMy4nO7TTChoALm8anzygUGiw APp4R9EGDVUHgw4K4UYjYIj9SfVZ9/zUa4krB4HNX5IjhuxWZbEkZMABO/foflhO ImA7/KHnvMRIU/w8bHa/94kBBXMiMKKiuj0aAnFKF8XVJyQJywf/b0D/2cHnqfO8 AbwJ6ptdj4l48sq1qcyLmaScxGPhR8f0ZkZqvocf2oWBJTrwGkPrBcNTlP5o1Mvs n2pFEvN6uBvfUX97mBlLVJoTDb/Ehlk7PYpdoAa3DZE0S/lLwW3EZCnIcw+yM974 9cLgf0jdQZD6QCj2rEQADguLFvC67NHCu+quhtrGMHWJJYaCKK1k9r8ACYQbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqdW7cVb1Oz0sqbx9TApdbAcW7Y8wHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzEzMjM4MmUzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZYBCMA0GCSqG SIb3DQEBCwUAA4IBAQB7wFIeG8nV2pZbTigFY/2a2UO9zx2iubC/ptxKzsiBC7RR W7LYUUuUKVf0dCASwhJQWfqkvQOp0bOuQ6XDY1nMjlERJiUd2p88Daiwqt0RTZOM mOgn9EfRHzDcBr1eJVsAKG9gOratF0RdnxCrJ46ff25y3Y/tLnhIv+Srz1ohWRXE rxFhEIWy4unpsy30uDlmP2oNejUufAktM/fqAR8VQZIVh9W2PIXvSkBzfdILqI1Q 8WjCCUEWIIM7sP1LyLvUBqAOB2trpQP6cP8QLOC24Vo23y2DFqpyAlAo07v9OJBd LroOZthbuLV+vznEKc1G5AiyB5IfmhUwgg7s1fX4 -----END CERTIFICATE-----Generated at Wed May 13 03:55:21 2026 by rpki-client