$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa File: 3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa (raw, json) Hash identifier: Yz2BU+sizR5MaKXnmTSXZbcNfxY4e6NTRVofqsdo3Mc= Subject key identifier: 59:8F:AD:C5:20:24:D3:F7:D1:E5:26:20:54:C5:17:00:52:7D:EA:0F Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 0EAC88421AA3410DF7767D3417CA95D31444B7B5 Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 03:15:13 +0000 ROA not before: Sun 03 May 2026 03:10:13 +0000 ROA not after: Sun 02 May 2027 03:15:13 +0000 asID: 4787 IP address blocks: 116.206.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ac:88:42:1a:a3:41:0d:f7:76:7d:34:17:ca:95:d3:14:44:b7:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:13 2026 GMT Not After : May 2 03:15:13 2027 GMT Subject: CN=598FADC52024D3F7D1E5262054C51700527DEA0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e1:42:48:44:b7:05:35:52:76:a7:0a:12:6b: 0a:6c:d3:5f:04:58:05:a4:21:11:de:a3:33:5f:83: ec:48:3d:1a:94:b9:78:8e:0d:7e:28:6c:02:00:f9: a7:27:14:a0:9a:82:8d:97:0a:69:80:2c:d8:3a:d7: 7f:63:0f:9a:e5:75:be:42:35:36:ff:f5:97:dd:45: 33:d6:92:e6:b8:b4:d6:f0:66:17:60:6c:15:65:0a: 2f:37:5a:74:c5:9f:be:2a:e7:36:b2:72:26:41:cf: af:d5:80:c7:df:50:a6:ea:16:ad:67:ab:7b:a1:11: f0:d9:7f:74:ac:0b:b5:00:7b:34:90:b7:5d:2b:79: 72:c3:7d:18:41:1a:1e:bc:ed:36:44:18:17:1d:fc: cd:80:25:0c:23:b5:08:16:11:d9:d1:2f:66:12:ee: 63:66:c2:23:e5:e4:e2:69:19:ce:ef:a4:d4:9e:36: 79:13:77:7c:f5:30:a1:01:d4:e1:a1:4a:9a:91:bd: 74:a1:fd:4a:d8:e8:3b:7c:f4:bf:8e:24:51:87:fc: 8c:d4:e2:c4:34:d4:bc:ff:ee:1b:57:2d:61:2c:9f: 4b:65:cd:20:88:b3:ea:88:c1:32:aa:98:e7:27:95: 40:09:bc:b2:47:c6:ee:ea:44:ad:19:d9:d4:ac:0e: 29:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8F:AD:C5:20:24:D3:F7:D1:E5:26:20:54:C5:17:00:52:7D:EA:0F X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.206.240.0/22 Signature Algorithm: sha256WithRSAEncryption 35:2d:d1:3d:10:71:a4:58:76:11:ab:37:a4:4e:23:61:06:32: cb:e9:bc:5b:83:0a:f7:e9:e6:de:36:d7:31:77:b7:f7:9a:5d: 5d:24:a7:49:3e:54:47:9e:63:9d:3f:bc:47:b6:19:ca:41:21: c4:4f:49:90:94:a3:2e:66:dc:73:de:7f:68:7f:fb:77:d6:22: 1f:3e:78:66:4d:8e:f0:9c:d0:46:7b:1d:9d:4a:4f:09:5f:03: 07:93:9c:ba:06:5c:d5:46:c2:20:3c:fb:46:57:2a:cb:65:6f: ce:ae:23:b8:e0:f2:64:d7:80:4d:13:ae:0e:a8:75:3b:55:ae: f2:49:4c:bb:9c:dd:cb:1c:09:a7:5a:08:73:c3:bb:08:af:c8: 8b:2e:45:bb:a2:db:c3:16:35:d6:d0:fa:e6:3b:8a:30:97:fa: 13:b5:0e:b1:db:90:d5:7e:c7:b4:34:b8:9f:04:c5:c0:9f:41: 5a:de:26:72:23:45:f1:ae:06:90:a3:e3:9f:b2:0a:e8:1c:f0: 3a:34:07:2b:37:37:df:c7:f5:0d:38:a5:22:49:95:f8:ea:85: cb:f9:65:1f:9f:c7:2d:5d:e2:b2:20:52:da:c7:c8:92:be:e0: d9:f8:a7:3e:f4:92:a3:ca:bb:fd:52:14:dc:a5:f9:70:c4:a4: dd:80:d2:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDqyIQhqjQQ33dn00F8qV0xREt7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMTNaFw0yNzA1MDIwMzE1MTNaMDMxMTAvBgNV BAMTKDU5OEZBREM1MjAyNEQzRjdEMUU1MjYyMDU0QzUxNzAwNTI3REVBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW4UJIRLcFNVJ2pwoSawps018E WAWkIRHeozNfg+xIPRqUuXiODX4obAIA+acnFKCago2XCmmALNg6139jD5rldb5C NTb/9ZfdRTPWkua4tNbwZhdgbBVlCi83WnTFn74q5zayciZBz6/VgMffUKbqFq1n q3uhEfDZf3SsC7UAezSQt10reXLDfRhBGh687TZEGBcd/M2AJQwjtQgWEdnRL2YS 7mNmwiPl5OJpGc7vpNSeNnkTd3z1MKEB1OGhSpqRvXSh/UrY6Dt89L+OJFGH/IzU 4sQ01Lz/7htXLWEsn0tlzSCIs+qIwTKqmOcnlUAJvLJHxu7qRK0Z2dSsDilhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWY+txSAk0/fR5SYgVMUXAFJ96g8wHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzEzNjJlMzIzMDM2MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnTO8DANBgkqhkiG 9w0BAQsFAAOCAQEANS3RPRBxpFh2Eas3pE4jYQYyy+m8W4MK9+nm3jbXMXe395pd XSSnST5UR55jnT+8R7YZykEhxE9JkJSjLmbcc95/aH/7d9YiHz54Zk2O8JzQRnsd nUpPCV8DB5OcugZc1UbCIDz7Rlcqy2Vvzq4juODyZNeATROuDqh1O1Wu8klMu5zd yxwJp1oIc8O7CK/Iiy5Fu6LbwxY11tD65juKMJf6E7UOsduQ1X7HtDS4nwTFwJ9B Wt4mciNF8a4GkKPjn7IK6BzwOjQHKzc338f1DTilIkmV+OqFy/llH5/HLV3isiBS 2sfIkr7g2finPvSSo8q7/VIU3KX5cMSk3YDS1Q== -----END CERTIFICATE-----Generated at Wed May 13 02:59:37 2026 by rpki-client