$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa File: 3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: aox2X7SgWnRXu8G+kGHpNIJb4RAjQYMcZgSqdVFmhhE= Subject key identifier: 13:40:33:4C:29:20:63:C5:E3:D5:E4:58:32:FD:34:00:C5:68:2B:87 Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 7FAC337EB2C2966445C8918FB54CA22EF6ADA419 Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 03:15:15 +0000 ROA not before: Sun 03 May 2026 03:10:15 +0000 ROA not after: Sun 02 May 2027 03:15:15 +0000 asID: 4787 IP address blocks: 125.208.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ac:33:7e:b2:c2:96:64:45:c8:91:8f:b5:4c:a2:2e:f6:ad:a4:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:15 2026 GMT Not After : May 2 03:15:15 2027 GMT Subject: CN=1340334C292063C5E3D5E45832FD3400C5682B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:ed:3a:13:d6:4a:66:a9:d1:a3:b0:16:6a: ad:87:8f:d0:b6:b7:32:4e:49:b6:4a:7f:12:c0:02: 44:6c:91:bb:03:51:ed:00:db:6a:27:77:ab:4a:cb: 8d:4f:6e:07:cf:8b:42:25:73:87:66:b4:2e:c1:1a: fa:18:5c:e7:19:7a:5a:a9:b6:94:98:ce:db:fd:1c: ae:55:9d:6e:c2:20:55:19:2d:6e:94:ac:3d:e6:a6: 42:db:d0:d6:7b:d8:5f:3f:e5:11:fe:df:c4:08:14: 27:ea:95:90:ab:16:17:d9:48:1e:82:69:72:bf:e2: 42:88:03:6c:68:e6:7b:7c:7c:36:b3:8d:48:83:d3: 60:6b:75:f8:ad:83:d8:b5:30:9a:a0:6a:07:82:44: ef:f7:78:7c:1b:a7:af:4b:53:fb:12:8a:3b:d2:93: b7:43:00:9d:b5:6c:8d:e1:1b:ee:46:aa:d2:01:c9: 71:90:82:e0:dc:1c:3d:96:10:b4:5a:cf:85:ae:84: 2c:e0:69:68:2f:b3:83:8b:9e:22:64:9f:17:4f:bc: cb:78:b2:d0:e7:19:70:4c:2c:cb:12:ab:3b:52:b7: 62:c5:c8:bc:5f:06:99:e8:c4:bf:4c:e0:0b:c4:f4: a2:89:af:fd:8a:83:59:46:f0:da:be:f8:44:9d:77: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:40:33:4C:29:20:63:C5:E3:D5:E4:58:32:FD:34:00:C5:68:2B:87 X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.208.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:db:61:7b:6f:40:a6:27:49:ec:5e:e5:c3:cc:83:03:5d:da: ab:d9:50:b2:e4:9c:04:30:ba:3a:eb:0d:5a:db:ca:19:28:1e: e1:3a:92:cb:fe:31:ba:e0:c3:db:70:99:d0:f4:76:3d:6e:70: ba:d0:70:1b:8f:ac:02:69:19:92:d3:fc:ac:a0:e1:c9:1b:7f: 15:9e:dc:d8:2f:21:7f:a1:89:64:86:d4:1f:f1:ee:33:90:09: 08:bc:75:20:15:1f:f8:5a:22:cb:eb:50:a3:3b:2f:80:1e:8e: 30:0b:7f:69:14:39:43:60:ff:68:6b:94:21:5d:30:ae:64:4e: 08:5e:ff:a4:4f:a3:19:9f:a3:9a:00:f6:9b:07:b5:78:5a:ea: 83:54:c6:37:03:a3:a0:df:23:3f:e2:95:93:fb:79:53:27:82: a5:32:f9:c5:cc:78:d5:ed:45:09:c7:bc:be:3b:72:8c:ea:26: 80:58:49:db:c9:f4:46:5a:f7:ed:bd:1f:46:07:5e:3b:be:f3: 59:f8:99:18:55:0c:74:fd:b4:db:8e:4a:46:a6:23:5f:45:45: 07:e1:df:df:60:2b:59:a4:15:dd:13:ec:d2:47:eb:74:30:ba: 85:ad:f6:00:92:79:6b:c2:2f:1a:8b:a0:b4:95:b7:39:a6:83: d7:44:71:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf6wzfrLClmRFyJGPtUyiLvatpBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMTVaFw0yNzA1MDIwMzE1MTVaMDMxMTAvBgNV BAMTKDEzNDAzMzRDMjkyMDYzQzVFM0Q1RTQ1ODMyRkQzNDAwQzU2ODJCODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTHu06E9ZKZqnRo7AWaq2Hj9C2 tzJOSbZKfxLAAkRskbsDUe0A22ond6tKy41PbgfPi0Ilc4dmtC7BGvoYXOcZelqp tpSYztv9HK5VnW7CIFUZLW6UrD3mpkLb0NZ72F8/5RH+38QIFCfqlZCrFhfZSB6C aXK/4kKIA2xo5nt8fDazjUiD02Brdfitg9i1MJqgageCRO/3eHwbp69LU/sSijvS k7dDAJ21bI3hG+5GqtIByXGQguDcHD2WELRaz4WuhCzgaWgvs4OLniJknxdPvMt4 stDnGXBMLMsSqztSt2LFyLxfBpnoxL9M4AvE9KKJr/2Kg1lG8Nq++ESdd1T5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUE0AzTCkgY8Xj1eRYMv00AMVoK4cwHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzIzNTJlMzIzMDM4MmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBn3QgDANBgkqhkiG 9w0BAQsFAAOCAQEAPtthe29ApidJ7F7lw8yDA13aq9lQsuScBDC6OusNWtvKGSge 4TqSy/4xuuDD23CZ0PR2PW5wutBwG4+sAmkZktP8rKDhyRt/FZ7c2C8hf6GJZIbU H/HuM5AJCLx1IBUf+Foiy+tQozsvgB6OMAt/aRQ5Q2D/aGuUIV0wrmROCF7/pE+j GZ+jmgD2mwe1eFrqg1TGNwOjoN8jP+KVk/t5UyeCpTL5xcx41e1FCce8vjtyjOom gFhJ28n0Rlr37b0fRgdeO77zWfiZGFUMdP20245KRqYjX0VFB+Hf32ArWaQV3RPs 0kfrdDC6ha32AJJ5a8IvGougtJW3OaaD10RxOg== -----END CERTIFICATE-----Generated at Wed May 13 03:16:40 2026 by rpki-client