$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa File: 3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: cChkhgKm+2KNkrgQft7uIxPkb8RhfpDlI+RUTMMAntw= Subject key identifier: 76:F9:12:25:18:FB:43:A1:BF:37:B2:9F:94:57:4D:4C:22:A7:B5:6E Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 29487766D7E87C2544C5D18A1D6DF6E37933B35B Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa Signing time: Sun 03 May 2026 03:15:05 +0000 ROA not before: Sun 03 May 2026 03:10:05 +0000 ROA not after: Sun 02 May 2027 03:15:05 +0000 asID: 4787 IP address blocks: 210.210.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:48:77:66:d7:e8:7c:25:44:c5:d1:8a:1d:6d:f6:e3:79:33:b3:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:05 2026 GMT Not After : May 2 03:15:05 2027 GMT Subject: CN=76F9122518FB43A1BF37B29F94574D4C22A7B56E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:ad:30:20:64:a9:8f:4d:96:2d:22:21:8e: a4:b8:68:e8:42:97:14:27:68:b9:14:26:8f:b5:85: 70:6a:8f:26:44:0c:17:47:d6:e5:01:36:4e:27:18: 4e:c9:e9:5f:c8:e1:2b:30:51:b6:39:bb:9e:97:a3: 0b:63:63:f4:df:96:7c:bf:8e:73:52:78:76:ab:cf: b4:a7:ce:ea:95:af:a6:18:02:06:1f:5a:7c:93:c7: 03:4c:51:e2:aa:fa:b5:12:f1:b8:94:57:9e:16:b3: 99:e1:8b:bc:23:5c:e6:05:d1:ca:e4:c6:6e:15:dc: 7d:85:6e:ff:21:0e:4a:b2:43:49:17:1b:c7:b6:d8: 4e:ea:9e:60:69:62:bc:e2:37:82:97:af:09:8e:c0: 44:44:0c:34:bb:e5:72:fe:6d:a4:b8:38:1d:ae:54: 80:85:08:cb:09:1d:26:82:36:77:4d:c3:a3:8a:1c: 15:5c:77:47:a8:12:28:d4:64:19:bf:ff:91:fd:23: 88:bc:5f:f7:7b:a8:45:3a:22:44:9b:18:1f:01:b2: 18:ff:48:d9:11:4e:66:a1:b7:47:b0:ba:78:15:13: af:31:8c:41:65:03:59:cc:0e:44:f0:8b:10:13:ea: 76:76:5f:78:88:d4:ed:fa:63:f8:f1:e9:1a:1b:a9: 2f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F9:12:25:18:FB:43:A1:BF:37:B2:9F:94:57:4D:4C:22:A7:B5:6E X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3231302e3231302e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.210.128.0/18 Signature Algorithm: sha256WithRSAEncryption cb:ae:03:3d:29:1c:97:4d:6a:8a:07:20:9b:f6:47:97:50:ca: f7:2d:dd:c6:75:94:df:74:e7:ef:08:16:b9:8f:1c:67:ac:34: 76:9c:58:1d:fa:54:50:3b:2d:d5:68:aa:47:d8:83:3f:60:2d: be:ef:a5:42:30:ab:23:e6:82:f2:b0:4b:ca:8a:6c:d7:c3:21: bf:c8:c2:f9:58:3e:6f:e8:a3:d3:00:4b:57:3b:36:2e:d9:b1: c0:1e:df:a1:f0:1d:48:ac:0d:77:20:15:39:54:59:96:39:3f: ab:2a:9e:1c:9f:0d:b0:15:74:bb:0a:ff:19:be:8f:a3:da:f3: f5:57:bf:d6:f9:0f:78:cb:b1:30:7b:91:5e:bb:64:7b:14:84: 9a:49:1c:42:db:fd:0e:08:6f:6d:7f:15:f6:3b:f3:44:e7:75: 4d:80:da:3f:2b:4b:2e:66:ba:4b:37:0c:4a:57:31:16:0a:29: 2a:a9:3f:e7:da:41:bc:8c:b5:aa:f7:86:8c:22:af:17:5e:88: 73:ce:48:89:83:28:93:81:fd:bd:2e:aa:f3:f1:26:28:a6:54: 01:f0:83:44:dd:59:24:28:18:06:91:84:2d:1b:1c:69:31:ea: 7a:f2:c7:13:6e:4e:e4:f7:8a:59:a2:26:51:ab:4b:df:3b:9a: 9b:cb:a8:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUh3ZtfofCVExdGKHW3243kzs1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMDVaFw0yNzA1MDIwMzE1MDVaMDMxMTAvBgNV BAMTKDc2RjkxMjI1MThGQjQzQTFCRjM3QjI5Rjk0NTc0RDRDMjJBN0I1NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Fa0wIGSpj02WLSIhjqS4aOhC lxQnaLkUJo+1hXBqjyZEDBdH1uUBNk4nGE7J6V/I4SswUbY5u56XowtjY/Tflny/ jnNSeHarz7SnzuqVr6YYAgYfWnyTxwNMUeKq+rUS8biUV54Ws5nhi7wjXOYF0crk xm4V3H2Fbv8hDkqyQ0kXG8e22E7qnmBpYrziN4KXrwmOwEREDDS75XL+baS4OB2u VICFCMsJHSaCNndNw6OKHBVcd0eoEijUZBm//5H9I4i8X/d7qEU6IkSbGB8Bshj/ SNkRTmaht0ewungVE68xjEFlA1nMDkTwixAT6nZ2X3iI1O36Y/jx6RobqS/vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdvkSJRj7Q6G/N7KflFdNTCKntW4wHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzEzMDJlMzIzMTMwMmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLSgDANBgkqhkiG 9w0BAQsFAAOCAQEAy64DPSkcl01qigcgm/ZHl1DK9y3dxnWU33Tn7wgWuY8cZ6w0 dpxYHfpUUDst1WiqR9iDP2Atvu+lQjCrI+aC8rBLyops18Mhv8jC+Vg+b+ij0wBL Vzs2LtmxwB7fofAdSKwNdyAVOVRZljk/qyqeHJ8NsBV0uwr/Gb6Po9rz9Ve/1vkP eMuxMHuRXrtkexSEmkkcQtv9DghvbX8V9jvzROd1TYDaPytLLma6SzcMSlcxFgop Kqk/59pBvIy1qveGjCKvF16Ic85IiYMok4H9vS6q8/EmKKZUAfCDRN1ZJCgYBpGE LRscaTHqevLHE25O5PeKWaImUatL3zuam8uoBA== -----END CERTIFICATE-----Generated at Wed May 13 02:12:49 2026 by rpki-client