$ rpki-client -vvf rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa File: 32372e3131322e37302e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: /N5wTnzqjzFsnj42mRLwrc4fGmzK+1uIwKiyAnk610A= Subject key identifier: 03:F4:08:FE:B4:BE:4D:83:34:60:11:34:5C:04:AE:C5:23:06:CB:46 Certificate issuer: /CN=DBEB5FC891CC0A8620A52508E67BB129C41E31C2 Certificate serial: 3B109CA07805A8D6324DAE913A08F745439B0A34 Authority key identifier: DB:EB:5F:C8:91:CC:0A:86:20:A5:25:08:E6:7B:B1:29:C4:1E:31:C2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa Signing time: Sun 03 May 2026 03:15:19 +0000 ROA not before: Sun 03 May 2026 03:10:19 +0000 ROA not after: Sun 02 May 2027 03:15:19 +0000 asID: 46063 IP address blocks: 27.112.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.crl rsync://rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:10:9c:a0:78:05:a8:d6:32:4d:ae:91:3a:08:f7:45:43:9b:0a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBEB5FC891CC0A8620A52508E67BB129C41E31C2 Validity Not Before: May 3 03:10:19 2026 GMT Not After : May 2 03:15:19 2027 GMT Subject: CN=03F408FEB4BE4D83346011345C04AEC52306CB46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e6:9d:56:26:14:61:2b:09:7b:e0:e8:13:1c: d0:31:74:38:65:ae:f6:3f:82:ba:61:7a:ef:b6:62: 4f:c0:cd:43:65:f0:fe:c7:48:2e:d8:b1:fe:73:80: 70:e0:34:e7:a6:3e:e5:af:77:4b:23:f6:ae:a7:8b: b5:73:d4:87:a7:f0:c0:06:c7:bb:05:3f:95:9d:d5: 8a:66:99:2b:cb:e8:43:b4:c1:5a:eb:cb:0f:d5:51: 06:ed:04:cf:37:fa:21:e5:54:09:d8:6b:56:19:44: 5b:28:a3:5b:7a:38:10:5c:84:92:14:c0:30:6e:ba: 60:6f:03:92:83:74:6c:29:c6:b2:9a:8a:aa:d1:26: 31:10:49:1a:e7:de:fa:1c:cf:b6:f5:e3:da:fc:cb: 7d:10:16:d5:13:16:57:1e:e4:51:00:98:55:64:5f: 24:3d:c3:d6:cc:4f:31:c4:74:fe:33:40:46:fd:30: 88:0c:54:f8:76:10:2d:c0:68:93:b4:25:0b:1e:48: e1:94:21:91:6f:0e:10:5e:f4:26:d0:4e:2c:f7:f1: 43:2a:7d:04:df:41:e6:8a:c7:a0:59:ce:18:22:94: 86:fc:4c:f8:32:92:2f:2d:85:82:3d:e5:a0:65:b4: d0:be:d1:f5:b9:5e:fb:5c:99:c6:53:c1:21:d4:45: 13:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F4:08:FE:B4:BE:4D:83:34:60:11:34:5C:04:AE:C5:23:06:CB:46 X509v3 Authority Key Identifier: keyid:DB:EB:5F:C8:91:CC:0A:86:20:A5:25:08:E6:7B:B1:29:C4:1E:31:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DBEB5FC891CC0A8620A52508E67BB129C41E31C2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37302e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.70.0/24 Signature Algorithm: sha256WithRSAEncryption a4:66:f7:56:6d:e6:35:52:c5:06:52:37:ea:9f:b6:e0:8a:31: a9:6a:a5:3a:36:c2:15:f2:00:cc:07:36:a0:6c:40:f3:5a:cf: 62:e1:0d:34:17:9e:a8:86:2e:a5:a3:8b:46:a8:73:c0:8c:22: b2:60:b3:c8:f3:88:7d:4d:0e:f5:e9:22:9c:7a:8d:e3:51:4d: df:af:eb:91:34:c5:02:55:0a:a8:46:ed:7d:fb:01:8a:93:e6: 0a:5b:2a:d5:68:93:8e:66:b7:47:13:d5:34:85:d7:ad:06:ee: 1a:4e:b9:0c:d5:b4:68:d9:1d:b6:27:63:07:c3:07:a0:8a:fb: da:a0:10:70:43:29:f2:ff:cd:57:27:cf:57:66:6e:1d:ec:a6: 02:69:64:a4:23:2e:58:b8:0e:f2:3f:4d:eb:79:27:6e:22:33: d4:f5:7b:70:4f:76:24:ac:6d:bf:a5:5d:3d:b0:6e:49:62:47: 5e:ee:3f:a7:1b:a1:70:70:7c:ec:15:05:22:e8:99:1b:db:7d: 22:91:79:98:b1:57:13:55:b5:13:97:6f:b3:40:93:0c:d9:4e: c5:49:8b:93:89:e3:a6:11:a2:fe:77:a6:54:40:ca:36:3b:62: 2f:69:25:93:d5:b9:82:9a:45:92:2e:3e:bc:aa:77:54:43:99: ca:f1:c0:88 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOxCcoHgFqNYyTa6ROgj3RUObCjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFQjVGQzg5MUNDMEE4NjIwQTUyNTA4RTY3QkIxMjlD NDFFMzFDMjAeFw0yNjA1MDMwMzEwMTlaFw0yNzA1MDIwMzE1MTlaMDMxMTAvBgNV BAMTKDAzRjQwOEZFQjRCRTREODMzNDYwMTEzNDVDMDRBRUM1MjMwNkNCNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh5p1WJhRhKwl74OgTHNAxdDhl rvY/grpheu+2Yk/AzUNl8P7HSC7Ysf5zgHDgNOemPuWvd0sj9q6ni7Vz1Ien8MAG x7sFP5Wd1YpmmSvL6EO0wVrryw/VUQbtBM83+iHlVAnYa1YZRFsoo1t6OBBchJIU wDBuumBvA5KDdGwpxrKaiqrRJjEQSRrn3vocz7b149r8y30QFtUTFlce5FEAmFVk XyQ9w9bMTzHEdP4zQEb9MIgMVPh2EC3AaJO0JQseSOGUIZFvDhBe9CbQTiz38UMq fQTfQeaKx6BZzhgilIb8TPgyki8thYI95aBltNC+0fW5XvtcmcZTwSHURRMLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUA/QI/rS+TYM0YBE0XASuxSMGy0YwHwYDVR0j BBgwFoAU2+tfyJHMCoYgpSUI5nuxKcQeMcIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWFkMWUxNmEtMGE0ZC00NGIxLTk4NDUtOWMwY2Q3YTZmMzhmLzAvREJFQjVGQzg5 MUNDMEE4NjIwQTUyNTA4RTY3QkIxMjlDNDFFMzFDMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQkVCNUZDODkxQ0MwQTg2MjBBNTI1MDhFNjdCQjEyOUM0MUUz MUMyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzczMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEYwDQYJKoZIhvcN AQELBQADggEBAKRm91Zt5jVSxQZSN+qftuCKMalqpTo2whXyAMwHNqBsQPNaz2Lh DTQXnqiGLqWji0aoc8CMIrJgs8jziH1NDvXpIpx6jeNRTd+v65E0xQJVCqhG7X37 AYqT5gpbKtVok45mt0cT1TSF160G7hpOuQzVtGjZHbYnYwfDB6CK+9qgEHBDKfL/ zVcnz1dmbh3spgJpZKQjLli4DvI/Tet5J24iM9T1e3BPdiSsbb+lXT2wbkliR17u P6cboXBwfOwVBSLomRvbfSKReZixVxNVtROXb7NAkwzZTsVJi5OJ46YRov53plRA yjY7Yi9pJZPVuYKaRZIuPryqd1RDmcrxwIg= -----END CERTIFICATE-----Generated at Wed May 13 03:16:56 2026 by rpki-client