$ rpki-client -vvf rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133302e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3133302e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 06wjmOuYkA4tiYV2JR66PII+XHhmAVXP9Tpp2MUNIn0= Subject key identifier: 33:8D:1F:E1:D4:91:91:B8:C6:DD:76:EB:13:3D:AF:03:3B:39:CE:0C Certificate issuer: /CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Certificate serial: 11D0B6F84EE7F41BE95FCEEB3C2C571BF847AD12 Authority key identifier: 2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133302e302f32342d3234203d3e2039373934.roa Signing time: Sun 03 May 2026 03:17:08 +0000 ROA not before: Sun 03 May 2026 03:12:08 +0000 ROA not after: Sun 02 May 2027 03:17:08 +0000 asID: 9794 IP address blocks: 115.178.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d0:b6:f8:4e:e7:f4:1b:e9:5f:ce:eb:3c:2c:57:1b:f8:47:ad:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB08023BB428AE4D02727C96B069C5F59CEE8A3 Validity Not Before: May 3 03:12:08 2026 GMT Not After : May 2 03:17:08 2027 GMT Subject: CN=338D1FE1D49191B8C6DD76EB133DAF033B39CE0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7e:53:0f:e5:4b:84:ee:1f:1e:4e:48:d8:f1: 93:df:a3:99:15:c5:c4:c1:da:d4:ee:03:78:8c:c4: 29:b5:73:a5:85:7f:39:57:d0:0c:46:be:16:75:b9: 87:31:1a:0d:a7:aa:b6:0e:19:ff:1a:64:44:c4:88: c8:7d:9e:eb:2e:5d:3a:08:6d:04:cb:c7:df:0c:d0: 5d:ac:09:28:5a:78:00:e9:67:68:c5:d9:e7:4b:34: 65:f8:66:99:5c:5e:ab:c2:d8:54:11:a3:67:f3:ec: d7:df:ac:8d:0f:70:21:ea:86:71:e6:c0:18:c3:45: 92:5a:f7:df:9d:bc:1d:88:c6:26:f8:01:73:a7:49: f1:1f:15:88:6e:66:35:a1:0c:ea:60:ed:a9:22:23: e7:e9:da:8d:cd:df:4d:d5:7a:83:b7:5f:2e:e0:59: 14:80:db:67:1e:d1:d1:be:8e:14:22:67:7d:c5:a0: 44:71:78:42:20:79:f8:7e:6c:d9:85:f3:36:c3:99: 61:6a:bb:9a:ed:2e:01:a6:1c:95:90:6f:74:c8:94: 58:56:a0:23:bf:50:7d:4c:7b:93:88:29:66:b6:42: 80:c2:28:cb:36:ac:fc:6c:d3:c1:3b:03:5e:70:83: 36:5a:54:b3:3f:3e:dc:76:82:97:92:1c:d4:b1:74: ee:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8D:1F:E1:D4:91:91:B8:C6:DD:76:EB:13:3D:AF:03:3B:39:CE:0C X509v3 Authority Key Identifier: keyid:2C:B0:80:23:BB:42:8A:E4:D0:27:27:C9:6B:06:9C:5F:59:CE:E8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CB08023BB428AE4D02727C96B069C5F59CEE8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133302e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.130.0/24 Signature Algorithm: sha256WithRSAEncryption 18:18:4c:fd:30:85:3d:a3:b0:d9:b0:90:c9:17:72:e7:6b:85: f5:ba:10:40:a3:40:91:5b:92:ea:41:fe:1d:31:95:7d:8c:e8: c1:c7:1e:a1:2e:dc:54:fd:25:bf:26:25:4d:f4:64:dd:30:7a: 3b:92:66:4b:2b:6e:e1:22:0a:4c:71:b9:22:ca:17:73:b4:05: d3:c4:9e:17:ad:26:e7:97:7c:20:7c:3d:95:cb:14:20:d4:a7: 91:df:26:df:23:ea:cd:f7:92:0f:cc:5f:ed:a3:af:b9:24:a2: da:0a:10:12:9c:66:e1:d7:04:74:7b:b3:c1:81:25:62:85:2f: 88:19:d4:00:fb:48:a8:26:d8:c8:d1:15:b1:15:16:72:46:f4: ab:bb:0a:e7:1b:91:60:78:20:e6:41:b4:e7:da:13:17:4a:3f: f4:18:9c:0b:2b:b5:b3:9f:13:fd:b6:75:2b:c6:36:1f:a6:0a: 43:4e:c9:85:52:75:84:00:a2:1f:62:e8:e6:be:dd:3f:a5:29: cf:0c:a7:cd:23:22:4a:4d:7e:33:e4:46:d2:00:8a:9c:76:4c: 7b:29:0b:ad:ec:6b:df:b1:01:c4:ae:69:d6:f1:98:08:8c:6e: 65:56:1a:d8:cd:02:e2:8a:46:6d:70:b8:4e:7d:76:44:03:15: 68:3e:d1:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEdC2+E7n9BvpX87rPCxXG/hHrRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMDgwMjNCQjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1 OUNFRThBMzAeFw0yNjA1MDMwMzEyMDhaFw0yNzA1MDIwMzE3MDhaMDMxMTAvBgNV BAMTKDMzOEQxRkUxRDQ5MTkxQjhDNkRENzZFQjEzM0RBRjAzM0IzOUNFMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVflMP5UuE7h8eTkjY8ZPfo5kV xcTB2tTuA3iMxCm1c6WFfzlX0AxGvhZ1uYcxGg2nqrYOGf8aZETEiMh9nusuXToI bQTLx98M0F2sCShaeADpZ2jF2edLNGX4ZplcXqvC2FQRo2fz7NffrI0PcCHqhnHm wBjDRZJa99+dvB2Ixib4AXOnSfEfFYhuZjWhDOpg7akiI+fp2o3N303VeoO3Xy7g WRSA22ce0dG+jhQiZ33FoERxeEIgefh+bNmF8zbDmWFqu5rtLgGmHJWQb3TIlFhW oCO/UH1Me5OIKWa2QoDCKMs2rPxs08E7A15wgzZaVLM/Ptx2gpeSHNSxdO5nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUM40f4dSRkbjG3XbrEz2vAzs5zgwwHwYDVR0j BBgwFoAULLCAI7tCiuTQJyfJawacX1nO6KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjM0ZWNjNDAtNmI4NC00OWU4LWI2MGItNmU5OTA0MTI4Y2E4LzAvMkNCMDgwMjNC QjQyOEFFNEQwMjcyN0M5NkIwNjlDNUY1OUNFRThBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0IwODAyM0JCNDI4QUU0RDAyNzI3Qzk2QjA2OUM1RjU5Q0VF OEEzLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygjANBgkqhkiG 9w0BAQsFAAOCAQEAGBhM/TCFPaOw2bCQyRdy52uF9boQQKNAkVuS6kH+HTGVfYzo wcceoS7cVP0lvyYlTfRk3TB6O5JmSytu4SIKTHG5IsoXc7QF08SeF60m55d8IHw9 lcsUINSnkd8m3yPqzfeSD8xf7aOvuSSi2goQEpxm4dcEdHuzwYElYoUviBnUAPtI qCbYyNEVsRUWckb0q7sK5xuRYHgg5kG059oTF0o/9BicCyu1s58T/bZ1K8Y2H6YK Q07JhVJ1hACiH2Lo5r7dP6UpzwynzSMiSk1+M+RG0gCKnHZMeykLrexr37EBxK5p 1vGYCIxuZVYa2M0C4opGbXC4Tn12RAMVaD7R+A== -----END CERTIFICATE-----Generated at Wed May 13 04:53:25 2026 by rpki-client