$ rpki-client -vvf rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa File: 3131362e31322e34352e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: /Qbizla9Rd9j7hntYwBfkRjqiwhDVjGQMjdVjta/V4o= Subject key identifier: 40:72:77:D0:59:7A:A3:1C:39:62:31:15:5E:3D:5B:BA:08:48:98:91 Certificate issuer: /CN=A9DFB6024D05A37CA0C756EC747E898140885BC9 Certificate serial: 6CCD66A14B5E360801290C8FEF6114AD4D668156 Authority key identifier: A9:DF:B6:02:4D:05:A3:7C:A0:C7:56:EC:74:7E:89:81:40:88:5B:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa Signing time: Sun 03 May 2026 03:18:09 +0000 ROA not before: Sun 03 May 2026 03:13:09 +0000 ROA not after: Sun 02 May 2027 03:18:09 +0000 asID: 38165 IP address blocks: 116.12.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.crl rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:cd:66:a1:4b:5e:36:08:01:29:0c:8f:ef:61:14:ad:4d:66:81:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9DFB6024D05A37CA0C756EC747E898140885BC9 Validity Not Before: May 3 03:13:09 2026 GMT Not After : May 2 03:18:09 2027 GMT Subject: CN=407277D0597AA31C396231155E3D5BBA08489891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:db:67:ab:ce:6f:5a:65:99:1c:fc:0a:f0:c8: 06:4a:be:5b:0a:4d:4b:b8:a3:f8:1c:a7:1f:af:68: fc:53:4a:1d:bc:95:42:7c:47:ea:ae:67:ed:af:2c: 06:fe:5e:78:76:cb:d0:ba:98:0c:85:55:f5:e1:26: 5e:8c:83:60:30:78:78:c0:83:27:17:ac:40:f3:6e: 0a:7d:40:3e:5e:ea:ec:3e:11:bc:72:27:b9:de:5a: d3:f6:82:ad:67:ce:1e:82:d9:50:c0:a8:1c:0c:68: 11:c1:a1:ac:c5:64:22:00:2b:79:59:57:34:11:60: 75:20:4d:47:0f:ae:15:50:33:dc:14:51:f9:36:e3: b0:7a:f5:f7:9b:ed:d4:0b:da:96:70:f5:04:48:38: e2:16:30:21:e0:fe:48:9c:c7:2f:e3:82:68:b7:cc: fc:20:68:00:72:45:68:55:cc:3f:c3:80:51:93:3d: fe:10:fc:69:8d:d7:25:e2:97:9e:f7:e2:bb:c9:b5: 17:47:99:88:14:3e:19:cb:ad:4e:95:51:46:50:ad: ff:77:2b:c4:a0:f2:7f:b2:bc:a9:8a:c0:14:84:fa: c5:0d:ca:f5:26:23:03:63:e1:66:eb:94:ca:8f:d8: 34:6d:d5:81:d4:5b:3f:be:e1:43:2e:a6:44:27:0d: cf:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:72:77:D0:59:7A:A3:1C:39:62:31:15:5E:3D:5B:BA:08:48:98:91 X509v3 Authority Key Identifier: keyid:A9:DF:B6:02:4D:05:A3:7C:A0:C7:56:EC:74:7E:89:81:40:88:5B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.12.45.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:62:14:cc:7b:f9:07:78:65:df:b8:f7:8f:d4:fe:de:f1:99: 02:a1:69:1e:84:99:78:7b:bb:dd:37:31:b4:1f:bd:45:77:37: 9a:0b:ef:b7:f4:de:24:d1:e7:91:02:f3:7a:d2:71:d3:2c:84: 5d:3f:dc:99:c9:1d:0e:2d:b1:b5:50:b1:e7:b8:47:6f:94:96: 5a:f6:34:98:51:b7:8b:bc:04:76:a2:93:9c:47:bd:c4:4f:45: 70:67:87:1d:45:af:84:13:29:ea:ec:76:ae:df:c5:17:f5:d8: 59:d7:9b:56:64:d8:cc:15:af:32:e5:ce:74:3f:7b:40:8c:d3: eb:2c:21:3c:c8:08:ef:b9:d4:1b:62:77:8f:7f:95:60:cd:f9: 78:f0:5b:13:e4:65:4f:93:5c:f5:31:5f:af:84:6c:84:44:fb: eb:15:e0:95:20:e9:44:d9:2f:ff:29:49:00:c2:bb:69:e9:4b: 6b:de:a5:5a:79:b4:5a:8b:84:b3:87:4b:63:f1:cc:79:d3:98: f3:ad:26:a5:b0:03:b4:e8:d0:ab:68:2a:b5:8e:d0:61:8c:69: b7:34:e8:d5:53:12:a6:91:bd:4c:53:b1:da:b6:69:bc:5b:b5: f7:07:59:5b:49:9c:72:cc:47:ca:ed:43:fd:ce:b1:89:24:40: 0e:8c:1b:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbM1moUteNggBKQyP72EUrU1mgVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlERkI2MDI0RDA1QTM3Q0EwQzc1NkVDNzQ3RTg5ODE0 MDg4NUJDOTAeFw0yNjA1MDMwMzEzMDlaFw0yNzA1MDIwMzE4MDlaMDMxMTAvBgNV BAMTKDQwNzI3N0QwNTk3QUEzMUMzOTYyMzExNTVFM0Q1QkJBMDg0ODk4OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD22erzm9aZZkc/ArwyAZKvlsK TUu4o/gcpx+vaPxTSh28lUJ8R+quZ+2vLAb+Xnh2y9C6mAyFVfXhJl6Mg2AweHjA gycXrEDzbgp9QD5e6uw+EbxyJ7neWtP2gq1nzh6C2VDAqBwMaBHBoazFZCIAK3lZ VzQRYHUgTUcPrhVQM9wUUfk247B69feb7dQL2pZw9QRIOOIWMCHg/kicxy/jgmi3 zPwgaAByRWhVzD/DgFGTPf4Q/GmN1yXil5734rvJtRdHmYgUPhnLrU6VUUZQrf93 K8Sg8n+yvKmKwBSE+sUNyvUmIwNj4WbrlMqP2DRt1YHUWz++4UMupkQnDc/LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQHJ30Fl6oxw5YjEVXj1bughImJEwHwYDVR0j BBgwFoAUqd+2Ak0Fo3ygx1bsdH6JgUCIW8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Zjc0NDhjMTEtZjhkMy00NTdkLThlMjItODQ4ODdhYjIyYTMwLzAvQTlERkI2MDI0 RDA1QTM3Q0EwQzc1NkVDNzQ3RTg5ODE0MDg4NUJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOURGQjYwMjREMDVBMzdDQTBDNzU2RUM3NDdFODk4MTQwODg1 QkM5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzEzNjJlMzEzMjJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB0DC0wDQYJKoZIhvcN AQELBQADggEBAGpiFMx7+Qd4Zd+494/U/t7xmQKhaR6EmXh7u903MbQfvUV3N5oL 77f03iTR55EC83rScdMshF0/3JnJHQ4tsbVQsee4R2+Ullr2NJhRt4u8BHaik5xH vcRPRXBnhx1Fr4QTKersdq7fxRf12FnXm1Zk2MwVrzLlznQ/e0CM0+ssITzICO+5 1Btid49/lWDN+XjwWxPkZU+TXPUxX6+EbIRE++sV4JUg6UTZL/8pSQDCu2npS2ve pVp5tFqLhLOHS2PxzHnTmPOtJqWwA7To0KtoKrWO0GGMabc06NVTEqaRvUxTsdq2 abxbtfcHWVtJnHLMR8rtQ/3OsYkkQA6MGzI= -----END CERTIFICATE-----Generated at Wed May 13 10:20:38 2026 by rpki-client