$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: IFRJrTg8onKZh/TaH9A8yf1wtYUjMcqN4WYH9m4UY4o= Subject key identifier: CF:5A:FB:B3:37:91:F5:40:5F:D1:8C:0A:78:2C:3F:65:58:EC:F1:27 Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 21DB56C8DA87854A967F16CCA33166D0A99EF63B Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa Signing time: Sun 03 May 2026 02:16:24 +0000 ROA not before: Sun 03 May 2026 02:11:24 +0000 ROA not after: Sun 02 May 2027 02:16:24 +0000 asID: 138128 IP address blocks: 223.130.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:db:56:c8:da:87:85:4a:96:7f:16:cc:a3:31:66:d0:a9:9e:f6:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:24 2026 GMT Not After : May 2 02:16:24 2027 GMT Subject: CN=CF5AFBB33791F5405FD18C0A782C3F6558ECF127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:00:69:2c:e5:7c:fe:89:90:6b:01:93:d5:ad: 39:ba:fb:4e:38:16:e2:0d:8c:c4:d0:63:e6:c6:a8: b0:78:f8:f7:fc:c7:c7:11:97:61:67:63:99:d9:43: 41:de:7c:75:80:d3:8e:4d:f5:72:e9:8b:ef:a7:09: 8d:b5:a9:bd:60:3a:fd:60:95:8b:06:c2:0f:78:a6: e2:d5:75:fb:1a:73:77:25:26:91:84:84:a2:28:ab: b0:be:10:93:ee:02:b0:0c:33:14:4d:04:b0:62:c4: fc:69:bc:b6:28:08:71:21:26:4d:59:81:8b:e3:b2: 7e:44:95:49:88:aa:9a:64:9d:26:42:99:6d:3b:a2: f1:3f:a0:f0:b8:e2:0d:19:8a:56:0f:96:a8:9d:6c: 19:fc:cb:c7:84:18:ca:95:92:b7:4e:3f:5c:5c:88: 32:aa:de:d2:b2:0f:a3:f0:fe:89:51:5f:91:ea:ff: 66:d1:50:3d:66:b2:d2:07:ba:42:fc:cb:bf:94:f6: 72:11:c1:9a:68:2a:8c:ac:86:a4:b2:75:e0:34:73: c7:ea:39:96:3f:9b:fc:8a:8b:22:38:cc:ec:24:d6: fd:cb:53:3a:06:5a:05:04:ca:e8:99:23:fc:6a:22: 0a:5c:ca:d8:1f:f5:88:02:6d:0d:7d:95:6e:d0:d3: 0b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5A:FB:B3:37:91:F5:40:5F:D1:8C:0A:78:2C:3F:65:58:EC:F1:27 X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:45:db:d9:ee:7a:08:96:08:85:5c:e3:9e:50:69:d0:c2:5b: a8:54:4a:5a:e4:e3:aa:aa:35:1f:a5:48:b0:06:f2:2e:f0:13: 94:0c:65:6c:66:48:66:d1:cc:43:a0:87:a5:98:7e:73:08:08: f9:61:c1:2d:34:5c:86:b7:12:fa:c2:99:da:d6:e5:1a:d8:16: 3f:0c:29:c7:33:19:d8:3e:f1:58:ce:d3:1c:85:19:36:e4:14: c6:e4:40:53:63:13:b7:50:6e:71:1b:b4:6b:38:7b:0e:c1:b4: df:ef:b2:2c:4d:6a:ee:17:0e:09:bf:04:6c:90:02:e0:2e:70: 37:df:26:cf:0c:4d:80:27:87:11:55:34:41:29:7e:42:b2:e0: 07:da:42:93:c2:05:e9:36:01:d6:f0:fa:21:b6:65:d4:cd:ca: b4:c9:c4:04:fb:9b:4e:c7:71:ae:ea:7e:65:b3:82:98:e7:18: 2b:e4:09:57:25:b5:e4:50:05:f5:f2:ce:56:4b:d0:5d:cc:17: 1d:5c:41:8f:2d:80:65:22:fe:4d:5e:88:7f:99:c6:19:01:fd: b5:42:c7:da:b1:d5:15:9d:17:7d:f8:a2:97:65:f6:7f:7f:c2: bf:b5:3e:f3:fc:df:bf:b9:2c:9a:2c:01:63:1a:b2:f5:73:df: 9a:dc:dd:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIdtWyNqHhUqWfxbMozFm0Kme9jswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjRaFw0yNzA1MDIwMjE2MjRaMDMxMTAvBgNV BAMTKENGNUFGQkIzMzc5MUY1NDA1RkQxOEMwQTc4MkMzRjY1NThFQ0YxMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqAGks5Xz+iZBrAZPVrTm6+044 FuINjMTQY+bGqLB4+Pf8x8cRl2FnY5nZQ0HefHWA045N9XLpi++nCY21qb1gOv1g lYsGwg94puLVdfsac3clJpGEhKIoq7C+EJPuArAMMxRNBLBixPxpvLYoCHEhJk1Z gYvjsn5ElUmIqppknSZCmW07ovE/oPC44g0ZilYPlqidbBn8y8eEGMqVkrdOP1xc iDKq3tKyD6Pw/olRX5Hq/2bRUD1mstIHukL8y7+U9nIRwZpoKoyshqSydeA0c8fq OZY/m/yKiyI4zOwk1v3LUzoGWgUEyuiZI/xqIgpcytgf9YgCbQ19lW7Q0wt/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz1r7szeR9UBf0YwKeCw/ZVjs8ScwHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IUMA0GCSqG SIb3DQEBCwUAA4IBAQBfRdvZ7noIlgiFXOOeUGnQwluoVEpa5OOqqjUfpUiwBvIu 8BOUDGVsZkhm0cxDoIelmH5zCAj5YcEtNFyGtxL6wpna1uUa2BY/DCnHMxnYPvFY ztMchRk25BTG5EBTYxO3UG5xG7RrOHsOwbTf77IsTWruFw4JvwRskALgLnA33ybP DE2AJ4cRVTRBKX5CsuAH2kKTwgXpNgHW8PohtmXUzcq0ycQE+5tOx3Gu6n5ls4KY 5xgr5AlXJbXkUAX18s5WS9BdzBcdXEGPLYBlIv5NXoh/mcYZAf21QsfasdUVnRd9 +KKXZfZ/f8K/tT7z/N+/uSyaLAFjGrL1c9+a3N3g -----END CERTIFICATE-----Generated at Mon May 4 21:30:07 2026 by rpki-client