$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: D5DehsQ30Cg+nOY8N0HK+YwXqyoPTcKwYKHkFyOMq6Q= Subject key identifier: 50:1B:43:DA:88:9C:0B:1D:BA:75:03:1A:E8:CD:0A:1C:F0:EB:20:0E Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 303EE603098FFE277A47510FADF9A5A503AE9738 Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa Signing time: Sun 03 May 2026 02:16:25 +0000 ROA not before: Sun 03 May 2026 02:11:25 +0000 ROA not after: Sun 02 May 2027 02:16:25 +0000 asID: 138128 IP address blocks: 223.130.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:3e:e6:03:09:8f:fe:27:7a:47:51:0f:ad:f9:a5:a5:03:ae:97:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:25 2026 GMT Not After : May 2 02:16:25 2027 GMT Subject: CN=501B43DA889C0B1DBA75031AE8CD0A1CF0EB200E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:bc:b5:e5:26:d2:37:76:c2:35:dd:15:c5: 5b:8a:ff:a4:7c:31:7d:f5:1d:d9:2b:e5:ce:85:d8: 45:07:97:ae:e3:6b:2b:d0:18:9c:7f:57:ee:c3:57: 69:34:22:71:64:17:83:3b:61:c2:1b:33:55:ab:bd: ff:57:67:40:95:fd:2d:fc:cc:dc:e9:4a:00:b7:27: d1:9c:4e:61:75:0b:2d:41:b1:77:2f:e8:60:d7:7e: 93:ea:44:47:6d:66:be:7b:a7:9b:39:76:24:91:59: c5:d8:a2:cc:92:d4:67:c4:7e:10:39:7b:65:e6:2a: d3:38:39:71:dc:50:f4:92:d6:81:4e:22:fa:ce:03: 23:9d:4b:9c:13:ae:75:85:dd:f9:7f:1c:60:81:7b: b0:22:81:74:0d:4a:4f:b2:d5:de:1e:b7:23:64:73: c2:f5:5d:22:3f:e1:62:a4:13:1e:60:5d:0a:e3:19: c8:41:ed:34:4b:03:fa:70:c1:3b:e5:2e:38:e5:ab: 90:bb:8b:a2:83:f6:e2:25:ea:71:17:11:c0:41:e3: bd:a0:27:4b:f8:0f:c9:d1:48:40:4c:af:a5:e7:68: e9:5e:f9:77:40:17:a0:f5:43:20:a0:d8:d3:76:47: e1:27:a8:59:79:7a:d6:bf:4d:41:38:6f:e2:da:25: c2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1B:43:DA:88:9C:0B:1D:BA:75:03:1A:E8:CD:0A:1C:F0:EB:20:0E X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.21.0/24 Signature Algorithm: sha256WithRSAEncryption b8:da:c3:c3:9b:86:d6:e9:25:56:75:6f:e9:f5:e0:39:0a:cb: 37:5a:cf:0f:55:9e:13:6d:64:df:95:c6:a4:a7:c7:28:24:04: ca:cc:8c:35:de:d3:cb:b6:2d:71:c1:88:05:2d:2f:05:5f:88: 4f:15:76:f7:dd:36:4a:8e:aa:21:36:c3:00:44:a5:68:28:d2: 3f:44:3e:90:55:ad:15:9e:56:5c:dd:74:ac:ad:97:a3:a5:a0: ca:59:42:cb:43:e7:49:5f:b1:96:ff:96:ee:11:18:6c:3f:15: b3:18:b1:0a:e8:57:71:a8:34:a2:bf:0b:61:3a:9f:04:70:37: 65:52:74:72:7b:14:cf:d5:f2:10:d1:29:2a:d1:c7:3d:b1:c9: 71:a0:e0:48:be:58:41:19:43:0c:21:40:82:75:69:bc:5c:da: 42:ef:09:cd:8c:c0:c2:b2:b1:22:bc:b4:a1:2a:73:a9:49:db: 82:b4:45:51:55:bc:0d:8c:d2:d2:eb:85:5a:1e:4a:15:cb:7d: 64:7e:c7:8d:35:78:c6:7e:64:92:10:16:76:ae:7e:98:3f:5f: 94:4b:03:a7:3c:95:be:bf:6a:f4:5c:7a:f1:32:26:2d:ce:56: 13:45:be:88:e8:fe:c5:d7:27:18:e7:d9:69:02:c0:90:ee:31: b6:d9:d7:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMD7mAwmP/id6R1EPrfmlpQOulzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjVaFw0yNzA1MDIwMjE2MjVaMDMxMTAvBgNV BAMTKDUwMUI0M0RBODg5QzBCMURCQTc1MDMxQUU4Q0QwQTFDRjBFQjIwMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Fby15SbSN3bCNd0VxVuK/6R8 MX31Hdkr5c6F2EUHl67jayvQGJx/V+7DV2k0InFkF4M7YcIbM1Wrvf9XZ0CV/S38 zNzpSgC3J9GcTmF1Cy1BsXcv6GDXfpPqREdtZr57p5s5diSRWcXYosyS1GfEfhA5 e2XmKtM4OXHcUPSS1oFOIvrOAyOdS5wTrnWF3fl/HGCBe7AigXQNSk+y1d4etyNk c8L1XSI/4WKkEx5gXQrjGchB7TRLA/pwwTvlLjjlq5C7i6KD9uIl6nEXEcBB472g J0v4D8nRSEBMr6XnaOle+XdAF6D1QyCg2NN2R+EnqFl5eta/TUE4b+LaJcJ5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUBtD2oicCx26dQMa6M0KHPDrIA4wHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IVMA0GCSqG SIb3DQEBCwUAA4IBAQC42sPDm4bW6SVWdW/p9eA5Css3Ws8PVZ4TbWTflcakp8co JATKzIw13tPLti1xwYgFLS8FX4hPFXb33TZKjqohNsMARKVoKNI/RD6QVa0VnlZc 3XSsrZejpaDKWULLQ+dJX7GW/5buERhsPxWzGLEK6FdxqDSivwthOp8EcDdlUnRy exTP1fIQ0Skq0cc9sclxoOBIvlhBGUMMIUCCdWm8XNpC7wnNjMDCsrEivLShKnOp SduCtEVRVbwNjNLS64VaHkoVy31kfseNNXjGfmSSEBZ2rn6YP1+USwOnPJW+v2r0 XHrxMiYtzlYTRb6I6P7F1ycY59lpAsCQ7jG22dex -----END CERTIFICATE-----Generated at Mon May 4 21:31:09 2026 by rpki-client