$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa File: 3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa (raw, json) Hash identifier: V75gkBW5l6X/+7vnO9PPI54r4jLFDkXk/84VL8kexoA= Subject key identifier: D5:28:A5:F0:1B:6D:5F:BA:84:DC:2B:B1:AC:51:E6:63:6C:90:60:D9 Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 1F1138146BBF74FF00F00EEE1A0EF2B12217F854 Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa Signing time: Sun 03 May 2026 02:16:23 +0000 ROA not before: Sun 03 May 2026 02:11:23 +0000 ROA not after: Sun 02 May 2027 02:16:23 +0000 asID: 138128 IP address blocks: 223.130.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:11:38:14:6b:bf:74:ff:00:f0:0e:ee:1a:0e:f2:b1:22:17:f8:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:23 2026 GMT Not After : May 2 02:16:23 2027 GMT Subject: CN=D528A5F01B6D5FBA84DC2BB1AC51E6636C9060D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8f:b3:69:fe:66:0c:b7:3b:b9:0c:eb:77:48: 75:49:80:ee:29:44:36:b1:5a:4b:c1:f0:e0:e1:89: 90:b6:cf:bd:02:3f:af:9f:7a:8b:e2:ca:78:d4:ae: 93:0e:a1:83:72:2a:53:ac:a1:ef:75:8f:b5:99:f2: 7e:75:c3:b1:c7:9c:af:2e:05:50:f8:9b:b5:3a:90: f2:72:df:f9:fc:d5:f7:95:c8:4c:fa:a2:2a:a9:17: f3:4d:09:e3:96:04:b7:b6:fd:32:fa:84:1b:9a:7f: 7f:29:85:08:99:15:4a:c8:68:73:75:13:de:e9:e7: 73:98:69:00:8c:7e:53:f5:79:ea:d1:c8:2f:3f:02: 84:15:ec:cc:a5:ef:0f:0f:57:e3:7e:e7:ca:fa:32: 65:3b:36:ef:dd:5d:8c:cc:7d:50:0e:a8:dc:d5:03: 80:18:af:b5:b6:c5:52:71:af:c5:b0:e3:ae:6b:ec: d0:e5:ae:12:db:06:df:2d:c4:09:03:f7:f5:ba:c9: 84:4a:32:59:37:7a:47:4c:23:14:12:f1:b1:bd:ea: d3:38:65:90:52:66:e1:37:41:aa:73:76:47:9d:45: 45:32:35:b1:13:1c:c9:ed:0c:65:e1:bd:b8:ae:de: 97:b2:f1:22:75:68:e5:44:da:e6:4d:08:ec:23:41: 4d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:28:A5:F0:1B:6D:5F:BA:84:DC:2B:B1:AC:51:E6:63:6C:90:60:D9 X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3233203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.22.0/23 Signature Algorithm: sha256WithRSAEncryption 81:6c:1f:d8:88:5b:d6:86:cd:fb:74:f8:19:15:0b:88:18:0d: 87:85:c6:49:1d:12:fb:39:39:2c:fd:9b:d7:aa:09:9c:d3:59: cf:6c:90:3b:c7:3e:e5:ce:88:4f:79:6b:8d:7b:98:59:96:c0: 1a:38:97:e2:74:b4:b8:ac:f1:99:16:7f:8c:04:de:53:51:99: cf:42:fe:af:36:2a:86:b5:73:f5:44:08:f4:9f:0a:e3:bd:1a: 67:14:3e:38:9c:bb:aa:d0:11:ea:f4:de:ec:78:23:6b:1c:43: 75:98:c3:58:27:d9:09:f4:6f:d7:d7:4a:d6:7c:e0:9c:04:1b: f6:ed:88:ca:f0:e2:cd:86:97:3c:2c:2a:1f:e9:d3:83:a0:61: 1b:f7:34:f5:75:71:0f:ef:45:98:70:cb:3a:18:ca:c8:35:41: 17:94:28:2e:84:da:5b:92:91:42:07:30:4c:b7:be:38:07:32: 2d:9c:dd:46:81:09:5c:70:39:f4:6e:73:00:24:35:a4:25:b6: 89:9b:ee:f2:ce:7c:92:f8:db:64:a7:25:fa:ba:8d:a4:41:0d: b3:50:b8:c3:94:ad:4c:4c:32:d2:e7:1c:fb:2e:19:ec:b0:09: e8:bd:db:67:c0:c9:0d:42:54:08:80:4d:5c:74:bd:ba:b6:c8: af:27:67:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHxE4FGu/dP8A8A7uGg7ysSIX+FQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjNaFw0yNzA1MDIwMjE2MjNaMDMxMTAvBgNV BAMTKEQ1MjhBNUYwMUI2RDVGQkE4NERDMkJCMUFDNTFFNjYzNkM5MDYwRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCij7Np/mYMtzu5DOt3SHVJgO4p RDaxWkvB8ODhiZC2z70CP6+feoviynjUrpMOoYNyKlOsoe91j7WZ8n51w7HHnK8u BVD4m7U6kPJy3/n81feVyEz6oiqpF/NNCeOWBLe2/TL6hBuaf38phQiZFUrIaHN1 E97p53OYaQCMflP1eerRyC8/AoQV7Myl7w8PV+N+58r6MmU7Nu/dXYzMfVAOqNzV A4AYr7W2xVJxr8Ww465r7NDlrhLbBt8txAkD9/W6yYRKMlk3ekdMIxQS8bG96tM4 ZZBSZuE3QapzdkedRUUyNbETHMntDGXhvbiu3pey8SJ1aOVE2uZNCOwjQU1hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1Sil8BttX7qE3CuxrFHmY2yQYNkwHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB34IWMA0GCSqG SIb3DQEBCwUAA4IBAQCBbB/YiFvWhs37dPgZFQuIGA2HhcZJHRL7OTks/ZvXqgmc 01nPbJA7xz7lzohPeWuNe5hZlsAaOJfidLS4rPGZFn+MBN5TUZnPQv6vNiqGtXP1 RAj0nwrjvRpnFD44nLuq0BHq9N7seCNrHEN1mMNYJ9kJ9G/X10rWfOCcBBv27YjK 8OLNhpc8LCof6dODoGEb9zT1dXEP70WYcMs6GMrINUEXlCguhNpbkpFCBzBMt744 BzItnN1GgQlccDn0bnMAJDWkJbaJm+7yznyS+NtkpyX6uo2kQQ2zULjDlK1MTDLS 5xz7LhnssAnovdtnwMkNQlQIgE1cdL26tsivJ2eN -----END CERTIFICATE-----Generated at Mon May 4 21:29:42 2026 by rpki-client