$ rpki-client -vvf rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: jf6b7kXVa1dhZZRDA/RPJIPiAhtoDFAim3d84aPTFo8= Subject key identifier: 0E:BB:85:14:31:C5:DC:D9:EC:37:05:A8:07:53:39:56:92:11:FB:A9 Certificate issuer: /CN=1661480FF274E46E5E74274531EDCB741CA1C734 Certificate serial: 74B41657154338253B07CFA6C2462B9DC797FF06 Authority key identifier: 16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa Signing time: Sun 03 May 2026 02:16:24 +0000 ROA not before: Sun 03 May 2026 02:11:24 +0000 ROA not after: Sun 02 May 2027 02:16:24 +0000 asID: 138128 IP address blocks: 223.130.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b4:16:57:15:43:38:25:3b:07:cf:a6:c2:46:2b:9d:c7:97:ff:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661480FF274E46E5E74274531EDCB741CA1C734 Validity Not Before: May 3 02:11:24 2026 GMT Not After : May 2 02:16:24 2027 GMT Subject: CN=0EBB851431C5DCD9EC3705A8075339569211FBA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:02:11:dd:b4:16:71:4f:60:24:7a:21:c9:6e: bc:ca:cf:4a:1d:59:11:1c:fd:76:e8:eb:67:71:a1: f6:73:da:4c:ed:51:f7:50:14:2b:1d:e4:aa:d8:3c: 56:d5:6c:ed:76:09:33:4a:96:6f:03:93:b6:d8:1d: ad:18:6c:16:98:06:df:07:49:2e:6b:df:8e:0d:3d: bc:83:cb:df:8d:3d:86:fe:ac:63:0c:26:52:58:8b: b9:b9:19:01:8f:e8:ed:f2:74:e4:d9:78:40:1d:5d: af:ff:bd:87:8e:dc:71:b3:51:ef:68:1e:a8:c9:ec: 43:72:59:c2:1a:fa:44:4f:31:fe:bb:1d:b4:83:0c: 41:f2:5b:cc:e8:58:4a:34:47:4d:3f:d7:e1:d5:3e: 9b:0d:1f:33:43:76:1f:98:c5:26:b5:40:6b:eb:3b: 53:fe:55:65:35:a4:2a:6d:32:f2:49:1a:73:88:5d: 61:c5:71:ec:bc:88:28:09:e4:97:25:2d:8f:13:b8: 6e:27:ab:ed:5d:45:6f:c6:7f:1f:46:32:da:75:2e: 65:a9:09:69:45:c5:87:86:6e:97:50:a0:8c:fd:50: 35:20:fb:60:90:a5:a2:6f:bc:92:39:98:c7:a2:cd: 0f:d4:32:0b:23:5e:c6:90:e9:16:ec:5a:e0:df:11: 4a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BB:85:14:31:C5:DC:D9:EC:37:05:A8:07:53:39:56:92:11:FB:A9 X509v3 Authority Key Identifier: keyid:16:61:48:0F:F2:74:E4:6E:5E:74:27:45:31:ED:CB:74:1C:A1:C7:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/1661480FF274E46E5E74274531EDCB741CA1C734.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1661480FF274E46E5E74274531EDCB741CA1C734.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.22.0/24 Signature Algorithm: sha256WithRSAEncryption 28:c4:b4:f7:a2:46:ef:e4:fe:cb:ea:d8:05:e7:db:f4:db:09: f0:0d:67:fe:53:b3:70:a5:95:1a:b1:c5:9c:02:1a:5f:b5:01: 2a:3d:54:f1:f2:91:8c:7c:d9:9b:a3:f2:cb:b2:15:01:ab:81: 65:e9:5b:d1:e8:7d:ca:c1:1d:6e:08:d9:38:3c:35:08:34:c1: db:8f:80:66:73:65:ff:9c:c3:a9:88:7d:18:59:66:09:49:d9: fd:ad:c5:6d:f1:cc:ca:1e:30:92:f1:d9:ef:51:40:10:21:3c: a5:b3:13:e9:d6:60:8c:f9:0d:75:61:7f:d3:47:f7:b7:ac:00: 2f:e5:77:ba:79:c4:fb:97:4b:c5:d3:62:e9:3e:b0:84:55:74: 05:47:78:06:10:e5:8d:2e:07:4c:bd:71:97:9d:c4:29:2e:28: 27:86:f5:64:e5:7b:a7:01:c7:c6:c3:fe:15:a9:94:09:72:e7: da:c9:d6:e1:73:f3:40:c5:f3:0d:81:46:d7:3c:0e:5c:a8:e5: 4b:d4:e3:98:fb:7b:3b:5b:b7:e9:5d:1f:4e:11:2b:46:fc:44: 4c:01:22:a7:4b:04:eb:e7:c2:44:72:23:55:35:b2:99:51:f4: eb:5a:45:3b:09:3f:aa:d0:93:56:40:77:0d:0b:70:54:7f:8c: 59:50:64:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdLQWVxVDOCU7B8+mwkYrnceX/wYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MTQ4MEZGMjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQx Q0ExQzczNDAeFw0yNjA1MDMwMjExMjRaFw0yNzA1MDIwMjE2MjRaMDMxMTAvBgNV BAMTKDBFQkI4NTE0MzFDNURDRDlFQzM3MDVBODA3NTMzOTU2OTIxMUZCQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtAhHdtBZxT2AkeiHJbrzKz0od WREc/Xbo62dxofZz2kztUfdQFCsd5KrYPFbVbO12CTNKlm8Dk7bYHa0YbBaYBt8H SS5r344NPbyDy9+NPYb+rGMMJlJYi7m5GQGP6O3ydOTZeEAdXa//vYeO3HGzUe9o HqjJ7ENyWcIa+kRPMf67HbSDDEHyW8zoWEo0R00/1+HVPpsNHzNDdh+YxSa1QGvr O1P+VWU1pCptMvJJGnOIXWHFcey8iCgJ5JclLY8TuG4nq+1dRW/Gfx9GMtp1LmWp CWlFxYeGbpdQoIz9UDUg+2CQpaJvvJI5mMeizQ/UMgsjXsaQ6RbsWuDfEUoVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDruFFDHF3NnsNwWoB1M5VpIR+6kwHwYDVR0j BBgwFoAUFmFID/J05G5edCdFMe3LdByhxzQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg3ZDc5YmEtZmI1NS00OWE1LTk2N2ItMWVkYzc0OWQwMTI4LzAvMTY2MTQ4MEZG Mjc0RTQ2RTVFNzQyNzQ1MzFFRENCNzQxQ0ExQzczNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNjYxNDgwRkYyNzRFNDZFNUU3NDI3NDUzMUVEQ0I3NDFDQTFD NzM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IWMA0GCSqG SIb3DQEBCwUAA4IBAQAoxLT3okbv5P7L6tgF59v02wnwDWf+U7NwpZUascWcAhpf tQEqPVTx8pGMfNmbo/LLshUBq4Fl6VvR6H3KwR1uCNk4PDUINMHbj4Bmc2X/nMOp iH0YWWYJSdn9rcVt8czKHjCS8dnvUUAQITylsxPp1mCM+Q11YX/TR/e3rAAv5Xe6 ecT7l0vF02LpPrCEVXQFR3gGEOWNLgdMvXGXncQpLignhvVk5XunAcfGw/4VqZQJ cufaydbhc/NAxfMNgUbXPA5cqOVL1OOY+3s7W7fpXR9OEStG/ERMASKnSwTr58JE ciNVNbKZUfTrWkU7CT+q0JNWQHcNC3BUf4xZUGQ2 -----END CERTIFICATE-----Generated at Mon May 4 21:31:20 2026 by rpki-client