$ rpki-client -vvf rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa File: 3136332e35332e3139352e302f32342d3234203d3e203538333831.roa (raw, json) Hash identifier: zvwgezfW86SlRC31YjwJ71lKNs9pTZisRey08uUZDrw= Subject key identifier: 67:2C:4A:87:BA:59:A5:8D:19:DC:20:25:43:75:C1:64:F5:CF:CE:8B Certificate issuer: /CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Certificate serial: 3A670D7B8A7FE754B11EFB499B2039ACDD5B01E7 Authority key identifier: 0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa Signing time: Sun 03 May 2026 02:24:45 +0000 ROA not before: Sun 03 May 2026 02:19:45 +0000 ROA not after: Sun 02 May 2027 02:24:45 +0000 asID: 58381 IP address blocks: 163.53.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:67:0d:7b:8a:7f:e7:54:b1:1e:fb:49:9b:20:39:ac:dd:5b:01:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Validity Not Before: May 3 02:19:45 2026 GMT Not After : May 2 02:24:45 2027 GMT Subject: CN=672C4A87BA59A58D19DC20254375C164F5CFCE8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e1:be:2c:74:cf:80:49:f4:eb:91:52:0c:70: 22:65:a4:83:3c:1f:b5:74:f4:1d:a4:5f:43:8b:90: b1:3e:81:f5:22:95:15:8d:3e:a4:ea:93:7b:1d:50: 2e:4d:e7:1d:c9:53:76:63:a6:6d:4d:0c:dc:a1:8f: 8a:94:88:f3:c5:90:22:2e:97:f2:43:40:b3:05:06: e1:52:2f:fa:96:ea:15:1b:a9:b6:4e:9d:36:c4:ec: af:a1:2e:72:38:b6:25:40:77:66:30:f2:ef:92:8e: c8:c8:41:bb:1f:2d:d3:00:cc:c1:ba:a3:9a:a7:53: 1c:ab:e3:1a:4c:dd:f0:95:53:a2:c2:68:e5:0b:d2: 0f:2b:9c:27:d8:87:3b:e1:9a:e5:09:92:b9:16:1a: 4f:4c:bb:3d:8d:e8:3e:5c:ff:87:e7:22:3d:ff:46: c7:86:fa:22:f4:39:17:68:27:d0:d9:c3:a9:5b:b5: c3:af:aa:66:36:a5:93:47:a7:41:d1:5f:3c:32:e5: 98:d3:ee:32:c8:ff:57:3a:17:bd:12:ab:a1:f0:34: 7a:ce:95:75:20:c7:53:0f:07:92:f2:99:cc:d9:b1: 0f:ae:b8:25:eb:ea:88:b6:e7:bc:b6:88:5e:20:e4: 45:2c:6e:22:56:59:5e:cb:3a:c6:50:f8:3a:69:b4: 5e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2C:4A:87:BA:59:A5:8D:19:DC:20:25:43:75:C1:64:F5:CF:CE:8B X509v3 Authority Key Identifier: keyid:0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.53.195.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:1c:fd:1b:19:1b:cc:2c:d5:ac:cc:dc:97:2c:b2:ad:56:d2: 0c:94:9e:ce:aa:87:0e:60:e8:98:5e:80:ba:63:7e:4d:11:c3: 70:34:b1:e2:f0:7b:4f:f9:34:5e:b6:f2:f4:04:2a:09:b1:9b: d9:90:c9:73:95:fa:a1:09:7a:a9:71:8d:95:27:c4:a5:07:d8: 03:83:a4:ca:bc:f1:bf:69:b7:a4:81:fe:86:52:02:de:50:88: e1:50:b1:59:92:4f:1d:5f:0a:bd:c7:c0:55:b1:d3:c1:e4:53: ec:ef:30:22:da:71:1f:c7:bb:67:e8:0e:f2:ba:08:ba:7c:db: 62:43:58:10:55:17:2d:d5:7e:55:da:40:e0:81:a0:de:bc:fc: 2d:7b:c4:f4:dc:f8:82:5f:0d:3a:bc:34:82:9c:35:42:f3:59: bc:e1:6e:65:e2:4d:2b:df:6a:91:de:b9:fd:59:7d:d5:62:8e: 2f:2b:e0:fb:2d:14:17:fd:90:5e:75:05:94:8f:d9:2f:ec:1f: 31:fc:76:3f:d8:36:99:cf:df:ee:0b:8e:00:a5:2a:ad:6a:94: ff:f6:8a:30:95:cb:a2:19:35:8b:95:69:f6:08:8f:8b:c3:8f: 30:07:5b:90:f2:db:fb:f4:43:85:f8:8f:ca:df:6c:35:7f:84: 6b:4f:8c:42 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOmcNe4p/51SxHvtJmyA5rN1bAecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZCNDI0QjIwRDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJC REE5OUNCMDAeFw0yNjA1MDMwMjE5NDVaFw0yNzA1MDIwMjI0NDVaMDMxMTAvBgNV BAMTKDY3MkM0QTg3QkE1OUE1OEQxOURDMjAyNTQzNzVDMTY0RjVDRkNFOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb4b4sdM+ASfTrkVIMcCJlpIM8 H7V09B2kX0OLkLE+gfUilRWNPqTqk3sdUC5N5x3JU3Zjpm1NDNyhj4qUiPPFkCIu l/JDQLMFBuFSL/qW6hUbqbZOnTbE7K+hLnI4tiVAd2Yw8u+SjsjIQbsfLdMAzMG6 o5qnUxyr4xpM3fCVU6LCaOUL0g8rnCfYhzvhmuUJkrkWGk9Muz2N6D5c/4fnIj3/ RseG+iL0ORdoJ9DZw6lbtcOvqmY2pZNHp0HRXzwy5ZjT7jLI/1c6F70Sq6HwNHrO lXUgx1MPB5LymczZsQ+uuCXr6oi257y2iF4g5EUsbiJWWV7LOsZQ+DpptF4RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZyxKh7pZpY0Z3CAlQ3XBZPXPzoswHwYDVR0j BBgwFoAUD7Qksg1qRYDm0yM/zy658r2pnLAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzM4ZDI3NTUtMzgwZC00NzdlLWJmMjUtMGFmMjkwMjZiZDcwLzAvMEZCNDI0QjIw RDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJCREE5OUNCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRkI0MjRCMjBENkE0NTgwRTZEMzIzM0ZDRjJFQjlGMkJEQTk5 Q0IwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzYzMzJlMzUzMzJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKM1wzANBgkqhkiG 9w0BAQsFAAOCAQEAPxz9GxkbzCzVrMzclyyyrVbSDJSezqqHDmDomF6AumN+TRHD cDSx4vB7T/k0Xrby9AQqCbGb2ZDJc5X6oQl6qXGNlSfEpQfYA4Okyrzxv2m3pIH+ hlIC3lCI4VCxWZJPHV8KvcfAVbHTweRT7O8wItpxH8e7Z+gO8roIunzbYkNYEFUX LdV+VdpA4IGg3rz8LXvE9Nz4gl8NOrw0gpw1QvNZvOFuZeJNK99qkd65/Vl91WKO Lyvg+y0UF/2QXnUFlI/ZL+wfMfx2P9g2mc/f7guOAKUqrWqU//aKMJXLohk1i5Vp 9giPi8OPMAdbkPLb+/RDhfiPyt9sNX+Ea0+MQg== -----END CERTIFICATE-----Generated at Wed May 6 02:06:06 2026 by rpki-client