$ rpki-client -vvf rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa File: 3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa (raw, json) Hash identifier: siHi0awnODreiEbnqAhI8AHZuo2WqS1sqObBYj0LJNQ= Subject key identifier: 4F:E7:59:A1:33:45:E7:70:6B:0B:21:41:DD:64:BD:7E:64:A4:12:C0 Certificate issuer: /CN=6410D3838A65954BC1C301FEAAE74108F878E75C Certificate serial: 1EFFC445050414018B9FE58274602645D78C994D Authority key identifier: 64:10:D3:83:8A:65:95:4B:C1:C3:01:FE:AA:E7:41:08:F8:78:E7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:55:04 +0000 ROA not before: Sun 03 May 2026 02:50:04 +0000 ROA not after: Sun 02 May 2027 02:55:04 +0000 asID: 17995 IP address blocks: 124.158.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.crl rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 19:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ff:c4:45:05:04:14:01:8b:9f:e5:82:74:60:26:45:d7:8c:99:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6410D3838A65954BC1C301FEAAE74108F878E75C Validity Not Before: May 3 02:50:04 2026 GMT Not After : May 2 02:55:04 2027 GMT Subject: CN=4FE759A13345E7706B0B2141DD64BD7E64A412C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ba:ef:de:55:df:52:ee:e4:82:96:4e:75:6f: 6f:29:76:85:9e:fc:58:ad:88:41:6d:9e:91:94:88: cf:79:18:f7:ca:77:16:7a:d7:e2:31:ae:7f:cd:1b: 83:99:6d:62:c8:cc:11:06:0c:73:ab:21:11:c9:18: b6:ba:2c:40:19:bc:79:8f:c2:71:be:63:02:35:d5: f0:f2:ba:3f:4b:cf:d4:2a:02:87:ca:1a:3b:f9:4c: 94:80:c2:60:61:b3:d8:f0:fe:63:48:3e:a3:70:ba: 32:fc:04:19:2f:35:ac:79:d5:2b:8b:c0:4a:25:03: 10:1e:2f:1b:88:93:ed:12:d9:da:f7:4a:0f:59:da: 97:b9:d4:5e:41:2f:4a:9e:eb:d1:f1:03:24:3a:d8: 84:8a:07:6d:e1:fe:be:e9:0e:80:18:f5:51:55:5e: 74:5a:d6:ff:60:d7:1e:b0:fa:2a:67:b1:b4:96:44: ab:09:2f:65:a3:2f:6a:f4:c8:dd:b8:c1:d0:3c:0c: 11:bc:34:ac:a0:7e:4f:e6:b9:88:f9:b2:34:6f:62: 1f:c4:5e:9b:22:5c:54:08:71:f5:d9:38:76:a8:6a: fe:df:70:12:30:b3:62:0d:42:d7:0d:8e:94:26:40: 66:49:47:c5:e2:63:85:31:a2:c2:17:96:e7:28:07: 49:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E7:59:A1:33:45:E7:70:6B:0B:21:41:DD:64:BD:7E:64:A4:12:C0 X509v3 Authority Key Identifier: keyid:64:10:D3:83:8A:65:95:4B:C1:C3:01:FE:AA:E7:41:08:F8:78:E7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/6410D3838A65954BC1C301FEAAE74108F878E75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6410D3838A65954BC1C301FEAAE74108F878E75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.144.0/20 Signature Algorithm: sha256WithRSAEncryption 51:fc:bb:8a:3f:ab:d0:7a:24:bd:32:b4:45:5c:c9:6d:93:18: 5c:e7:ed:7f:8b:f8:dd:10:2d:01:e0:0b:fd:8f:a1:4c:51:48: 95:c8:86:d0:64:65:6f:73:5e:63:c4:cb:18:66:45:b9:f3:e5: a0:f8:6e:4f:9f:65:9c:26:d1:ec:01:94:12:11:b7:ff:d5:97: 58:7a:e2:e3:67:fa:ce:3d:71:e6:4c:4f:27:1c:3c:9f:08:49: b3:7e:78:56:1a:50:d8:f6:4b:74:65:90:c7:f2:1f:fb:90:6e: d5:56:a9:8c:5f:56:44:c2:e4:14:aa:32:26:32:ad:95:4d:f6: 44:60:23:71:d0:ec:fe:b5:5e:11:16:bc:0d:a7:c5:d5:64:69: 7f:89:6e:49:fc:b5:51:de:cd:a1:49:0f:28:2c:17:93:f0:08: 4b:c9:65:08:d5:f4:62:78:ae:54:af:49:10:26:07:24:b5:98: dd:ee:d8:6e:e9:04:d8:b7:d6:56:f2:6a:70:2e:15:fc:3c:a9: cd:40:62:8b:c4:ef:4c:bb:83:a6:d8:23:df:2e:58:33:4c:7d: a6:a1:a0:7d:71:be:d0:b7:5f:08:99:2c:67:db:42:41:f3:68: 33:b1:bb:e9:23:47:8f:53:56:5a:10:c0:80:21:43:92:c4:57: 6c:36:6c:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHv/ERQUEFAGLn+WCdGAmRdeMmU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQxMEQzODM4QTY1OTU0QkMxQzMwMUZFQUFFNzQxMDhG ODc4RTc1QzAeFw0yNjA1MDMwMjUwMDRaFw0yNzA1MDIwMjU1MDRaMDMxMTAvBgNV BAMTKDRGRTc1OUExMzM0NUU3NzA2QjBCMjE0MURENjRCRDdFNjRBNDEyQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIuu/eVd9S7uSClk51b28pdoWe /FitiEFtnpGUiM95GPfKdxZ61+Ixrn/NG4OZbWLIzBEGDHOrIRHJGLa6LEAZvHmP wnG+YwI11fDyuj9Lz9QqAofKGjv5TJSAwmBhs9jw/mNIPqNwujL8BBkvNax51SuL wEolAxAeLxuIk+0S2dr3Sg9Z2pe51F5BL0qe69HxAyQ62ISKB23h/r7pDoAY9VFV XnRa1v9g1x6w+ipnsbSWRKsJL2WjL2r0yN24wdA8DBG8NKygfk/muYj5sjRvYh/E XpsiXFQIcfXZOHaoav7fcBIws2INQtcNjpQmQGZJR8XiY4UxosIXlucoB0nVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT+dZoTNF53BrCyFB3WS9fmSkEsAwHwYDVR0j BBgwFoAUZBDTg4pllUvBwwH+qudBCPh451wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWVkOTU1YzgtZTZkMy00OWMyLWFiZDgtZTBmOTJjMDgxMjQ3LzAvNjQxMEQzODM4 QTY1OTU0QkMxQzMwMUZFQUFFNzQxMDhGODc4RTc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NDEwRDM4MzhBNjU5NTRCQzFDMzAxRkVBQUU3NDEwOEY4NzhF NzVDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzllZDk1NWM4LWU2ZDMtNDljMi1h YmQ4LWUwZjkyYzA4MTI0Ny8wLzMxMzIzNDJlMzEzNTM4MmUzMTM0MzQyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfJ6QMA0GCSqG SIb3DQEBCwUAA4IBAQBR/LuKP6vQeiS9MrRFXMltkxhc5+1/i/jdEC0B4Av9j6FM UUiVyIbQZGVvc15jxMsYZkW58+Wg+G5Pn2WcJtHsAZQSEbf/1ZdYeuLjZ/rOPXHm TE8nHDyfCEmzfnhWGlDY9kt0ZZDH8h/7kG7VVqmMX1ZEwuQUqjImMq2VTfZEYCNx 0Oz+tV4RFrwNp8XVZGl/iW5J/LVR3s2hSQ8oLBeT8AhLyWUI1fRieK5Ur0kQJgck tZjd7thu6QTYt9ZW8mpwLhX8PKnNQGKLxO9Mu4Om2CPfLlgzTH2moaB9cb7Qt18I mSxn20JB82gzsbvpI0ePU1ZaEMCAIUOSxFdsNmyU -----END CERTIFICATE-----Generated at Fri May 8 06:33:44 2026 by rpki-client