$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31372e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31372e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: f4Rl+nEgaWKSfHvI6SarQnjAj9HfH/JElIfFiaKpdS0= Subject key identifier: C1:34:48:4A:27:79:A7:B7:3B:D6:12:17:8B:C1:25:46:D8:AE:DB:B5 Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 0C311C737DB7B3DC5B7245B0AD70F09C69F4C3BB Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31372e302f32342d3234203d3e203436303435.roa Signing time: Sun 03 May 2026 02:25:58 +0000 ROA not before: Sun 03 May 2026 02:20:58 +0000 ROA not after: Sun 02 May 2027 02:25:58 +0000 asID: 46045 IP address blocks: 122.128.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:31:1c:73:7d:b7:b3:dc:5b:72:45:b0:ad:70:f0:9c:69:f4:c3:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: May 3 02:20:58 2026 GMT Not After : May 2 02:25:58 2027 GMT Subject: CN=C134484A2779A7B73BD612178BC12546D8AEDBB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fa:1c:25:70:13:4d:cd:80:93:7b:7f:54:ca: 1d:7d:59:f5:c2:ff:69:ea:6d:2a:80:26:54:1d:37: 76:d2:f7:c8:31:7e:12:df:38:8e:e6:42:d3:75:85: a1:8d:28:d7:5f:c7:90:40:09:70:56:4b:68:80:b1: 06:7e:ae:ba:44:d5:b1:01:05:1f:a2:26:10:77:57: 96:0e:59:32:f2:2e:2b:b0:0c:3d:41:e7:b1:32:47: c5:80:b1:78:e8:95:6e:a5:12:bb:b8:30:4e:73:13: f5:70:97:33:d3:87:09:c5:7d:e8:9a:11:f5:10:9d: a1:8d:5e:55:bc:63:03:3a:1e:39:92:75:79:9f:f0: 48:45:36:f8:18:10:ba:15:09:a9:2a:49:14:f0:28: a9:4b:29:e8:cc:0b:eb:60:56:5d:4d:b5:2f:6c:b7: 55:ba:f4:28:6f:e8:78:2b:13:e1:a7:ff:6b:79:1d: 74:ae:e9:91:cb:ea:48:0d:59:18:f3:1b:cb:16:d9: bb:21:ec:bd:b2:45:cf:85:bf:0e:b9:b5:42:9e:a5: 99:91:4d:7d:11:7b:a7:a7:60:02:4c:95:76:de:71: 27:7f:53:71:6e:28:c9:12:40:aa:6d:6b:89:e6:95: c2:e2:f5:7c:6b:10:d2:0f:00:93:92:8d:6b:23:f8: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:34:48:4A:27:79:A7:B7:3B:D6:12:17:8B:C1:25:46:D8:AE:DB:B5 X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31372e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.17.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:a4:b0:99:34:7e:26:8a:15:81:e2:e2:ae:32:6c:02:b5:70: 73:ee:4d:9d:c0:a5:77:9b:69:bb:62:46:5b:c2:23:68:b1:e7: 56:72:10:1b:e9:ea:bf:80:42:5e:50:9d:4d:34:f0:d5:7f:19: 65:0b:ca:b5:77:f9:f7:d2:75:91:e3:a6:77:d3:6e:07:74:36: d3:6a:e4:64:0f:11:8d:04:6f:62:3d:f7:c6:b3:13:4c:bf:13: 49:8e:5b:09:cf:ec:89:33:7a:84:5f:b0:62:db:e8:91:df:bd: b6:71:5d:37:32:d5:80:79:21:53:65:82:53:6d:a7:17:d5:fd: dd:a6:da:39:2e:01:87:f2:1d:d9:86:98:fd:e3:92:a1:97:10: 36:5d:d6:39:7e:0b:29:37:3b:b3:a6:70:50:12:43:ca:a0:d8: 73:29:56:a4:5c:bb:d8:5e:2f:d5:cc:27:78:75:74:cc:bb:4c: bf:a1:e4:da:58:17:dd:05:89:f3:b4:85:29:3a:b7:38:99:94: f0:f7:fc:61:59:c2:0c:2b:a9:eb:88:ae:f8:58:37:a0:b1:66: 46:dc:04:3e:ba:ae:8f:76:c0:77:be:1d:8b:75:68:b1:b9:9c: bb:1b:2e:4c:44:e7:53:d2:0c:a9:9d:da:44:5b:f2:df:44:e4: 56:ee:ad:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDDEcc323s9xbckWwrXDwnGn0w7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA1MDMwMjIwNThaFw0yNzA1MDIwMjI1NThaMDMxMTAvBgNV BAMTKEMxMzQ0ODRBMjc3OUE3QjczQkQ2MTIxNzhCQzEyNTQ2RDhBRURCQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX+hwlcBNNzYCTe39Uyh19WfXC /2nqbSqAJlQdN3bS98gxfhLfOI7mQtN1haGNKNdfx5BACXBWS2iAsQZ+rrpE1bEB BR+iJhB3V5YOWTLyLiuwDD1B57EyR8WAsXjolW6lEru4ME5zE/VwlzPThwnFfeia EfUQnaGNXlW8YwM6HjmSdXmf8EhFNvgYELoVCakqSRTwKKlLKejMC+tgVl1NtS9s t1W69Chv6HgrE+Gn/2t5HXSu6ZHL6kgNWRjzG8sW2bsh7L2yRc+Fvw65tUKepZmR TX0Re6enYAJMlXbecSd/U3FuKMkSQKpta4nmlcLi9XxrENIPAJOSjWsj+LONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwTRISid5p7c71hIXi8ElRtiu27UwHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAETANBgkqhkiG 9w0BAQsFAAOCAQEAHqSwmTR+JooVgeLirjJsArVwc+5NncCld5tpu2JGW8IjaLHn VnIQG+nqv4BCXlCdTTTw1X8ZZQvKtXf599J1keOmd9NuB3Q202rkZA8RjQRvYj33 xrMTTL8TSY5bCc/siTN6hF+wYtvokd+9tnFdNzLVgHkhU2WCU22nF9X93abaOS4B h/Id2YaY/eOSoZcQNl3WOX4LKTc7s6ZwUBJDyqDYcylWpFy72F4v1cwneHV0zLtM v6Hk2lgX3QWJ87SFKTq3OJmU8Pf8YVnCDCup64iu+Fg3oLFmRtwEPrquj3bAd74d i3VosbmcuxsuTETnU9IMqZ3aRFvy30TkVu6tqA== -----END CERTIFICATE-----Generated at Sun May 3 20:01:30 2026 by rpki-client