$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31392e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: f90muGwEvtJshM8UMxgg/nx9xD7G/jpJOwdYaZZH2XQ= Subject key identifier: 80:66:AA:91:27:C0:34:71:46:ED:CE:E4:5E:E2:F8:F7:35:77:A4:F4 Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 065E34A41BF318819419D4A7C3242F8C4160AE9C Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa Signing time: Sun 03 May 2026 02:25:58 +0000 ROA not before: Sun 03 May 2026 02:20:58 +0000 ROA not after: Sun 02 May 2027 02:25:58 +0000 asID: 46045 IP address blocks: 122.128.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:5e:34:a4:1b:f3:18:81:94:19:d4:a7:c3:24:2f:8c:41:60:ae:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: May 3 02:20:58 2026 GMT Not After : May 2 02:25:58 2027 GMT Subject: CN=8066AA9127C0347146EDCEE45EE2F8F73577A4F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9f:93:68:37:ec:de:5c:58:58:2c:b4:91:ae: 81:85:c7:99:c5:c1:3e:8b:27:12:81:89:44:9c:8c: ba:24:c4:23:d5:68:d4:21:e8:03:00:05:ec:79:99: 48:a8:84:be:8f:3e:92:45:2a:23:9d:4d:b8:80:03: c1:aa:7a:3f:84:92:f8:9a:95:80:c0:11:cd:b1:72: 17:45:e7:d9:7b:09:ec:59:d3:ed:0c:2d:84:fa:68: c5:82:06:05:db:5d:4f:1a:f5:5e:a8:e6:c9:21:9d: 7a:a7:45:6c:51:6f:cf:de:3e:b5:3f:f5:82:27:21: 07:3d:92:f4:be:bc:b1:13:59:e5:2e:01:50:48:25: 96:58:bc:ab:5c:78:1c:b4:44:4c:18:54:c7:ca:e6: 1a:10:93:4e:80:d7:e2:f0:68:1f:93:0f:2a:40:d7: e9:ee:32:46:f0:b9:fc:d0:8b:d7:ce:3c:99:00:d4: bc:58:98:8a:d1:62:4a:3d:b7:de:c7:04:9f:08:70: c5:f1:1d:b6:17:f7:40:a2:18:4e:af:aa:50:ff:f6: e6:74:c5:ce:f8:10:9f:c3:60:8d:1e:94:22:1c:8b: df:8b:4b:9e:82:3b:9a:5c:ac:4e:c7:f6:7a:ae:06: 9c:64:7e:fc:4c:94:7d:a3:fc:32:51:84:c6:6d:3f: fb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:66:AA:91:27:C0:34:71:46:ED:CE:E4:5E:E2:F8:F7:35:77:A4:F4 X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.19.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:ff:22:e1:3d:00:ea:6a:4c:ae:fc:01:31:ed:67:bd:42:5a: 72:82:1a:3c:b8:27:c2:f8:68:a9:4b:c3:5d:fc:55:f6:7b:df: 3e:5f:46:38:c5:da:01:c7:7c:c2:21:93:95:cc:81:ec:0d:f4: 89:bf:21:d7:3a:1d:0b:49:cd:0b:ed:09:64:03:4d:42:cf:33: 54:e0:01:23:be:96:5a:3b:31:a1:bc:7b:e8:45:68:8f:c8:07: dd:12:7a:25:59:83:d9:f7:1c:b9:83:6f:2c:f0:8c:a6:c9:06: b0:d9:86:ca:7c:5d:10:2e:aa:1d:60:81:94:9b:9b:68:4d:78: 53:05:4d:0e:88:eb:46:b4:8f:7c:ce:36:e4:e7:d2:c4:88:1a: d5:96:2f:49:54:d7:e4:7a:bf:e9:56:d9:3b:00:77:fe:66:88: a2:74:fa:15:0a:ab:20:0e:67:b4:5a:27:ab:94:95:2f:7e:a2: 99:1e:aa:ac:11:28:31:5c:85:a7:93:04:12:6c:30:73:46:61: 01:de:31:cc:d7:5c:54:ff:24:02:13:87:87:e2:30:2d:96:0d: d8:eb:ef:36:99:25:86:d5:fd:d8:90:ab:a4:94:ae:3e:51:a0: 19:d0:b2:45:75:8e:32:e9:b0:fd:93:07:01:1a:86:2b:b9:81: a4:d3:e2:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBl40pBvzGIGUGdSnwyQvjEFgrpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA1MDMwMjIwNThaFw0yNzA1MDIwMjI1NThaMDMxMTAvBgNV BAMTKDgwNjZBQTkxMjdDMDM0NzE0NkVEQ0VFNDVFRTJGOEY3MzU3N0E0RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQn5NoN+zeXFhYLLSRroGFx5nF wT6LJxKBiUScjLokxCPVaNQh6AMABex5mUiohL6PPpJFKiOdTbiAA8Gqej+Ekvia lYDAEc2xchdF59l7CexZ0+0MLYT6aMWCBgXbXU8a9V6o5skhnXqnRWxRb8/ePrU/ 9YInIQc9kvS+vLETWeUuAVBIJZZYvKtceBy0REwYVMfK5hoQk06A1+LwaB+TDypA 1+nuMkbwufzQi9fOPJkA1LxYmIrRYko9t97HBJ8IcMXxHbYX90CiGE6vqlD/9uZ0 xc74EJ/DYI0elCIci9+LS56CO5pcrE7H9nquBpxkfvxMlH2j/DJRhMZtP/tHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgGaqkSfANHFG7c7kXuL49zV3pPQwHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEzANBgkqhkiG 9w0BAQsFAAOCAQEAC/8i4T0A6mpMrvwBMe1nvUJacoIaPLgnwvhoqUvDXfxV9nvf Pl9GOMXaAcd8wiGTlcyB7A30ib8h1zodC0nNC+0JZANNQs8zVOABI76WWjsxobx7 6EVoj8gH3RJ6JVmD2fccuYNvLPCMpskGsNmGynxdEC6qHWCBlJubaE14UwVNDojr RrSPfM425OfSxIga1ZYvSVTX5Hq/6VbZOwB3/maIonT6FQqrIA5ntFonq5SVL36i mR6qrBEoMVyFp5MEEmwwc0ZhAd4xzNdcVP8kAhOHh+IwLZYN2OvvNpklhtX92JCr pJSuPlGgGdCyRXWOMumw/ZMHARqGK7mBpNPiew== -----END CERTIFICATE-----Generated at Sun May 3 20:01:22 2026 by rpki-client