$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa File: 3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa (raw, json) Hash identifier: jgtxGKm3LP85gwx19iWA4QGiKmWy0ishwiJxJ2igqrE= Subject key identifier: 25:88:07:9E:8F:E2:DB:F6:DA:BD:B3:2A:43:6C:4A:8E:DB:95:1F:D7 Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 50F16D10B6BDBD7A2A5D0C92AEEFD1EE9AC4E254 Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa Signing time: Sun 03 May 2026 02:25:56 +0000 ROA not before: Sun 03 May 2026 02:20:56 +0000 ROA not after: Sun 02 May 2027 02:25:56 +0000 asID: 262929 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f1:6d:10:b6:bd:bd:7a:2a:5d:0c:92:ae:ef:d1:ee:9a:c4:e2:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: May 3 02:20:56 2026 GMT Not After : May 2 02:25:56 2027 GMT Subject: CN=2588079E8FE2DBF6DABDB32A436C4A8EDB951FD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:1c:c5:c8:63:ba:96:10:78:f2:74:8b:a5:23: b1:57:1b:48:3e:29:d0:3c:df:41:20:0c:5d:b8:d3: b8:9c:1d:e7:6e:56:d1:c5:f0:d8:9d:5f:ad:0a:55: cb:c3:6e:5b:64:d6:bc:6f:6e:94:2b:0b:38:40:a7: 18:ff:85:87:ef:58:96:f4:c8:1a:17:80:1d:49:0c: f5:79:26:8b:1b:c0:a9:d3:16:89:ed:0d:20:ee:5e: 7c:fb:cf:39:d5:18:f7:8a:35:72:22:69:73:2a:36: b9:24:79:ae:2f:0c:2f:2f:2c:80:c7:a1:2c:df:96: 29:9a:b6:8f:db:d2:ad:cb:31:fc:80:6f:74:74:ef: ec:75:9f:60:e4:c4:dd:38:03:32:fa:4f:52:2a:47: 66:86:0d:50:c4:ba:5b:6a:3d:61:60:c9:72:d8:11: 09:36:12:ff:34:23:c4:04:88:67:51:da:05:f2:e0: 72:64:d6:06:01:03:df:ae:ce:a1:92:78:12:52:65: ca:01:d0:57:df:d2:19:b1:11:f4:b6:2a:96:bd:62: b6:d8:d2:57:4c:49:25:ac:d9:ad:dd:14:42:5d:94: 18:3e:72:3b:62:8e:30:c5:1d:10:05:52:c8:de:7c: 33:11:13:28:47:4e:b2:fe:35:55:93:49:8a:7a:02: d3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:88:07:9E:8F:E2:DB:F6:DA:BD:B3:2A:43:6C:4A:8E:DB:95:1F:D7 X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 41:06:2b:0b:5d:ea:ee:e9:25:1d:c8:3c:1e:88:c9:9e:cc:80: bb:33:36:76:52:73:3b:c8:1f:ed:23:da:6c:f9:24:0c:33:c7: 43:91:0f:ee:17:97:c0:71:1c:21:3f:a9:5d:84:de:8f:6d:dc: 7f:92:23:ad:dd:8e:8d:50:6f:c7:ea:f4:26:26:c2:38:a6:b5: 72:a7:19:9d:bf:72:27:a7:63:9f:91:4d:aa:d7:6d:a8:90:63: 93:8e:4c:91:b4:22:3a:46:87:e8:d8:73:59:1a:4d:36:00:99: 6f:d4:08:c7:00:98:ae:d5:2f:73:c4:f1:c6:ed:2e:6e:4a:ab: c3:63:aa:c0:c1:43:11:02:34:5e:07:9b:48:e1:12:ba:08:11: 92:06:37:24:72:ac:ae:6c:1e:5f:f0:fa:fa:11:25:0e:47:56: ad:2c:39:04:a5:6a:df:ea:b4:96:01:95:0e:a7:31:3f:c4:38: c7:d6:81:97:31:f7:61:62:82:8f:8a:a8:a1:2b:53:20:f5:8c: 41:e0:ed:ff:4e:17:0d:14:1c:a8:c1:f4:2c:26:1d:4d:1a:c6: 85:8e:fb:bc:8f:e4:41:58:36:8e:e2:22:5d:98:12:42:40:24: 97:68:38:1e:2f:fe:89:da:dd:f7:8b:eb:9d:91:71:d3:be:23: 6d:cc:56:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUPFtELa9vXoqXQySru/R7prE4lQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA1MDMwMjIwNTZaFw0yNzA1MDIwMjI1NTZaMDMxMTAvBgNV BAMTKDI1ODgwNzlFOEZFMkRCRjZEQUJEQjMyQTQzNkM0QThFREI5NTFGRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSHMXIY7qWEHjydIulI7FXG0g+ KdA830EgDF2407icHeduVtHF8NidX60KVcvDbltk1rxvbpQrCzhApxj/hYfvWJb0 yBoXgB1JDPV5JosbwKnTFontDSDuXnz7zznVGPeKNXIiaXMqNrkkea4vDC8vLIDH oSzflimato/b0q3LMfyAb3R07+x1n2DkxN04AzL6T1IqR2aGDVDEultqPWFgyXLY EQk2Ev80I8QEiGdR2gXy4HJk1gYBA9+uzqGSeBJSZcoB0Fff0hmxEfS2Kpa9YrbY 0ldMSSWs2a3dFEJdlBg+cjtijjDFHRAFUsjefDMREyhHTrL+NVWTSYp6AtObAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJYgHno/i2/bavbMqQ2xKjtuVH9cwHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNjMyMzkzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeoAVMA0GCSqG SIb3DQEBCwUAA4IBAQBBBisLXeru6SUdyDweiMmezIC7MzZ2UnM7yB/tI9ps+SQM M8dDkQ/uF5fAcRwhP6ldhN6Pbdx/kiOt3Y6NUG/H6vQmJsI4prVypxmdv3Inp2Of kU2q122okGOTjkyRtCI6Rofo2HNZGk02AJlv1AjHAJiu1S9zxPHG7S5uSqvDY6rA wUMRAjReB5tI4RK6CBGSBjckcqyubB5f8Pr6ESUOR1atLDkEpWrf6rSWAZUOpzE/ xDjH1oGXMfdhYoKPiqihK1Mg9YxB4O3/ThcNFByowfQsJh1NGsaFjvu8j+RBWDaO 4iJdmBJCQCSXaDgeL/6J2t33i+udkXHTviNtzFZ5 -----END CERTIFICATE-----Generated at Sun May 3 20:01:50 2026 by rpki-client