$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32312e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: gPkV1b2SmorRDQ1yqKufZI+SOzHwtp71j+eQg1Bwiak= Subject key identifier: 79:63:59:8F:27:09:9A:FA:67:74:65:F4:46:BC:34:5F:0B:C2:A2:AD Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 1A606FE862142D3766B629B74DEF3004F51922A8 Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa Signing time: Sun 03 May 2026 02:25:55 +0000 ROA not before: Sun 03 May 2026 02:20:55 +0000 ROA not after: Sun 02 May 2027 02:25:55 +0000 asID: 46045 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:60:6f:e8:62:14:2d:37:66:b6:29:b7:4d:ef:30:04:f5:19:22:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: May 3 02:20:55 2026 GMT Not After : May 2 02:25:55 2027 GMT Subject: CN=7963598F27099AFA677465F446BC345F0BC2A2AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1d:38:5a:7e:d4:05:75:40:ab:a0:3b:b6:fc: 7c:5b:e7:65:c0:b1:77:ab:2c:0d:6d:b3:5a:88:c4: 51:0d:55:74:9b:d7:d0:17:07:09:08:95:73:6d:17: 9d:97:bc:0a:61:e6:72:3a:ee:a7:2b:01:02:f5:60: 62:53:87:2a:d7:40:63:cd:7a:8f:a3:58:ca:d9:3d: 67:f3:ee:b1:97:93:e5:08:d1:af:41:4a:87:75:35: a7:af:0f:b9:c7:f8:03:e6:02:d0:29:cc:1f:18:4c: ed:9a:29:0e:2d:3f:df:e6:c1:82:44:d2:6c:3f:d4: dd:d4:aa:b7:d8:02:4c:a4:e0:f4:65:a6:0f:76:d7: 3b:6b:e7:15:ce:e8:2e:eb:df:1a:76:c1:73:17:20: 64:77:c4:cb:e3:fa:63:ae:94:08:1f:e0:b9:69:4e: 5d:17:f3:26:c2:af:f0:2b:88:e5:7f:23:e2:eb:b0: 81:e3:c8:67:29:f4:c5:4a:ad:48:c2:c5:cb:d6:b1: 11:db:86:ef:32:f9:32:b1:00:ba:33:ec:c6:fe:e5: 31:3a:72:f6:97:13:47:b0:54:d6:ab:8c:30:9d:9d: a9:43:d1:44:59:9a:8a:f5:84:cf:85:0e:c2:20:12: dc:e7:b6:f8:b4:10:e2:31:94:6d:7e:19:a9:bb:2b: 30:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:63:59:8F:27:09:9A:FA:67:74:65:F4:46:BC:34:5F:0B:C2:A2:AD X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:63:4b:b2:59:e6:d6:53:07:ab:50:15:d4:26:fe:d0:c5:ab: 5b:eb:25:9c:bd:d5:bd:8a:12:04:b8:e8:66:d1:e0:20:e6:60: fa:71:dd:3e:8f:5a:ce:b6:7c:d7:ad:ac:18:04:e7:e5:12:65: ff:eb:9a:95:cc:2d:ff:93:13:d2:2e:7a:49:06:91:10:f7:6e: d1:c5:1b:83:ff:2c:52:29:e2:d5:12:70:36:60:e2:52:47:f1: 5d:3b:25:43:2a:53:07:5e:2c:57:ea:9c:03:24:c6:3f:73:29: cf:1d:ba:5a:8d:8b:db:5c:02:87:9d:23:0d:c7:52:ef:9c:ee: f4:8b:cf:45:c9:6b:e2:83:51:19:2f:2a:0d:ee:68:80:fb:4f: 8f:10:f6:60:79:f2:8c:31:8c:55:ab:94:26:fe:dc:8e:1c:6c: d9:4a:0d:8d:dd:e4:e0:90:d6:ca:23:fc:5f:c5:62:e1:ff:43: 4f:3f:1c:dd:56:33:13:75:ce:b7:42:09:4c:8c:7e:5e:99:5a: 94:03:ad:5c:43:29:3f:f8:24:19:78:3b:2c:55:b9:5d:dc:17: a7:b1:df:f3:db:79:e2:62:5e:4d:40:2c:ba:0c:07:64:ab:2a: 81:06:d3:01:a7:dc:1e:03:49:f2:4d:e2:5e:76:29:cd:57:a1: f3:02:f2:da -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGmBv6GIULTdmtim3Te8wBPUZIqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA1MDMwMjIwNTVaFw0yNzA1MDIwMjI1NTVaMDMxMTAvBgNV BAMTKDc5NjM1OThGMjcwOTlBRkE2Nzc0NjVGNDQ2QkMzNDVGMEJDMkEyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChHThaftQFdUCroDu2/Hxb52XA sXerLA1ts1qIxFENVXSb19AXBwkIlXNtF52XvAph5nI67qcrAQL1YGJThyrXQGPN eo+jWMrZPWfz7rGXk+UI0a9BSod1NaevD7nH+APmAtApzB8YTO2aKQ4tP9/mwYJE 0mw/1N3UqrfYAkyk4PRlpg921ztr5xXO6C7r3xp2wXMXIGR3xMvj+mOulAgf4Llp Tl0X8ybCr/AriOV/I+LrsIHjyGcp9MVKrUjCxcvWsRHbhu8y+TKxALoz7Mb+5TE6 cvaXE0ewVNarjDCdnalD0URZmor1hM+FDsIgEtzntvi0EOIxlG1+Gam7KzCdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeWNZjycJmvpndGX0Rrw0XwvCoq0wHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFTANBgkqhkiG 9w0BAQsFAAOCAQEAjWNLslnm1lMHq1AV1Cb+0MWrW+slnL3VvYoSBLjoZtHgIOZg +nHdPo9azrZ8162sGATn5RJl/+ualcwt/5MT0i56SQaREPdu0cUbg/8sUini1RJw NmDiUkfxXTslQypTB14sV+qcAyTGP3Mpzx26Wo2L21wCh50jDcdS75zu9IvPRclr 4oNRGS8qDe5ogPtPjxD2YHnyjDGMVauUJv7cjhxs2UoNjd3k4JDWyiP8X8Vi4f9D Tz8c3VYzE3XOt0IJTIx+XplalAOtXEMpP/gkGXg7LFW5XdwXp7Hf89t54mJeTUAs ugwHZKsqgQbTAafcHgNJ8k3iXnYpzVeh8wLy2g== -----END CERTIFICATE-----Generated at Sun May 3 20:01:23 2026 by rpki-client