$ rpki-client -vvf rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa File: 3131392e322e36342e302f31392d3234203d3e203137343530.roa (raw, json) Hash identifier: HBOKPyfvkSQ7CSFKARCluBs77G+6cJdJMfV4/cXPISw= Subject key identifier: 73:F6:45:4D:E9:2E:B3:14:59:4B:1C:A6:AA:FE:46:4B:3B:26:D6:2D Certificate issuer: /CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Certificate serial: 3E0739B9323713867BC633008E1B9681FE7C7E4C Authority key identifier: C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa Signing time: Sun 03 May 2026 02:29:26 +0000 ROA not before: Sun 03 May 2026 02:24:26 +0000 ROA not after: Sun 02 May 2027 02:29:26 +0000 asID: 17450 IP address blocks: 119.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:15:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:07:39:b9:32:37:13:86:7b:c6:33:00:8e:1b:96:81:fe:7c:7e:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C97B9AA5127BAC47DAF01727DFF25E26F638643C Validity Not Before: May 3 02:24:26 2026 GMT Not After : May 2 02:29:26 2027 GMT Subject: CN=73F6454DE92EB314594B1CA6AAFE464B3B26D62D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:80:b7:ac:86:ce:bc:54:98:af:0b:ac:9c: 71:ad:f3:ef:a0:46:a2:a5:a0:8f:c1:4d:14:62:32: 80:16:75:0e:21:28:74:e2:04:fb:c3:97:0f:8a:fc: 29:7a:84:2b:34:04:80:e5:b3:de:32:ad:c1:42:d4: cd:e1:2e:da:86:47:e8:5a:ed:f6:4e:c6:1f:c6:34: db:fd:6a:89:7f:c3:58:a5:4c:77:a7:11:7b:1a:95: a6:7f:46:d6:4d:bc:33:2e:5b:67:c6:d7:7d:5e:34: fa:c2:22:06:9d:5c:c1:b8:a3:50:6a:06:8b:9e:eb: 3f:b6:89:7e:64:79:53:a9:ed:7b:47:6a:6f:90:20: 5b:af:b1:ef:5a:e1:4d:14:eb:76:e1:bf:26:36:2b: c0:da:19:94:e3:88:49:e0:df:60:9f:65:50:4d:03: 5a:96:e8:e2:7a:d0:06:33:7b:e1:ca:68:1a:0a:30: 22:f4:b0:2f:22:e3:cf:1f:be:9a:cf:23:53:9e:fd: f6:0b:42:59:fc:d6:3b:bf:36:5e:ca:1b:a2:4d:df: 0b:d6:36:52:40:5e:ce:2d:be:7d:fd:05:b2:fb:37: db:d6:d0:18:54:d2:7d:be:b3:d0:d7:8a:b0:fc:68: 28:84:f0:9c:4b:1f:a9:e9:13:5b:26:ab:22:56:c4: 34:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F6:45:4D:E9:2E:B3:14:59:4B:1C:A6:AA:FE:46:4B:3B:26:D6:2D X509v3 Authority Key Identifier: keyid:C9:7B:9A:A5:12:7B:AC:47:DA:F0:17:27:DF:F2:5E:26:F6:38:64:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/C97B9AA5127BAC47DAF01727DFF25E26F638643C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C97B9AA5127BAC47DAF01727DFF25E26F638643C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3131392e322e36342e302f31392d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 07:55:bc:3f:c3:d6:89:38:f6:4a:60:e2:33:0b:51:99:c2:bd: 47:b6:d7:81:3e:d6:b6:46:a0:6a:a9:69:b1:a3:3d:b7:62:58: 53:22:f8:59:74:2c:d1:7b:5c:26:98:45:bc:b6:f7:a8:05:50: 24:48:a0:af:4a:fd:49:15:7e:53:18:cb:ed:3d:00:95:a4:ef: 1d:fc:31:da:88:58:2e:1f:20:13:d1:d6:c6:a0:8e:33:26:a6: 6e:af:76:6e:38:f9:97:57:df:9b:d7:47:9f:74:c2:4d:54:72: 9b:03:2d:09:ed:f9:3d:2f:29:5d:c9:d8:44:5b:33:a2:1e:a0: d2:95:98:99:a6:4d:2c:2a:38:32:25:b7:94:89:fd:0c:d6:00: e5:b7:30:01:51:e9:c1:a1:04:66:6c:e3:1f:a6:c2:78:c0:c6: a2:f2:03:50:cd:e8:e2:00:b0:a4:fb:6e:06:06:b6:a1:45:03: fe:4d:b9:9b:37:99:c0:2f:f6:e8:e4:bf:19:99:5e:7a:39:48: e1:67:0d:0d:3c:df:29:39:e8:92:94:cc:11:53:68:bd:3f:16: 37:f1:92:df:2b:01:5b:df:12:09:3a:b2:a4:10:57:d0:1b:14: 07:1b:d5:05:c1:0d:84:83:fe:0a:5c:53:f5:f7:24:17:58:67: f4:9a:8a:c2 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPgc5uTI3E4Z7xjMAjhuWgf58fkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3QjlBQTUxMjdCQUM0N0RBRjAxNzI3REZGMjVFMjZG NjM4NjQzQzAeFw0yNjA1MDMwMjI0MjZaFw0yNzA1MDIwMjI5MjZaMDMxMTAvBgNV BAMTKDczRjY0NTRERTkyRUIzMTQ1OTRCMUNBNkFBRkU0NjRCM0IyNkQ2MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1gYC3rIbOvFSYrwusnHGt8++g RqKloI/BTRRiMoAWdQ4hKHTiBPvDlw+K/Cl6hCs0BIDls94yrcFC1M3hLtqGR+ha 7fZOxh/GNNv9aol/w1ilTHenEXsalaZ/RtZNvDMuW2fG131eNPrCIgadXMG4o1Bq Boue6z+2iX5keVOp7XtHam+QIFuvse9a4U0U63bhvyY2K8DaGZTjiEng32CfZVBN A1qW6OJ60AYze+HKaBoKMCL0sC8i488fvprPI1Oe/fYLQln81ju/Nl7KG6JN3wvW NlJAXs4tvn39BbL7N9vW0BhU0n2+s9DXirD8aCiE8JxLH6npE1smqyJWxDSrAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUc/ZFTekusxRZSxymqv5GSzsm1i0wHwYDVR0j BBgwFoAUyXuapRJ7rEfa8Bcn3/JeJvY4ZDwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDM4MDYxZjEtZmEzMC00YmQ2LTgxYTAtMmVjNjcwODM2YzQyLzAvQzk3QjlBQTUx MjdCQUM0N0RBRjAxNzI3REZGMjVFMjZGNjM4NjQzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DOTdCOUFBNTEyN0JBQzQ3REFGMDE3MjdERkYyNUUyNkY2Mzg2 NDNDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDM4MDYxZjEtZmEzMC00YmQ2LTgx YTAtMmVjNjcwODM2YzQyLzAvMzEzMTM5MmUzMjJlMzYzNDJlMzAyZjMxMzkyZDMy MzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV3AkAwDQYJKoZIhvcNAQEL BQADggEBAAdVvD/D1ok49kpg4jMLUZnCvUe214E+1rZGoGqpabGjPbdiWFMi+Fl0 LNF7XCaYRby296gFUCRIoK9K/UkVflMYy+09AJWk7x38MdqIWC4fIBPR1sagjjMm pm6vdm44+ZdX35vXR590wk1UcpsDLQnt+T0vKV3J2ERbM6IeoNKVmJmmTSwqODIl t5SJ/QzWAOW3MAFR6cGhBGZs4x+mwnjAxqLyA1DN6OIAsKT7bgYGtqFFA/5NuZs3 mcAv9ujkvxmZXno5SOFnDQ083yk56JKUzBFTaL0/Fjfxkt8rAVvfEgk6sqQQV9Ab FAcb1QXBDYSD/gpcU/X3JBdYZ/SaisI= -----END CERTIFICATE-----Generated at Tue May 5 10:17:22 2026 by rpki-client