$ rpki-client -vvf rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa File: 3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: KSC50JIeH8ScOew84zEAbd5sRPIPNqne4mtxlU+Kjl4= Subject key identifier: 00:6D:AD:06:88:41:53:B7:D0:5A:8C:F7:35:35:7F:CE:B7:68:7B:7F Certificate issuer: /CN=80EE3E77120F65C1886C09F137B30D2CB1DE0209 Certificate serial: 61E109AC76E8A540B2303E7EC54428F507BF8A06 Authority key identifier: 80:EE:3E:77:12:0F:65:C1:88:6C:09:F1:37:B3:0D:2C:B1:DE:02:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/80EE3E77120F65C1886C09F137B30D2CB1DE0209.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa Signing time: Sun 03 May 2026 02:33:35 +0000 ROA not before: Sun 03 May 2026 02:28:35 +0000 ROA not after: Sun 02 May 2027 02:33:35 +0000 asID: 141607 IP address blocks: 210.79.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/80EE3E77120F65C1886C09F137B30D2CB1DE0209.crl rsync://rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/80EE3E77120F65C1886C09F137B30D2CB1DE0209.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/80EE3E77120F65C1886C09F137B30D2CB1DE0209.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e1:09:ac:76:e8:a5:40:b2:30:3e:7e:c5:44:28:f5:07:bf:8a:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80EE3E77120F65C1886C09F137B30D2CB1DE0209 Validity Not Before: May 3 02:28:35 2026 GMT Not After : May 2 02:33:35 2027 GMT Subject: CN=006DAD06884153B7D05A8CF735357FCEB7687B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:00:b6:b5:b6:7c:1e:7b:cb:28:a2:b4:46:5f: 43:2e:fc:d6:90:3e:0e:be:4e:73:4a:6a:f4:2d:3f: f2:3d:03:42:a5:4d:61:74:e9:1f:81:43:f4:26:82: 06:69:cc:21:08:a0:de:06:07:91:50:2e:d3:00:14: 7c:4f:79:38:4d:f6:87:c4:80:6b:11:94:79:2e:e6: 42:fb:2a:a0:6c:1e:cc:b2:86:bc:6d:b9:0f:e0:3e: 60:13:59:ee:82:f5:09:48:31:73:6f:06:87:50:84: a5:9a:e1:86:42:51:17:cd:76:fa:06:0a:d4:1c:31: 52:f2:f8:66:8b:34:ed:f8:f1:73:53:74:6e:17:76: c2:7a:bb:2b:68:9c:f2:0f:ea:33:05:0a:ad:a5:2b: 6b:31:80:46:73:33:4b:af:8a:e3:22:95:78:50:1f: c9:94:f4:7a:39:7f:36:75:35:61:a8:c5:c3:7c:04: 1a:0b:96:9a:d2:61:a3:00:0c:86:ae:97:45:24:89: 69:09:ff:9c:88:84:b0:3d:80:57:fa:c0:ad:51:54: 18:78:cf:22:aa:c2:05:c0:24:ac:21:d2:01:4d:72: 5d:45:1b:72:26:b7:ae:af:44:c0:09:f5:48:38:ec: 5a:31:0b:46:69:c5:89:5b:0a:75:42:95:63:41:5d: 20:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6D:AD:06:88:41:53:B7:D0:5A:8C:F7:35:35:7F:CE:B7:68:7B:7F X509v3 Authority Key Identifier: keyid:80:EE:3E:77:12:0F:65:C1:88:6C:09:F1:37:B3:0D:2C:B1:DE:02:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/80EE3E77120F65C1886C09F137B30D2CB1DE0209.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/80EE3E77120F65C1886C09F137B30D2CB1DE0209.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.142.0/24 Signature Algorithm: sha256WithRSAEncryption 06:ee:99:5b:42:85:2a:1f:ea:5c:c3:e4:b9:88:a1:98:92:dc: ad:67:97:cd:26:1f:ce:ad:9c:ec:8b:62:fb:97:e7:cd:e0:5f: 00:b9:30:4e:bb:87:82:b2:44:3e:a8:e9:ae:35:4b:77:e4:b9: 45:0b:a5:f6:ec:67:15:d3:61:d5:74:26:3c:ea:e9:09:1b:dd: b5:f7:50:3a:01:a0:2b:c1:3b:66:25:27:45:32:33:4e:19:f5: dc:27:35:5f:1d:47:44:42:73:45:23:05:a2:1f:63:60:fa:be: 86:cc:9d:67:40:ac:52:fc:d4:b0:81:e8:2e:20:47:0b:b3:0c: 6c:49:dd:81:98:f3:2f:41:8f:04:ea:c8:ab:5b:ce:6a:b6:44: 3d:9d:91:db:97:d0:61:ff:d3:c2:aa:a6:dc:7c:7e:28:c1:5f: 11:09:d8:fb:7e:29:c0:ac:50:24:fa:1f:d0:1f:f8:5c:3f:67: 17:ea:08:80:b3:31:fe:ca:8b:58:1e:3d:3f:df:4b:bb:45:1a: a1:f1:08:b2:00:52:49:f9:b9:19:70:3e:10:9d:c4:ec:d8:f8: bd:47:ff:ca:5b:c3:cc:d3:0b:cb:cc:46:b5:2f:c9:b1:07:e5: bf:bd:60:27:88:15:39:f2:db:aa:0c:e2:6e:1e:94:cb:e5:9f: 9a:b1:cb:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYeEJrHbopUCyMD5+xUQo9Qe/igYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBFRTNFNzcxMjBGNjVDMTg4NkMwOUYxMzdCMzBEMkNC MURFMDIwOTAeFw0yNjA1MDMwMjI4MzVaFw0yNzA1MDIwMjMzMzVaMDMxMTAvBgNV BAMTKDAwNkRBRDA2ODg0MTUzQjdEMDVBOENGNzM1MzU3RkNFQjc2ODdCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfALa1tnwee8soorRGX0Mu/NaQ Pg6+TnNKavQtP/I9A0KlTWF06R+BQ/QmggZpzCEIoN4GB5FQLtMAFHxPeThN9ofE gGsRlHku5kL7KqBsHsyyhrxtuQ/gPmATWe6C9QlIMXNvBodQhKWa4YZCURfNdvoG CtQcMVLy+GaLNO348XNTdG4XdsJ6uytonPIP6jMFCq2lK2sxgEZzM0uviuMilXhQ H8mU9Ho5fzZ1NWGoxcN8BBoLlprSYaMADIaul0UkiWkJ/5yIhLA9gFf6wK1RVBh4 zyKqwgXAJKwh0gFNcl1FG3Imt66vRMAJ9Ug47FoxC0ZpxYlbCnVClWNBXSDTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAG2tBohBU7fQWoz3NTV/zrdoe38wHwYDVR0j BBgwFoAUgO4+dxIPZcGIbAnxN7MNLLHeAgkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTQzOGY2YWEtZjI3ZC00OTA2LTk1MWUtZjAyZDg5MWJmMWVkLzAvODBFRTNFNzcx MjBGNjVDMTg4NkMwOUYxMzdCMzBEMkNCMURFMDIwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MEVFM0U3NzEyMEY2NUMxODg2QzA5RjEzN0IzMEQyQ0IxREUw MjA5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU0MzhmNmFhLWYyN2QtNDkwNi05 NTFlLWYwMmQ4OTFiZjFlZC8wLzMyMzEzMDJlMzczOTJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0k+OMA0GCSqG SIb3DQEBCwUAA4IBAQAG7plbQoUqH+pcw+S5iKGYktytZ5fNJh/OrZzsi2L7l+fN 4F8AuTBOu4eCskQ+qOmuNUt35LlFC6X27GcV02HVdCY86ukJG92191A6AaArwTtm JSdFMjNOGfXcJzVfHUdEQnNFIwWiH2Ng+r6GzJ1nQKxS/NSwgeguIEcLswxsSd2B mPMvQY8E6sirW85qtkQ9nZHbl9Bh/9PCqqbcfH4owV8RCdj7finArFAk+h/QH/hc P2cX6giAszH+yotYHj0/30u7RRqh8QiyAFJJ+bkZcD4QncTs2Pi9R//KW8PM0wvL zEa1L8mxB+W/vWAniBU58tuqDOJuHpTL5Z+ascvQ -----END CERTIFICATE-----Generated at Tue May 5 13:32:09 2026 by rpki-client