$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: jQju4vrmIfyX84EnoeVMV2sURdLQ4DQrI116w4sdgCY= Subject key identifier: 76:C9:D8:03:35:C9:A1:AE:03:C2:FD:97:41:43:1F:F4:7C:E7:25:1B Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 60306C5559E75BBFB55D740A77BF6862C9B10C18 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:26 +0000 ROA not before: Sun 03 May 2026 02:33:26 +0000 ROA not after: Sun 02 May 2027 02:38:26 +0000 asID: 45147 IP address blocks: 119.110.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:30:6c:55:59:e7:5b:bf:b5:5d:74:0a:77:bf:68:62:c9:b1:0c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:26 2026 GMT Not After : May 2 02:38:26 2027 GMT Subject: CN=76C9D80335C9A1AE03C2FD9741431FF47CE7251B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e6:53:ed:d8:5f:2a:a0:ea:5a:cd:33:c8:9c: ef:10:c0:d4:8a:d7:93:37:b8:7b:e0:51:74:9d:84: 96:99:a8:cd:5c:b1:5a:cc:d5:be:7b:69:f0:dd:0d: 83:a1:03:54:9b:ee:81:19:46:60:7a:d4:fe:56:b2: cf:bb:b0:aa:5c:65:25:5c:2b:64:62:2a:89:ec:2b: 76:4b:b1:d9:1f:a9:96:b9:e6:a2:e2:a4:03:b6:9e: 93:ea:23:7b:c2:c8:11:69:ba:c0:d4:49:4b:0a:f2: aa:2e:9d:af:b3:87:7a:18:0a:23:27:80:0b:0c:49: f2:a6:5d:56:a8:a5:4e:0c:9e:21:f9:47:1d:61:05: a9:86:79:39:30:b4:56:a2:2a:cf:69:c4:3e:4b:36: f2:22:1e:7f:c1:20:c0:57:0d:4b:96:29:b7:8b:0c: 29:8c:00:99:ee:17:9b:34:79:16:4a:56:54:ce:36: bd:a2:12:eb:ad:bc:da:d0:ab:35:8c:71:b8:9e:95: 7e:c3:eb:02:5f:70:9a:01:b9:7c:3a:ea:0a:93:bc: 9b:9b:15:c8:c3:af:b8:70:bd:a4:03:e1:eb:3f:cd: 5d:16:b9:99:86:75:2f:ca:44:73:13:80:0c:b9:50: 7a:14:1f:1b:04:e7:60:20:fd:67:8f:e2:e0:29:b6: a5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C9:D8:03:35:C9:A1:AE:03:C2:FD:97:41:43:1F:F4:7C:E7:25:1B X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131342e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.114.0/24 Signature Algorithm: sha256WithRSAEncryption 45:97:d7:43:62:09:6d:40:cc:b0:14:0f:53:7d:ce:b5:87:ca: f3:0c:ae:c5:54:e1:47:e7:8f:ff:9a:7a:f4:79:6f:24:cf:e2: d2:39:27:c0:aa:5f:fb:04:42:55:b3:ba:46:f9:c4:43:61:dc: 3d:32:37:68:49:19:40:5f:37:1e:8a:d4:44:79:f5:3b:2e:e6: 4d:f5:96:bb:18:67:b2:7e:f0:36:5a:48:ca:96:f3:81:bc:90: 96:95:b2:f8:5c:03:ef:8f:e4:66:49:4b:12:ff:d2:62:c9:7e: f8:76:15:70:99:95:33:f9:0e:16:34:bd:d5:0c:ae:0a:82:6c: 9b:f4:75:c3:15:15:f2:36:2c:02:94:6b:6c:5b:ef:92:36:e1: 0e:bd:92:fe:f6:c5:9b:e4:6a:25:77:4a:04:7c:ea:c0:4b:91: 15:f1:80:35:a8:70:84:ef:7a:57:a9:d4:f4:27:05:93:d7:cb: b5:11:95:cc:79:71:91:4d:e8:ec:85:f0:e4:fa:af:01:99:2b: 00:66:2a:cc:69:9e:68:e7:9d:85:a7:0d:a9:48:7b:bc:95:cf: 22:93:9e:5f:e1:f3:f6:c7:8c:3b:00:b1:4a:66:76:ec:43:c1: 29:1f:5d:21:c4:d0:aa:54:c9:2f:a2:0d:37:cd:6d:d9:3a:35: ee:46:02:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYDBsVVnnW7+1XXQKd79oYsmxDBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjZaFw0yNzA1MDIwMjM4MjZaMDMxMTAvBgNV BAMTKDc2QzlEODAzMzVDOUExQUUwM0MyRkQ5NzQxNDMxRkY0N0NFNzI1MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy5lPt2F8qoOpazTPInO8QwNSK 15M3uHvgUXSdhJaZqM1csVrM1b57afDdDYOhA1Sb7oEZRmB61P5Wss+7sKpcZSVc K2RiKonsK3ZLsdkfqZa55qLipAO2npPqI3vCyBFpusDUSUsK8qouna+zh3oYCiMn gAsMSfKmXVaopU4MniH5Rx1hBamGeTkwtFaiKs9pxD5LNvIiHn/BIMBXDUuWKbeL DCmMAJnuF5s0eRZKVlTONr2iEuutvNrQqzWMcbielX7D6wJfcJoBuXw66gqTvJub FcjDr7hwvaQD4es/zV0WuZmGdS/KRHMTgAy5UHoUHxsE52Ag/WeP4uAptqWtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdsnYAzXJoa4Dwv2XQUMf9HznJRswHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd25yMA0GCSqG SIb3DQEBCwUAA4IBAQBFl9dDYgltQMywFA9Tfc61h8rzDK7FVOFH54//mnr0eW8k z+LSOSfAql/7BEJVs7pG+cRDYdw9MjdoSRlAXzceitREefU7LuZN9Za7GGeyfvA2 WkjKlvOBvJCWlbL4XAPvj+RmSUsS/9JiyX74dhVwmZUz+Q4WNL3VDK4Kgmyb9HXD FRXyNiwClGtsW++SNuEOvZL+9sWb5Gold0oEfOrAS5EV8YA1qHCE73pXqdT0JwWT 18u1EZXMeXGRTejshfDk+q8BmSsAZirMaZ5o552Fpw2pSHu8lc8ik55f4fP2x4w7 ALFKZnbsQ8EpH10hxNCqVMkvog03zW3ZOjXuRgIJ -----END CERTIFICATE-----Generated at Thu May 7 03:12:25 2026 by rpki-client