$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: kzw+EMpj8Dm9gkpAgKiFBQWs9yzGM3IUw2NinXOuSBI= Subject key identifier: 24:72:A5:21:4F:F1:83:8C:87:D9:8F:E7:91:47:33:5F:1B:F6:42:C4 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 2A924E9CB2F78C4A844FFCD7F1839EE10201077D Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa Signing time: Sun 03 May 2026 02:38:39 +0000 ROA not before: Sun 03 May 2026 02:33:39 +0000 ROA not after: Sun 02 May 2027 02:38:39 +0000 asID: 55818 IP address blocks: 119.110.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:92:4e:9c:b2:f7:8c:4a:84:4f:fc:d7:f1:83:9e:e1:02:01:07:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:39 2026 GMT Not After : May 2 02:38:39 2027 GMT Subject: CN=2472A5214FF1838C87D98FE79147335F1BF642C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:e4:12:70:bd:ee:7d:b3:3a:90:2a:37:46: b6:db:ac:a4:d9:a3:ab:34:4d:c1:f8:f0:91:15:6b: d9:d9:60:db:70:83:b1:e8:18:e3:02:dc:05:4b:a4: 4f:bb:ef:0f:53:82:0f:23:7f:24:56:f5:cf:6d:ca: 26:a5:e4:ed:a0:fa:ef:e8:c9:90:29:1e:86:62:5b: 1e:75:bf:b7:05:c1:9e:2f:3d:1c:c9:29:2f:8b:32: 85:a4:cd:94:6b:8e:e9:96:54:7b:5c:33:e9:b7:c6: 2e:2d:5e:cb:87:e4:21:b2:53:96:42:fc:e5:d9:68: 46:2d:17:84:02:f7:51:9f:d6:09:61:42:db:05:ac: ce:bc:29:97:b4:30:db:ed:13:d5:3d:d1:a4:52:39: c0:6e:e4:31:c3:77:7b:e5:71:cd:f4:36:c0:55:66: 49:8a:db:f3:b3:14:f7:0e:0d:48:b9:ff:d7:86:89: 20:d0:0a:21:bb:f3:e2:98:3b:71:dd:7c:a3:bb:a5: 60:60:8c:cd:a8:33:48:ce:b4:c9:7e:c4:d0:20:85: 42:99:1c:44:9a:0b:3b:41:df:e8:da:7e:e2:ed:6d: 88:3a:77:f5:db:01:36:e4:17:40:27:d9:57:09:5e: 58:23:dd:5b:1c:23:ad:59:c0:a1:eb:df:b5:96:65: 76:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:72:A5:21:4F:F1:83:8C:87:D9:8F:E7:91:47:33:5F:1B:F6:42:C4 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.116.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:cf:9e:ce:a5:f8:56:df:d8:e9:5f:e8:ea:87:da:5c:27:fa: ec:95:a3:88:72:a7:ae:c6:9e:c1:ba:a1:dd:9f:63:2a:1f:f4: f2:22:77:4e:c3:b4:c2:40:90:de:81:d1:6f:b7:4b:d5:01:a0: 64:29:ab:11:4c:58:c4:55:f4:34:14:0c:3e:f6:1c:de:b4:4a: be:46:43:cd:8c:95:4b:be:23:36:d1:9e:39:2c:2e:d6:6d:b7: f6:9e:5a:e5:25:0c:a5:38:a3:78:08:5b:dc:40:bb:82:aa:2d: 62:30:18:cb:10:36:ef:d0:30:cc:7e:ec:6a:c8:8b:e3:a7:8e: 38:6c:d2:96:5f:31:e1:7c:26:8e:65:23:57:2c:b2:fc:7d:50: dc:2b:67:59:4e:26:dd:59:96:bd:7f:81:e5:41:fa:15:23:a2: 4f:b3:af:49:85:8f:4b:bb:39:bf:aa:8b:41:2e:1b:cb:56:33: 08:54:d3:39:46:43:88:0c:6e:c1:1a:49:02:87:c5:3a:fc:96: e4:07:e5:ba:a1:aa:32:0e:a0:f8:2e:0e:dc:09:ae:a7:c3:22: 45:f7:1c:92:1e:f8:0f:ab:42:f3:44:ea:ae:7b:7f:7f:61:bc: 7c:de:b6:8d:77:04:3d:c8:a6:11:5b:26:60:ca:ef:3a:dc:82: 88:d0:d1:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKpJOnLL3jEqET/zX8YOe4QIBB30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzlaFw0yNzA1MDIwMjM4MzlaMDMxMTAvBgNV BAMTKDI0NzJBNTIxNEZGMTgzOEM4N0Q5OEZFNzkxNDczMzVGMUJGNjQyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkc+QScL3ufbM6kCo3RrbbrKTZ o6s0TcH48JEVa9nZYNtwg7HoGOMC3AVLpE+77w9Tgg8jfyRW9c9tyial5O2g+u/o yZApHoZiWx51v7cFwZ4vPRzJKS+LMoWkzZRrjumWVHtcM+m3xi4tXsuH5CGyU5ZC /OXZaEYtF4QC91Gf1glhQtsFrM68KZe0MNvtE9U90aRSOcBu5DHDd3vlcc30NsBV ZkmK2/OzFPcODUi5/9eGiSDQCiG78+KYO3HdfKO7pWBgjM2oM0jOtMl+xNAghUKZ HESaCztB3+jafuLtbYg6d/XbATbkF0An2VcJXlgj3VscI61ZwKHr37WWZXZTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJHKlIU/xg4yH2Y/nkUczXxv2QsQwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd250MA0GCSqG SIb3DQEBCwUAA4IBAQA9z57OpfhW39jpX+jqh9pcJ/rslaOIcqeuxp7BuqHdn2Mq H/TyIndOw7TCQJDegdFvt0vVAaBkKasRTFjEVfQ0FAw+9hzetEq+RkPNjJVLviM2 0Z45LC7Wbbf2nlrlJQylOKN4CFvcQLuCqi1iMBjLEDbv0DDMfuxqyIvjp444bNKW XzHhfCaOZSNXLLL8fVDcK2dZTibdWZa9f4HlQfoVI6JPs69JhY9Luzm/qotBLhvL VjMIVNM5RkOIDG7BGkkCh8U6/JbkB+W6oaoyDqD4Lg7cCa6nwyJF9xySHvgPq0Lz ROque39/Ybx83raNdwQ9yKYRWyZgyu863IKI0NGC -----END CERTIFICATE-----Generated at Thu May 7 04:30:50 2026 by rpki-client