$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa File: 3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa (raw, json) Hash identifier: lXG4UZNfKWXHKp8DfuMlpwThgw3lzS4NqGA1pTcyDro= Subject key identifier: 3A:C7:9F:FA:04:A0:F2:3E:F4:F0:EF:3A:83:0F:08:D6:E0:66:7E:89 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 3EE1ECE2D85926C01E2F2F170257C249D420AC7A Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa Signing time: Sun 03 May 2026 02:38:28 +0000 ROA not before: Sun 03 May 2026 02:33:28 +0000 ROA not after: Sun 02 May 2027 02:38:28 +0000 asID: 55818 IP address blocks: 119.110.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e1:ec:e2:d8:59:26:c0:1e:2f:2f:17:02:57:c2:49:d4:20:ac:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:28 2026 GMT Not After : May 2 02:38:28 2027 GMT Subject: CN=3AC79FFA04A0F23EF4F0EF3A830F08D6E0667E89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ce:8a:db:af:2b:98:5f:00:ed:b5:f5:1a:22: 4b:9b:31:05:99:40:3e:f0:1b:4e:3e:94:20:e9:bf: e2:c3:6e:e5:87:b9:f3:ee:53:1c:26:cb:7d:24:0e: 91:4f:dc:0b:96:3d:71:24:90:5d:10:08:00:02:f6: 13:ec:16:f6:be:08:ab:46:98:b4:d5:4b:2e:9d:70: 7a:7f:69:f2:96:ad:ba:00:2e:22:11:f6:be:d1:62: cc:37:27:17:08:f6:51:51:fb:e3:04:af:87:36:dc: 03:5a:3d:b7:6c:54:d7:d9:e0:1f:d8:d1:b0:a6:ad: cd:c5:f7:94:1b:82:d1:9c:89:b0:38:81:fb:94:82: 31:f4:18:9a:81:ca:b7:83:44:a2:4b:ed:e0:d1:61: ec:31:e2:e0:53:a1:0a:78:81:0b:e4:cf:70:cd:2e: f6:b4:42:c2:3a:50:0a:ca:19:96:e5:00:f1:ac:e0: df:d3:ab:93:25:42:b0:69:39:93:f1:92:d1:d4:b6: 26:fe:78:d7:9e:d6:32:b7:1c:76:e9:24:dc:d8:2b: d3:ea:e4:89:a5:3a:68:2b:1e:f9:8a:8f:5e:4b:71: c0:d4:6a:e6:93:42:30:a8:4c:64:4c:4b:08:86:d0: c1:24:fd:fd:6a:6e:f8:b9:1c:ed:3b:be:25:24:37: c8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C7:9F:FA:04:A0:F2:3E:F4:F0:EF:3A:83:0F:08:D6:E0:66:7E:89 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131382e302f32342d3234203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.118.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:42:cd:38:04:64:c7:3d:c3:c4:78:22:fe:3b:41:ba:a1:9a: a0:c0:c3:e9:3b:0d:42:8e:90:38:62:82:cc:f3:1e:3e:1c:a0: 81:23:90:62:58:c7:90:85:e7:d6:10:3f:1f:aa:b7:db:45:8a: ee:0b:41:8e:5e:79:3b:e1:6c:ca:9d:65:bf:29:38:08:61:cf: c9:ba:1e:89:57:c2:3f:0d:b9:1c:b2:48:20:61:2a:37:ee:e6: 64:ca:86:e7:cb:72:8d:ce:41:a4:d1:a2:35:88:eb:e5:e7:ff: 7e:17:76:aa:74:2a:cb:67:05:8c:c5:9c:f0:be:69:5a:01:07: fd:2c:c1:6d:da:2b:1d:d2:73:e5:cb:b3:c3:e2:5a:bb:c2:6a: 9d:67:ac:06:48:27:86:93:d7:8d:3f:4d:ab:d9:db:a9:39:ed: 3e:50:35:9c:62:e4:34:2d:7b:c9:f1:1b:c1:ed:f7:48:4f:7c: 85:6e:b3:d9:2c:2d:aa:99:6d:50:4c:7e:b3:2a:29:b6:f5:5c: 5e:dc:93:67:07:4a:d9:bb:54:b7:a2:9d:da:e8:db:36:58:01: 35:61:a8:34:e0:e5:22:50:f9:d7:39:d0:f8:ed:a5:00:49:89: f7:e3:9f:cf:4e:9f:50:cb:af:4c:cc:68:5a:b4:d2:04:0b:ba: 02:4a:97:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPuHs4thZJsAeLy8XAlfCSdQgrHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjhaFw0yNzA1MDIwMjM4MjhaMDMxMTAvBgNV BAMTKDNBQzc5RkZBMDRBMEYyM0VGNEYwRUYzQTgzMEYwOEQ2RTA2NjdFODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJzorbryuYXwDttfUaIkubMQWZ QD7wG04+lCDpv+LDbuWHufPuUxwmy30kDpFP3AuWPXEkkF0QCAAC9hPsFva+CKtG mLTVSy6dcHp/afKWrboALiIR9r7RYsw3JxcI9lFR++MEr4c23ANaPbdsVNfZ4B/Y 0bCmrc3F95QbgtGcibA4gfuUgjH0GJqByreDRKJL7eDRYewx4uBToQp4gQvkz3DN Lva0QsI6UArKGZblAPGs4N/Tq5MlQrBpOZPxktHUtib+eNee1jK3HHbpJNzYK9Pq 5ImlOmgrHvmKj15LccDUauaTQjCoTGRMSwiG0MEk/f1qbvi5HO07viUkN8ilAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOsef+gSg8j708O86gw8I1uBmfokwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd252MA0GCSqG SIb3DQEBCwUAA4IBAQBbQs04BGTHPcPEeCL+O0G6oZqgwMPpOw1CjpA4YoLM8x4+ HKCBI5BiWMeQhefWED8fqrfbRYruC0GOXnk74WzKnWW/KTgIYc/Juh6JV8I/Dbkc skggYSo37uZkyobny3KNzkGk0aI1iOvl5/9+F3aqdCrLZwWMxZzwvmlaAQf9LMFt 2isd0nPly7PD4lq7wmqdZ6wGSCeGk9eNP02r2dupOe0+UDWcYuQ0LXvJ8RvB7fdI T3yFbrPZLC2qmW1QTH6zKim29Vxe3JNnB0rZu1S3op3a6Ns2WAE1Yag04OUiUPnX OdD47aUASYn345/PTp9Qy69MzGhatNIEC7oCSpcv -----END CERTIFICATE-----Generated at Thu May 7 04:30:37 2026 by rpki-client