$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa File: 3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa (raw, json) Hash identifier: hGyycyvrreTwN3ZbuqZr41k48eTHfnhe4KJWlQz0yoQ= Subject key identifier: 76:03:C0:A8:45:B2:DA:D7:67:8D:97:77:43:98:60:F3:21:00:BA:D4 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 521F7AC0C321AA136412073022BECEE24D1AECE4 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:27 +0000 ROA not before: Sun 03 May 2026 02:33:27 +0000 ROA not after: Sun 02 May 2027 02:38:27 +0000 asID: 45147 IP address blocks: 119.110.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1f:7a:c0:c3:21:aa:13:64:12:07:30:22:be:ce:e2:4d:1a:ec:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:27 2026 GMT Not After : May 2 02:38:27 2027 GMT Subject: CN=7603C0A845B2DAD7678D9777439860F32100BAD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:83:b8:95:ad:c4:01:ef:6c:9c:98:39:87:8f: 2f:30:dc:fc:4e:78:4c:7a:c4:ac:38:d1:6e:74:38: d8:39:85:23:24:bf:7f:2e:9e:89:e7:61:6a:91:6e: 6e:b1:a8:60:db:d3:2a:de:32:15:bc:95:d5:62:14: cb:57:2b:07:2b:d1:24:4c:ab:3e:2d:96:2d:d5:fe: 79:89:cd:b6:b6:f7:a1:66:cc:c6:85:7c:94:40:2d: 47:9c:99:8c:0d:e4:38:21:e6:37:7c:0e:44:01:d0: 46:ef:20:58:74:03:2d:c1:b7:35:73:15:65:08:7e: 93:d7:cb:84:36:43:37:4d:77:b5:4c:ff:65:c0:3c: 1b:8b:85:8a:ad:10:49:5a:01:80:dd:79:3f:9d:29: f7:58:84:21:c6:93:70:e6:2d:f0:13:6e:a3:88:04: b0:5f:ce:de:e4:5a:41:43:84:cc:47:79:65:f8:1a: b2:f7:8b:d3:fd:66:dc:f8:7f:71:e3:07:4d:93:18: 21:33:3a:8b:51:c2:e9:fc:c0:15:58:ad:5c:88:72: 06:44:57:05:69:5f:d9:bd:6e:41:df:45:b1:b7:1b: f3:dc:1a:e1:b1:41:69:82:98:3b:27:ea:29:13:aa: 9f:0a:c1:64:41:19:95:3a:c6:5a:ca:88:d7:b7:c1: 07:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:03:C0:A8:45:B2:DA:D7:67:8D:97:77:43:98:60:F3:21:00:BA:D4 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131392e302f32342d3234203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.110.119.0/24 Signature Algorithm: sha256WithRSAEncryption 56:d9:5a:45:15:a7:34:ce:09:67:3a:af:b7:3d:68:5b:57:3b: 0e:4f:99:2e:8e:d0:0a:a4:7b:b7:28:3a:45:df:bf:d2:f7:c8: ca:ec:9b:8e:9b:e3:66:f9:63:fc:fb:95:f9:a1:b4:08:86:b7: 07:80:71:29:27:72:4c:65:3d:23:2f:a6:7d:5b:88:f2:5a:91: 02:52:a3:fb:68:0a:ef:81:88:5a:15:65:9d:ba:db:00:7d:ba: b4:14:94:d1:99:5c:75:03:8b:4d:dc:01:44:94:66:56:8b:47: 79:f6:1b:a0:1d:2c:28:48:3a:37:e7:3a:d5:f3:26:f8:c5:27: 1a:b6:09:62:37:c5:e8:b8:14:7f:fb:57:66:fe:23:20:6b:2c: 84:2c:1a:03:31:92:b5:0c:0e:35:5f:da:4b:63:44:f4:79:90: d9:f7:20:08:5f:ea:6b:89:23:83:97:56:b2:40:ee:f8:0f:95: 26:fb:c6:1c:60:70:e0:95:6b:16:12:21:78:8e:ab:eb:72:f1: 53:54:29:94:0d:ed:ef:af:7a:f9:15:2c:ce:ce:27:15:0d:18: 3e:ed:77:a3:51:54:32:8f:09:16:cf:c0:1c:89:cc:e4:62:da: d8:01:55:7b:a1:35:28:fc:f9:7e:e0:b1:1c:e8:29:91:a7:d3: 0d:5a:00:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUh96wMMhqhNkEgcwIr7O4k0a7OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjdaFw0yNzA1MDIwMjM4MjdaMDMxMTAvBgNV BAMTKDc2MDNDMEE4NDVCMkRBRDc2NzhEOTc3NzQzOTg2MEYzMjEwMEJBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHg7iVrcQB72ycmDmHjy8w3PxO eEx6xKw40W50ONg5hSMkv38unonnYWqRbm6xqGDb0yreMhW8ldViFMtXKwcr0SRM qz4tli3V/nmJzba296FmzMaFfJRALUecmYwN5Dgh5jd8DkQB0EbvIFh0Ay3BtzVz FWUIfpPXy4Q2QzdNd7VM/2XAPBuLhYqtEElaAYDdeT+dKfdYhCHGk3DmLfATbqOI BLBfzt7kWkFDhMxHeWX4GrL3i9P9Ztz4f3HjB02TGCEzOotRwun8wBVYrVyIcgZE VwVpX9m9bkHfRbG3G/PcGuGxQWmCmDsn6ikTqp8KwWRBGZU6xlrKiNe3wQffAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdgPAqEWy2tdnjZd3Q5hg8yEAutQwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzEzOTJlMzEzMTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAd253MA0GCSqG SIb3DQEBCwUAA4IBAQBW2VpFFac0zglnOq+3PWhbVzsOT5kujtAKpHu3KDpF37/S 98jK7JuOm+Nm+WP8+5X5obQIhrcHgHEpJ3JMZT0jL6Z9W4jyWpECUqP7aArvgYha FWWdutsAfbq0FJTRmVx1A4tN3AFElGZWi0d59hugHSwoSDo35zrV8yb4xScatgli N8XouBR/+1dm/iMgayyELBoDMZK1DA41X9pLY0T0eZDZ9yAIX+priSODl1ayQO74 D5Um+8YcYHDglWsWEiF4jqvrcvFTVCmUDe3vr3r5FSzOzicVDRg+7XejUVQyjwkW z8AciczkYtrYAVV7oTUo/Pl+4LEc6CmRp9MNWgAQ -----END CERTIFICATE-----Generated at Thu May 7 03:12:23 2026 by rpki-client