$ rpki-client -vvf rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa File: 3231322e3131372e34382e302f32302d3234203d3e203538333736.roa (raw, json) Hash identifier: tagwsSVL2euywnNYgfGcSI37agKbNG24pIwjEJuU+FQ= Subject key identifier: 19:12:7E:4C:AA:F5:65:CC:BD:DE:D0:43:1C:F0:A9:B0:BE:68:DB:55 Certificate issuer: /CN=CD846D565A6E2859697B59C438907050C12DE37D Certificate serial: 179E4D92EF48C4727FEC697A83ADD5BB26D96211 Authority key identifier: CD:84:6D:56:5A:6E:28:59:69:7B:59:C4:38:90:70:50:C1:2D:E3:7D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/CD846D565A6E2859697B59C438907050C12DE37D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa Signing time: Sun 03 May 2026 02:49:02 +0000 ROA not before: Sun 03 May 2026 02:44:02 +0000 ROA not after: Sun 02 May 2027 02:49:02 +0000 asID: 58376 IP address blocks: 212.117.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/CD846D565A6E2859697B59C438907050C12DE37D.crl rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/CD846D565A6E2859697B59C438907050C12DE37D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/3/CD846D565A6E2859697B59C438907050C12DE37D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9e:4d:92:ef:48:c4:72:7f:ec:69:7a:83:ad:d5:bb:26:d9:62:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD846D565A6E2859697B59C438907050C12DE37D Validity Not Before: May 3 02:44:02 2026 GMT Not After : May 2 02:49:02 2027 GMT Subject: CN=19127E4CAAF565CCBDDED0431CF0A9B0BE68DB55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3b:9b:66:db:24:a6:58:85:e7:57:28:e9:40: 41:16:c6:1b:d3:f5:89:7a:f5:ac:58:a9:12:7b:44: 43:6b:83:8a:ad:38:d9:f3:d2:97:5b:eb:48:c7:f4: ae:0d:3e:ce:18:e2:2c:bc:1e:88:ea:27:e2:dc:15: 06:1a:b3:3d:c3:70:cd:7d:08:39:95:22:1e:dc:46: 31:d5:20:66:b8:96:a6:9a:55:92:c4:3c:7e:73:3b: 2d:3e:60:3f:51:75:e0:7b:0a:7a:e3:da:de:82:1c: a5:19:42:93:11:56:6a:82:ef:a9:4d:ba:2e:4a:6e: 2c:69:ec:e4:20:f8:13:09:80:83:1a:63:89:79:4f: 40:75:82:fd:30:4c:68:d4:b1:f4:93:58:88:bd:67: df:88:9d:40:90:f2:58:16:6f:31:aa:c5:99:50:63: 5d:92:92:11:72:fe:0f:e4:e4:1f:18:75:39:3b:e2: 1b:5b:38:3f:73:f6:68:c6:56:2d:67:7d:66:2c:bd: 5a:41:ff:e3:63:08:4a:0e:1d:19:a5:9b:a7:b3:f1: 35:7e:b6:73:6d:f9:1e:56:9f:1c:d3:58:ca:66:f4: e7:b8:fe:e9:87:16:a1:55:45:c9:34:36:0a:51:f9: 87:0b:73:66:ab:fd:be:6f:a8:4f:08:20:ef:00:3c: 20:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:12:7E:4C:AA:F5:65:CC:BD:DE:D0:43:1C:F0:A9:B0:BE:68:DB:55 X509v3 Authority Key Identifier: keyid:CD:84:6D:56:5A:6E:28:59:69:7B:59:C4:38:90:70:50:C1:2D:E3:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/CD846D565A6E2859697B59C438907050C12DE37D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/CD846D565A6E2859697B59C438907050C12DE37D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.117.48.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:93:0d:67:7a:aa:87:d3:b0:98:8c:94:d8:12:21:6e:85:6f: 2d:0e:26:18:5d:b9:bf:ac:98:52:fe:85:46:5d:aa:c7:da:46: 1c:94:95:6d:ca:09:b8:c0:5e:b9:38:a1:d4:c4:fa:1e:21:8a: 6d:bb:82:af:ae:81:b0:f8:49:84:eb:03:16:bd:91:3b:e1:97: a7:a1:1e:b1:cd:6f:dd:5a:32:63:eb:ce:8f:e9:31:c9:78:93: 2e:95:13:6b:36:67:77:c0:de:ef:a5:73:7b:a1:3c:72:8f:53: ac:6a:55:b1:4a:af:f7:7e:f8:ca:95:4f:0c:0f:ed:64:9a:fb: 8c:f6:16:42:aa:3b:d3:57:bd:d8:04:31:31:4a:25:96:60:e5: a0:fd:88:58:3c:c1:66:26:bd:31:15:99:f9:fc:0b:57:a7:16: 00:7c:1d:b1:0c:46:fe:fc:12:db:36:cb:a5:b4:c6:f2:e4:8f: a2:e9:e0:1a:13:93:74:93:0e:cd:61:3a:a1:dd:5f:57:60:8e: 86:28:1c:04:33:ca:f9:0b:30:d6:1b:df:fc:a4:6e:14:d8:12: a2:ea:3e:8e:9f:44:88:c5:48:49:25:7b:07:30:4b:d8:b8:0d: 35:c9:bb:bf:8a:6c:ae:9c:24:a6:71:d4:dd:b2:1f:9a:8b:31: 8e:ea:1d:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF55Nku9IxHJ/7Gl6g63VuybZYhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q4NDZENTY1QTZFMjg1OTY5N0I1OUM0Mzg5MDcwNTBD MTJERTM3RDAeFw0yNjA1MDMwMjQ0MDJaFw0yNzA1MDIwMjQ5MDJaMDMxMTAvBgNV BAMTKDE5MTI3RTRDQUFGNTY1Q0NCRERFRDA0MzFDRjBBOUIwQkU2OERCNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/O5tm2ySmWIXnVyjpQEEWxhvT 9Yl69axYqRJ7RENrg4qtONnz0pdb60jH9K4NPs4Y4iy8HojqJ+LcFQYasz3DcM19 CDmVIh7cRjHVIGa4lqaaVZLEPH5zOy0+YD9RdeB7Cnrj2t6CHKUZQpMRVmqC76lN ui5Kbixp7OQg+BMJgIMaY4l5T0B1gv0wTGjUsfSTWIi9Z9+InUCQ8lgWbzGqxZlQ Y12SkhFy/g/k5B8YdTk74htbOD9z9mjGVi1nfWYsvVpB/+NjCEoOHRmlm6ez8TV+ tnNt+R5WnxzTWMpm9Oe4/umHFqFVRck0NgpR+YcLc2ar/b5vqE8IIO8APCBzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGRJ+TKr1Zcy93tBDHPCpsL5o21UwHwYDVR0j BBgwFoAUzYRtVlpuKFlpe1nEOJBwUMEt430wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODkxZDNjMzAtOTVkYy00YjcyLWFlMWItYWQxZTk4YjBlMTc5LzEvQ0Q4NDZENTY1 QTZFMjg1OTY5N0I1OUM0Mzg5MDcwNTBDMTJERTM3RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMy9DRDg0NkQ1NjVBNkUyODU5Njk3QjU5QzQzODkwNzA1MEMxMkRF MzdELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8xLzMyMzEzMjJlMzEzMTM3MmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNR1MDANBgkqhkiG 9w0BAQsFAAOCAQEASpMNZ3qqh9OwmIyU2BIhboVvLQ4mGF25v6yYUv6FRl2qx9pG HJSVbcoJuMBeuTih1MT6HiGKbbuCr66BsPhJhOsDFr2RO+GXp6Eesc1v3VoyY+vO j+kxyXiTLpUTazZnd8De76Vze6E8co9TrGpVsUqv9374ypVPDA/tZJr7jPYWQqo7 01e92AQxMUollmDloP2IWDzBZia9MRWZ+fwLV6cWAHwdsQxG/vwS2zbLpbTG8uSP oungGhOTdJMOzWE6od1fV2COhigcBDPK+Qsw1hvf/KRuFNgSouo+jp9EiMVISSV7 BzBL2LgNNcm7v4psrpwkpnHU3bIfmosxjuodGg== -----END CERTIFICATE-----Generated at Tue May 5 16:35:15 2026 by rpki-client