$ rpki-client -vvf rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa File: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: +7LdedJhuPY+xo3rq8YD2pVQmA3XwTXZAE9pIrm2QyM= Subject key identifier: 27:42:0D:CA:D7:4E:E7:BF:F2:4B:CD:A7:B9:F4:24:68:9D:C5:5A:00 Certificate issuer: /CN=E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED Certificate serial: 6293A03E3BA8C05426792F042AE6475AD28CF04D Authority key identifier: E5:AD:37:F5:8F:E5:B7:B2:D6:C8:78:CC:65:72:DC:D9:7F:32:60:ED Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa Signing time: Sun 03 May 2026 02:11:06 +0000 ROA not before: Sun 03 May 2026 02:06:06 +0000 ROA not after: Sun 02 May 2027 02:11:06 +0000 asID: 56233 IP address blocks: 43.252.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.crl rsync://rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:93:a0:3e:3b:a8:c0:54:26:79:2f:04:2a:e6:47:5a:d2:8c:f0:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED Validity Not Before: May 3 02:06:06 2026 GMT Not After : May 2 02:11:06 2027 GMT Subject: CN=27420DCAD74EE7BFF24BCDA7B9F424689DC55A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:1e:29:a6:29:92:7b:ab:d1:7a:d8:81:69: 50:a5:3f:93:00:c4:22:7c:e2:3d:1d:8f:3e:41:65: 6f:b1:c9:c4:18:7b:d9:e9:d5:db:52:8d:15:b9:8a: 9c:66:65:c8:5c:63:e2:f7:ef:b1:a5:a6:a5:fa:bc: d9:7a:64:8a:73:7d:8c:70:43:c9:18:a8:24:ea:d3: 83:de:83:b3:e0:e8:98:2b:12:62:ea:84:5f:ef:0c: be:a6:fc:eb:63:c2:d9:82:d0:17:fb:96:33:24:b9: a8:9b:2a:c1:81:b5:d0:c4:2e:90:d8:09:a8:10:b1: da:16:ca:f8:1e:0f:b0:50:95:8c:5d:b1:9f:d5:38: 71:09:fb:04:86:fa:3f:ce:91:d7:99:79:7b:87:9d: e6:cc:1d:3d:a9:f4:58:f1:a4:ef:c6:c2:04:e5:75: 87:c3:8a:2e:db:0f:bc:9a:b2:a1:62:f8:70:da:6f: 85:b8:cc:f8:db:61:c4:f1:d2:d8:0c:64:f6:5c:66: e8:50:df:cc:fc:d8:3c:0a:4c:2c:97:98:b1:30:24: dc:33:96:4b:f9:5e:01:0d:b6:03:51:e6:45:66:cb: 8e:66:6b:73:e6:45:8a:76:76:96:e9:6f:5a:04:ff: f4:52:0b:d7:7a:0f:fb:67:ef:85:e3:a9:6a:f7:7d: 68:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:42:0D:CA:D7:4E:E7:BF:F2:4B:CD:A7:B9:F4:24:68:9D:C5:5A:00 X509v3 Authority Key Identifier: keyid:E5:AD:37:F5:8F:E5:B7:B2:D6:C8:78:CC:65:72:DC:D9:7F:32:60:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E5AD37F58FE5B7B2D6C878CC6572DCD97F3260ED.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption ae:b0:72:3c:7e:30:63:06:6c:f2:51:a3:88:31:ee:22:95:1f: ea:37:20:4b:bc:f9:6b:03:16:cf:55:01:62:8a:85:6e:8e:f2: b7:de:5c:3d:07:ab:16:3c:61:e6:bc:fc:d9:14:e7:b9:9c:ac: 73:28:a8:bc:03:3b:93:b8:9f:78:f2:b2:99:2d:f9:b7:ce:ce: f7:a7:ae:f2:93:6e:76:5e:56:ed:c9:2c:0c:80:54:ec:99:86: 18:aa:da:1b:7c:ff:f6:e3:f1:05:79:25:79:c8:bc:94:52:ee: cf:88:4d:20:1c:ae:d2:78:0a:63:b2:05:42:30:54:48:11:d7: 87:33:3b:a8:da:ac:85:0b:31:9a:b7:4a:fc:ef:05:1b:c7:cf: fb:bf:b5:2d:de:70:de:c1:62:7d:6d:17:95:1d:41:92:b4:41: 58:ce:81:28:b8:a8:f2:a4:64:e9:8f:f6:b2:43:36:a2:55:82: 68:4f:3a:0e:79:a3:f2:c2:ba:03:48:63:02:5b:21:5c:98:4a: 74:87:09:d1:a1:a6:e9:a3:6d:87:1a:8e:26:96:d6:18:f1:c3: 38:d4:e0:bf:2e:a5:0c:7c:6b:d9:6a:08:58:f2:b9:29:7b:d0: e2:fa:f5:8f:a8:04:fe:df:f7:87:dc:76:e6:34:6e:c6:b3:10: 6b:cd:3c:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYpOgPjuowFQmeS8EKuZHWtKM8E0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVBRDM3RjU4RkU1QjdCMkQ2Qzg3OENDNjU3MkRDRDk3 RjMyNjBFRDAeFw0yNjA1MDMwMjA2MDZaFw0yNzA1MDIwMjExMDZaMDMxMTAvBgNV BAMTKDI3NDIwRENBRDc0RUU3QkZGMjRCQ0RBN0I5RjQyNDY4OURDNTVBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4yB4ppimSe6vRetiBaVClP5MA xCJ84j0djz5BZW+xycQYe9np1dtSjRW5ipxmZchcY+L377GlpqX6vNl6ZIpzfYxw Q8kYqCTq04Peg7Pg6JgrEmLqhF/vDL6m/OtjwtmC0Bf7ljMkuaibKsGBtdDELpDY CagQsdoWyvgeD7BQlYxdsZ/VOHEJ+wSG+j/OkdeZeXuHnebMHT2p9FjxpO/GwgTl dYfDii7bD7yasqFi+HDab4W4zPjbYcTx0tgMZPZcZuhQ38z82DwKTCyXmLEwJNwz lkv5XgENtgNR5kVmy45ma3PmRYp2dpbpb1oE//RSC9d6D/tn74XjqWr3fWgrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ0INytdO57/yS82nufQkaJ3FWgAwHwYDVR0j BBgwFoAU5a039Y/lt7LWyHjMZXLc2X8yYO0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDRmZDRiYzItNDFkNC00MmU2LWE3ZmYtNTk0OTM4ODUxMjZhLzAvRTVBRDM3RjU4 RkU1QjdCMkQ2Qzg3OENDNjU3MkRDRDk3RjMyNjBFRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNUFEMzdGNThGRTVCN0IyRDZDODc4Q0M2NTcyRENEOTdGMzI2 MEVELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzM0MzMyZTMyMzUzMjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv8kDANBgkqhkiG 9w0BAQsFAAOCAQEArrByPH4wYwZs8lGjiDHuIpUf6jcgS7z5awMWz1UBYoqFbo7y t95cPQerFjxh5rz82RTnuZyscyiovAM7k7ifePKymS35t87O96eu8pNudl5W7cks DIBU7JmGGKraG3z/9uPxBXkleci8lFLuz4hNIByu0ngKY7IFQjBUSBHXhzM7qNqs hQsxmrdK/O8FG8fP+7+1Ld5w3sFifW0XlR1BkrRBWM6BKLio8qRk6Y/2skM2olWC aE86Dnmj8sK6A0hjAlshXJhKdIcJ0aGm6aNthxqOJpbWGPHDONTgvy6lDHxr2WoI WPK5KXvQ4vr1j6gE/t/3h9x25jRuxrMQa808rA== -----END CERTIFICATE-----Generated at Wed May 13 02:40:32 2026 by rpki-client