$ rpki-client -vvf rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137382e302f32342d3234203d3e203535363930.roa File: 34322e36322e3137382e302f32342d3234203d3e203535363930.roa (raw, json) Hash identifier: fL4L75ZfG95OnrYdBzJ8U8ScmLKPMhj+AxoVCGeag9U= Subject key identifier: 19:33:21:41:B1:4D:A6:C4:F2:83:21:99:57:72:EA:1D:11:A3:77:46 Certificate issuer: /CN=F236C7A77A6371D17FE87C85E2C5B6966B9B2883 Certificate serial: 4DDFADE86275760EF35C9A1948A6575272417674 Authority key identifier: F2:36:C7:A7:7A:63:71:D1:7F:E8:7C:85:E2:C5:B6:96:6B:9B:28:83 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137382e302f32342d3234203d3e203535363930.roa Signing time: Sun 03 May 2026 02:12:17 +0000 ROA not before: Sun 03 May 2026 02:07:17 +0000 ROA not after: Sun 02 May 2027 02:12:17 +0000 asID: 55690 IP address blocks: 42.62.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.crl rsync://rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:df:ad:e8:62:75:76:0e:f3:5c:9a:19:48:a6:57:52:72:41:76:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F236C7A77A6371D17FE87C85E2C5B6966B9B2883 Validity Not Before: May 3 02:07:17 2026 GMT Not After : May 2 02:12:17 2027 GMT Subject: CN=19332141B14DA6C4F28321995772EA1D11A37746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2f:58:a4:c8:e0:0a:01:61:f2:a9:f5:83:8c: 2d:fa:55:7f:bf:cc:40:92:a1:b1:8e:c8:af:43:e3: 68:ab:71:1b:53:2b:55:32:f2:87:19:4a:1f:f2:25: 12:60:47:9b:1b:84:f3:e8:90:ca:2d:1e:84:05:3f: 2a:7e:11:29:75:7b:c9:14:fe:5f:ae:5a:0a:17:b8: 12:b6:fa:84:0b:b8:60:5d:e5:07:67:cd:de:01:bb: 5d:43:ab:b4:1b:40:1a:4a:7a:3b:4a:b7:fe:0c:6e: d6:b7:50:d9:2a:f5:6b:d0:55:2f:c1:f9:8a:39:9a: f9:e3:d6:fe:fd:6a:e9:9a:40:c7:6d:14:a4:96:a5: 81:d1:8c:3f:2c:c2:52:1a:a7:ad:c0:f2:71:ba:a1: dd:24:1f:79:94:05:69:8b:e0:04:8c:87:80:d9:db: c8:68:6a:03:31:a2:5e:23:66:af:1d:f3:46:d1:03: c7:03:f4:00:c6:e6:53:b1:cd:60:8e:da:4a:66:40: 22:ce:78:75:b6:1c:e8:61:54:ca:93:42:7e:5b:9c: de:eb:9a:19:ff:b1:70:57:9d:33:68:85:29:66:8a: 13:b9:8b:b1:13:2c:4a:80:f5:7f:39:bc:4e:95:87: 67:b8:87:9d:bb:18:37:a3:4d:b1:9c:92:1a:36:1c: 55:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:33:21:41:B1:4D:A6:C4:F2:83:21:99:57:72:EA:1D:11:A3:77:46 X509v3 Authority Key Identifier: keyid:F2:36:C7:A7:7A:63:71:D1:7F:E8:7C:85:E2:C5:B6:96:6B:9B:28:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F236C7A77A6371D17FE87C85E2C5B6966B9B2883.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/07f8f6a4-8d87-4ef3-b4dc-52c25cb577c2/0/34322e36322e3137382e302f32342d3234203d3e203535363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.62.178.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:da:fc:0e:94:db:7a:31:f1:fd:22:d5:c9:07:26:f2:a5:0c: 30:d9:fc:3d:ba:8a:b4:69:96:22:c2:92:ff:1e:25:f8:10:5d: 1f:7c:fe:40:ea:e8:6e:15:17:64:ec:fa:93:69:4f:ce:d1:ff: e6:58:40:47:81:2d:9b:04:42:fb:b4:fb:9b:8e:99:33:19:b5: 8c:a4:d9:69:28:df:cd:4c:17:0a:55:d3:90:f0:ad:66:22:74: da:ec:20:55:44:7c:9d:02:eb:75:08:6b:c3:f2:c9:02:4a:3f: 7f:52:5a:59:a2:42:b7:5c:61:7b:da:a0:ce:9d:0b:46:66:b3: 77:b5:ba:03:f3:9d:9a:e3:a3:be:0c:34:68:b0:1d:04:a4:3d: f5:a3:e9:9b:b1:8b:8e:23:f0:02:07:43:0a:89:f7:e3:64:81: ae:a0:78:22:80:2c:e5:9a:7b:a2:95:4c:4d:54:69:51:0d:7f: ef:b5:7f:2c:b4:26:63:0a:4f:65:c0:4e:42:4d:d9:3b:03:fa: ff:1e:8a:1e:3e:b8:01:0e:57:10:36:bf:da:5a:3f:f5:fa:60: 40:cc:9c:b3:ad:66:b3:d2:92:44:46:c5:70:18:7a:9e:0b:85: bc:84:08:5d:39:9c:c2:27:41:13:e6:c0:a2:43:f8:cd:71:3b: af:3b:05:99 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTd+t6GJ1dg7zXJoZSKZXUnJBdnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjIzNkM3QTc3QTYzNzFEMTdGRTg3Qzg1RTJDNUI2OTY2 QjlCMjg4MzAeFw0yNjA1MDMwMjA3MTdaFw0yNzA1MDIwMjEyMTdaMDMxMTAvBgNV BAMTKDE5MzMyMTQxQjE0REE2QzRGMjgzMjE5OTU3NzJFQTFEMTFBMzc3NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKL1ikyOAKAWHyqfWDjC36VX+/ zECSobGOyK9D42ircRtTK1Uy8ocZSh/yJRJgR5sbhPPokMotHoQFPyp+ESl1e8kU /l+uWgoXuBK2+oQLuGBd5Qdnzd4Bu11Dq7QbQBpKejtKt/4Mbta3UNkq9WvQVS/B +Yo5mvnj1v79aumaQMdtFKSWpYHRjD8swlIap63A8nG6od0kH3mUBWmL4ASMh4DZ 28hoagMxol4jZq8d80bRA8cD9ADG5lOxzWCO2kpmQCLOeHW2HOhhVMqTQn5bnN7r mhn/sXBXnTNohSlmihO5i7ETLEqA9X85vE6Vh2e4h527GDejTbGckho2HFU7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGTMhQbFNpsTygyGZV3LqHRGjd0YwHwYDVR0j BBgwFoAU8jbHp3pjcdF/6HyF4sW2lmubKIMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDdmOGY2YTQtOGQ4Ny00ZWYzLWI0ZGMtNTJjMjVjYjU3N2MyLzAvRjIzNkM3QTc3 QTYzNzFEMTdGRTg3Qzg1RTJDNUI2OTY2QjlCMjg4My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjM2QzdBNzdBNjM3MUQxN0ZFODdDODVFMkM1QjY5NjZCOUIy ODgzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3ZjhmNmE0LThkODctNGVmMy1i NGRjLTUyYzI1Y2I1NzdjMi8wLzM0MzIyZTM2MzIyZTMxMzczODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAqPrIwDQYJKoZIhvcN AQELBQADggEBADva/A6U23ox8f0i1ckHJvKlDDDZ/D26irRpliLCkv8eJfgQXR98 /kDq6G4VF2Ts+pNpT87R/+ZYQEeBLZsEQvu0+5uOmTMZtYyk2Wko381MFwpV05Dw rWYidNrsIFVEfJ0C63UIa8PyyQJKP39SWlmiQrdcYXvaoM6dC0Zms3e1ugPznZrj o74MNGiwHQSkPfWj6Zuxi44j8AIHQwqJ9+Nkga6geCKALOWae6KVTE1UaVENf++1 fyy0JmMKT2XATkJN2TsD+v8eih4+uAEOVxA2v9paP/X6YEDMnLOtZrPSkkRGxXAY ep4LhbyECF05nMInQRPmwKJD+M1xO687BZk= -----END CERTIFICATE-----Generated at Wed May 13 02:12:58 2026 by rpki-client