$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/34332e3235322e37322e302f32322d3234203d3e203338373538.roa File: 34332e3235322e37322e302f32322d3234203d3e203338373538.roa (raw, json) Hash identifier: Z1LJzpos2TJA/rbCpeFoVSV3AuCvaZXzL6M2aKFZMOk= Subject key identifier: FF:80:E7:3A:A4:26:1A:94:CA:4C:CB:9E:E1:82:33:A3:2A:50:63:86 Certificate issuer: /CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Certificate serial: 40DE5252EF65F377FCCF040B0106559D4F85F3C2 Authority key identifier: B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/34332e3235322e37322e302f32322d3234203d3e203338373538.roa Signing time: Sun 03 May 2026 02:17:02 +0000 ROA not before: Sun 03 May 2026 02:12:02 +0000 ROA not after: Sun 02 May 2027 02:17:02 +0000 asID: 38758 IP address blocks: 43.252.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:de:52:52:ef:65:f3:77:fc:cf:04:0b:01:06:55:9d:4f:85:f3:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8A1A7850FE4606645CDB993613F0326921CB0E7 Validity Not Before: May 3 02:12:02 2026 GMT Not After : May 2 02:17:02 2027 GMT Subject: CN=FF80E73AA4261A94CA4CCB9EE18233A32A506386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7e:a3:08:5e:7c:bd:aa:31:67:5e:2f:cc:9c: 45:d4:aa:b5:29:dc:04:21:40:1d:80:38:ce:6f:09: 5f:9b:cd:be:71:fd:63:8a:9e:04:6d:a6:a2:53:29: 9e:65:0f:24:51:e5:ed:ee:4c:53:b5:65:5e:c8:d5: f5:27:6a:dc:da:cc:63:af:95:8b:16:4a:71:6e:4e: 24:d4:9a:be:92:7a:c3:84:05:30:76:5e:1b:7f:fe: 0a:a4:60:4c:b0:d4:70:2d:17:cf:f7:38:7c:ca:00: 97:b9:f0:bc:20:cd:3e:fa:f5:26:bb:33:81:20:9f: 4e:e2:27:54:ff:95:23:e4:0c:7a:1c:b8:09:95:52: 5d:fc:21:c7:4d:fa:87:55:13:05:98:5c:f5:d8:6a: 09:63:f8:e2:67:03:3e:a2:d1:5c:1a:66:41:f6:a2: 92:91:30:0c:8b:16:a6:44:f6:c3:ff:06:a1:71:7a: 15:1c:a2:f3:68:ca:d1:bb:c7:c2:de:08:42:50:52: dc:17:8e:8f:f0:4d:f6:c1:ea:84:1e:e4:99:c3:e0: 4f:54:17:d1:73:7f:c4:ab:19:09:2a:59:6f:0b:61: d1:e3:94:bd:6b:0a:e0:74:7d:2f:02:34:8a:40:ea: b8:64:89:74:86:f4:e4:72:a3:c7:7f:18:2a:28:1a: 50:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:80:E7:3A:A4:26:1A:94:CA:4C:CB:9E:E1:82:33:A3:2A:50:63:86 X509v3 Authority Key Identifier: keyid:B8:A1:A7:85:0F:E4:60:66:45:CD:B9:93:61:3F:03:26:92:1C:B0:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/B8A1A7850FE4606645CDB993613F0326921CB0E7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B8A1A7850FE4606645CDB993613F0326921CB0E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/34332e3235322e37322e302f32322d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.72.0/22 Signature Algorithm: sha256WithRSAEncryption 66:5f:e3:fe:80:78:52:21:2a:eb:ad:c6:01:cd:cb:ff:4f:dd: fb:86:5d:7a:52:ff:55:b9:b6:89:bc:43:1f:28:fa:f8:a5:77: 7f:d1:65:40:ee:b3:e6:8d:47:de:e3:3c:15:b2:e9:e5:f7:5e: 93:88:e8:22:66:91:fe:94:a2:9b:90:a0:d0:10:84:24:ab:f1: 4b:f2:32:a8:d3:04:fb:ff:58:96:6a:74:bb:67:bd:d3:2c:d6: ed:f3:b4:4b:1e:cf:b6:56:1b:cb:54:d8:1e:eb:ea:e6:4c:4e: 94:0d:3f:f6:6d:87:8d:a2:7b:98:32:dd:bc:66:6e:0b:8f:a1: 96:87:f0:2a:4a:ac:d7:cb:48:f3:63:be:ab:00:ac:bc:b6:6f: 82:4c:90:13:e8:ab:0d:f9:37:68:ac:9f:c0:28:14:a8:21:2b: 0e:10:ad:50:db:44:d6:c6:ef:b5:04:b8:ea:a0:ef:19:61:67: 62:58:cd:1d:3f:ba:98:d2:22:55:d4:ee:8d:62:87:8d:a5:8b: cf:bd:3f:74:d4:da:c8:fa:af:09:b4:d4:ae:40:c8:3d:14:2e: 00:82:e6:70:3d:29:e1:6d:1b:07:a5:05:ed:a2:05:93:57:0d: f9:8c:79:8f:bb:76:62:25:cf:6d:f8:8d:8a:c8:71:4a:de:c6: bf:ad:4d:4f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQN5SUu9l83f8zwQLAQZVnU+F88IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhBMUE3ODUwRkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5 MjFDQjBFNzAeFw0yNjA1MDMwMjEyMDJaFw0yNzA1MDIwMjE3MDJaMDMxMTAvBgNV BAMTKEZGODBFNzNBQTQyNjFBOTRDQTRDQ0I5RUUxODIzM0EzMkE1MDYzODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYfqMIXny9qjFnXi/MnEXUqrUp 3AQhQB2AOM5vCV+bzb5x/WOKngRtpqJTKZ5lDyRR5e3uTFO1ZV7I1fUnatzazGOv lYsWSnFuTiTUmr6SesOEBTB2Xht//gqkYEyw1HAtF8/3OHzKAJe58LwgzT769Sa7 M4Egn07iJ1T/lSPkDHocuAmVUl38IcdN+odVEwWYXPXYaglj+OJnAz6i0VwaZkH2 opKRMAyLFqZE9sP/BqFxehUcovNoytG7x8LeCEJQUtwXjo/wTfbB6oQe5JnD4E9U F9Fzf8SrGQkqWW8LYdHjlL1rCuB0fS8CNIpA6rhkiXSG9ORyo8d/GCooGlAxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/4DnOqQmGpTKTMue4YIzoypQY4YwHwYDVR0j BBgwFoAUuKGnhQ/kYGZFzbmTYT8DJpIcsOcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI0ZTE5NWUtMTJkZS00YzNjLTkzZTUtNTIyZWU1NDAxOGQ2LzAvQjhBMUE3ODUw RkU0NjA2NjQ1Q0RCOTkzNjEzRjAzMjY5MjFDQjBFNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COEExQTc4NTBGRTQ2MDY2NDVDREI5OTM2MTNGMDMyNjkyMUNC MEU3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzM0MzMyZTMyMzUzMjJlMzczMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzNzM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr/EgwDQYJKoZIhvcN AQELBQADggEBAGZf4/6AeFIhKuutxgHNy/9P3fuGXXpS/1W5tom8Qx8o+vild3/R ZUDus+aNR97jPBWy6eX3XpOI6CJmkf6UopuQoNAQhCSr8UvyMqjTBPv/WJZqdLtn vdMs1u3ztEsez7ZWG8tU2B7r6uZMTpQNP/Zth42ie5gy3bxmbguPoZaH8CpKrNfL SPNjvqsArLy2b4JMkBPoqw35N2isn8AoFKghKw4QrVDbRNbG77UEuOqg7xlhZ2JY zR0/upjSIlXU7o1ih42li8+9P3TU2sj6rwm01K5AyD0ULgCC5nA9KeFtGwelBe2i BZNXDfmMeY+7dmIlz234jYrIcUrexr+tTU8= -----END CERTIFICATE-----Generated at Wed May 13 02:47:44 2026 by rpki-client