$ rpki-client -vvf rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313432333135.roa File: 34352e3131372e3133322e302f32332d3234203d3e20313432333135.roa (raw, json) Hash identifier: FzvgoTD2ojksQohHHe47CIol6XB+LJVt5AigSuBeY6I= Subject key identifier: F6:BB:D4:22:B3:52:37:C3:86:F2:CD:74:BE:AD:07:D1:45:A0:CF:42 Certificate issuer: /CN=0689842E4B56026FA506540CDEFB7A076C36BFE8 Certificate serial: 69A118212C1B4DD6B4586FDBFEF4D30C779C5192 Authority key identifier: 06:89:84:2E:4B:56:02:6F:A5:06:54:0C:DE:FB:7A:07:6C:36:BF:E8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0689842E4B56026FA506540CDEFB7A076C36BFE8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313432333135.roa Signing time: Sun 03 May 2026 02:19:58 +0000 ROA not before: Sun 03 May 2026 02:14:58 +0000 ROA not after: Sun 02 May 2027 02:19:58 +0000 asID: 142315 IP address blocks: 45.117.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/0689842E4B56026FA506540CDEFB7A076C36BFE8.crl rsync://rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/0689842E4B56026FA506540CDEFB7A076C36BFE8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0689842E4B56026FA506540CDEFB7A076C36BFE8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a1:18:21:2c:1b:4d:d6:b4:58:6f:db:fe:f4:d3:0c:77:9c:51:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0689842E4B56026FA506540CDEFB7A076C36BFE8 Validity Not Before: May 3 02:14:58 2026 GMT Not After : May 2 02:19:58 2027 GMT Subject: CN=F6BBD422B35237C386F2CD74BEAD07D145A0CF42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:c2:fa:b2:f3:a1:f7:c4:00:cc:28:0e:ac: 53:b4:3f:30:71:b1:b8:2b:11:30:81:a6:fb:5a:39: e2:76:8a:95:a8:da:3b:22:c0:7d:34:8e:4b:c2:83: 60:48:fa:1a:f8:f6:cc:55:20:a2:e7:c5:c7:87:84: 49:c6:6b:5b:57:79:b0:f0:05:cd:be:44:27:50:b0: f1:29:4d:be:94:7a:19:86:c7:c8:72:16:db:9d:23: 4d:72:bd:cb:03:b0:88:60:5d:dc:8c:0a:1c:12:43: 99:81:6e:36:ef:e1:fa:a7:63:68:c8:4b:12:1e:5a: d3:93:3b:3b:80:49:b6:c2:b6:5f:8a:14:57:14:1e: 12:1d:74:24:a5:13:36:f4:0b:ff:66:b0:94:13:2b: 03:90:a7:27:ad:9a:36:2a:25:39:ba:c7:7e:81:2b: df:43:8e:c9:dd:1f:4a:ca:20:91:79:49:a3:ac:d5: d8:16:dd:e9:a5:c2:31:15:a5:6b:f7:81:c5:30:48: 97:98:43:c0:0d:cb:44:72:d6:9c:1e:68:be:6b:96: 56:16:f6:44:04:1c:81:69:5a:7f:19:3e:81:79:0f: 90:3e:4d:65:6b:f1:2d:f1:86:ed:64:32:99:23:74: b6:d5:b8:a4:92:74:53:0c:3e:c3:e4:32:97:7a:02: 44:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BB:D4:22:B3:52:37:C3:86:F2:CD:74:BE:AD:07:D1:45:A0:CF:42 X509v3 Authority Key Identifier: keyid:06:89:84:2E:4B:56:02:6F:A5:06:54:0C:DE:FB:7A:07:6C:36:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/0689842E4B56026FA506540CDEFB7A076C36BFE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0689842E4B56026FA506540CDEFB7A076C36BFE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/22e64b0d-646c-4cec-941f-743b2d1bce4e/0/34352e3131372e3133322e302f32332d3234203d3e20313432333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.132.0/23 Signature Algorithm: sha256WithRSAEncryption ca:63:51:e2:23:33:0d:12:ea:a3:4d:6f:e2:57:59:3b:a0:65: 02:8f:08:c7:3d:c2:35:2e:ed:cd:a1:c9:27:8f:5b:89:5f:48: 5b:b2:af:b6:9b:b3:dc:29:67:15:75:53:0c:c6:1e:80:c8:88: 06:75:85:7f:e0:8e:f0:52:af:48:da:e0:42:58:c8:25:c5:99: 9f:eb:60:78:be:40:db:7e:36:ef:16:7e:15:2c:da:b4:4f:dd: 56:d7:9f:e5:a3:96:45:41:ff:34:05:3b:58:24:a7:4d:fa:80: 78:67:68:9b:66:8a:b6:0b:5b:44:f1:47:c7:61:ec:de:f9:82: cb:f4:a8:86:b8:f6:87:0d:c5:30:ba:1d:c9:42:c0:de:c3:79: 80:ef:48:9d:52:1d:2a:03:c6:9a:5a:f7:c4:28:38:eb:b4:af: bc:1a:a2:6e:39:69:df:c6:31:b1:15:22:b9:b7:c7:a4:f4:88: 39:3a:20:f1:d3:2a:3f:a6:4e:63:61:05:41:b8:10:aa:c3:dc: c0:61:fc:bb:cc:71:14:99:bd:70:67:ea:f2:21:ee:1f:3b:98: 3a:7b:18:27:d8:c1:d7:4f:bb:a1:1f:a6:02:70:a3:d7:3f:19: 74:da:f1:75:43:76:ec:78:e2:91:ad:b7:02:b2:e2:b0:13:9b: 0e:a9:d5:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaaEYISwbTda0WG/b/vTTDHecUZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY4OTg0MkU0QjU2MDI2RkE1MDY1NDBDREVGQjdBMDc2 QzM2QkZFODAeFw0yNjA1MDMwMjE0NThaFw0yNzA1MDIwMjE5NThaMDMxMTAvBgNV BAMTKEY2QkJENDIyQjM1MjM3QzM4NkYyQ0Q3NEJFQUQwN0QxNDVBMENGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXSsL6svOh98QAzCgOrFO0PzBx sbgrETCBpvtaOeJ2ipWo2jsiwH00jkvCg2BI+hr49sxVIKLnxceHhEnGa1tXebDw Bc2+RCdQsPEpTb6UehmGx8hyFtudI01yvcsDsIhgXdyMChwSQ5mBbjbv4fqnY2jI SxIeWtOTOzuASbbCtl+KFFcUHhIddCSlEzb0C/9msJQTKwOQpyetmjYqJTm6x36B K99DjsndH0rKIJF5SaOs1dgW3emlwjEVpWv3gcUwSJeYQ8ANy0Ry1pweaL5rllYW 9kQEHIFpWn8ZPoF5D5A+TWVr8S3xhu1kMpkjdLbVuKSSdFMMPsPkMpd6AkRnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9rvUIrNSN8OG8s10vq0H0UWgz0IwHwYDVR0j BBgwFoAUBomELktWAm+lBlQM3vt6B2w2v+gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjJlNjRiMGQtNjQ2Yy00Y2VjLTk0MWYtNzQzYjJkMWJjZTRlLzAvMDY4OTg0MkU0 QjU2MDI2RkE1MDY1NDBDREVGQjdBMDc2QzM2QkZFOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNjg5ODQyRTRCNTYwMjZGQTUwNjU0MENERUZCN0EwNzZDMzZC RkU4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyZTY0YjBkLTY0NmMtNGNlYy05 NDFmLTc0M2IyZDFiY2U0ZS8wLzM0MzUyZTMxMzEzNzJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXWEMA0GCSqG SIb3DQEBCwUAA4IBAQDKY1HiIzMNEuqjTW/iV1k7oGUCjwjHPcI1Lu3Nocknj1uJ X0hbsq+2m7PcKWcVdVMMxh6AyIgGdYV/4I7wUq9I2uBCWMglxZmf62B4vkDbfjbv Fn4VLNq0T91W15/lo5ZFQf80BTtYJKdN+oB4Z2ibZoq2C1tE8UfHYeze+YLL9KiG uPaHDcUwuh3JQsDew3mA70idUh0qA8aaWvfEKDjrtK+8GqJuOWnfxjGxFSK5t8ek 9Ig5OiDx0yo/pk5jYQVBuBCqw9zAYfy7zHEUmb1wZ+ryIe4fO5g6exgn2MHXT7uh H6YCcKPXPxl02vF1Q3bseOKRrbcCsuKwE5sOqdVo -----END CERTIFICATE-----Generated at Wed May 13 01:36:57 2026 by rpki-client