$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa File: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: 3HeHx0erxEkjN9PtOgU3W6tKucWeXKE5FEYLyXwycJc= Subject key identifier: FF:20:E6:DA:3B:DF:F7:D2:6F:FB:A3:3A:D7:A9:C8:B5:6E:37:CD:EE Certificate issuer: /CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Certificate serial: 374115183BD75C491DEAD67F9E142353C4563817 Authority key identifier: 58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa Signing time: Sun 03 May 2026 02:23:00 +0000 ROA not before: Sun 03 May 2026 02:18:00 +0000 ROA not after: Sun 02 May 2027 02:23:00 +0000 asID: 142327 IP address blocks: 43.252.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:41:15:18:3b:d7:5c:49:1d:ea:d6:7f:9e:14:23:53:c4:56:38:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Validity Not Before: May 3 02:18:00 2026 GMT Not After : May 2 02:23:00 2027 GMT Subject: CN=FF20E6DA3BDFF7D26FFBA33AD7A9C8B56E37CDEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:74:92:28:77:ae:3f:64:d0:36:8b:be:8d:c1: bd:ce:5b:72:39:f2:3c:a8:02:91:b9:d0:26:83:30: 30:9d:23:65:81:ed:a7:bb:af:09:57:56:b1:06:66: 8d:72:38:eb:0b:18:99:b3:6b:44:11:18:2f:75:42: 77:1f:8e:ec:1b:12:d1:5e:48:91:1a:65:0c:09:fc: 49:7d:78:4f:9e:57:b2:6f:99:d9:17:77:b7:9b:4a: f9:5c:37:e5:96:19:51:26:9a:6e:a3:ab:89:12:bd: ad:01:8e:e6:36:b2:3d:dd:e3:ea:6e:78:b7:76:18: eb:ce:b3:6e:b9:88:9f:41:8f:18:b3:30:7f:58:d7: 5d:20:aa:51:58:42:a1:66:52:97:ad:e5:87:f2:a2: 4d:1b:11:c3:41:7c:9e:ef:b7:f8:bc:3f:ca:5e:0f: 27:06:98:51:41:7c:8e:a6:61:79:bc:60:f9:f5:a8: 3a:18:61:95:e5:a0:83:e7:36:f1:7d:67:04:d7:17: 6a:77:57:62:e5:f1:50:e8:99:8d:ef:3b:b9:9b:9d: e3:49:39:b6:94:8f:90:4f:40:84:fe:cb:64:8f:bb: c2:40:4f:cd:0e:9b:c0:43:eb:a8:10:f9:37:d2:ab: 6d:d3:c6:1e:69:06:a0:45:79:f3:fd:47:01:78:eb: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:20:E6:DA:3B:DF:F7:D2:6F:FB:A3:3A:D7:A9:C8:B5:6E:37:CD:EE X509v3 Authority Key Identifier: keyid:58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.104.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:96:ca:6d:08:93:47:dc:3f:29:05:f3:35:c6:26:6b:2f:a8: 22:a5:d0:3d:02:ee:b7:0d:90:e2:0a:75:87:d7:0c:9c:15:7d: 43:ca:fc:45:98:c0:19:69:f5:94:e8:66:b9:84:4c:c7:73:66: fc:f3:4d:09:9f:56:73:15:27:d0:a8:af:a5:44:90:19:5a:d8: fc:dd:53:17:ed:17:7b:19:11:64:b4:77:4c:e8:72:df:fd:99: fc:ae:11:07:7a:57:f5:65:b8:7e:5e:22:a8:dd:be:eb:4d:bf: 46:b8:28:a3:d7:e1:e0:92:a6:04:9a:4f:e1:aa:af:ac:0e:52: 27:8f:71:24:e1:69:25:ef:a8:ff:6c:3a:85:c4:ea:7c:21:a0: e5:e9:3a:ce:fd:c9:84:fd:a0:df:22:58:34:9d:a8:3f:47:c1: 10:82:f3:a8:be:94:e7:a9:51:47:d0:f1:3d:3e:3b:9e:2a:02: c4:b1:ec:17:17:c1:9a:d8:8e:8c:49:c8:6a:57:cf:7b:06:58: 5a:17:17:27:86:66:dc:d8:f3:ea:db:06:f1:11:63:14:41:71: f8:f6:66:5d:5a:3d:72:ba:b1:b3:f0:3d:66:39:57:2e:ee:68: f0:e3:2c:01:63:8b:29:1f:9c:71:78:53:11:55:6f:6b:fc:f9: 1e:28:32:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN0EVGDvXXEkd6tZ/nhQjU8RWOBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg0Mzk1OEJCMjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVF RjYxMjJCQzAeFw0yNjA1MDMwMjE4MDBaFw0yNzA1MDIwMjIzMDBaMDMxMTAvBgNV BAMTKEZGMjBFNkRBM0JERkY3RDI2RkZCQTMzQUQ3QTlDOEI1NkUzN0NERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYdJIod64/ZNA2i76Nwb3OW3I5 8jyoApG50CaDMDCdI2WB7ae7rwlXVrEGZo1yOOsLGJmza0QRGC91QncfjuwbEtFe SJEaZQwJ/El9eE+eV7JvmdkXd7ebSvlcN+WWGVEmmm6jq4kSva0BjuY2sj3d4+pu eLd2GOvOs265iJ9BjxizMH9Y110gqlFYQqFmUpet5Yfyok0bEcNBfJ7vt/i8P8pe DycGmFFBfI6mYXm8YPn1qDoYYZXloIPnNvF9ZwTXF2p3V2Ll8VDomY3vO7mbneNJ ObaUj5BPQIT+y2SPu8JAT80Om8BD66gQ+TfSq23Txh5pBqBFefP9RwF46xazAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/yDm2jvf99Jv+6M616nItW43ze4wHwYDVR0j BBgwFoAUWEOVi7JAd5Mg1/DCtnSs9e9hIrwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ5NWMxOWMtMzI2Mi00OGM3LWFmMDItMzdhODM1ZDBhNzc5LzAvNTg0Mzk1OEJC MjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVFRjYxMjJCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODQzOTU4QkIyNDA3NzkzMjBEN0YwQzJCNjc0QUNGNUVGNjEy MkJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzM0MzMyZTMyMzUzMjJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/xoMA0GCSqG SIb3DQEBCwUAA4IBAQAelsptCJNH3D8pBfM1xiZrL6gipdA9Au63DZDiCnWH1wyc FX1DyvxFmMAZafWU6Ga5hEzHc2b8800Jn1ZzFSfQqK+lRJAZWtj83VMX7Rd7GRFk tHdM6HLf/Zn8rhEHelf1Zbh+XiKo3b7rTb9GuCij1+HgkqYEmk/hqq+sDlInj3Ek 4Wkl76j/bDqFxOp8IaDl6TrO/cmE/aDfIlg0nag/R8EQgvOovpTnqVFH0PE9Pjue KgLEsewXF8Ga2I6MSchqV897BlhaFxcnhmbc2PPq2wbxEWMUQXH49mZdWj1yurGz 8D1mOVcu7mjw4ywBY4spH5xxeFMRVW9r/PkeKDKN -----END CERTIFICATE-----Generated at Wed May 13 02:59:39 2026 by rpki-client