$ rpki-client -vvf rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa File: 34332e3233302e372e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: Z1Kw+kT+8xUFn3ucef081YHiJ/yp5vqEe94k0y4NufM= Subject key identifier: F6:B4:84:F1:48:6B:EE:76:0D:29:8B:2F:C4:9A:E2:23:DA:7D:22:11 Certificate issuer: /CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Certificate serial: 2F8C2073E46337E5D615F1A311964BDFB4F1412E Authority key identifier: 99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa Signing time: Sun 03 May 2026 02:25:08 +0000 ROA not before: Sun 03 May 2026 02:20:08 +0000 ROA not after: Sun 02 May 2027 02:25:08 +0000 asID: 38788 IP address blocks: 43.230.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8c:20:73:e4:63:37:e5:d6:15:f1:a3:11:96:4b:df:b4:f1:41:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Validity Not Before: May 3 02:20:08 2026 GMT Not After : May 2 02:25:08 2027 GMT Subject: CN=F6B484F1486BEE760D298B2FC49AE223DA7D2211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5e:39:35:0c:2d:ce:31:14:14:6d:6c:99:ff: b0:c1:27:11:6e:01:b1:41:4d:8a:28:71:dd:3d:f3: d9:87:9b:02:c9:ba:f4:31:82:18:74:dd:e7:6b:c6: 76:0f:cd:ad:02:5b:ed:be:55:33:87:08:40:1e:74: 8d:bc:34:03:47:cb:ad:20:18:4e:78:e5:6c:ce:cb: 07:ca:4a:f0:b9:62:4f:7f:34:dd:d4:e1:fe:af:ce: c5:c3:48:27:18:31:34:03:d1:9a:3b:7c:f2:10:08: 54:c8:7f:6a:5b:68:40:b4:5b:14:4e:ba:9d:16:08: 51:93:01:f5:05:5d:f5:02:65:bc:83:bb:84:54:73: 92:85:b5:bf:db:af:55:9e:da:ec:9f:59:65:2f:54: b5:12:ba:fe:82:62:15:fa:cc:24:ca:5b:45:84:13: be:68:63:dc:11:e8:94:b9:48:1a:ef:f8:e1:e6:42: 3e:12:a7:be:9b:a4:ea:d4:d6:8a:67:b1:3e:28:92: 53:00:75:dd:98:d5:9c:9e:91:84:a1:36:97:7a:f6: 8c:76:6c:89:b4:ef:23:fe:1e:d6:da:28:a5:bf:04: 4b:11:f1:4a:ac:84:32:2b:ba:63:45:a1:c4:de:2e: 85:b4:63:22:34:19:2e:13:9a:63:fe:25:c3:a4:3d: df:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B4:84:F1:48:6B:EE:76:0D:29:8B:2F:C4:9A:E2:23:DA:7D:22:11 X509v3 Authority Key Identifier: keyid:99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e372e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.7.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:6b:e5:56:78:1d:eb:2d:23:f8:b1:da:43:8b:30:4c:8d:07: 17:c3:f3:1f:42:67:b9:c7:7b:0b:b5:95:91:96:ae:1f:c3:f2: 11:a0:41:0d:ec:62:e2:71:6b:90:24:c4:0e:8c:f9:87:e4:83: 1f:20:e5:72:c6:d6:36:dc:63:92:03:bd:40:88:84:8d:ff:df: cd:3e:b6:71:8c:f7:e3:ae:8f:d2:90:38:8e:5a:50:8d:9a:7d: 0f:17:cb:ec:33:a1:e3:59:f3:31:78:ae:da:31:fd:20:fe:b8: 4b:af:1e:8a:97:93:8e:13:fb:a4:27:99:3f:6d:70:9e:cc:67: 40:34:a4:7f:55:db:06:e6:5e:7e:5a:18:98:e7:b1:9f:4b:76: 7a:4b:6b:de:93:45:63:6d:d3:98:2e:d9:55:ff:94:15:fa:72: ee:de:cd:8f:84:4f:de:1d:c3:34:2e:31:25:a4:df:41:62:62: e7:38:57:5e:74:4a:c4:0f:6f:92:14:ca:29:21:a3:d9:ae:9a: 8a:f4:57:85:c9:c4:2f:21:11:6e:83:7a:c2:45:0c:21:a9:8f: 1e:4a:9d:8a:8f:76:03:3b:b3:65:05:78:2d:c7:73:5e:8a:39: 0f:6e:70:dc:e6:e5:d1:47:11:23:1d:5f:44:01:b1:4c:4b:bd: 5b:e1:93:2c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUL4wgc+RjN+XWFfGjEZZL37TxQS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBRDIzOUE2QzU4QkRDMzY1MERCMkJFODE3RjJFOUEz OUFCQ0I1NjAeFw0yNjA1MDMwMjIwMDhaFw0yNzA1MDIwMjI1MDhaMDMxMTAvBgNV BAMTKEY2QjQ4NEYxNDg2QkVFNzYwRDI5OEIyRkM0OUFFMjIzREE3RDIyMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtXjk1DC3OMRQUbWyZ/7DBJxFu AbFBTYoocd0989mHmwLJuvQxghh03edrxnYPza0CW+2+VTOHCEAedI28NANHy60g GE545WzOywfKSvC5Yk9/NN3U4f6vzsXDSCcYMTQD0Zo7fPIQCFTIf2pbaEC0WxRO up0WCFGTAfUFXfUCZbyDu4RUc5KFtb/br1We2uyfWWUvVLUSuv6CYhX6zCTKW0WE E75oY9wR6JS5SBrv+OHmQj4Sp76bpOrU1opnsT4oklMAdd2Y1ZyekYShNpd69ox2 bIm07yP+HtbaKKW/BEsR8UqshDIrumNFocTeLoW0YyI0GS4TmmP+JcOkPd/BAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU9rSE8Uhr7nYNKYsvxJriI9p9IhEwHwYDVR0j BBgwFoAUma0jmmxYvcNlDbK+gX8umjmry1YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRlMmJmMDktNWY0Mi00YjY1LWE0MmQtNjNkMDc5NmQyMDZjLzAvOTlBRDIzOUE2 QzU4QkRDMzY1MERCMkJFODE3RjJFOUEzOUFCQ0I1Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUFEMjM5QTZDNThCREMzNjUwREIyQkU4MTdGMkU5QTM5QUJD QjU2LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gcwDQYJKoZIhvcNAQEL BQADggEBAJtr5VZ4HestI/ix2kOLMEyNBxfD8x9CZ7nHewu1lZGWrh/D8hGgQQ3s YuJxa5AkxA6M+Yfkgx8g5XLG1jbcY5IDvUCIhI3/380+tnGM9+Ouj9KQOI5aUI2a fQ8Xy+wzoeNZ8zF4rtox/SD+uEuvHoqXk44T+6QnmT9tcJ7MZ0A0pH9V2wbmXn5a GJjnsZ9LdnpLa96TRWNt05gu2VX/lBX6cu7ezY+ET94dwzQuMSWk30FiYuc4V150 SsQPb5IUyikho9mumor0V4XJxC8hEW6DesJFDCGpjx5KnYqPdgM7s2UFeC3Hc16K OQ9ucNzm5dFHESMdX0QBsUxLvVvhkyw= -----END CERTIFICATE-----Generated at Wed May 13 02:25:31 2026 by rpki-client