$ rpki-client -vvf rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa File: 34332e3233312e3132382e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: SADYGPYv67q+O3OfpXqESLXHQd4oPs/38N8rfvjf/1w= Subject key identifier: F9:2E:B2:3C:EB:A6:9F:39:DB:FC:05:32:03:2A:4E:9C:F8:67:0C:A7 Certificate issuer: /CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Certificate serial: 403E4A45184CA1F23264C5B04C3541E32163EB35 Authority key identifier: 99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa Signing time: Sun 03 May 2026 02:25:05 +0000 ROA not before: Sun 03 May 2026 02:20:05 +0000 ROA not after: Sun 02 May 2027 02:25:05 +0000 asID: 38788 IP address blocks: 43.231.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:3e:4a:45:18:4c:a1:f2:32:64:c5:b0:4c:35:41:e3:21:63:eb:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Validity Not Before: May 3 02:20:05 2026 GMT Not After : May 2 02:25:05 2027 GMT Subject: CN=F92EB23CEBA69F39DBFC0532032A4E9CF8670CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:58:16:a2:c1:8d:3f:03:e3:61:fb:db:7f: ce:79:ea:8a:1d:2c:ca:73:dd:9b:46:6a:3e:67:b9: 75:65:6a:e2:79:c7:a7:44:d1:b1:57:a1:f4:bc:73: 93:5b:6a:b0:a0:ac:b9:29:c1:41:61:ba:26:a6:93: 95:c6:12:64:ae:97:63:bc:f3:66:b7:e2:9b:a7:ab: 44:c1:e5:f3:09:96:c4:40:e8:6a:4b:3a:64:a3:0e: 56:df:92:aa:46:e3:66:1d:a3:bd:df:e1:5f:50:0d: 1a:5b:36:b0:4d:93:87:29:7e:a2:a7:14:89:28:2c: 5f:52:f8:be:b1:cb:20:3b:19:03:c4:7d:09:67:6f: ec:9d:22:a5:d6:9f:cc:68:47:fd:07:21:f2:46:59: f7:64:28:ab:d9:60:f8:ad:6f:49:47:fb:07:81:fd: 4e:ed:7c:27:23:cd:8f:9b:57:95:07:2a:f3:71:64: 1e:09:8d:52:0e:8b:5e:9a:b4:37:66:dd:27:f7:e7: 63:be:8e:6d:4e:33:70:bd:c9:25:0b:39:ae:5a:d8: f6:f1:b9:98:f9:18:73:7f:94:3a:ab:ef:f5:e4:28: 52:72:34:a1:ce:30:77:c3:61:93:79:2c:63:d6:1b: be:61:f0:8e:e9:bd:d2:bb:1e:bb:ae:24:63:fe:2b: cf:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2E:B2:3C:EB:A6:9F:39:DB:FC:05:32:03:2A:4E:9C:F8:67:0C:A7 X509v3 Authority Key Identifier: keyid:99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/23 Signature Algorithm: sha256WithRSAEncryption b2:c9:2f:40:ef:8f:d7:37:46:ba:0e:35:65:98:bf:c6:f9:64: 22:ca:3b:6b:b9:90:e4:c3:df:fe:7e:68:47:20:9a:66:8f:64: 0f:b2:42:45:82:ad:05:88:ba:18:7c:07:82:5f:6b:aa:4f:f6: 76:95:30:7a:01:fb:f1:62:d1:36:f4:4c:fc:f8:e0:91:fb:dc: 45:14:43:ca:5f:11:5c:74:aa:94:a7:60:c0:c1:7e:5c:3e:47: 8a:51:de:70:82:c6:74:45:8b:54:e6:06:d0:79:73:11:92:5f: 7e:91:c0:70:26:17:03:cd:57:e5:cc:b6:52:98:14:26:88:d7: 65:45:c6:4c:2e:60:ca:7a:94:87:7c:39:d2:40:b7:c8:dd:25: 72:5c:bb:78:4c:6c:0e:79:15:27:b7:a6:1d:5a:e0:2d:49:8c: 8b:97:6d:2d:68:b5:3a:4e:87:66:48:e7:b8:1f:91:b9:fc:cc: ea:3a:d6:66:6b:24:cb:9d:b1:02:6a:89:27:18:31:93:2c:ea: 28:54:90:f2:5a:fc:2c:12:29:d9:76:f3:29:51:6f:0a:30:e4: 9f:9d:84:57:cc:af:2f:c5:21:37:22:e4:c4:16:20:fb:04:3c: 52:b2:f1:0a:1d:4c:cb:9d:d3:c3:84:87:6a:97:53:cc:8b:1a: b8:e1:46:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQD5KRRhMofIyZMWwTDVB4yFj6zUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBRDIzOUE2QzU4QkRDMzY1MERCMkJFODE3RjJFOUEz OUFCQ0I1NjAeFw0yNjA1MDMwMjIwMDVaFw0yNzA1MDIwMjI1MDVaMDMxMTAvBgNV BAMTKEY5MkVCMjNDRUJBNjlGMzlEQkZDMDUzMjAzMkE0RTlDRjg2NzBDQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AlgWosGNPwPjYfvbf8556ood LMpz3ZtGaj5nuXVlauJ5x6dE0bFXofS8c5NbarCgrLkpwUFhuiamk5XGEmSul2O8 82a34punq0TB5fMJlsRA6GpLOmSjDlbfkqpG42Ydo73f4V9QDRpbNrBNk4cpfqKn FIkoLF9S+L6xyyA7GQPEfQlnb+ydIqXWn8xoR/0HIfJGWfdkKKvZYPitb0lH+weB /U7tfCcjzY+bV5UHKvNxZB4JjVIOi16atDdm3Sf352O+jm1OM3C9ySULOa5a2Pbx uZj5GHN/lDqr7/XkKFJyNKHOMHfDYZN5LGPWG75h8I7pvdK7HruuJGP+K8+BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+S6yPOumnznb/AUyAypOnPhnDKcwHwYDVR0j BBgwFoAUma0jmmxYvcNlDbK+gX8umjmry1YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRlMmJmMDktNWY0Mi00YjY1LWE0MmQtNjNkMDc5NmQyMDZjLzAvOTlBRDIzOUE2 QzU4QkRDMzY1MERCMkJFODE3RjJFOUEzOUFCQ0I1Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUFEMjM5QTZDNThCREMzNjUwREIyQkU4MTdGMkU5QTM5QUJD QjU2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvngDANBgkqhkiG 9w0BAQsFAAOCAQEAsskvQO+P1zdGug41ZZi/xvlkIso7a7mQ5MPf/n5oRyCaZo9k D7JCRYKtBYi6GHwHgl9rqk/2dpUwegH78WLRNvRM/PjgkfvcRRRDyl8RXHSqlKdg wMF+XD5HilHecILGdEWLVOYG0HlzEZJffpHAcCYXA81X5cy2UpgUJojXZUXGTC5g ynqUh3w50kC3yN0lcly7eExsDnkVJ7emHVrgLUmMi5dtLWi1Ok6HZkjnuB+RufzM 6jrWZmsky52xAmqJJxgxkyzqKFSQ8lr8LBIp2XbzKVFvCjDkn52EV8yvL8UhNyLk xBYg+wQ8UrLxCh1My53Tw4SHapdTzIsauOFGEg== -----END CERTIFICATE-----Generated at Wed May 13 02:11:44 2026 by rpki-client