$ rpki-client -vvf rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132382e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: t9EEqIdAzyyLBFGBhm/G7abK4Gf89A/VkBJhBveYp8o= Subject key identifier: CF:07:76:E5:01:75:EB:75:72:95:85:82:DA:FE:CD:25:10:17:1C:20 Certificate issuer: /CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Certificate serial: 680CB6E5F69E50048EDD8D3B501B6668B1CEAC40 Authority key identifier: 99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa Signing time: Sun 03 May 2026 02:25:07 +0000 ROA not before: Sun 03 May 2026 02:20:07 +0000 ROA not after: Sun 02 May 2027 02:25:07 +0000 asID: 38788 IP address blocks: 43.231.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0c:b6:e5:f6:9e:50:04:8e:dd:8d:3b:50:1b:66:68:b1:ce:ac:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Validity Not Before: May 3 02:20:07 2026 GMT Not After : May 2 02:25:07 2027 GMT Subject: CN=CF0776E50175EB7572958582DAFECD2510171C20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6c:19:ee:b2:04:56:24:e5:6d:a8:3e:3b:f7: 4c:08:b4:8e:8e:04:11:8e:53:ef:95:d6:d9:3f:89: 89:0a:ad:ac:d7:1f:06:71:12:ae:ae:8f:56:66:fb: ba:ee:b8:27:c0:c0:f9:c8:e7:47:60:5c:4a:bd:55: 5d:94:b0:cb:9e:4a:25:ff:8c:84:e8:ca:f0:c8:8d: f0:13:98:f7:08:75:34:13:aa:24:cf:f5:6f:d2:5e: 4b:6e:ef:cf:89:b8:8b:18:f8:03:64:ff:ad:c9:69: 78:ed:2f:a2:55:36:3b:21:5a:b5:c1:35:96:9a:16: 0f:c6:43:08:97:3d:2e:b0:1c:2f:7f:ba:94:33:ae: 67:38:69:51:b7:aa:f2:56:d2:38:19:c8:e0:16:2c: 6a:64:c9:10:82:24:93:2e:ae:fb:06:97:7f:f2:30: 6d:91:bc:51:b9:a6:f4:3d:e0:8b:2b:c8:ed:12:2b: 6b:bf:a9:fd:bf:6e:ea:30:ec:f6:c6:50:48:8c:8c: 05:47:b8:09:41:8f:4d:6e:f0:80:e3:5a:a0:0e:f6: 65:28:f4:c3:9d:6a:35:c4:f9:9f:fd:28:f3:c0:c0: 2b:e9:d9:d6:6b:8d:58:d6:c2:f4:6e:cb:ca:d0:aa: 1a:6f:2b:29:25:08:3e:1d:58:6e:5e:a5:53:5e:93: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:07:76:E5:01:75:EB:75:72:95:85:82:DA:FE:CD:25:10:17:1C:20 X509v3 Authority Key Identifier: keyid:99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/24 Signature Algorithm: sha256WithRSAEncryption cb:6f:69:c2:cd:c2:d9:73:b5:e3:5f:4a:03:a9:ba:28:9e:e4: 91:60:60:3a:2c:91:b7:72:19:19:28:c9:c5:8e:24:90:7f:de: 2c:57:f6:62:1b:5e:20:da:7c:46:00:c4:fd:ab:b7:cc:73:94: 0a:d7:1a:e5:a8:39:da:d8:d4:d0:06:45:d6:56:56:c7:a6:46: ee:d6:d3:74:9e:f2:1c:c5:d6:f6:22:a6:5e:b3:8c:cc:76:fb: 6c:53:e7:40:8c:02:60:ae:48:e2:6b:f9:a2:ad:84:ae:16:1a: 6d:48:26:69:88:20:c4:7a:a8:61:d4:59:c5:70:2c:07:88:12: 19:d5:a6:3e:bd:84:e0:54:37:87:37:8e:61:5e:dd:55:61:b4: b2:ab:82:ee:22:00:b7:92:8f:1f:10:ae:f0:e8:29:f2:65:a6: 7a:e5:cf:44:02:87:35:37:d3:a6:3b:48:78:9a:c5:ab:f5:06: 8e:18:aa:2f:b9:9c:e2:67:d7:17:71:d9:78:62:1d:35:9a:db: a1:12:d1:3e:82:93:c5:e8:d7:30:2e:e9:00:75:84:bd:c3:db: ca:75:92:f5:61:03:67:80:07:30:0e:9d:9d:cf:06:b2:a4:40: 05:4b:63:ba:bf:8f:1f:46:90:46:47:e1:e4:f0:aa:d5:e7:3d: e7:02:61:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaAy25faeUASO3Y07UBtmaLHOrEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBRDIzOUE2QzU4QkRDMzY1MERCMkJFODE3RjJFOUEz OUFCQ0I1NjAeFw0yNjA1MDMwMjIwMDdaFw0yNzA1MDIwMjI1MDdaMDMxMTAvBgNV BAMTKENGMDc3NkU1MDE3NUVCNzU3Mjk1ODU4MkRBRkVDRDI1MTAxNzFDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkbBnusgRWJOVtqD4790wItI6O BBGOU++V1tk/iYkKrazXHwZxEq6uj1Zm+7ruuCfAwPnI50dgXEq9VV2UsMueSiX/ jIToyvDIjfATmPcIdTQTqiTP9W/SXktu78+JuIsY+ANk/63JaXjtL6JVNjshWrXB NZaaFg/GQwiXPS6wHC9/upQzrmc4aVG3qvJW0jgZyOAWLGpkyRCCJJMurvsGl3/y MG2RvFG5pvQ94IsryO0SK2u/qf2/buow7PbGUEiMjAVHuAlBj01u8IDjWqAO9mUo 9MOdajXE+Z/9KPPAwCvp2dZrjVjWwvRuy8rQqhpvKyklCD4dWG5epVNek+p9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzwd25QF163VylYWC2v7NJRAXHCAwHwYDVR0j BBgwFoAUma0jmmxYvcNlDbK+gX8umjmry1YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRlMmJmMDktNWY0Mi00YjY1LWE0MmQtNjNkMDc5NmQyMDZjLzAvOTlBRDIzOUE2 QzU4QkRDMzY1MERCMkJFODE3RjJFOUEzOUFCQ0I1Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUFEMjM5QTZDNThCREMzNjUwREIyQkU4MTdGMkU5QTM5QUJD QjU2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngDANBgkqhkiG 9w0BAQsFAAOCAQEAy29pws3C2XO1419KA6m6KJ7kkWBgOiyRt3IZGSjJxY4kkH/e LFf2YhteINp8RgDE/au3zHOUCtca5ag52tjU0AZF1lZWx6ZG7tbTdJ7yHMXW9iKm XrOMzHb7bFPnQIwCYK5I4mv5oq2ErhYabUgmaYggxHqoYdRZxXAsB4gSGdWmPr2E 4FQ3hzeOYV7dVWG0squC7iIAt5KPHxCu8Ogp8mWmeuXPRAKHNTfTpjtIeJrFq/UG jhiqL7mc4mfXF3HZeGIdNZrboRLRPoKTxejXMC7pAHWEvcPbynWS9WEDZ4AHMA6d nc8GsqRABUtjur+PH0aQRkfh5PCq1ec95wJhhA== -----END CERTIFICATE-----Generated at Wed May 13 02:37:08 2026 by rpki-client