$ rpki-client -vvf rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132392e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: VQVxXRTp2UzotluVMgSddd9dhfBUX5L5ITtJ9nJBxE0= Subject key identifier: 81:20:F5:32:3B:8A:12:A1:29:F8:55:4D:48:03:05:1C:91:A1:B1:FE Certificate issuer: /CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Certificate serial: 0ED31EE68FE97694FA9516C0DAC0EF7E425CE2A3 Authority key identifier: 99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa Signing time: Sun 03 May 2026 02:25:05 +0000 ROA not before: Sun 03 May 2026 02:20:05 +0000 ROA not after: Sun 02 May 2027 02:25:05 +0000 asID: 38788 IP address blocks: 43.231.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d3:1e:e6:8f:e9:76:94:fa:95:16:c0:da:c0:ef:7e:42:5c:e2:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Validity Not Before: May 3 02:20:05 2026 GMT Not After : May 2 02:25:05 2027 GMT Subject: CN=8120F5323B8A12A129F8554D4803051C91A1B1FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:c8:bb:54:20:ce:98:85:36:2e:66:3f:cf: 5b:3b:a2:96:ff:be:1d:4e:22:68:da:f3:78:b9:c2: a5:e5:53:c8:94:80:de:b2:e1:45:48:7c:74:0a:21: 7f:f4:a1:18:d2:4e:ad:e7:e2:d1:27:7f:78:93:61: 84:07:cc:ad:5f:2f:08:e4:db:1e:f9:9f:f7:cd:b8: f5:14:92:74:68:ad:51:29:39:6a:89:cb:19:e8:9f: b3:eb:41:40:8a:d0:27:dc:27:73:42:24:92:72:dd: c2:b3:34:8a:cb:7f:4e:db:86:5f:37:ec:c4:f5:6a: e7:7a:87:e8:44:ee:01:b3:97:a8:f6:05:d0:a3:b3: fc:a6:d6:13:c5:21:0c:3f:31:df:4a:74:4e:05:73: 60:19:17:d8:32:09:6b:22:0d:b6:8b:7d:70:86:55: cb:c9:e4:31:5f:4d:c9:52:60:47:b1:fa:e6:70:7b: e8:e1:b4:b0:f0:7b:78:ec:42:1d:16:67:7c:ad:0b: e2:05:b5:59:31:bd:e8:62:da:a4:4d:38:65:0d:39: 86:3a:69:90:30:3b:6c:db:2a:f6:bf:8a:15:cd:b9: 68:c8:9b:b5:53:19:05:b2:f8:e2:cb:2b:d5:ad:fe: eb:28:86:b2:68:b5:7d:12:b6:b3:b0:84:bd:89:a2: 10:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:20:F5:32:3B:8A:12:A1:29:F8:55:4D:48:03:05:1C:91:A1:B1:FE X509v3 Authority Key Identifier: keyid:99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.129.0/24 Signature Algorithm: sha256WithRSAEncryption a7:cc:38:8c:70:e3:af:89:7f:6c:17:b3:3f:8e:a5:92:6e:42: f7:fc:0a:37:99:58:d6:7b:db:da:27:b0:b8:b0:da:21:99:fa: 1d:22:8f:95:5e:0c:c4:30:6c:1a:61:11:06:66:66:b4:18:63: 26:08:1c:cc:f6:19:a4:be:00:d2:e3:6e:05:71:18:3c:d7:d2: 07:d2:22:2a:91:ee:1f:d3:59:9b:d5:c4:eb:1c:0d:6f:33:e8: 48:d0:4b:3b:7f:f4:2a:49:38:44:92:d9:73:5f:d8:32:48:06: 32:82:62:12:ba:09:3f:5b:eb:98:bd:e3:bc:d7:8e:cc:20:33: 92:38:50:d2:43:b7:5a:0b:7d:f1:f1:62:ee:eb:28:79:7f:46: 14:07:c7:1f:8c:e6:70:35:c8:d7:95:d6:85:78:46:ea:b3:dd: 9c:7d:fc:4b:43:09:00:5d:b9:77:98:71:2b:4f:ec:d2:82:e2: 6f:58:c3:2c:24:f8:83:36:e4:e2:c9:cc:81:8c:ae:d2:cc:88: fb:9d:2c:57:17:ca:51:bc:33:c8:76:fe:e1:67:71:8b:31:d0: 69:f4:95:61:d2:5f:b9:c5:06:80:10:6e:19:47:f6:8f:10:a5: fe:02:c9:6c:0d:5c:9e:3b:2b:a9:8d:f2:a0:88:e5:a8:af:3e: f1:ad:a4:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDtMe5o/pdpT6lRbA2sDvfkJc4qMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBRDIzOUE2QzU4QkRDMzY1MERCMkJFODE3RjJFOUEz OUFCQ0I1NjAeFw0yNjA1MDMwMjIwMDVaFw0yNzA1MDIwMjI1MDVaMDMxMTAvBgNV BAMTKDgxMjBGNTMyM0I4QTEyQTEyOUY4NTU0RDQ4MDMwNTFDOTFBMUIxRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFjMi7VCDOmIU2LmY/z1s7opb/ vh1OImja83i5wqXlU8iUgN6y4UVIfHQKIX/0oRjSTq3n4tEnf3iTYYQHzK1fLwjk 2x75n/fNuPUUknRorVEpOWqJyxnon7PrQUCK0CfcJ3NCJJJy3cKzNIrLf07bhl83 7MT1aud6h+hE7gGzl6j2BdCjs/ym1hPFIQw/Md9KdE4Fc2AZF9gyCWsiDbaLfXCG VcvJ5DFfTclSYEex+uZwe+jhtLDwe3jsQh0WZ3ytC+IFtVkxvehi2qRNOGUNOYY6 aZAwO2zbKva/ihXNuWjIm7VTGQWy+OLLK9Wt/usohrJotX0StrOwhL2JohCHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgSD1MjuKEqEp+FVNSAMFHJGhsf4wHwYDVR0j BBgwFoAUma0jmmxYvcNlDbK+gX8umjmry1YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRlMmJmMDktNWY0Mi00YjY1LWE0MmQtNjNkMDc5NmQyMDZjLzAvOTlBRDIzOUE2 QzU4QkRDMzY1MERCMkJFODE3RjJFOUEzOUFCQ0I1Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUFEMjM5QTZDNThCREMzNjUwREIyQkU4MTdGMkU5QTM5QUJD QjU2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngTANBgkqhkiG 9w0BAQsFAAOCAQEAp8w4jHDjr4l/bBezP46lkm5C9/wKN5lY1nvb2iewuLDaIZn6 HSKPlV4MxDBsGmERBmZmtBhjJggczPYZpL4A0uNuBXEYPNfSB9IiKpHuH9NZm9XE 6xwNbzPoSNBLO3/0Kkk4RJLZc1/YMkgGMoJiEroJP1vrmL3jvNeOzCAzkjhQ0kO3 Wgt98fFi7usoeX9GFAfHH4zmcDXI15XWhXhG6rPdnH38S0MJAF25d5hxK0/s0oLi b1jDLCT4gzbk4snMgYyu0syI+50sVxfKUbwzyHb+4WdxizHQafSVYdJfucUGgBBu GUf2jxCl/gLJbA1cnjsrqY3yoIjlqK8+8a2k4w== -----END CERTIFICATE-----Generated at Wed May 13 02:37:31 2026 by rpki-client