$ rpki-client -vvf rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137332e302f32342d3234203d3e203436303534.roa File: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (raw, json) Hash identifier: OPxPj77Y9Rv3nPwPPsMOHUQMVs3WuJ+hOwcspHs2qG8= Subject key identifier: 8E:26:FB:E5:91:A7:D0:6D:82:20:2A:31:B9:45:5D:10:88:7F:AD:DD Certificate issuer: /CN=7377350E3E3A151F4CC7127822802AD47B86A5CF Certificate serial: 34243B1F3F8E6668769C4C0FDAFCC84BB6CAA41A Authority key identifier: 73:77:35:0E:3E:3A:15:1F:4C:C7:12:78:22:80:2A:D4:7B:86:A5:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7377350E3E3A151F4CC7127822802AD47B86A5CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137332e302f32342d3234203d3e203436303534.roa Signing time: Sun 03 May 2026 02:28:06 +0000 ROA not before: Sun 03 May 2026 02:23:06 +0000 ROA not after: Sun 02 May 2027 02:28:06 +0000 asID: 46054 IP address blocks: 58.145.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/7377350E3E3A151F4CC7127822802AD47B86A5CF.crl rsync://rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/7377350E3E3A151F4CC7127822802AD47B86A5CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7377350E3E3A151F4CC7127822802AD47B86A5CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:24:3b:1f:3f:8e:66:68:76:9c:4c:0f:da:fc:c8:4b:b6:ca:a4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7377350E3E3A151F4CC7127822802AD47B86A5CF Validity Not Before: May 3 02:23:06 2026 GMT Not After : May 2 02:28:06 2027 GMT Subject: CN=8E26FBE591A7D06D82202A31B9455D10887FADDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:c4:2b:4f:e5:a7:60:60:a5:9a:15:d9:1c: 74:17:6a:30:55:85:59:55:be:27:d9:ce:85:f6:4c: e6:89:70:b7:c9:bf:9b:51:06:30:02:40:01:27:81: bd:8f:bd:d2:c9:55:43:09:3d:cf:1d:9a:8e:d5:11: a5:06:84:5b:33:62:eb:9e:28:ff:24:71:cb:20:ea: 52:da:21:bb:74:09:aa:8e:82:46:53:14:e3:fc:d5: 17:8f:59:5a:07:54:b7:5c:5a:81:45:4c:1c:c0:e3: a8:9f:12:1b:47:45:ed:cf:b4:e9:41:dc:dd:7f:da: fc:0d:96:31:c8:34:9c:2a:2b:ae:c9:52:c1:15:7d: a3:60:1a:1c:18:25:30:93:12:4f:92:ba:31:40:ff: 81:20:ef:59:bd:e9:02:e5:61:94:01:1e:d0:1e:51: 43:7e:78:38:92:74:1a:17:44:40:a3:47:0c:a1:61: 39:e0:77:82:bc:5d:97:44:e9:fe:3d:84:3c:a6:d8: 79:73:9e:bc:ce:30:8a:f0:9b:21:c3:91:65:41:69: 46:3d:c2:8c:44:e1:36:81:7f:ac:0d:a5:6e:e9:30: f4:0f:01:df:d0:f7:42:7f:5f:61:f7:51:2a:04:6c: e5:e7:6f:a9:3f:fe:27:00:da:aa:15:ae:41:5c:68: 99:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:26:FB:E5:91:A7:D0:6D:82:20:2A:31:B9:45:5D:10:88:7F:AD:DD X509v3 Authority Key Identifier: keyid:73:77:35:0E:3E:3A:15:1F:4C:C7:12:78:22:80:2A:D4:7B:86:A5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/7377350E3E3A151F4CC7127822802AD47B86A5CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7377350E3E3A151F4CC7127822802AD47B86A5CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137332e302f32342d3234203d3e203436303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.145.173.0/24 Signature Algorithm: sha256WithRSAEncryption 05:97:b8:23:c0:ff:f9:b7:99:0b:67:51:8c:3d:7e:b3:45:aa: 93:8f:b0:59:72:d6:45:f5:c2:8e:c1:c2:a6:96:72:bb:12:92: e7:8b:13:06:b4:d5:94:56:2a:9e:03:8a:97:3a:93:b4:89:03: bd:58:20:78:3e:0e:18:bf:a8:fd:7c:fe:c7:10:10:12:69:7d: ae:5e:a9:ae:a3:4d:e5:89:35:37:ef:b5:e1:be:af:1e:6d:d9: 30:4f:8b:9c:2a:89:9a:7f:e0:66:51:0e:1b:43:56:23:4c:d6: 2e:cb:7d:2b:60:fc:27:5f:a6:4a:67:47:25:28:b9:41:24:c1: 48:2d:2c:87:b4:f7:52:ab:78:5c:f0:1d:67:16:f1:46:68:08: 62:80:e8:c2:d1:5a:8e:96:77:5a:6d:c9:00:4e:c6:1c:50:5f: 0b:ff:18:4b:43:85:6d:00:e7:c0:0a:47:85:9b:87:0e:7b:b2: e5:d4:b0:c5:e6:de:41:1d:88:c5:e3:33:6c:33:10:9d:e0:93: 55:c3:e8:64:90:0c:6f:04:0b:0b:90:6d:10:d1:86:98:10:15: 3c:a3:12:90:fe:57:50:6e:b9:20:54:51:00:e0:5d:46:be:a7: 17:3c:67:15:04:f5:5a:1c:a3:f4:f3:e3:af:e2:37:5a:77:25: e3:5f:2a:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNCQ7Hz+OZmh2nEwP2vzIS7bKpBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NzM1MEUzRTNBMTUxRjRDQzcxMjc4MjI4MDJBRDQ3 Qjg2QTVDRjAeFw0yNjA1MDMwMjIzMDZaFw0yNzA1MDIwMjI4MDZaMDMxMTAvBgNV BAMTKDhFMjZGQkU1OTFBN0QwNkQ4MjIwMkEzMUI5NDU1RDEwODg3RkFEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+FsQrT+WnYGClmhXZHHQXajBV hVlVvifZzoX2TOaJcLfJv5tRBjACQAEngb2PvdLJVUMJPc8dmo7VEaUGhFszYuue KP8kccsg6lLaIbt0CaqOgkZTFOP81RePWVoHVLdcWoFFTBzA46ifEhtHRe3PtOlB 3N1/2vwNljHINJwqK67JUsEVfaNgGhwYJTCTEk+SujFA/4Eg71m96QLlYZQBHtAe UUN+eDiSdBoXRECjRwyhYTngd4K8XZdE6f49hDym2HlznrzOMIrwmyHDkWVBaUY9 woxE4TaBf6wNpW7pMPQPAd/Q90J/X2H3USoEbOXnb6k//icA2qoVrkFcaJnTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjib75ZGn0G2CICoxuUVdEIh/rd0wHwYDVR0j BBgwFoAUc3c1Dj46FR9MxxJ4IoAq1HuGpc8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2NmMzA5MzYtYzc1MC00MzNiLTljMmEtOGZmNWYzOGU2M2Q0LzAvNzM3NzM1MEUz RTNBMTUxRjRDQzcxMjc4MjI4MDJBRDQ3Qjg2QTVDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Mzc3MzUwRTNFM0ExNTFGNENDNzEyNzgyMjgwMkFENDdCODZB NUNGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjZjMwOTM2LWM3NTAtNDMzYi05 YzJhLThmZjVmMzhlNjNkNC8wLzM1MzgyZTMxMzQzNTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqRrTANBgkqhkiG 9w0BAQsFAAOCAQEABZe4I8D/+beZC2dRjD1+s0Wqk4+wWXLWRfXCjsHCppZyuxKS 54sTBrTVlFYqngOKlzqTtIkDvVggeD4OGL+o/Xz+xxAQEml9rl6prqNN5Yk1N++1 4b6vHm3ZME+LnCqJmn/gZlEOG0NWI0zWLst9K2D8J1+mSmdHJSi5QSTBSC0sh7T3 Uqt4XPAdZxbxRmgIYoDowtFajpZ3Wm3JAE7GHFBfC/8YS0OFbQDnwApHhZuHDnuy 5dSwxebeQR2IxeMzbDMQneCTVcPoZJAMbwQLC5BtENGGmBAVPKMSkP5XUG65IFRR AOBdRr6nFzxnFQT1Whyj9PPjr+I3Wncl418quA== -----END CERTIFICATE-----Generated at Wed May 13 04:10:11 2026 by rpki-client