$ rpki-client -vvf rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32332d3234203d3e20313333383233.roa File: 34352e3131362e3135382e302f32332d3234203d3e20313333383233.roa (raw, json) Hash identifier: nQrRB76uG72Hh2LxuDnyKLwPlyh9HS7iYL8/pD1Mrfc= Subject key identifier: 1F:AB:1D:72:95:0D:C0:4A:85:78:D0:56:91:FA:14:80:03:B6:FF:04 Certificate issuer: /CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Certificate serial: 384FB3BBA168E02BCE7F5F7C1435E4BB943E2D46 Authority key identifier: DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32332d3234203d3e20313333383233.roa Signing time: Sun 03 May 2026 02:29:43 +0000 ROA not before: Sun 03 May 2026 02:24:43 +0000 ROA not after: Sun 02 May 2027 02:29:43 +0000 asID: 133823 IP address blocks: 45.116.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4f:b3:bb:a1:68:e0:2b:ce:7f:5f:7c:14:35:e4:bb:94:3e:2d:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DECA93C2172E503BC5CAAA1974410D3FA59D2454 Validity Not Before: May 3 02:24:43 2026 GMT Not After : May 2 02:29:43 2027 GMT Subject: CN=1FAB1D72950DC04A8578D05691FA148003B6FF04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8b:d1:86:4d:48:a1:0b:60:d9:b5:e4:35:77: 89:c2:95:72:ca:65:fb:a5:2c:92:c0:d9:25:27:db: f3:75:6d:87:0a:46:e2:e5:b3:b7:ec:12:df:1a:69: e3:d0:94:1c:5f:81:0e:7f:24:e7:6e:02:4b:b3:90: 2b:57:10:0a:b2:8d:88:81:ca:59:bf:fd:34:6a:01: 29:ef:79:e6:7e:be:d4:55:70:24:b3:d0:fd:e1:9b: 2e:7b:8d:8e:4c:55:75:8d:c1:aa:a1:93:11:cc:d1: 35:f6:7c:06:4e:c3:c8:3f:a4:99:96:b1:d9:1c:35: 7f:ff:59:b8:79:13:51:64:c0:42:3a:35:d9:58:19: 72:b2:b7:15:2d:e9:d5:04:49:bf:8a:e8:f9:56:95: 36:ac:ac:9f:fa:e7:8d:11:44:de:51:76:8f:c6:fe: ef:30:35:d6:61:dc:58:a5:28:ff:b0:f7:11:2a:d3: e7:76:f5:29:c6:ef:b5:d2:ed:39:83:16:22:bb:e2: 5a:35:75:9e:19:74:90:ff:0e:d2:2d:34:79:5a:46: 5a:81:fd:fd:00:3d:5c:73:02:27:8b:83:02:5a:84: 64:42:f2:9b:74:54:23:25:7d:1e:d2:35:5f:77:92: f3:a7:16:d4:6b:a4:1e:26:ab:d9:bb:ad:19:8f:36: d9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AB:1D:72:95:0D:C0:4A:85:78:D0:56:91:FA:14:80:03:B6:FF:04 X509v3 Authority Key Identifier: keyid:DE:CA:93:C2:17:2E:50:3B:C5:CA:AA:19:74:41:0D:3F:A5:9D:24:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/DECA93C2172E503BC5CAAA1974410D3FA59D2454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DECA93C2172E503BC5CAAA1974410D3FA59D2454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32332d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.158.0/23 Signature Algorithm: sha256WithRSAEncryption 88:e3:0d:99:3b:48:c0:56:a2:a3:db:80:9e:6f:16:71:e1:42: c2:6e:ba:ef:48:71:06:9a:7f:52:1a:57:a6:4a:ff:86:cf:b2: 86:14:58:32:3d:aa:ba:f0:da:0c:4d:07:55:4d:dd:1f:1f:8b: 83:0e:a7:ac:32:99:7e:b5:d0:e6:27:23:41:6a:82:b9:d5:24: 3f:ec:47:da:79:40:eb:df:89:ba:72:ad:8d:03:ec:49:94:54: c2:88:1e:09:1a:14:fa:bc:15:7c:86:6d:4e:ed:86:8a:17:48: e1:ad:bf:05:db:cf:fa:8e:41:8f:e6:47:e9:29:2b:c4:75:e8: 9f:7f:87:33:fc:4e:77:e4:78:45:5b:83:91:d7:ee:b5:e4:23: 76:60:85:ad:d7:a5:1b:fa:82:b0:3f:c9:88:29:63:06:3d:3d: 8a:cd:3b:34:5e:79:cb:e6:c7:de:e2:4c:53:c9:ab:43:8e:9f: ee:0b:ec:12:14:95:03:e1:8a:d1:8a:a0:81:70:1b:6e:b6:c5: 9b:e8:3e:9d:4f:28:b6:7c:b3:5d:b5:3a:6a:58:0a:33:46:e5: 57:00:57:0e:42:a5:2e:36:3c:8d:5d:0d:32:3b:ed:66:70:4e: ad:51:bd:1f:94:d5:8a:02:bc:80:14:33:06:3c:ae:b6:14:b9: 15:e7:e5:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOE+zu6Fo4CvOf198FDXku5Q+LUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVDQTkzQzIxNzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZB NTlEMjQ1NDAeFw0yNjA1MDMwMjI0NDNaFw0yNzA1MDIwMjI5NDNaMDMxMTAvBgNV BAMTKDFGQUIxRDcyOTUwREMwNEE4NTc4RDA1NjkxRkExNDgwMDNCNkZGMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKi9GGTUihC2DZteQ1d4nClXLK ZfulLJLA2SUn2/N1bYcKRuLls7fsEt8aaePQlBxfgQ5/JOduAkuzkCtXEAqyjYiB ylm//TRqASnveeZ+vtRVcCSz0P3hmy57jY5MVXWNwaqhkxHM0TX2fAZOw8g/pJmW sdkcNX//Wbh5E1FkwEI6NdlYGXKytxUt6dUESb+K6PlWlTasrJ/6540RRN5Rdo/G /u8wNdZh3FilKP+w9xEq0+d29SnG77XS7TmDFiK74lo1dZ4ZdJD/DtItNHlaRlqB /f0APVxzAieLgwJahGRC8pt0VCMlfR7SNV93kvOnFtRrpB4mq9m7rRmPNtlZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH6sdcpUNwEqFeNBWkfoUgAO2/wQwHwYDVR0j BBgwFoAU3sqTwhcuUDvFyqoZdEENP6WdJFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ3OTFiMWYtNmRhOS00MDBkLThiMTQtOTkyYWFlNjM3NDZjLzAvREVDQTkzQzIx NzJFNTAzQkM1Q0FBQTE5NzQ0MTBEM0ZBNTlEMjQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERUNBOTNDMjE3MkU1MDNCQzVDQUFBMTk3NDQxMEQzRkE1OUQy NDU0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXSeMA0GCSqG SIb3DQEBCwUAA4IBAQCI4w2ZO0jAVqKj24CebxZx4ULCbrrvSHEGmn9SGlemSv+G z7KGFFgyPaq68NoMTQdVTd0fH4uDDqesMpl+tdDmJyNBaoK51SQ/7EfaeUDr34m6 cq2NA+xJlFTCiB4JGhT6vBV8hm1O7YaKF0jhrb8F28/6jkGP5kfpKSvEdeiff4cz /E535HhFW4OR1+615CN2YIWt16Ub+oKwP8mIKWMGPT2KzTs0XnnL5sfe4kxTyatD jp/uC+wSFJUD4YrRiqCBcBtutsWb6D6dTyi2fLNdtTpqWAozRuVXAFcOQqUuNjyN XQ0yO+1mcE6tUb0flNWKAryAFDMGPK62FLkV5+Vk -----END CERTIFICATE-----Generated at Wed May 13 09:47:54 2026 by rpki-client