$ rpki-client -vvf rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa File: 34352e3132362e34302e302f32332d3234203d3e203634333030.roa (raw, json) Hash identifier: QV1AmdEqJoduwfMKnjSO4CyHE2Sz08SjmQ94K3Z6ddA= Subject key identifier: 63:D0:0C:CC:84:F9:4B:86:6F:E9:E2:B1:79:86:A4:23:FF:B4:FD:63 Certificate issuer: /CN=83746D5838134AE55050C41F5D5CEB0C3F839FAA Certificate serial: 625F9C6F70A9497AE2590F663CC7444CBC3274A5 Authority key identifier: 83:74:6D:58:38:13:4A:E5:50:50:C4:1F:5D:5C:EB:0C:3F:83:9F:AA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/83746D5838134AE55050C41F5D5CEB0C3F839FAA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa Signing time: Sun 03 May 2026 02:29:51 +0000 ROA not before: Sun 03 May 2026 02:24:51 +0000 ROA not after: Sun 02 May 2027 02:29:51 +0000 asID: 64300 IP address blocks: 45.126.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/83746D5838134AE55050C41F5D5CEB0C3F839FAA.crl rsync://rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/83746D5838134AE55050C41F5D5CEB0C3F839FAA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/83746D5838134AE55050C41F5D5CEB0C3F839FAA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5f:9c:6f:70:a9:49:7a:e2:59:0f:66:3c:c7:44:4c:bc:32:74:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83746D5838134AE55050C41F5D5CEB0C3F839FAA Validity Not Before: May 3 02:24:51 2026 GMT Not After : May 2 02:29:51 2027 GMT Subject: CN=63D00CCC84F94B866FE9E2B17986A423FFB4FD63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:00:fe:33:e9:8c:89:05:26:08:f5:22:15:8a: 6e:9b:5a:74:cd:12:69:46:36:de:aa:1f:43:36:8b: 45:9a:9c:1f:14:a4:b2:92:8d:ef:1c:e7:e6:00:c1: f8:b3:3d:94:f6:1f:80:21:11:75:53:69:90:8e:30: e4:54:aa:ed:ff:e5:9f:c0:03:9e:ed:8c:b9:2b:a7: d6:25:d0:eb:73:69:8d:c6:9c:18:42:42:26:55:c5: e4:a2:60:35:fb:ca:b0:7e:cb:24:99:f4:9f:0c:18: 2f:ea:55:2e:f9:6b:1b:dd:af:73:81:95:cc:ee:cf: 1e:5a:a8:c6:c4:a1:27:12:8f:11:dc:d7:67:56:05: 49:a4:48:cf:f7:19:8f:0c:b0:d6:c1:ab:ae:e9:c8: a2:3c:3b:60:6c:b8:83:91:6c:04:50:3c:24:ff:3d: 91:1b:00:17:e3:f1:ff:6f:58:65:7a:27:52:35:f3: df:3a:39:fc:9b:f0:0f:90:31:b2:1e:80:4b:12:83: e7:60:02:c5:85:e6:e7:db:e7:86:93:9a:86:95:fa: fe:48:1a:06:4e:d9:9f:b2:d3:59:a9:48:ef:90:6e: bf:59:66:71:39:b7:b8:2a:c1:68:90:a1:4c:e0:99: 91:af:50:a9:14:cc:a7:38:5b:e1:e5:59:8e:e1:ac: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D0:0C:CC:84:F9:4B:86:6F:E9:E2:B1:79:86:A4:23:FF:B4:FD:63 X509v3 Authority Key Identifier: keyid:83:74:6D:58:38:13:4A:E5:50:50:C4:1F:5D:5C:EB:0C:3F:83:9F:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/83746D5838134AE55050C41F5D5CEB0C3F839FAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/83746D5838134AE55050C41F5D5CEB0C3F839FAA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/34352e3132362e34302e302f32332d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.40.0/23 Signature Algorithm: sha256WithRSAEncryption 24:d6:f5:83:49:4b:18:6a:69:c3:3e:27:a9:a0:44:34:e3:8f: db:ae:07:91:7b:4e:dd:cd:84:02:c1:b8:68:5f:2e:1a:ba:55: 2b:66:32:fa:db:5d:84:57:cc:ec:97:79:ee:a0:78:5a:10:28: 0b:85:35:dc:fd:e0:35:e5:9f:0e:d6:c4:ce:17:37:c5:6b:52: f5:46:2c:f6:02:1a:76:f1:51:a6:46:4c:16:49:3e:71:32:e8: fd:74:dd:8d:f9:de:5a:99:f7:ba:53:b1:04:82:24:13:8a:55: 4d:b4:9a:6a:d0:14:d4:37:b0:56:ee:51:20:ee:5f:de:1a:cc: b7:0e:ac:26:30:1f:a7:bd:87:7a:cf:0a:29:92:c1:32:04:75: a7:73:55:1d:ce:4b:c7:98:44:f7:03:69:e8:5c:88:ee:ed:14: 69:45:5c:b7:aa:45:48:c5:21:e8:c3:42:b1:bb:69:99:06:93: a4:af:ef:05:9b:cc:cd:d5:2b:8b:f9:97:cc:70:08:77:3c:5d: c8:d6:26:b2:52:ee:79:a8:f5:bb:50:46:49:1d:37:79:9f:9b: ca:f0:ed:cb:44:37:de:a5:7f:93:0b:7b:d7:ef:31:57:5b:d2: 3b:2a:ae:a8:5e:e7:bd:32:7e:1f:9b:46:02:05:0d:58:a1:91: 7a:8e:d6:a1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYl+cb3CpSXriWQ9mPMdETLwydKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODM3NDZENTgzODEzNEFFNTUwNTBDNDFGNUQ1Q0VCMEMz RjgzOUZBQTAeFw0yNjA1MDMwMjI0NTFaFw0yNzA1MDIwMjI5NTFaMDMxMTAvBgNV BAMTKDYzRDAwQ0NDODRGOTRCODY2RkU5RTJCMTc5ODZBNDIzRkZCNEZENjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsAP4z6YyJBSYI9SIVim6bWnTN EmlGNt6qH0M2i0WanB8UpLKSje8c5+YAwfizPZT2H4AhEXVTaZCOMORUqu3/5Z/A A57tjLkrp9Yl0OtzaY3GnBhCQiZVxeSiYDX7yrB+yySZ9J8MGC/qVS75axvdr3OB lczuzx5aqMbEoScSjxHc12dWBUmkSM/3GY8MsNbBq67pyKI8O2BsuIORbARQPCT/ PZEbABfj8f9vWGV6J1I18986Ofyb8A+QMbIegEsSg+dgAsWF5ufb54aTmoaV+v5I GgZO2Z+y01mpSO+Qbr9ZZnE5t7gqwWiQoUzgmZGvUKkUzKc4W+HlWY7hrPIzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUY9AMzIT5S4Zv6eKxeYakI/+0/WMwHwYDVR0j BBgwFoAUg3RtWDgTSuVQUMQfXVzrDD+Dn6owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQ4NDA3ZTMtMmNiMS00YzZlLThhZWItNWUwZDM1NWU4Yzk2LzAvODM3NDZENTgz ODEzNEFFNTUwNTBDNDFGNUQ1Q0VCMEMzRjgzOUZBQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84Mzc0NkQ1ODM4MTM0QUU1NTA1MEM0MUY1RDVDRUIwQzNGODM5 RkFBLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0ODQwN2UzLTJjYjEtNGM2ZS04 YWViLTVlMGQzNTVlOGM5Ni8wLzM0MzUyZTMxMzIzNjJlMzQzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzQzMzMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtfigwDQYJKoZIhvcN AQELBQADggEBACTW9YNJSxhqacM+J6mgRDTjj9uuB5F7Tt3NhALBuGhfLhq6VStm MvrbXYRXzOyXee6geFoQKAuFNdz94DXlnw7WxM4XN8VrUvVGLPYCGnbxUaZGTBZJ PnEy6P103Y353lqZ97pTsQSCJBOKVU20mmrQFNQ3sFbuUSDuX94azLcOrCYwH6e9 h3rPCimSwTIEdadzVR3OS8eYRPcDaehciO7tFGlFXLeqRUjFIejDQrG7aZkGk6Sv 7wWbzM3VK4v5l8xwCHc8XcjWJrJS7nmo9btQRkkdN3mfm8rw7ctEN96lf5MLe9fv MVdb0jsqrqhe570yfh+bRgIFDVihkXqO1qE= -----END CERTIFICATE-----Generated at Wed May 13 02:41:16 2026 by rpki-client