$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39362e302f32342d3234203d3e203538343737.roa File: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: 5ev3rc/Wu45AIU9QKYFuF4qHEkUSlKkTnsZ3JdywnVM= Subject key identifier: AF:D1:3D:1E:05:96:7A:24:A5:36:63:65:D3:0C:63:4B:1A:99:EC:5D Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 78B746019B24A50B48C24B5F5C93B41F3CE3D8E3 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39362e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 02:31:31 +0000 ROA not before: Sun 03 May 2026 02:26:31 +0000 ROA not after: Sun 02 May 2027 02:31:31 +0000 asID: 58477 IP address blocks: 45.64.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:b7:46:01:9b:24:a5:0b:48:c2:4b:5f:5c:93:b4:1f:3c:e3:d8:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 3 02:26:31 2026 GMT Not After : May 2 02:31:31 2027 GMT Subject: CN=AFD13D1E05967A24A5366365D30C634B1A99EC5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:58:93:1c:5f:2a:85:27:57:79:95:5e:0b: 2c:26:4a:55:ca:0e:14:c0:87:2b:49:ba:8a:1c:75: 41:27:57:67:63:e4:d9:b8:30:01:b0:dd:bd:56:84: c1:79:7c:2c:25:aa:90:32:e7:9c:ff:33:21:27:71: 15:d5:b2:d5:eb:c0:9d:b9:6b:6d:96:d8:c7:a0:54: e9:df:3e:0f:96:26:f2:fb:e5:2e:b3:d7:5b:3e:35: 6a:4b:52:84:c9:84:4b:90:2b:7a:8c:99:64:b4:bc: 30:1d:70:26:85:45:cf:cc:50:00:8c:84:3d:c1:8e: 70:ce:20:8a:59:75:7c:e6:01:31:22:e2:ef:54:60: c0:fe:59:f0:55:78:50:4f:1a:2d:ef:06:87:7c:b9: 83:48:24:f2:10:a7:44:30:4e:d7:4e:96:ef:bc:df: 1e:d7:a5:af:9f:df:08:e0:9c:03:ff:a6:a4:1e:49: fd:a4:fa:a0:0e:1c:b2:d5:d6:f7:c0:2e:5d:2e:4f: fc:f9:34:ae:93:28:27:e2:3b:9e:be:9f:e9:71:57: cb:c6:ca:79:62:b0:2e:81:5a:28:3b:11:69:81:91: 5e:86:82:d3:c1:03:37:d1:9a:ec:13:1f:99:bc:84: c4:8a:0b:d6:e8:c9:f0:05:90:5d:36:8e:49:8f:39: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D1:3D:1E:05:96:7A:24:A5:36:63:65:D3:0C:63:4B:1A:99:EC:5D X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39362e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.96.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:0d:c3:81:19:7b:f1:1b:8e:e9:69:33:28:d7:65:d0:f6:f9: 5a:24:0f:b2:b3:a8:31:99:25:26:11:79:a6:8d:db:e7:c6:26: dd:3d:77:d6:94:ed:4a:6c:94:20:53:2f:44:fb:83:c4:34:7a: 62:7d:f6:1b:3e:c5:7c:cc:0c:a1:fe:46:39:47:4f:5b:df:76: ee:c4:97:6e:55:b5:08:08:ed:73:02:12:b3:3d:40:06:4d:c9: e5:aa:c2:fe:41:2d:7b:4a:29:a1:6f:56:69:7c:f4:3d:fe:70: 79:a8:98:90:ff:db:df:fc:09:b3:e7:c3:6d:24:09:62:0f:a4: 19:0e:f5:e5:b9:fd:14:02:83:f4:c5:cd:c4:02:4a:06:02:1b: 36:fb:08:a5:45:15:db:69:8a:87:65:d8:45:fa:7c:50:29:af: 76:d3:52:78:15:17:aa:c7:e2:bf:e7:ea:62:bb:33:0d:dd:70: d4:6e:be:99:a1:25:52:ad:18:1c:2a:4e:d3:55:38:03:50:0d: b0:8b:36:c2:19:ae:2e:82:44:47:51:03:98:ec:a4:42:74:85: d3:48:fd:39:4e:cd:06:bc:19:41:7f:27:25:c3:1d:ea:e2:06: fa:05:f4:5e:19:a0:48:f4:8b:c4:fc:e8:46:e7:f5:37:d1:15: f3:50:6d:03 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeLdGAZskpQtIwktfXJO0Hzzj2OMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MDMwMjI2MzFaFw0yNzA1MDIwMjMxMzFaMDMxMTAvBgNV BAMTKEFGRDEzRDFFMDU5NjdBMjRBNTM2NjM2NUQzMEM2MzRCMUE5OUVDNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxAliTHF8qhSdXeZVeCywmSlXK DhTAhytJuoocdUEnV2dj5Nm4MAGw3b1WhMF5fCwlqpAy55z/MyEncRXVstXrwJ25 a22W2MegVOnfPg+WJvL75S6z11s+NWpLUoTJhEuQK3qMmWS0vDAdcCaFRc/MUACM hD3BjnDOIIpZdXzmATEi4u9UYMD+WfBVeFBPGi3vBod8uYNIJPIQp0QwTtdOlu+8 3x7Xpa+f3wjgnAP/pqQeSf2k+qAOHLLV1vfALl0uT/z5NK6TKCfiO56+n+lxV8vG ynlisC6BWig7EWmBkV6GgtPBAzfRmuwTH5m8hMSKC9boyfAFkF02jkmPOSnvAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUr9E9HgWWeiSlNmNl0wxjSxqZ7F0wHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMzQzNTJlMzYzNDJlMzkzNjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtQGAwDQYJKoZIhvcNAQEL BQADggEBAJoNw4EZe/EbjulpMyjXZdD2+VokD7KzqDGZJSYReaaN2+fGJt09d9aU 7UpslCBTL0T7g8Q0emJ99hs+xXzMDKH+RjlHT1vfdu7El25VtQgI7XMCErM9QAZN yeWqwv5BLXtKKaFvVml89D3+cHmomJD/29/8CbPnw20kCWIPpBkO9eW5/RQCg/TF zcQCSgYCGzb7CKVFFdtpiodl2EX6fFApr3bTUngVF6rH4r/n6mK7Mw3dcNRuvpmh JVKtGBwqTtNVOANQDbCLNsIZri6CREdRA5jspEJ0hdNI/TlOzQa8GUF/JyXDHeri BvoF9F4ZoEj0i8T86Ebn9TfRFfNQbQM= -----END CERTIFICATE-----Generated at Wed May 13 00:31:52 2026 by rpki-client