$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa File: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: /BLy7k3doovw3jQVTXaYTnBas7DL4Zfrgn7U9J4fWVA= Subject key identifier: 3E:13:40:ED:F1:91:CB:D2:91:C8:51:C6:62:D3:F6:55:C4:44:1B:D9 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 0A0E22F214BD7E4824581BA42ED01E7DD405D7B6 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 02:31:31 +0000 ROA not before: Sun 03 May 2026 02:26:31 +0000 ROA not after: Sun 02 May 2027 02:31:31 +0000 asID: 58477 IP address blocks: 45.64.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:0e:22:f2:14:bd:7e:48:24:58:1b:a4:2e:d0:1e:7d:d4:05:d7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 3 02:26:31 2026 GMT Not After : May 2 02:31:31 2027 GMT Subject: CN=3E1340EDF191CBD291C851C662D3F655C4441BD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a8:9c:29:4b:18:3e:d2:69:31:7b:16:fc:4a: 8c:ef:77:c0:66:46:5c:ea:ed:c2:d6:2b:24:1e:2a: a2:e1:be:54:0c:0c:4c:0c:c3:90:b8:71:ed:fb:60: 0a:69:07:6e:16:0a:6e:e2:e8:f9:b2:28:7f:d8:29: 59:e4:30:03:5b:12:79:0f:0d:46:56:ee:97:5a:52: 6c:b5:93:34:c5:d4:16:cd:be:c8:dc:7b:62:0e:fe: 0f:21:df:36:fa:92:a1:50:bc:69:47:36:f1:81:04: 53:c0:06:fb:e1:a0:d9:8b:f9:d6:c2:78:44:80:85: 3f:b0:e5:32:02:d8:8e:8b:e1:98:81:6a:ce:89:94: 03:f2:3f:f8:5f:a8:0a:3e:c8:b7:2a:54:de:f8:43: 51:44:5d:04:3b:97:35:ed:98:4e:f6:ff:1d:6a:bf: 6e:47:f2:db:42:a3:f0:f1:f8:29:57:fc:e6:ee:6c: 80:51:4a:24:4d:f5:ba:18:d6:3a:b8:3b:f3:86:ea: 04:59:8f:11:1e:a5:7b:c8:65:a7:be:39:27:7b:be: d2:5e:53:3f:8b:c5:eb:cf:34:89:78:35:65:ff:0a: 2c:2f:90:55:43:7f:e0:41:5a:cc:10:d2:67:32:be: 5f:fd:a8:11:b5:25:d2:08:a5:44:8e:3e:c3:59:8e: 9f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:13:40:ED:F1:91:CB:D2:91:C8:51:C6:62:D3:F6:55:C4:44:1B:D9 X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.98.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e8:2a:d8:f2:52:d1:4d:78:16:21:1a:40:40:53:57:48:66: 7f:16:f1:9d:c0:a5:61:8c:54:61:64:3d:38:dd:68:38:5e:a4: e7:ce:64:13:e5:30:4e:da:4a:0e:29:dd:d1:3a:59:45:24:21: 51:2b:f7:cf:1a:94:47:2a:27:e5:c9:2e:0a:ff:26:5b:15:8b: 49:e9:8b:a7:e1:bb:44:f4:ea:43:7e:d4:f4:2f:cd:b9:9e:95: b0:6f:82:12:6e:56:24:38:4f:6d:5d:86:5d:a1:c2:4a:5b:e7: 70:d2:f9:a7:f6:06:2a:ef:59:5e:b6:f0:b0:3a:e5:09:d0:58: 2f:fc:79:6c:e9:64:df:1e:5d:2d:b2:0a:e3:50:5f:25:1c:95: 05:b3:ba:2a:f7:c0:18:b2:60:20:c3:fe:42:63:21:1c:d3:6b: 9f:a6:26:00:d8:84:be:e7:77:be:9d:78:4c:28:41:f1:bc:ce: 5d:cb:6d:ee:cf:aa:82:6d:42:85:a1:31:d6:41:cc:49:d7:bb: 71:e3:ef:ae:23:4a:15:5b:af:7a:c1:03:e9:76:81:c7:df:bd: 18:5d:66:30:56:18:bf:37:54:d7:fc:14:54:ad:ee:1c:0f:85: 4c:49:a6:5d:80:e8:20:c4:51:b3:45:97:08:59:c4:36:45:8b: 94:2b:3f:56 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUCg4i8hS9fkgkWBukLtAefdQF17YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MDMwMjI2MzFaFw0yNzA1MDIwMjMxMzFaMDMxMTAvBgNV BAMTKDNFMTM0MEVERjE5MUNCRDI5MUM4NTFDNjYyRDNGNjU1QzQ0NDFCRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVqJwpSxg+0mkxexb8Sozvd8Bm Rlzq7cLWKyQeKqLhvlQMDEwMw5C4ce37YAppB24WCm7i6PmyKH/YKVnkMANbEnkP DUZW7pdaUmy1kzTF1BbNvsjce2IO/g8h3zb6kqFQvGlHNvGBBFPABvvhoNmL+dbC eESAhT+w5TIC2I6L4ZiBas6JlAPyP/hfqAo+yLcqVN74Q1FEXQQ7lzXtmE72/x1q v25H8ttCo/Dx+ClX/ObubIBRSiRN9boY1jq4O/OG6gRZjxEepXvIZae+OSd7vtJe Uz+LxevPNIl4NWX/CiwvkFVDf+BBWswQ0mcyvl/9qBG1JdIIpUSOPsNZjp9rAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUPhNA7fGRy9KRyFHGYtP2VcREG9kwHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMzQzNTJlMzYzNDJlMzkzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtQGIwDQYJKoZIhvcNAQEL BQADggEBADroKtjyUtFNeBYhGkBAU1dIZn8W8Z3ApWGMVGFkPTjdaDhepOfOZBPl ME7aSg4p3dE6WUUkIVEr988alEcqJ+XJLgr/JlsVi0npi6fhu0T06kN+1PQvzbme lbBvghJuViQ4T21dhl2hwkpb53DS+af2BirvWV628LA65QnQWC/8eWzpZN8eXS2y CuNQXyUclQWzuir3wBiyYCDD/kJjIRzTa5+mJgDYhL7nd76deEwoQfG8zl3Lbe7P qoJtQoWhMdZBzEnXu3Hj764jShVbr3rBA+l2gcffvRhdZjBWGL83VNf8FFSt7hwP hUxJpl2A6CDEUbNFlwhZxDZFi5QrP1Y= -----END CERTIFICATE-----Generated at Wed May 13 00:31:50 2026 by rpki-client