$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232382e302f32342d3234203d3e203538333839.roa File: 34332e3234302e3232382e302f32342d3234203d3e203538333839.roa (raw, json) Hash identifier: 3DhQRj4ZM/CTijAQFVjPERqvmWimNmjntsOOn/bvgN8= Subject key identifier: 04:35:8B:B5:72:67:E6:26:96:36:C7:97:E4:F7:E0:2E:FF:9D:E3:36 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 6656651F857A536B60365F4B739C0FD369D145E1 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232382e302f32342d3234203d3e203538333839.roa Signing time: Sun 03 May 2026 02:36:43 +0000 ROA not before: Sun 03 May 2026 02:31:43 +0000 ROA not after: Sun 02 May 2027 02:36:43 +0000 asID: 58389 IP address blocks: 43.240.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:56:65:1f:85:7a:53:6b:60:36:5f:4b:73:9c:0f:d3:69:d1:45:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:43 2026 GMT Not After : May 2 02:36:43 2027 GMT Subject: CN=04358BB57267E6269636C797E4F7E02EFF9DE336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:26:dd:bd:c4:ca:a8:6c:b4:58:c7:04:1a:ed: 87:ad:9c:76:e5:68:6b:24:de:9d:6e:99:75:70:39: da:77:d3:c6:db:88:fa:87:c9:dc:3b:77:ee:b3:db: 56:a1:ee:ab:e3:d6:ff:a5:59:a1:02:88:2f:d2:45: b3:96:49:62:fc:87:db:fb:3c:00:3a:11:fe:2b:60: 93:56:d3:9d:eb:48:4f:7d:04:61:3c:a7:81:c8:71: 70:46:34:c6:69:23:ea:1c:da:ee:e3:63:29:12:67: 20:ac:af:00:93:47:f5:6c:6c:dc:40:79:ba:aa:d1: 2b:73:d1:f1:e7:19:ce:4c:6a:af:d1:3b:bb:a6:4a: b7:ff:d8:fc:ab:b6:33:52:08:2a:f9:f2:bc:9c:9c: 63:f6:c6:45:84:1f:f5:0d:29:20:c6:b4:d2:8d:e1: 1f:87:bf:51:89:29:f9:f4:6a:55:cf:93:bc:f1:8e: 14:25:9a:c2:1e:3c:78:ef:76:b0:7d:59:5f:db:e6: 26:30:d9:d0:df:91:19:10:a6:b5:a5:f9:53:97:7f: 0d:03:92:23:98:51:76:83:3f:8e:0b:a0:1b:11:e2: 5d:30:73:30:90:a3:00:aa:06:1b:f0:34:df:f5:c8: 36:93:9b:84:fd:75:84:db:29:b9:e8:40:4f:bf:45: f5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:35:8B:B5:72:67:E6:26:96:36:C7:97:E4:F7:E0:2E:FF:9D:E3:36 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232382e302f32342d3234203d3e203538333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.228.0/24 Signature Algorithm: sha256WithRSAEncryption 64:68:e7:0c:5b:bc:9f:d3:1b:3f:56:a7:4d:92:82:40:6a:2b: 72:f7:58:aa:fa:c8:a8:c5:fe:02:8c:d9:1e:1d:51:43:67:fc: 93:44:cc:56:cc:97:15:38:f5:46:10:ee:bf:a5:34:58:41:48: 6a:5c:82:af:01:29:67:47:cc:06:b9:f1:3d:02:80:44:ad:e5: 47:5e:87:d6:f1:3c:a7:bb:49:8b:65:45:63:2f:53:7c:15:a1: 1b:1a:23:cc:8c:d8:4c:4c:b1:da:85:fa:40:6d:ac:0b:f2:b9: f2:fb:6a:1d:4f:b5:be:1a:70:24:39:81:bf:e8:26:52:6a:1e: aa:ea:7d:f7:9f:72:8e:6a:e1:1a:d1:a3:ce:0f:f3:93:94:d2: db:45:5e:8a:cd:2c:57:ec:ef:fe:8f:25:e5:e8:9c:93:08:b0: f2:ec:7b:e9:20:bb:b8:4e:14:82:b8:64:2a:66:62:e3:62:8f: 9c:60:1c:73:a0:ce:9c:e8:20:c6:69:1c:82:1f:a9:e4:23:50: a4:0c:ff:1c:91:37:0e:6b:fc:c4:80:00:86:0e:e8:14:b5:63: 1b:d4:c6:b6:94:7d:60:35:1c:80:02:9b:21:99:5e:4d:f4:1f: 37:40:6e:86:00:e7:71:66:97:09:bd:6c:38:85:c0:c3:96:93: 63:95:5c:4f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZlZlH4V6U2tgNl9Lc5wP02nRReEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxNDNaFw0yNzA1MDIwMjM2NDNaMDMxMTAvBgNV BAMTKDA0MzU4QkI1NzI2N0U2MjY5NjM2Qzc5N0U0RjdFMDJFRkY5REUzMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwJt29xMqobLRYxwQa7YetnHbl aGsk3p1umXVwOdp308bbiPqHydw7d+6z21ah7qvj1v+lWaECiC/SRbOWSWL8h9v7 PAA6Ef4rYJNW053rSE99BGE8p4HIcXBGNMZpI+oc2u7jYykSZyCsrwCTR/VsbNxA ebqq0Stz0fHnGc5Maq/RO7umSrf/2PyrtjNSCCr58rycnGP2xkWEH/UNKSDGtNKN 4R+Hv1GJKfn0alXPk7zxjhQlmsIePHjvdrB9WV/b5iYw2dDfkRkQprWl+VOXfw0D kiOYUXaDP44LoBsR4l0wczCQowCqBhvwNN/1yDaTm4T9dYTbKbnoQE+/RfUdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBDWLtXJn5iaWNseX5PfgLv+d4zYwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5DANBgkqhkiG 9w0BAQsFAAOCAQEAZGjnDFu8n9MbP1anTZKCQGorcvdYqvrIqMX+AozZHh1RQ2f8 k0TMVsyXFTj1RhDuv6U0WEFIalyCrwEpZ0fMBrnxPQKARK3lR16H1vE8p7tJi2VF Yy9TfBWhGxojzIzYTEyx2oX6QG2sC/K58vtqHU+1vhpwJDmBv+gmUmoequp9959y jmrhGtGjzg/zk5TS20Veis0sV+zv/o8l5eickwiw8ux76SC7uE4UgrhkKmZi42KP nGAcc6DOnOggxmkcgh+p5CNQpAz/HJE3Dmv8xIAAhg7oFLVjG9TGtpR9YDUcgAKb IZleTfQfN0BuhgDncWaXCb1sOIXAw5aTY5VcTw== -----END CERTIFICATE-----Generated at Wed May 13 05:25:24 2026 by rpki-client