$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3233312e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: LzEMMPEclaUbP32nV7TQjPaFjEM1NHnSpiUznjr8bfQ= Subject key identifier: 0D:66:DA:AF:61:79:8B:F4:3A:34:6A:A9:97:E5:87:17:4E:2C:69:F4 Certificate issuer: /CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Certificate serial: 3935156F8C0FBE5B69FD609819EEFECF4CC44490 Authority key identifier: 10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa Signing time: Sun 03 May 2026 02:36:41 +0000 ROA not before: Sun 03 May 2026 02:31:41 +0000 ROA not after: Sun 02 May 2027 02:36:41 +0000 asID: 58552 IP address blocks: 43.240.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:35:15:6f:8c:0f:be:5b:69:fd:60:98:19:ee:fe:cf:4c:c4:44:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10DB2C44E26CA2A146EF738D39F53CBB0901DB52 Validity Not Before: May 3 02:31:41 2026 GMT Not After : May 2 02:36:41 2027 GMT Subject: CN=0D66DAAF61798BF43A346AA997E587174E2C69F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:d7:43:a1:90:54:25:3f:62:fb:4e:44:00:b8: 5a:59:79:04:23:d8:67:08:5c:f0:d2:6e:9d:d0:23: 23:f2:48:64:d5:27:10:ec:99:18:8f:b0:e8:5c:a0: 4f:77:da:29:0d:a0:ff:12:68:cd:8e:14:0e:e2:fa: 13:ec:0a:22:05:32:b0:41:36:b8:ad:2c:42:3e:96: f1:26:d7:87:c5:f5:99:02:a9:4c:62:79:37:85:78: d0:6d:4e:63:89:f0:35:7d:02:43:37:05:71:a0:3a: 13:48:83:9b:43:43:63:bd:ea:5b:7a:13:58:1d:93: fe:ff:6c:84:3e:a7:bb:8e:db:cf:f7:b9:67:a9:7f: 8e:8f:bc:98:42:28:0e:b0:ae:9c:17:16:2c:5d:a7: 71:84:7e:5d:27:61:5c:b7:4c:8a:be:dc:70:54:13: 27:88:e2:2a:40:15:9b:07:4d:47:3c:d9:a4:bf:92: f1:9b:56:9c:6f:21:27:d2:67:e2:70:52:69:44:fc: b5:84:65:85:47:ce:a4:13:cb:f9:65:3e:6b:f2:d1: 42:21:cc:be:08:4b:00:7b:b3:f7:98:6e:e0:f3:bc: 08:fb:d9:93:50:c9:0a:72:b5:ba:36:2a:cf:16:a0: d5:97:8c:a4:00:bb:85:4c:f3:84:83:f7:45:70:e3: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:66:DA:AF:61:79:8B:F4:3A:34:6A:A9:97:E5:87:17:4E:2C:69:F4 X509v3 Authority Key Identifier: keyid:10:DB:2C:44:E2:6C:A2:A1:46:EF:73:8D:39:F5:3C:BB:09:01:DB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/10DB2C44E26CA2A146EF738D39F53CBB0901DB52.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.231.0/24 Signature Algorithm: sha256WithRSAEncryption a9:7a:36:e1:c3:a8:fa:ff:90:20:b5:0a:87:1d:6a:6c:fd:05: 66:51:15:0c:db:92:91:6e:3b:d3:48:2f:d0:be:93:50:c0:00: 98:10:f6:f5:a3:2a:89:ad:2b:fb:e0:32:90:0b:5c:f6:46:1c: 90:4c:c9:f0:fd:b9:60:e9:41:e6:86:65:1d:c6:ac:ab:15:fb: 28:a2:88:fe:0a:e0:b3:08:2e:ad:02:41:44:c9:84:59:38:27: ee:33:6b:b7:c0:85:2c:21:ac:e7:f6:a4:5e:48:c4:b7:3b:42: 54:5e:ee:20:8b:9a:55:1a:52:18:c3:55:e3:ac:81:e9:3b:a8: 79:13:b7:e4:67:db:67:7b:65:d8:35:ec:d3:b3:50:7a:c2:80: bc:a3:17:ea:dc:3c:81:a1:28:a2:2d:73:04:30:39:a6:e9:d9: 2e:7d:06:61:62:79:0c:bb:51:db:3b:27:ab:29:33:19:62:e8: f6:19:52:5f:dd:74:69:2d:58:11:07:70:76:e0:03:25:6e:5a: 2b:af:e7:e5:07:5b:7e:59:0a:eb:4e:b0:c8:08:ff:40:b4:91: 8a:a4:f2:f0:80:21:be:ac:fb:d5:9c:84:fc:5d:a7:fc:0c:e9: 03:6a:f9:a8:b7:c9:19:2a:c0:3a:b2:40:2b:19:28:d2:33:9f: 17:8d:5b:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOTUVb4wPvltp/WCYGe7+z0zERJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEQjJDNDRFMjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIw OTAxREI1MjAeFw0yNjA1MDMwMjMxNDFaFw0yNzA1MDIwMjM2NDFaMDMxMTAvBgNV BAMTKDBENjZEQUFGNjE3OThCRjQzQTM0NkFBOTk3RTU4NzE3NEUyQzY5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD010OhkFQlP2L7TkQAuFpZeQQj 2GcIXPDSbp3QIyPySGTVJxDsmRiPsOhcoE932ikNoP8SaM2OFA7i+hPsCiIFMrBB NritLEI+lvEm14fF9ZkCqUxieTeFeNBtTmOJ8DV9AkM3BXGgOhNIg5tDQ2O96lt6 E1gdk/7/bIQ+p7uO28/3uWepf46PvJhCKA6wrpwXFixdp3GEfl0nYVy3TIq+3HBU EyeI4ipAFZsHTUc82aS/kvGbVpxvISfSZ+JwUmlE/LWEZYVHzqQTy/llPmvy0UIh zL4ISwB7s/eYbuDzvAj72ZNQyQpytbo2Ks8WoNWXjKQAu4VM84SD90Vw457TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDWbar2F5i/Q6NGqpl+WHF04safQwHwYDVR0j BBgwFoAUENssROJsoqFG73ONOfU8uwkB21IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQyMjdkYmUtNGExYy00MGIwLTk0YTYtNzkzYmRiZGEzNzc3LzAvMTBEQjJDNDRF MjZDQTJBMTQ2RUY3MzhEMzlGNTNDQkIwOTAxREI1Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMERCMkM0NEUyNkNBMkExNDZFRjczOEQzOUY1M0NCQjA5MDFE QjUyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5zANBgkqhkiG 9w0BAQsFAAOCAQEAqXo24cOo+v+QILUKhx1qbP0FZlEVDNuSkW4700gv0L6TUMAA mBD29aMqia0r++AykAtc9kYckEzJ8P25YOlB5oZlHcasqxX7KKKI/grgswgurQJB RMmEWTgn7jNrt8CFLCGs5/akXkjEtztCVF7uIIuaVRpSGMNV46yB6TuoeRO35Gfb Z3tl2DXs07NQesKAvKMX6tw8gaEooi1zBDA5punZLn0GYWJ5DLtR2zsnqykzGWLo 9hlSX910aS1YEQdwduADJW5aK6/n5QdbflkK606wyAj/QLSRiqTy8IAhvqz71ZyE /F2n/AzpA2r5qLfJGSrAOrJAKxko0jOfF41b4g== -----END CERTIFICATE-----Generated at Wed May 13 03:51:19 2026 by rpki-client