$ rpki-client -vvf rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa File: 34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa (raw, json) Hash identifier: izPF4g0XaDjUw1u0YXoJ9DX03+757vFwLCNVI/libSA= Subject key identifier: DD:65:83:FB:E6:72:16:0B:98:2D:26:4B:8E:A1:20:7F:11:B9:14:17 Certificate issuer: /CN=01B0C001093D0622F6A0653371CA0798A79BF1CB Certificate serial: 37D734A94985EFB50F3F39FFDE66CA9192A35F46 Authority key identifier: 01:B0:C0:01:09:3D:06:22:F6:A0:65:33:71:CA:07:98:A7:9B:F1:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/01B0C001093D0622F6A0653371CA0798A79BF1CB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa Signing time: Sun 03 May 2026 02:37:54 +0000 ROA not before: Sun 03 May 2026 02:32:54 +0000 ROA not after: Sun 02 May 2027 02:37:54 +0000 asID: 152025 IP address blocks: 43.228.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/01B0C001093D0622F6A0653371CA0798A79BF1CB.crl rsync://rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/01B0C001093D0622F6A0653371CA0798A79BF1CB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/01B0C001093D0622F6A0653371CA0798A79BF1CB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d7:34:a9:49:85:ef:b5:0f:3f:39:ff:de:66:ca:91:92:a3:5f:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01B0C001093D0622F6A0653371CA0798A79BF1CB Validity Not Before: May 3 02:32:54 2026 GMT Not After : May 2 02:37:54 2027 GMT Subject: CN=DD6583FBE672160B982D264B8EA1207F11B91417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:16:ff:64:d6:d8:a9:da:bd:92:7d:bd:d3:cc: 44:9a:8b:c1:86:fc:33:05:e9:8a:0c:e8:9e:32:d5: ce:ac:eb:ab:54:34:1b:02:2a:be:f2:c5:69:a7:d7: d9:80:9c:1f:25:30:ed:db:46:b6:c6:85:dc:ee:41: ff:6f:65:55:04:59:60:93:6a:97:71:bd:8d:b0:37: 53:1a:cf:ce:01:16:5e:2e:d0:ff:43:f0:f9:fa:2c: 2f:fe:1b:79:20:1e:69:bd:d8:89:f8:a6:59:76:4e: 3f:36:b1:0b:9f:f1:27:8e:81:2c:0f:aa:58:82:2b: 3a:82:80:8c:76:82:d6:17:1b:da:1f:9c:bc:6c:4f: fb:c7:a4:f3:4c:14:32:ee:2d:d7:12:df:d9:e3:47: d7:f7:15:29:a5:08:4f:82:6c:d1:ca:07:e8:fa:4e: 10:ff:0e:7a:dc:7d:e9:79:2d:33:28:45:7a:30:f8: 20:b8:ed:f7:63:76:b0:b3:4a:e1:81:a0:79:ca:4f: 0e:bd:5b:73:ae:17:1d:f3:15:0e:9b:6f:5e:79:37: b8:3d:8d:bb:fa:33:c1:15:f9:9f:02:93:e9:5e:f1: bc:70:b3:a3:56:bf:e6:ee:f2:80:54:b7:60:6d:35: 6b:4b:bd:d0:4d:44:92:1e:2a:13:32:ab:49:67:b5: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:65:83:FB:E6:72:16:0B:98:2D:26:4B:8E:A1:20:7F:11:B9:14:17 X509v3 Authority Key Identifier: keyid:01:B0:C0:01:09:3D:06:22:F6:A0:65:33:71:CA:07:98:A7:9B:F1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/01B0C001093D0622F6A0653371CA0798A79BF1CB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/01B0C001093D0622F6A0653371CA0798A79BF1CB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.175.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:fd:92:a8:c1:a5:8b:af:c6:e9:3b:66:cb:a4:48:92:4c:29: 05:b9:35:2c:f0:41:57:79:80:7c:42:74:93:95:76:37:22:ce: 2a:08:be:bb:8b:ed:03:5f:18:3d:3a:12:af:b2:f6:81:26:35: 64:2f:de:3a:33:f5:98:41:55:9d:32:24:4e:19:0e:5d:cb:9e: db:4b:d5:51:8b:b3:a2:41:59:6a:8c:81:b6:ef:66:18:ad:b8: 1d:6e:8e:78:7a:5a:16:f0:fe:e5:d2:07:7d:83:86:16:b5:2f: 27:2c:89:61:72:ca:9e:3f:e5:a0:bb:46:e4:8c:14:4b:1f:31: aa:3e:3f:ec:6e:28:ad:61:e0:65:03:49:1e:55:ec:78:36:e7: e2:0b:60:94:4b:15:39:bd:71:3d:f6:ff:c3:94:40:dc:54:fa: cb:6d:b2:72:07:bb:d6:07:c5:ca:4b:72:f9:99:d7:e5:03:fe: 1a:a0:f8:66:d8:9b:82:29:9a:71:18:ec:12:ac:37:d4:38:5d: 4a:8c:00:62:3d:11:eb:d0:6c:87:5a:fc:69:1c:7b:ae:89:a6: a4:46:87:15:c9:c0:3b:c6:b0:5b:d7:e0:d7:99:03:ce:bb:ca: b1:fd:ad:63:89:72:3b:69:79:f2:3d:fc:20:32:bf:49:9e:7b: f8:ce:63:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN9c0qUmF77UPPzn/3mbKkZKjX0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFCMEMwMDEwOTNEMDYyMkY2QTA2NTMzNzFDQTA3OThB NzlCRjFDQjAeFw0yNjA1MDMwMjMyNTRaFw0yNzA1MDIwMjM3NTRaMDMxMTAvBgNV BAMTKERENjU4M0ZCRTY3MjE2MEI5ODJEMjY0QjhFQTEyMDdGMTFCOTE0MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Fv9k1tip2r2Sfb3TzESai8GG /DMF6YoM6J4y1c6s66tUNBsCKr7yxWmn19mAnB8lMO3bRrbGhdzuQf9vZVUEWWCT apdxvY2wN1Maz84BFl4u0P9D8Pn6LC/+G3kgHmm92In4pll2Tj82sQuf8SeOgSwP qliCKzqCgIx2gtYXG9ofnLxsT/vHpPNMFDLuLdcS39njR9f3FSmlCE+CbNHKB+j6 ThD/Dnrcfel5LTMoRXow+CC47fdjdrCzSuGBoHnKTw69W3OuFx3zFQ6bb155N7g9 jbv6M8EV+Z8Ck+le8bxws6NWv+bu8oBUt2BtNWtLvdBNRJIeKhMyq0lntVElAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3WWD++ZyFguYLSZLjqEgfxG5FBcwHwYDVR0j BBgwFoAUAbDAAQk9BiL2oGUzccoHmKeb8cswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjExYTM5ODAtYTMyZS00ZGY5LThlNTItMGJlMGQzNDNjYzBiLzAvMDFCMEMwMDEw OTNEMDYyMkY2QTA2NTMzNzFDQTA3OThBNzlCRjFDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMUIwQzAwMTA5M0QwNjIyRjZBMDY1MzM3MUNBMDc5OEE3OUJG MUNCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYxMWEzOTgwLWEzMmUtNGRmOS04 ZTUyLTBiZTBkMzQzY2MwYi8wLzM0MzMyZTMyMzIzODJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+SvMA0GCSqG SIb3DQEBCwUAA4IBAQB//ZKowaWLr8bpO2bLpEiSTCkFuTUs8EFXeYB8QnSTlXY3 Is4qCL67i+0DXxg9OhKvsvaBJjVkL946M/WYQVWdMiROGQ5dy57bS9VRi7OiQVlq jIG272YYrbgdbo54eloW8P7l0gd9g4YWtS8nLIlhcsqeP+Wgu0bkjBRLHzGqPj/s biitYeBlA0keVex4NufiC2CUSxU5vXE99v/DlEDcVPrLbbJyB7vWB8XKS3L5mdfl A/4aoPhm2JuCKZpxGOwSrDfUOF1KjABiPRHr0GyHWvxpHHuuiaakRocVycA7xrBb 1+DXmQPOu8qx/a1jiXI7aXnyPfwgMr9Jnnv4zmMj -----END CERTIFICATE-----Generated at Wed May 13 07:11:23 2026 by rpki-client