$ rpki-client -vvf rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa File: 34392e3135362e35362e302f32342d3234203d3e203535363637.roa (raw, json) Hash identifier: aLMfdsIVj+NArpBFKbx+R57YG2afPDJAmU3iGMb6+6c= Subject key identifier: BF:98:EF:B9:7A:4C:64:66:C3:1D:A0:F3:EE:1A:E0:35:1A:E3:15:B9 Certificate issuer: /CN=9588905DE5DA3CEB7B575E4C7B475E22276450F0 Certificate serial: 77A22804290ADF740F5401705ECF097EB54B9C9D Authority key identifier: 95:88:90:5D:E5:DA:3C:EB:7B:57:5E:4C:7B:47:5E:22:27:64:50:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9588905DE5DA3CEB7B575E4C7B475E22276450F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa Signing time: Sun 03 May 2026 02:38:04 +0000 ROA not before: Sun 03 May 2026 02:33:04 +0000 ROA not after: Sun 02 May 2027 02:38:04 +0000 asID: 55667 IP address blocks: 49.156.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/9588905DE5DA3CEB7B575E4C7B475E22276450F0.crl rsync://rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/9588905DE5DA3CEB7B575E4C7B475E22276450F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9588905DE5DA3CEB7B575E4C7B475E22276450F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a2:28:04:29:0a:df:74:0f:54:01:70:5e:cf:09:7e:b5:4b:9c:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9588905DE5DA3CEB7B575E4C7B475E22276450F0 Validity Not Before: May 3 02:33:04 2026 GMT Not After : May 2 02:38:04 2027 GMT Subject: CN=BF98EFB97A4C6466C31DA0F3EE1AE0351AE315B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8b:f3:38:3c:7d:fe:7b:08:34:0d:21:48:30: 6f:72:24:73:dc:79:94:72:10:61:66:a2:26:77:51: f3:a2:b0:c6:01:95:6e:8c:e7:64:af:4c:40:e4:69: a9:2d:1e:53:d0:62:af:ce:6d:1d:9c:10:f1:c7:3e: 98:ec:b6:7d:6e:83:48:88:75:23:cf:72:91:30:43: f8:7e:c6:2a:13:dd:96:ca:60:86:d2:37:c3:8d:9b: 93:24:ad:7a:3e:21:2a:4d:0e:aa:37:4d:a3:64:26: cc:ad:ee:69:12:77:a1:e6:f3:d2:b9:6e:79:e2:27: 40:a0:8c:77:22:87:d1:3c:35:76:bd:36:2c:65:48: 3e:b5:f7:a2:3b:5d:86:7c:84:da:fb:7c:f5:94:60: 48:02:35:7f:05:4c:1d:7b:56:c0:31:5a:f4:01:62: 83:81:8d:69:70:9a:0e:d6:7b:b2:ae:1c:e7:0c:54: 25:22:23:5c:a9:1d:fe:5b:8a:2c:92:6f:e6:8a:e8: d4:b3:31:55:47:7f:fd:14:1a:78:ad:c5:9b:57:48: 34:c3:62:22:4d:3f:3d:8e:28:c2:c8:ab:2e:93:7a: b2:64:bb:6d:59:ae:c9:52:0b:be:c3:09:50:69:39: c9:48:fc:42:a4:f0:b2:75:0a:73:53:d1:ab:62:6c: 29:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:98:EF:B9:7A:4C:64:66:C3:1D:A0:F3:EE:1A:E0:35:1A:E3:15:B9 X509v3 Authority Key Identifier: keyid:95:88:90:5D:E5:DA:3C:EB:7B:57:5E:4C:7B:47:5E:22:27:64:50:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/9588905DE5DA3CEB7B575E4C7B475E22276450F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9588905DE5DA3CEB7B575E4C7B475E22276450F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.56.0/24 Signature Algorithm: sha256WithRSAEncryption c3:c7:bd:1f:5a:80:87:0e:c4:5d:1a:a0:88:b1:41:ca:36:da: 6c:07:87:bc:06:98:b1:14:50:75:db:34:0f:81:82:60:e9:32: 43:b5:51:30:eb:a9:dd:48:77:17:19:95:9a:6e:a5:f8:57:88: 1b:5c:2c:4a:39:25:4c:5e:de:0f:c0:70:47:7f:95:85:a2:db: 30:d7:f5:df:f9:d4:ed:28:af:99:6c:66:9f:a1:9e:45:5d:7e: 67:97:a8:94:72:42:b5:c0:2e:fd:e1:c2:5c:99:af:47:ca:87: c9:f8:29:fc:8f:d2:91:e3:22:d4:c6:f7:48:df:aa:3b:c7:e3: aa:90:44:b4:d1:77:17:d9:8f:89:b9:b5:cb:97:0c:61:b4:fc: 67:21:c4:57:b1:da:68:33:1a:7e:78:ef:02:b8:9f:8b:a9:86: 05:2e:08:5d:98:5e:f4:35:87:4f:d8:ac:92:cf:e2:c7:c5:52: 12:06:ce:04:6e:f3:c1:2c:c5:a2:1e:77:74:bc:bd:52:d4:47: e7:7b:51:94:b6:4c:ec:fc:63:de:81:09:30:14:4c:dc:61:fb: 37:a4:30:65:37:3f:5d:92:54:f3:be:19:7c:af:c3:09:6c:1e: 11:c5:57:10:56:13:4f:c6:1a:df:86:dd:89:31:1a:c2:08:69: a8:cc:36:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUd6IoBCkK33QPVAFwXs8JfrVLnJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU4ODkwNURFNURBM0NFQjdCNTc1RTRDN0I0NzVFMjIy NzY0NTBGMDAeFw0yNjA1MDMwMjMzMDRaFw0yNzA1MDIwMjM4MDRaMDMxMTAvBgNV BAMTKEJGOThFRkI5N0E0QzY0NjZDMzFEQTBGM0VFMUFFMDM1MUFFMzE1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNi/M4PH3+ewg0DSFIMG9yJHPc eZRyEGFmoiZ3UfOisMYBlW6M52SvTEDkaaktHlPQYq/ObR2cEPHHPpjstn1ug0iI dSPPcpEwQ/h+xioT3ZbKYIbSN8ONm5MkrXo+ISpNDqo3TaNkJsyt7mkSd6Hm89K5 bnniJ0CgjHcih9E8NXa9NixlSD6196I7XYZ8hNr7fPWUYEgCNX8FTB17VsAxWvQB YoOBjWlwmg7We7KuHOcMVCUiI1ypHf5biiySb+aK6NSzMVVHf/0UGnitxZtXSDTD YiJNPz2OKMLIqy6TerJku21ZrslSC77DCVBpOclI/EKk8LJ1CnNT0atibCnZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUv5jvuXpMZGbDHaDz7hrgNRrjFbkwHwYDVR0j BBgwFoAUlYiQXeXaPOt7V15Me0deIidkUPAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjIwNmNmNTAtYTNkMS00Y2M5LTkyNjAtOTg3YjJjYTBjOTI3LzAvOTU4ODkwNURF NURBM0NFQjdCNTc1RTRDN0I0NzVFMjIyNzY0NTBGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTg4OTA1REU1REEzQ0VCN0I1NzVFNEM3QjQ3NUUyMjI3NjQ1 MEYwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxnDgwDQYJKoZIhvcN AQELBQADggEBAMPHvR9agIcOxF0aoIixQco22mwHh7wGmLEUUHXbNA+BgmDpMkO1 UTDrqd1IdxcZlZpupfhXiBtcLEo5JUxe3g/AcEd/lYWi2zDX9d/51O0or5lsZp+h nkVdfmeXqJRyQrXALv3hwlyZr0fKh8n4KfyP0pHjItTG90jfqjvH46qQRLTRdxfZ j4m5tcuXDGG0/GchxFex2mgzGn547wK4n4uphgUuCF2YXvQ1h0/YrJLP4sfFUhIG zgRu88EsxaIed3S8vVLUR+d7UZS2TOz8Y96BCTAUTNxh+zekMGU3P12SVPO+GXyv wwlsHhHFVxBWE0/GGt+G3YkxGsIIaajMNhY= -----END CERTIFICATE-----Generated at Wed May 13 05:51:05 2026 by rpki-client