$ rpki-client -vvf rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa File: 34332e3233302e3135322e302f32322d3232203d3e203435373235.roa (raw, json) Hash identifier: j6STimVEecBpDBJLSOCDmtgZIXCy0EsMhzUkhsKIUp8= Subject key identifier: 1F:FF:48:83:B7:43:DB:A9:FB:0F:92:A9:80:AA:8B:35:F5:90:6A:68 Certificate issuer: /CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Certificate serial: 332E0500623F1DEE09F8D9A42379B5B27BC92E3F Authority key identifier: 62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa Signing time: Sun 03 May 2026 02:39:12 +0000 ROA not before: Sun 03 May 2026 02:34:12 +0000 ROA not after: Sun 02 May 2027 02:39:12 +0000 asID: 45725 IP address blocks: 43.230.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:2e:05:00:62:3f:1d:ee:09:f8:d9:a4:23:79:b5:b2:7b:c9:2e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62258C46C7EEF9427331E24A2D1EB9B699C68A9E Validity Not Before: May 3 02:34:12 2026 GMT Not After : May 2 02:39:12 2027 GMT Subject: CN=1FFF4883B743DBA9FB0F92A980AA8B35F5906A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:77:bb:c8:12:d5:dd:22:a1:e5:9f:aa:ce:6a: a4:a1:79:5d:49:30:96:14:b9:f4:c9:e2:2b:19:83: 99:29:25:11:a6:f4:48:bf:db:7b:5e:dd:00:4b:15: 1d:05:f1:e8:e4:14:8d:3c:3b:09:a2:0e:14:5e:88: 1a:fd:19:f9:24:ad:f6:b3:d1:01:c4:86:da:54:d1: a6:14:45:5a:b5:10:12:32:2b:14:7c:26:94:83:c5: 6e:8a:96:3c:98:10:20:d2:83:4b:c4:06:26:d2:20: 87:34:b8:9d:40:1b:1d:a8:0d:92:cc:bc:3d:8f:8b: 3f:ed:15:6f:65:8c:d4:ae:ee:c8:b8:8c:9f:5a:03: 7a:cd:d2:a5:47:14:4e:65:25:1c:23:a2:54:bf:fd: 8c:0e:bc:e1:db:4b:c7:e7:37:09:6e:7b:c5:ad:6d: 98:e2:fd:4c:aa:b5:dd:c4:a5:3f:38:d9:34:0e:f2: 39:92:56:7d:26:3c:60:ed:ff:de:a3:72:23:69:a0: 72:e8:3e:ea:0f:af:c0:f0:28:9c:2e:2c:45:38:31: 09:81:23:ec:bf:8b:28:86:54:61:8b:f9:48:3d:ed: e0:03:b5:e0:9d:7d:bd:e7:ec:44:71:3c:bb:e3:10: bb:fe:78:23:03:e2:b4:34:eb:6a:cd:d8:f5:f2:4a: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FF:48:83:B7:43:DB:A9:FB:0F:92:A9:80:AA:8B:35:F5:90:6A:68 X509v3 Authority Key Identifier: keyid:62:25:8C:46:C7:EE:F9:42:73:31:E2:4A:2D:1E:B9:B6:99:C6:8A:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/62258C46C7EEF9427331E24A2D1EB9B699C68A9E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption b4:8e:24:bf:ee:f7:ef:cb:db:1d:ec:f5:d7:61:fd:96:fb:57: ad:4c:3d:98:ae:ec:42:90:90:fe:ba:30:e6:1b:8d:50:16:16: 75:7f:77:ae:72:f0:d8:6e:3d:c3:23:d4:fc:6e:9f:1c:16:9a: 94:ad:40:7a:f7:7b:6d:79:80:6e:62:b0:77:5a:52:e2:6b:b3: ae:a6:a9:e8:e1:aa:47:3b:8a:f1:9e:fd:d9:87:a5:4b:51:30: e6:6b:d0:50:f0:25:7c:79:2b:23:ec:33:83:c4:21:1b:81:aa: c4:b9:cd:f3:71:bf:0b:d5:af:bb:73:d3:5a:f0:06:27:46:fb: 78:c2:75:63:bc:66:55:23:8c:43:d3:75:22:23:05:33:51:e8: 0f:32:34:73:5e:ba:4e:36:2e:7c:b7:0f:8a:71:0f:95:d7:d6: 8d:a3:25:e9:84:e0:05:09:36:e8:66:c2:f1:a0:3b:57:81:a8: d9:e3:63:86:0c:d4:a2:99:11:5a:69:47:7a:ed:3c:a5:bb:7f: 41:e4:98:01:8c:e8:09:fd:a9:67:9c:59:03:8b:96:a1:39:50: f0:2e:3c:4a:34:67:94:51:63:18:b7:ea:04:fc:e8:25:f0:fc: fa:1b:fd:63:d2:81:2c:ee:49:85:d7:0b:09:6b:56:12:a6:be: 58:18:d4:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMy4FAGI/He4J+NmkI3m1snvJLj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjIyNThDNDZDN0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5 OUM2OEE5RTAeFw0yNjA1MDMwMjM0MTJaFw0yNzA1MDIwMjM5MTJaMDMxMTAvBgNV BAMTKDFGRkY0ODgzQjc0M0RCQTlGQjBGOTJBOTgwQUE4QjM1RjU5MDZBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSd7vIEtXdIqHln6rOaqSheV1J MJYUufTJ4isZg5kpJRGm9Ei/23te3QBLFR0F8ejkFI08OwmiDhReiBr9Gfkkrfaz 0QHEhtpU0aYURVq1EBIyKxR8JpSDxW6KljyYECDSg0vEBibSIIc0uJ1AGx2oDZLM vD2Piz/tFW9ljNSu7si4jJ9aA3rN0qVHFE5lJRwjolS//YwOvOHbS8fnNwlue8Wt bZji/Uyqtd3EpT842TQO8jmSVn0mPGDt/96jciNpoHLoPuoPr8DwKJwuLEU4MQmB I+y/iyiGVGGL+Ug97eADteCdfb3n7ERxPLvjELv+eCMD4rQ062rN2PXySjFZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH/9Ig7dD26n7D5KpgKqLNfWQamgwHwYDVR0j BBgwFoAUYiWMRsfu+UJzMeJKLR65tpnGip4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQ0MjE2ZDgtNzBjZS00OTA4LWE3MmItZWMyNzNmNDNiYmMyLzAvNjIyNThDNDZD N0VFRjk0MjczMzFFMjRBMkQxRUI5QjY5OUM2OEE5RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjI1OEM0NkM3RUVGOTQyNzMzMUUyNEEyRDFFQjlCNjk5QzY4 QTlFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivmmDANBgkqhkiG 9w0BAQsFAAOCAQEAtI4kv+7378vbHez112H9lvtXrUw9mK7sQpCQ/row5huNUBYW dX93rnLw2G49wyPU/G6fHBaalK1Aevd7bXmAbmKwd1pS4muzrqap6OGqRzuK8Z79 2YelS1Ew5mvQUPAlfHkrI+wzg8QhG4GqxLnN83G/C9Wvu3PTWvAGJ0b7eMJ1Y7xm VSOMQ9N1IiMFM1HoDzI0c166TjYufLcPinEPldfWjaMl6YTgBQk26GbC8aA7V4Go 2eNjhgzUopkRWmlHeu08pbt/QeSYAYzoCf2pZ5xZA4uWoTlQ8C48SjRnlFFjGLfq BPzoJfD8+hv9Y9KBLO5JhdcLCWtWEqa+WBjUrg== -----END CERTIFICATE-----Generated at Wed May 13 04:50:52 2026 by rpki-client