$ rpki-client -vvf rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230382e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3230382e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: tYKZ7K/JyXd3SueTboWMxQMrsrBoUSKxFJO40oBLUS8= Subject key identifier: 94:4B:FC:3D:62:1F:F1:D6:BA:39:11:1C:AC:9F:F4:C5:4D:B4:FF:33 Certificate issuer: /CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Certificate serial: 7126935328F8D05198A9F5BD72F78DEFC847DFC5 Authority key identifier: 4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230382e302f32342d3234203d3e203435323938.roa Signing time: Sun 03 May 2026 02:39:44 +0000 ROA not before: Sun 03 May 2026 02:34:44 +0000 ROA not after: Sun 02 May 2027 02:39:44 +0000 asID: 45298 IP address blocks: 43.249.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:26:93:53:28:f8:d0:51:98:a9:f5:bd:72:f7:8d:ef:c8:47:df:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0 Validity Not Before: May 3 02:34:44 2026 GMT Not After : May 2 02:39:44 2027 GMT Subject: CN=944BFC3D621FF1D6BA39111CAC9FF4C54DB4FF33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:60:8d:50:f4:3f:33:f0:0b:3f:bb:e8:17:7f: 44:8f:9e:2a:43:a0:7d:d1:4f:60:9d:1c:b9:d9:c9: 17:0b:04:67:aa:a6:63:5c:e1:da:51:7f:76:a7:a4: 1f:bb:a9:5b:aa:97:13:14:14:3e:82:bc:2d:ed:4a: f4:f1:d3:8f:8f:85:98:b3:a9:03:f1:9d:2b:64:be: 3a:33:1e:92:60:84:d8:f2:6d:12:a9:fd:e2:4d:d6: 04:0d:81:1b:54:d1:26:c3:45:c1:6b:41:f9:14:bd: a4:c8:36:24:af:05:8e:79:05:e5:a8:be:48:66:33: 6b:5f:ea:66:ca:35:64:3b:7a:85:c3:0c:a5:1a:e0: cf:42:d4:19:bf:56:f6:4f:87:31:5a:c9:d1:53:90: 06:fa:73:b7:60:69:c9:f6:08:73:8b:85:36:6d:11: 76:94:ee:e3:78:b3:f6:b6:df:3a:a7:eb:18:93:88: 3a:c8:c7:a2:cf:04:a6:06:03:41:08:ca:b2:b6:6a: 3e:4a:76:d0:f5:a2:5b:87:74:fd:b6:ec:a0:18:3a: 7a:31:4c:bb:dd:87:c7:57:6c:66:c9:fe:25:12:4a: df:69:af:80:c3:2b:c5:29:6a:d3:e0:b3:f0:23:74: ec:1f:d3:e0:68:9d:d3:e2:b5:74:a8:a4:88:8c:36: e5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4B:FC:3D:62:1F:F1:D6:BA:39:11:1C:AC:9F:F4:C5:4D:B4:FF:33 X509v3 Authority Key Identifier: keyid:4A:4E:AE:6D:F7:EB:F8:D5:B4:40:4D:BA:E4:87:48:CC:F2:70:F7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4A4EAE6DF7EBF8D5B4404DBAE48748CCF270F7A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230382e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.208.0/24 Signature Algorithm: sha256WithRSAEncryption 31:2c:91:05:30:5f:5a:0a:81:b8:89:59:7e:d6:67:ae:41:1c: f5:45:f2:78:67:2f:45:4b:5a:b3:45:7c:bd:65:db:0d:5a:24: 2e:d8:a5:fd:bb:92:50:c2:eb:dd:4d:d6:a2:2a:af:00:bb:e9: 62:44:08:23:2f:9a:5b:6b:0d:90:25:07:05:7a:be:f9:0f:6f: 2a:60:43:33:36:8d:2d:60:68:e1:9c:56:3c:15:d6:1d:ba:ea: 62:39:36:a0:a6:af:e2:32:a4:0c:d8:20:d2:c0:2e:23:b0:fe: 5c:a2:88:63:f3:fd:69:82:17:97:fd:4e:d1:86:72:48:64:d5: 8b:29:c6:c3:76:be:78:cb:37:fb:84:1b:82:17:6d:07:18:7b: 7c:af:35:2e:10:19:65:2f:04:56:d6:6e:b6:84:f0:55:aa:b4: d3:2e:7a:3c:a4:02:12:1f:58:a7:e7:c2:f3:a1:37:52:62:ac: 9e:50:e0:61:c2:7b:32:32:4c:c6:af:21:d2:47:27:3e:09:f2: d1:bf:fb:b9:97:3e:ef:01:52:07:eb:8d:14:6b:f0:51:f6:74: 69:32:22:38:d9:e9:4e:83:df:61:7b:56:17:26:52:d8:69:9e: b6:44:d2:ed:4c:8e:6a:73:f4:3f:10:51:dd:61:3f:7b:ab:6c: 25:c7:cd:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcSaTUyj40FGYqfW9cveN78hH38UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE0RUFFNkRGN0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NG MjcwRjdBMDAeFw0yNjA1MDMwMjM0NDRaFw0yNzA1MDIwMjM5NDRaMDMxMTAvBgNV BAMTKDk0NEJGQzNENjIxRkYxRDZCQTM5MTExQ0FDOUZGNEM1NERCNEZGMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYYI1Q9D8z8As/u+gXf0SPnipD oH3RT2CdHLnZyRcLBGeqpmNc4dpRf3anpB+7qVuqlxMUFD6CvC3tSvTx04+PhZiz qQPxnStkvjozHpJghNjybRKp/eJN1gQNgRtU0SbDRcFrQfkUvaTINiSvBY55BeWo vkhmM2tf6mbKNWQ7eoXDDKUa4M9C1Bm/VvZPhzFaydFTkAb6c7dgacn2CHOLhTZt EXaU7uN4s/a23zqn6xiTiDrIx6LPBKYGA0EIyrK2aj5KdtD1oluHdP227KAYOnox TLvdh8dXbGbJ/iUSSt9pr4DDK8UpatPgs/AjdOwf0+BondPitXSopIiMNuUpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlEv8PWIf8da6OREcrJ/0xU20/zMwHwYDVR0j BBgwFoAUSk6ubffr+NW0QE265IdIzPJw96AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjVlYzI1ZTQtOWFhOC00YmVmLTkwOTctYzBiZWMwYjI2NmE3LzAvNEE0RUFFNkRG N0VCRjhENUI0NDA0REJBRTQ4NzQ4Q0NGMjcwRjdBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QTRFQUU2REY3RUJGOEQ1QjQ0MDREQkFFNDg3NDhDQ0YyNzBG N0EwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50DANBgkqhkiG 9w0BAQsFAAOCAQEAMSyRBTBfWgqBuIlZftZnrkEc9UXyeGcvRUtas0V8vWXbDVok Ltil/buSUMLr3U3WoiqvALvpYkQIIy+aW2sNkCUHBXq++Q9vKmBDMzaNLWBo4ZxW PBXWHbrqYjk2oKav4jKkDNgg0sAuI7D+XKKIY/P9aYIXl/1O0YZySGTViynGw3a+ eMs3+4QbghdtBxh7fK81LhAZZS8EVtZutoTwVaq00y56PKQCEh9Yp+fC86E3UmKs nlDgYcJ7MjJMxq8h0kcnPgny0b/7uZc+7wFSB+uNFGvwUfZ0aTIiONnpToPfYXtW FyZS2GmetkTS7UyOanP0PxBR3WE/e6tsJcfNOw== -----END CERTIFICATE-----Generated at Wed May 13 07:35:52 2026 by rpki-client