$ rpki-client -vvf rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa File: 34332e3235342e3132362e302f32332d3233203d3e203538343832.roa (raw, json) Hash identifier: hPQYJuUqUDWl2cmOjlr/pca7yQxivHAwJtgrBXfl/4Q= Subject key identifier: 09:37:34:31:7A:E8:42:FC:BD:8D:3D:6F:B1:56:34:B4:90:02:2E:25 Certificate issuer: /CN=797581F67816C4132050EC6348DBB15EBC5C0189 Certificate serial: 685724255628401BA39B147313EE1813F6BDA46E Authority key identifier: 79:75:81:F6:78:16:C4:13:20:50:EC:63:48:DB:B1:5E:BC:5C:01:89 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa Signing time: Sun 03 May 2026 02:40:43 +0000 ROA not before: Sun 03 May 2026 02:35:43 +0000 ROA not after: Sun 02 May 2027 02:40:43 +0000 asID: 58482 IP address blocks: 43.254.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.crl rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:57:24:25:56:28:40:1b:a3:9b:14:73:13:ee:18:13:f6:bd:a4:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=797581F67816C4132050EC6348DBB15EBC5C0189 Validity Not Before: May 3 02:35:43 2026 GMT Not After : May 2 02:40:43 2027 GMT Subject: CN=093734317AE842FCBD8D3D6FB15634B490022E25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c6:f9:3b:59:69:fd:54:19:e8:74:8b:a8:d6: 6c:32:e0:e2:df:97:75:50:6e:dc:32:81:60:29:2d: e0:7d:9d:e0:eb:b3:cc:15:37:cb:6b:cd:4c:dd:85: 0d:5a:30:66:d2:06:e2:b9:c3:ad:ec:52:9c:dc:9b: 1d:96:f2:d7:70:85:52:7b:5c:7f:20:74:1a:d4:1d: 44:0c:fa:08:ac:8c:8c:ea:9c:52:55:26:04:18:f0: 11:48:1b:57:e7:7f:6b:b4:3f:95:97:fb:75:dc:68: 7a:7e:31:8a:26:3f:da:f5:6d:28:85:b1:13:ea:84: 7d:4f:fd:87:88:b4:ef:ed:fb:c8:6c:54:26:d5:31: 67:64:e7:0d:f1:5a:11:2b:21:c2:59:77:90:a0:eb: 81:6a:4c:1c:dd:5d:bb:9a:fb:ec:bf:d8:83:c2:28: b3:a6:c7:d0:26:4b:9c:a8:26:82:b9:26:1d:f4:48: 59:7f:9d:dd:c1:fe:c7:fb:9b:4f:85:b4:11:ca:ad: b9:76:f6:e3:7a:0d:a7:d7:94:11:ae:18:32:d8:f8: da:22:fe:e6:2a:12:ef:66:fb:d8:a4:b4:f0:a8:34: 2d:6d:36:66:f6:b8:bb:10:27:ef:61:6b:e3:27:f4: f5:fa:53:29:6c:ff:3b:23:6e:ea:90:95:27:09:29: 96:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:37:34:31:7A:E8:42:FC:BD:8D:3D:6F:B1:56:34:B4:90:02:2E:25 X509v3 Authority Key Identifier: keyid:79:75:81:F6:78:16:C4:13:20:50:EC:63:48:DB:B1:5E:BC:5C:01:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.126.0/23 Signature Algorithm: sha256WithRSAEncryption bf:36:79:67:78:89:f8:b2:be:2f:0f:c6:49:91:25:38:2e:62: 58:8f:08:b4:ee:8c:cc:14:52:a1:94:da:a1:bb:3c:28:d3:ce: d6:d6:14:00:81:c9:3a:87:71:85:26:8b:89:c6:3a:dc:29:2e: df:ef:9e:74:aa:c7:63:6c:b9:fc:6d:50:67:f6:c3:88:64:7d: fb:cd:64:68:f0:e2:91:db:2c:07:1b:ca:08:6d:da:ff:06:af: 0e:49:5c:13:66:51:52:f8:e8:47:c9:26:93:4a:9b:c5:06:0e: be:e1:fe:5e:b0:a9:7c:97:bd:78:70:c7:87:97:e1:48:13:ce: 59:90:da:bb:ca:fd:d8:a2:24:34:4a:79:93:d7:ae:d0:75:94: ea:49:ab:55:b5:f8:f4:53:33:1e:d9:88:4a:88:85:96:04:03: 10:af:c3:72:a6:22:62:be:e0:8b:af:a7:fa:bd:e2:86:af:72: 33:40:05:bc:ad:f7:d3:9e:70:ad:8a:c8:91:8d:90:6c:48:78: 46:8e:48:bd:7d:dd:fc:99:65:5d:db:de:a9:81:46:c0:ca:3f: ee:dc:84:d1:7a:0e:81:e0:90:6d:7c:36:9c:11:27:0b:18:a7: 59:72:b2:b5:65:45:b3:ef:0c:d8:7b:a5:f8:11:4f:60:6f:bd: 1d:7f:24:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaFckJVYoQBujmxRzE+4YE/a9pG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk3NTgxRjY3ODE2QzQxMzIwNTBFQzYzNDhEQkIxNUVC QzVDMDE4OTAeFw0yNjA1MDMwMjM1NDNaFw0yNzA1MDIwMjQwNDNaMDMxMTAvBgNV BAMTKDA5MzczNDMxN0FFODQyRkNCRDhEM0Q2RkIxNTYzNEI0OTAwMjJFMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxvk7WWn9VBnodIuo1mwy4OLf l3VQbtwygWApLeB9neDrs8wVN8trzUzdhQ1aMGbSBuK5w63sUpzcmx2W8tdwhVJ7 XH8gdBrUHUQM+gisjIzqnFJVJgQY8BFIG1fnf2u0P5WX+3XcaHp+MYomP9r1bSiF sRPqhH1P/YeItO/t+8hsVCbVMWdk5w3xWhErIcJZd5Cg64FqTBzdXbua++y/2IPC KLOmx9AmS5yoJoK5Jh30SFl/nd3B/sf7m0+FtBHKrbl29uN6DafXlBGuGDLY+Noi /uYqEu9m+9iktPCoNC1tNmb2uLsQJ+9ha+Mn9PX6Uyls/zsjbuqQlScJKZYPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCTc0MXroQvy9jT1vsVY0tJACLiUwHwYDVR0j BBgwFoAUeXWB9ngWxBMgUOxjSNuxXrxcAYkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjllMmYzYmQtZDRlYy00MmNiLWFhY2YtYWRjMjgyNWMxODRiLzAvNzk3NTgxRjY3 ODE2QzQxMzIwNTBFQzYzNDhEQkIxNUVCQzVDMDE4OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83OTc1ODFGNjc4MTZDNDEzMjA1MEVDNjM0OERCQjE1RUJDNUMw MTg5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv+fjANBgkqhkiG 9w0BAQsFAAOCAQEAvzZ5Z3iJ+LK+Lw/GSZElOC5iWI8ItO6MzBRSoZTaobs8KNPO 1tYUAIHJOodxhSaLicY63Cku3++edKrHY2y5/G1QZ/bDiGR9+81kaPDikdssBxvK CG3a/wavDklcE2ZRUvjoR8kmk0qbxQYOvuH+XrCpfJe9eHDHh5fhSBPOWZDau8r9 2KIkNEp5k9eu0HWU6kmrVbX49FMzHtmISoiFlgQDEK/DcqYiYr7gi6+n+r3ihq9y M0AFvK33055wrYrIkY2QbEh4Ro5IvX3d/JllXdveqYFGwMo/7tyE0XoOgeCQbXw2 nBEnCxinWXKytWVFs+8M2Hul+BFPYG+9HX8kmA== -----END CERTIFICATE-----Generated at Wed May 13 02:12:00 2026 by rpki-client