$ rpki-client -vvf rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32342d3234203d3e203538343832.roa File: 34332e3235342e3132362e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: I4qolOqhk6fFyvAU0LWgCGZL64+EOxlQBasV4rDQgfs= Subject key identifier: 6F:C4:78:CF:8A:31:9D:91:4D:16:D7:F0:6C:22:5F:93:AE:9A:3F:73 Certificate issuer: /CN=797581F67816C4132050EC6348DBB15EBC5C0189 Certificate serial: 12F518846D9D058428C8B3D2A32BBE024418CB64 Authority key identifier: 79:75:81:F6:78:16:C4:13:20:50:EC:63:48:DB:B1:5E:BC:5C:01:89 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32342d3234203d3e203538343832.roa Signing time: Sun 03 May 2026 02:40:40 +0000 ROA not before: Sun 03 May 2026 02:35:40 +0000 ROA not after: Sun 02 May 2027 02:40:40 +0000 asID: 58482 IP address blocks: 43.254.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.crl rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f5:18:84:6d:9d:05:84:28:c8:b3:d2:a3:2b:be:02:44:18:cb:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=797581F67816C4132050EC6348DBB15EBC5C0189 Validity Not Before: May 3 02:35:40 2026 GMT Not After : May 2 02:40:40 2027 GMT Subject: CN=6FC478CF8A319D914D16D7F06C225F93AE9A3F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:07:90:30:4c:52:25:b3:1c:76:ab:28:c8:ff: 04:9f:a7:c1:b9:ba:5e:9f:4e:d6:d0:74:46:0b:02: c8:09:6e:af:e4:09:f1:7b:58:1b:4a:74:6e:31:24: 54:af:54:75:51:7a:72:f6:ac:dc:65:18:14:96:b4: eb:0f:18:98:bf:cf:e2:a2:82:86:22:1f:94:c4:06: 4d:ce:c5:fb:ef:d7:67:f2:e1:c2:29:47:ac:fd:d2: 8a:36:54:64:6d:61:15:1b:ff:28:26:22:dd:49:0e: 7c:40:1f:9e:b5:a9:ab:ee:2a:f0:61:44:04:ab:c1: aa:03:17:ba:4c:98:fe:9f:63:1f:a7:40:2c:6a:6b: ec:70:f7:d1:0a:d4:c6:94:e3:01:42:34:66:80:9e: 34:45:db:5b:89:33:cb:08:ef:fb:42:62:dc:72:f0: 9c:b8:4a:5e:77:68:d9:7b:d8:b0:99:df:e0:4d:15: 36:a4:e1:a1:6d:a7:ef:35:c3:f5:35:aa:71:81:c3: 35:dc:3b:c0:d2:a6:8c:12:61:ed:de:81:b1:af:cb: 4c:e5:5e:f8:0c:d4:7f:f3:2c:ee:09:69:15:0d:f7: ab:9b:3a:d6:95:df:a1:84:42:bf:20:87:53:92:63: 7a:b4:2c:1f:d6:03:42:f0:97:d9:91:67:74:dd:d6: 11:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C4:78:CF:8A:31:9D:91:4D:16:D7:F0:6C:22:5F:93:AE:9A:3F:73 X509v3 Authority Key Identifier: keyid:79:75:81:F6:78:16:C4:13:20:50:EC:63:48:DB:B1:5E:BC:5C:01:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/797581F67816C4132050EC6348DBB15EBC5C0189.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/797581F67816C4132050EC6348DBB15EBC5C0189.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.126.0/24 Signature Algorithm: sha256WithRSAEncryption 66:36:46:82:fa:15:92:03:aa:58:41:8e:68:0d:7a:15:74:23: c1:c5:9a:5d:64:cb:33:de:d6:b8:7a:97:79:45:9f:ca:85:ad: 05:ee:df:7a:cf:65:e8:b2:5f:e4:8d:3b:25:8c:cd:6f:d3:b9: e5:38:5e:77:7d:9d:24:8e:cf:73:eb:ee:fa:32:5e:17:8e:d2: 30:a7:cc:0b:22:af:87:ea:ce:dc:b6:08:2e:26:ce:38:8d:fb: be:82:20:f0:33:08:11:53:b1:6f:c5:29:d5:c1:e7:1f:af:cd: a1:c5:96:a5:44:db:e5:64:22:bb:92:ec:a5:19:75:6c:53:0a: cc:11:d0:f3:0b:b6:f6:57:2d:09:48:20:89:78:4a:c8:24:0b: db:76:77:d2:50:35:b0:86:73:32:c7:46:55:eb:7a:95:c7:ce: b9:72:5c:a0:f9:6f:b6:1e:06:8c:4c:29:05:8d:f7:07:45:5d: dd:e6:02:1f:79:e1:e8:98:5d:aa:c0:6c:15:11:6e:38:82:20: 11:2e:41:03:ea:2a:9c:11:2d:69:a1:39:f0:20:40:73:46:dc: dc:d2:37:47:e1:53:54:a2:44:7f:d1:20:5b:5b:db:24:4c:9e: 22:6e:da:2b:3b:4b:76:b7:b0:19:12:a1:e7:46:d4:55:49:de: 70:dc:48:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEvUYhG2dBYQoyLPSoyu+AkQYy2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk3NTgxRjY3ODE2QzQxMzIwNTBFQzYzNDhEQkIxNUVC QzVDMDE4OTAeFw0yNjA1MDMwMjM1NDBaFw0yNzA1MDIwMjQwNDBaMDMxMTAvBgNV BAMTKDZGQzQ3OENGOEEzMTlEOTE0RDE2RDdGMDZDMjI1RjkzQUU5QTNGNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyB5AwTFIlsxx2qyjI/wSfp8G5 ul6fTtbQdEYLAsgJbq/kCfF7WBtKdG4xJFSvVHVRenL2rNxlGBSWtOsPGJi/z+Ki goYiH5TEBk3Oxfvv12fy4cIpR6z90oo2VGRtYRUb/ygmIt1JDnxAH561qavuKvBh RASrwaoDF7pMmP6fYx+nQCxqa+xw99EK1MaU4wFCNGaAnjRF21uJM8sI7/tCYtxy 8Jy4Sl53aNl72LCZ3+BNFTak4aFtp+81w/U1qnGBwzXcO8DSpowSYe3egbGvy0zl XvgM1H/zLO4JaRUN96ubOtaV36GEQr8gh1OSY3q0LB/WA0Lwl9mRZ3Td1hEdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUb8R4z4oxnZFNFtfwbCJfk66aP3MwHwYDVR0j BBgwFoAUeXWB9ngWxBMgUOxjSNuxXrxcAYkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjllMmYzYmQtZDRlYy00MmNiLWFhY2YtYWRjMjgyNWMxODRiLzAvNzk3NTgxRjY3 ODE2QzQxMzIwNTBFQzYzNDhEQkIxNUVCQzVDMDE4OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83OTc1ODFGNjc4MTZDNDEzMjA1MEVDNjM0OERCQjE1RUJDNUMw MTg5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv+fjANBgkqhkiG 9w0BAQsFAAOCAQEAZjZGgvoVkgOqWEGOaA16FXQjwcWaXWTLM97WuHqXeUWfyoWt Be7fes9l6LJf5I07JYzNb9O55Thed32dJI7Pc+vu+jJeF47SMKfMCyKvh+rO3LYI LibOOI37voIg8DMIEVOxb8Up1cHnH6/NocWWpUTb5WQiu5LspRl1bFMKzBHQ8wu2 9lctCUggiXhKyCQL23Z30lA1sIZzMsdGVet6lcfOuXJcoPlvth4GjEwpBY33B0Vd 3eYCH3nh6JhdqsBsFRFuOIIgES5BA+oqnBEtaaE58CBAc0bc3NI3R+FTVKJEf9Eg W1vbJEyeIm7aKztLdrewGRKh50bUVUnecNxIew== -----END CERTIFICATE-----Generated at Wed May 13 03:48:20 2026 by rpki-client