$ rpki-client -vvf rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133382e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133382e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: aDJ/BlhAr3ZuI6P3BU0POvE1//aOF15U+ofqLi0TcqU= Subject key identifier: DA:DC:E6:78:29:92:49:5A:FB:6F:D1:7B:70:F9:D2:DE:07:FD:E8:C9 Certificate issuer: /CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Certificate serial: 792524293AA8F9AEC2AC9708CC382D79F25E7502 Authority key identifier: 9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133382e302f32342d3234203d3e203538343034.roa Signing time: Sun 03 May 2026 02:41:37 +0000 ROA not before: Sun 03 May 2026 02:36:37 +0000 ROA not after: Sun 02 May 2027 02:41:37 +0000 asID: 58404 IP address blocks: 43.252.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:25:24:29:3a:a8:f9:ae:c2:ac:97:08:cc:38:2d:79:f2:5e:75:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Validity Not Before: May 3 02:36:37 2026 GMT Not After : May 2 02:41:37 2027 GMT Subject: CN=DADCE6782992495AFB6FD17B70F9D2DE07FDE8C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5a:c5:da:64:1f:e1:df:6c:7e:a4:5b:50:46: 38:50:c5:36:c9:53:c2:c5:f8:91:06:86:91:ed:8f: c9:3c:bf:fc:1b:33:85:d0:3a:d3:23:f5:a5:c7:cd: 42:f7:2b:75:e8:33:c5:dc:20:30:af:c4:3f:fb:04: 7f:d1:89:e4:d5:31:38:3d:d7:72:c2:71:1b:04:4a: df:8c:73:c3:49:56:e2:f7:c3:34:78:7b:66:9d:09: bd:9a:d9:13:57:8b:7e:09:19:a8:03:6c:5d:fa:d8: b1:7b:0f:c2:88:7f:9f:67:a4:4a:91:14:37:5c:ee: 33:d5:ef:31:dd:c5:c1:b8:ba:56:4a:44:b2:08:a9: 47:02:89:a3:77:b6:c7:49:15:1c:d2:43:fe:0f:42: 66:6c:c6:6f:60:a4:a7:50:c8:98:f9:10:81:54:c8: 0b:fe:94:d5:12:ae:af:13:0e:ff:07:21:7e:df:b7: 8f:10:f3:54:f6:fa:35:e7:25:dc:87:05:43:6f:4c: 4d:a6:ad:0f:7d:1f:ba:15:08:ce:a7:ee:55:50:d3: 50:9a:50:2b:8e:bb:c4:31:15:35:45:29:e6:94:67: 3d:16:b1:71:bf:11:dc:dc:19:b7:c2:b6:ff:4a:40: cf:42:47:9a:b8:76:b7:20:06:df:86:f4:87:80:9d: b1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DC:E6:78:29:92:49:5A:FB:6F:D1:7B:70:F9:D2:DE:07:FD:E8:C9 X509v3 Authority Key Identifier: keyid:9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133382e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.138.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:61:3e:7f:ff:b5:e0:05:ad:19:2b:b4:1e:28:95:a0:19:bb: 17:7d:3e:46:cb:de:5f:16:14:78:f8:a3:bf:ea:bd:42:da:e2: 49:3c:22:3a:00:1f:c1:13:aa:43:d7:95:65:f9:d9:0c:84:b4: 7a:df:eb:a1:0e:d7:f0:86:d5:89:f7:0a:b7:ef:e7:2e:fd:68: 75:93:d3:49:d6:a5:b3:68:28:d1:3f:1f:85:41:b3:7a:16:22: f6:e5:61:ff:71:32:51:33:15:e4:b2:25:10:5f:50:2f:7a:88: a3:dc:54:f0:56:37:8a:a9:7c:0d:e8:eb:f9:55:27:87:b1:90: 6d:0d:15:8e:9b:c3:82:db:54:c4:cb:c2:85:f5:87:48:ae:4d: d5:14:5c:75:56:12:e6:89:12:b4:82:78:f3:15:2a:89:3f:f3: e0:57:27:41:95:8b:e8:7f:14:6d:95:5f:22:f6:9c:ac:d4:91: 74:5f:75:06:b2:91:91:ad:43:11:2e:8b:d0:44:9e:6b:45:ab: 2a:31:e4:e5:99:43:66:08:dc:bf:df:5e:63:f3:57:84:4e:d3: 47:56:80:d8:4c:a1:88:16:85:dc:00:b4:85:46:c4:e4:75:56: fd:61:db:8c:88:f6:42:19:66:e6:d7:71:9e:5a:73:e7:2f:79: 20:b4:c1:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeSUkKTqo+a7CrJcIzDgtefJedQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM1OEMxQzZBRkJCNUI2NkM2NDA2OTRBOTg1OTczMDZD Qzg4REEwQjAeFw0yNjA1MDMwMjM2MzdaFw0yNzA1MDIwMjQxMzdaMDMxMTAvBgNV BAMTKERBRENFNjc4Mjk5MjQ5NUFGQjZGRDE3QjcwRjlEMkRFMDdGREU4QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvWsXaZB/h32x+pFtQRjhQxTbJ U8LF+JEGhpHtj8k8v/wbM4XQOtMj9aXHzUL3K3XoM8XcIDCvxD/7BH/RieTVMTg9 13LCcRsESt+Mc8NJVuL3wzR4e2adCb2a2RNXi34JGagDbF362LF7D8KIf59npEqR FDdc7jPV7zHdxcG4ulZKRLIIqUcCiaN3tsdJFRzSQ/4PQmZsxm9gpKdQyJj5EIFU yAv+lNUSrq8TDv8HIX7ft48Q81T2+jXnJdyHBUNvTE2mrQ99H7oVCM6n7lVQ01Ca UCuOu8QxFTVFKeaUZz0WsXG/EdzcGbfCtv9KQM9CR5q4drcgBt+G9IeAnbGNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2tzmeCmSSVr7b9F7cPnS3gf96MkwHwYDVR0j BBgwFoAUnFjBxq+7W2bGQGlKmFlzBsyI2gswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmUwZjkxNjMtM2U1YS00ZWZhLThiZDktNGFjNGJjNjMwNDE0LzAvOUM1OEMxQzZB RkJCNUI2NkM2NDA2OTRBOTg1OTczMDZDQzg4REEwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QzU4QzFDNkFGQkI1QjY2QzY0MDY5NEE5ODU5NzMwNkNDODhE QTBCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8ijANBgkqhkiG 9w0BAQsFAAOCAQEAWmE+f/+14AWtGSu0HiiVoBm7F30+RsveXxYUePijv+q9Qtri STwiOgAfwROqQ9eVZfnZDIS0et/roQ7X8IbVifcKt+/nLv1odZPTSdals2go0T8f hUGzehYi9uVh/3EyUTMV5LIlEF9QL3qIo9xU8FY3iql8Dejr+VUnh7GQbQ0VjpvD gttUxMvChfWHSK5N1RRcdVYS5okStIJ48xUqiT/z4FcnQZWL6H8UbZVfIvacrNSR dF91BrKRka1DES6L0ESea0WrKjHk5ZlDZgjcv99eY/NXhE7TR1aA2EyhiBaF3AC0 hUbE5HVW/WHbjIj2Qhlm5tdxnlpz5y95ILTBww== -----END CERTIFICATE-----Generated at Wed May 13 06:27:24 2026 by rpki-client