$ rpki-client -vvf rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa File: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (raw, json) Hash identifier: XruWQQhjREtyk1SmNsMjFRHLoSTVd3r/+m7FYV8d8Kc= Subject key identifier: BD:27:E9:48:12:18:2A:9E:81:99:27:7B:4D:C6:D2:60:80:3F:93:4C Certificate issuer: /CN=0A0BE818C9E480D5B3C1387F48406FDF75525054 Certificate serial: 3E8DF62E8B6EF30EBDB8439D2E222D76BA897D5C Authority key identifier: 0A:0B:E8:18:C9:E4:80:D5:B3:C1:38:7F:48:40:6F:DF:75:52:50:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A0BE818C9E480D5B3C1387F48406FDF75525054.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa Signing time: Sun 03 May 2026 02:49:01 +0000 ROA not before: Sun 03 May 2026 02:44:01 +0000 ROA not after: Sun 02 May 2027 02:49:01 +0000 asID: 58376 IP address blocks: 43.245.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/0A0BE818C9E480D5B3C1387F48406FDF75525054.crl rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/0A0BE818C9E480D5B3C1387F48406FDF75525054.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A0BE818C9E480D5B3C1387F48406FDF75525054.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8d:f6:2e:8b:6e:f3:0e:bd:b8:43:9d:2e:22:2d:76:ba:89:7d:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A0BE818C9E480D5B3C1387F48406FDF75525054 Validity Not Before: May 3 02:44:01 2026 GMT Not After : May 2 02:49:01 2027 GMT Subject: CN=BD27E94812182A9E8199277B4DC6D260803F934C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:9d:09:8c:6b:e8:e8:f4:0c:fd:a6:0a:a0: ab:49:fe:17:c8:4b:be:22:7a:bf:b8:63:b0:ad:f3: af:ec:3f:1d:7b:3a:ae:0f:35:da:ef:36:e2:53:2a: cf:16:f5:02:a9:40:1e:ff:85:02:5e:e5:bd:fc:28: d5:0f:52:f8:b3:ce:8e:28:78:d3:3f:a1:05:5f:b0: d8:cc:78:34:5a:2b:cf:36:6c:e7:7f:eb:ff:4a:b9: b5:69:18:43:49:7c:ff:85:31:6b:90:17:a5:18:41: 96:d8:f3:04:78:3e:33:3c:c7:62:28:01:22:69:a3: 93:22:70:54:ff:37:2b:6f:53:85:60:c9:1b:2e:c5: 3f:cf:4d:23:e7:35:58:c9:71:9b:3e:d9:5a:75:08: c0:4f:1c:ee:01:ac:92:41:cc:b7:b6:32:39:92:f2: 80:75:4a:9b:53:20:e9:9e:f4:b6:89:80:0d:64:c6: 97:49:43:0e:54:c7:87:30:3b:ff:d8:13:17:b0:48: 80:5e:a2:71:73:7e:fe:aa:c9:32:7e:61:40:c6:98: bf:3a:be:60:41:92:dd:20:70:f1:04:28:75:00:32: 93:3e:53:6c:c4:23:db:72:14:31:8e:61:86:d6:ff: 2e:df:f7:ce:c7:68:f7:14:0d:d4:e5:8f:85:e3:32: fe:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:27:E9:48:12:18:2A:9E:81:99:27:7B:4D:C6:D2:60:80:3F:93:4C X509v3 Authority Key Identifier: keyid:0A:0B:E8:18:C9:E4:80:D5:B3:C1:38:7F:48:40:6F:DF:75:52:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/0A0BE818C9E480D5B3C1387F48406FDF75525054.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A0BE818C9E480D5B3C1387F48406FDF75525054.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.188.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:d1:38:b0:3d:49:cd:e2:d7:31:c8:57:e3:7f:7a:11:51:57: 29:82:b8:b3:eb:d7:53:dd:82:fa:ce:02:60:8b:0a:b6:8d:0f: d2:a5:0b:13:7e:a1:6b:a5:5c:13:ee:03:2d:3f:17:77:26:68: 8f:ec:fd:c4:38:1d:bf:6e:e6:fc:90:ec:37:9b:7a:29:29:71: a6:13:52:c6:6b:c3:10:94:eb:80:b7:12:45:06:45:f2:23:12: a7:0b:76:65:8e:24:94:57:93:e3:0b:61:7d:36:bb:a3:d5:2f: b3:21:a5:22:a1:f4:27:7e:45:95:5d:f6:df:f4:37:70:60:bf: 27:31:e9:6a:e8:9e:01:e3:6d:b0:97:8f:42:a7:d0:ab:e4:7d: ea:b0:ce:4f:de:b1:5f:1c:af:38:83:f9:e1:b5:ed:ad:7f:11: bf:8b:56:59:74:7d:4b:bf:e0:02:68:67:eb:b1:b4:e2:c9:8a: f2:86:1d:71:bf:ac:83:0a:41:45:22:4d:a5:8b:c1:44:e9:a9: 39:4b:6a:1d:5a:2d:42:25:1d:93:88:40:34:6e:cb:8b:ed:1b: da:ab:2f:09:e9:8e:a8:c9:70:87:6f:3b:ca:d5:24:9b:24:b1: e3:d3:ac:d3:2d:01:f7:b3:da:e3:e5:7a:b2:35:ff:60:54:43: 99:40:95:17 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPo32Lotu8w69uEOdLiItdrqJfVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEwQkU4MThDOUU0ODBENUIzQzEzODdGNDg0MDZGREY3 NTUyNTA1NDAeFw0yNjA1MDMwMjQ0MDFaFw0yNzA1MDIwMjQ5MDFaMDMxMTAvBgNV BAMTKEJEMjdFOTQ4MTIxODJBOUU4MTk5Mjc3QjREQzZEMjYwODAzRjkzNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo7Z0JjGvo6PQM/aYKoKtJ/hfI S74ier+4Y7Ct86/sPx17Oq4PNdrvNuJTKs8W9QKpQB7/hQJe5b38KNUPUvizzo4o eNM/oQVfsNjMeDRaK882bOd/6/9KubVpGENJfP+FMWuQF6UYQZbY8wR4PjM8x2Io ASJpo5MicFT/NytvU4VgyRsuxT/PTSPnNVjJcZs+2Vp1CMBPHO4BrJJBzLe2MjmS 8oB1SptTIOme9LaJgA1kxpdJQw5Ux4cwO//YExewSIBeonFzfv6qyTJ+YUDGmL86 vmBBkt0gcPEEKHUAMpM+U2zEI9tyFDGOYYbW/y7f987HaPcUDdTlj4XjMv5nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvSfpSBIYKp6BmSd7TcbSYIA/k0wwHwYDVR0j BBgwFoAUCgvoGMnkgNWzwTh/SEBv33VSUFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODkxZDNjMzAtOTVkYy00YjcyLWFlMWItYWQxZTk4YjBlMTc5LzAvMEEwQkU4MThD OUU0ODBENUIzQzEzODdGNDg0MDZGREY3NTUyNTA1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTBCRTgxOEM5RTQ4MEQ1QjNDMTM4N0Y0ODQwNkZERjc1NTI1 MDU0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzM0MzMyZTMyMzQzNTJlMzEzODM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv1vDANBgkqhkiG 9w0BAQsFAAOCAQEAC9E4sD1JzeLXMchX4396EVFXKYK4s+vXU92C+s4CYIsKto0P 0qULE36ha6VcE+4DLT8XdyZoj+z9xDgdv27m/JDsN5t6KSlxphNSxmvDEJTrgLcS RQZF8iMSpwt2ZY4klFeT4wthfTa7o9UvsyGlIqH0J35FlV323/Q3cGC/JzHpauie AeNtsJePQqfQq+R96rDOT96xXxyvOIP54bXtrX8Rv4tWWXR9S7/gAmhn67G04smK 8oYdcb+sgwpBRSJNpYvBROmpOUtqHVotQiUdk4hANG7Li+0b2qsvCemOqMlwh287 ytUkmySx49Os0y0B97Pa4+V6sjX/YFRDmUCVFw== -----END CERTIFICATE-----Generated at Wed May 13 08:24:24 2026 by rpki-client