$ rpki-client -vvf rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa File: 34332e3234372e32302e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: gwZQbe4m/GrtEIxNeRbhHDA+1mqa7HkZdYu5ukYQUEc= Subject key identifier: 02:78:1A:8B:7B:9A:D0:5E:CE:A2:37:DF:A2:A8:C6:27:90:1A:88:D9 Certificate issuer: /CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Certificate serial: 0AE24AF03D7DFC9911F096A2C0E3C72EEAA5B124 Authority key identifier: 95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa Signing time: Sun 03 May 2026 02:49:54 +0000 ROA not before: Sun 03 May 2026 02:44:54 +0000 ROA not after: Sun 02 May 2027 02:49:54 +0000 asID: 24523 IP address blocks: 43.247.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:e2:4a:f0:3d:7d:fc:99:11:f0:96:a2:c0:e3:c7:2e:ea:a5:b1:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Validity Not Before: May 3 02:44:54 2026 GMT Not After : May 2 02:49:54 2027 GMT Subject: CN=02781A8B7B9AD05ECEA237DFA2A8C627901A88D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:22:76:ff:6a:fc:e6:8c:3a:3e:56:35:21:91: 26:87:18:fd:cf:be:e9:1f:52:21:fc:71:7e:ad:3a: 8d:68:19:05:6d:64:7f:7c:57:69:f4:63:9b:8e:c4: 0b:d9:bb:1d:0d:dd:d9:34:0b:28:15:09:90:de:90: 08:56:6e:12:5c:38:30:7e:da:bd:a9:8f:55:e0:32: fe:1e:6f:0a:f8:f8:d9:72:5e:e2:d1:5b:67:c8:47: 0d:b1:58:b4:2e:dc:6b:27:22:40:c7:fc:5e:a2:37: d1:8e:37:73:31:7f:37:ae:b3:f1:e9:42:a0:f1:b2: a6:01:d6:c7:6e:6c:f8:20:05:9a:d7:23:0a:08:96: 24:a4:2a:b7:9f:92:0b:e6:ad:66:ef:e5:c0:87:bd: 66:a4:5e:2e:7f:c2:d1:29:12:c6:0f:ed:b9:4b:5c: d2:a7:c8:53:9c:9f:76:d3:5a:f2:08:26:bb:e1:b8: 31:79:57:16:68:3c:05:d2:60:66:d4:54:eb:3d:e3: 91:0b:ef:fb:70:b5:a5:57:84:b1:26:2f:b9:d3:81: a2:f5:46:74:5b:90:9f:07:78:89:02:1b:36:d3:e7: ee:68:b7:14:f6:0e:72:a4:91:c1:fc:c1:97:5c:d7: d9:67:86:27:88:9a:c9:33:03:01:35:ff:a9:4f:3c: d8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:78:1A:8B:7B:9A:D0:5E:CE:A2:37:DF:A2:A8:C6:27:90:1A:88:D9 X509v3 Authority Key Identifier: keyid:95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.20.0/22 Signature Algorithm: sha256WithRSAEncryption 94:95:30:53:c3:3e:42:69:e5:99:1f:da:fc:cc:7a:8e:7d:a0: a6:2c:54:d0:b0:92:48:f9:f1:c6:1d:ed:31:ee:3c:0b:a6:c3: 58:b0:65:21:44:06:d4:76:c2:f0:48:b1:51:d6:7a:3f:1a:e5: 73:14:bc:0c:3f:9e:40:ef:bc:c2:d4:a6:02:50:ba:f7:61:f3: aa:5f:4a:a8:76:99:b2:50:37:b6:e8:ab:2b:f8:00:50:89:62: 6d:dd:c5:3f:b0:ee:12:e9:6c:3a:a7:5a:59:12:b5:e2:1c:d3: d9:90:e0:5f:45:ff:0c:bd:b7:5c:d6:98:00:1d:17:e4:01:f2: e8:13:6f:c3:a1:47:38:ee:a8:2c:a4:75:0c:ae:34:25:87:40: ed:45:6f:76:8c:f8:74:e4:c5:75:fd:04:2e:2e:f8:0b:33:85: 95:4f:12:87:35:93:67:98:96:7a:10:dd:7e:68:45:07:d4:81: e0:eb:10:24:6a:f3:09:a6:58:5f:9b:7b:4d:0d:76:26:72:c4: 4a:7a:1d:f3:b0:c2:bd:d4:43:2f:0a:54:0e:d0:9a:8f:21:3f: 34:8b:71:ba:78:b7:24:7b:d0:66:f6:20:c9:02:4b:f0:40:d1: 33:c7:d7:70:69:4c:43:a4:bb:34:fa:ec:82:51:57:89:2e:0c: 93:32:75:b7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCuJK8D19/JkR8JaiwOPHLuqlsSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU0MUY3QTc0OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVG MjczMzkyMjAeFw0yNjA1MDMwMjQ0NTRaFw0yNzA1MDIwMjQ5NTRaMDMxMTAvBgNV BAMTKDAyNzgxQThCN0I5QUQwNUVDRUEyMzdERkEyQThDNjI3OTAxQTg4RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbInb/avzmjDo+VjUhkSaHGP3P vukfUiH8cX6tOo1oGQVtZH98V2n0Y5uOxAvZux0N3dk0CygVCZDekAhWbhJcODB+ 2r2pj1XgMv4ebwr4+NlyXuLRW2fIRw2xWLQu3GsnIkDH/F6iN9GON3Mxfzeus/Hp QqDxsqYB1sdubPggBZrXIwoIliSkKrefkgvmrWbv5cCHvWakXi5/wtEpEsYP7blL XNKnyFOcn3bTWvIIJrvhuDF5VxZoPAXSYGbUVOs945EL7/twtaVXhLEmL7nTgaL1 RnRbkJ8HeIkCGzbT5+5otxT2DnKkkcH8wZdc19lnhieImskzAwE1/6lPPNhzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUAngai3ua0F7OojffoqjGJ5AaiNkwHwYDVR0j BBgwFoAUlUH3p0laqJGKb+FQFss5bvJzOSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGM2Njc3NjktODBkYy00MDkzLWI1ZjctZGZlN2M1NzIwNDg2LzAvOTU0MUY3QTc0 OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVGMjczMzkyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTQxRjdBNzQ5NUFBODkxOEE2RkUxNTAxNkNCMzk2RUYyNzMz OTIyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9xQwDQYJKoZIhvcN AQELBQADggEBAJSVMFPDPkJp5Zkf2vzMeo59oKYsVNCwkkj58cYd7THuPAumw1iw ZSFEBtR2wvBIsVHWej8a5XMUvAw/nkDvvMLUpgJQuvdh86pfSqh2mbJQN7boqyv4 AFCJYm3dxT+w7hLpbDqnWlkSteIc09mQ4F9F/wy9t1zWmAAdF+QB8ugTb8OhRzju qCykdQyuNCWHQO1Fb3aM+HTkxXX9BC4u+AszhZVPEoc1k2eYlnoQ3X5oRQfUgeDr ECRq8wmmWF+be00NdiZyxEp6HfOwwr3UQy8KVA7Qmo8hPzSLcbp4tyR70Gb2IMkC S/BA0TPH13BpTEOkuzT67IJRV4kuDJMydbc= -----END CERTIFICATE-----Generated at Wed May 13 09:15:09 2026 by rpki-client