$ rpki-client -vvf rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32312e302f32342d3234203d3e20313331373830.roa File: 34332e3234372e32312e302f32342d3234203d3e20313331373830.roa (raw, json) Hash identifier: 36nZndVPopPsPLeopECZwGolgADhQtpH4A7gMxfmAgY= Subject key identifier: 93:5A:A8:09:6B:E0:64:78:DA:B6:93:8E:AA:8B:CB:29:17:F4:69:5F Certificate issuer: /CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Certificate serial: 7C48FB34ECC388F92E1F79833BD014FB53081021 Authority key identifier: 95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32312e302f32342d3234203d3e20313331373830.roa Signing time: Sun 03 May 2026 02:49:52 +0000 ROA not before: Sun 03 May 2026 02:44:52 +0000 ROA not after: Sun 02 May 2027 02:49:52 +0000 asID: 131780 IP address blocks: 43.247.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:48:fb:34:ec:c3:88:f9:2e:1f:79:83:3b:d0:14:fb:53:08:10:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9541F7A7495AA8918A6FE15016CB396EF2733922 Validity Not Before: May 3 02:44:52 2026 GMT Not After : May 2 02:49:52 2027 GMT Subject: CN=935AA8096BE06478DAB6938EAA8BCB2917F4695F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:84:49:f8:83:7c:8c:e1:2f:a4:9f:08:c6:19: 58:1f:c5:cc:64:31:6c:e3:0b:64:d8:25:d6:ee:8e: 65:ec:3d:44:3f:29:a1:50:ed:3b:3c:ab:b1:ff:11: 97:a7:6d:e1:f7:93:9d:93:e8:53:00:9f:c4:e9:b3: c2:d8:d1:b3:06:4a:5f:76:d9:de:37:be:2a:f5:a9: ea:65:88:c0:8d:23:38:f9:32:76:d8:27:65:b3:4e: fe:44:5b:a6:b2:c0:53:22:98:bd:40:98:f0:f4:66: 0c:15:33:5f:e2:09:2e:83:31:c2:44:0a:c7:0d:58: b9:10:0c:5f:bf:a9:25:d5:97:88:e3:6c:2a:2e:1a: 77:cb:18:d7:63:19:b7:5b:6b:4a:b1:96:b6:20:45: 41:5b:71:93:97:db:ff:4e:16:52:7b:6b:13:42:63: a1:53:0a:6f:b3:d8:38:38:e0:e9:39:e4:69:92:83: 5b:d8:e2:9f:c0:48:bc:c3:fe:85:de:e5:d7:86:d4: 74:bb:f4:46:20:42:51:1e:49:46:ac:5f:9c:f4:b0: 0e:61:5d:af:24:0c:1f:4c:70:14:db:0b:38:ab:1c: ae:27:f3:0c:92:26:61:94:ae:2a:ac:04:04:c0:0e: be:b3:5c:2e:ba:db:a7:35:b5:16:18:89:8e:e4:07: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5A:A8:09:6B:E0:64:78:DA:B6:93:8E:AA:8B:CB:29:17:F4:69:5F X509v3 Authority Key Identifier: keyid:95:41:F7:A7:49:5A:A8:91:8A:6F:E1:50:16:CB:39:6E:F2:73:39:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/9541F7A7495AA8918A6FE15016CB396EF2733922.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9541F7A7495AA8918A6FE15016CB396EF2733922.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32312e302f32342d3234203d3e20313331373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.21.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:41:e5:98:55:8f:42:a2:21:37:8f:75:58:d0:26:8a:df:b3: 86:5f:13:10:4f:1a:1c:40:d1:70:ce:59:46:18:76:fd:85:ea: 7f:c0:6e:30:ba:e3:6d:53:5e:93:7d:12:07:3d:5d:d7:ea:cf: 1c:cb:1d:3f:43:98:c4:80:fc:34:d0:79:c5:5a:c7:c4:55:5d: 28:d2:f6:81:39:ff:8e:b4:3c:2d:b1:4d:d5:04:af:e2:ec:e9: e9:6a:7c:e0:81:3c:c2:ef:e2:59:d7:4d:a1:a6:58:c4:92:37: 27:dd:23:ef:ce:4e:49:71:c7:1a:6d:a2:47:fe:a1:7f:16:8b: 40:71:d7:b9:5b:03:c8:e7:3b:cf:00:9f:a8:67:8b:1f:ad:55: 07:d6:4e:86:d0:2b:c5:d3:b8:30:04:4a:11:3f:67:f8:07:68: ef:6b:05:98:6c:60:ee:56:00:f4:ac:6d:ab:2c:b0:75:28:b7: 7b:25:bd:29:41:2b:b7:54:f7:6f:ed:36:9b:07:1d:a3:30:0e: df:f8:3e:bd:e2:b4:42:73:1e:58:14:ee:dd:b7:e5:5f:be:da: e8:f4:48:e7:13:74:3d:d0:29:1c:08:68:1f:7c:7f:8a:ed:a3: 96:4e:a1:39:a9:6b:e2:9b:0a:e7:29:c5:a1:d7:e5:45:7d:84: a8:f6:38:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfEj7NOzDiPkuH3mDO9AU+1MIECEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU0MUY3QTc0OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVG MjczMzkyMjAeFw0yNjA1MDMwMjQ0NTJaFw0yNzA1MDIwMjQ5NTJaMDMxMTAvBgNV BAMTKDkzNUFBODA5NkJFMDY0NzhEQUI2OTM4RUFBOEJDQjI5MTdGNDY5NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdhEn4g3yM4S+knwjGGVgfxcxk MWzjC2TYJdbujmXsPUQ/KaFQ7Ts8q7H/EZenbeH3k52T6FMAn8Tps8LY0bMGSl92 2d43vir1qepliMCNIzj5MnbYJ2WzTv5EW6aywFMimL1AmPD0ZgwVM1/iCS6DMcJE CscNWLkQDF+/qSXVl4jjbCouGnfLGNdjGbdba0qxlrYgRUFbcZOX2/9OFlJ7axNC Y6FTCm+z2Dg44Ok55GmSg1vY4p/ASLzD/oXe5deG1HS79EYgQlEeSUasX5z0sA5h Xa8kDB9McBTbCzirHK4n8wySJmGUriqsBATADr6zXC6626c1tRYYiY7kB6rpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk1qoCWvgZHjatpOOqovLKRf0aV8wHwYDVR0j BBgwFoAUlUH3p0laqJGKb+FQFss5bvJzOSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGM2Njc3NjktODBkYy00MDkzLWI1ZjctZGZlN2M1NzIwNDg2LzAvOTU0MUY3QTc0 OTVBQTg5MThBNkZFMTUwMTZDQjM5NkVGMjczMzkyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTQxRjdBNzQ5NUFBODkxOEE2RkUxNTAxNkNCMzk2RUYyNzMz OTIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv3FTANBgkqhkiG 9w0BAQsFAAOCAQEAD0HlmFWPQqIhN491WNAmit+zhl8TEE8aHEDRcM5ZRhh2/YXq f8BuMLrjbVNek30SBz1d1+rPHMsdP0OYxID8NNB5xVrHxFVdKNL2gTn/jrQ8LbFN 1QSv4uzp6Wp84IE8wu/iWddNoaZYxJI3J90j785OSXHHGm2iR/6hfxaLQHHXuVsD yOc7zwCfqGeLH61VB9ZOhtArxdO4MARKET9n+Ado72sFmGxg7lYA9KxtqyywdSi3 eyW9KUErt1T3b+02mwcdozAO3/g+veK0QnMeWBTu3bflX77a6PRI5xN0PdApHAho H3x/iu2jlk6hOalr4psK5ynFodflRX2EqPY4vw== -----END CERTIFICATE-----Generated at Wed May 13 09:15:04 2026 by rpki-client