$ rpki-client -vvf rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa File: 34332e3234332e3138342e302f32332d3233203d3e203633383237.roa (raw, json) Hash identifier: jBX/qKx/JGa1Du2q2fgwV/fWVjEIgXCKAL9/GZt06jk= Subject key identifier: E9:8C:0F:0B:D1:0E:23:05:B8:D1:5B:6B:38:70:0F:36:89:23:C3:78 Certificate issuer: /CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Certificate serial: 4D376210D6FCD814690F3F6E0782E862D4084E40 Authority key identifier: 08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa Signing time: Sun 03 May 2026 02:51:58 +0000 ROA not before: Sun 03 May 2026 02:46:58 +0000 ROA not after: Sun 02 May 2027 02:51:58 +0000 asID: 63827 IP address blocks: 43.243.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:37:62:10:d6:fc:d8:14:69:0f:3f:6e:07:82:e8:62:d4:08:4e:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Validity Not Before: May 3 02:46:58 2026 GMT Not After : May 2 02:51:58 2027 GMT Subject: CN=E98C0F0BD10E2305B8D15B6B38700F368923C378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:43:93:30:3b:e3:00:1c:f0:98:59:1a:3e:bd: d1:8e:21:57:ca:d5:af:48:36:98:f1:c7:f5:38:2d: b1:a0:4a:72:ff:87:11:9f:40:a3:e6:f8:4f:6f:4b: 34:19:23:0d:f7:02:23:e0:cd:7f:26:b4:66:0f:b5: a1:c7:13:ce:cf:d2:c8:98:0f:bf:50:67:a2:6f:60: 9a:9b:a3:90:d2:2b:4c:2a:d6:94:7a:49:96:33:af: 9a:ee:2a:2c:01:b7:7a:60:7b:69:26:0b:ae:85:e8: 37:68:8b:32:79:f4:b5:f6:8c:5c:87:df:69:72:ec: cd:5a:b9:b8:11:21:a9:f6:9c:9b:75:ed:95:f7:cb: 18:55:c7:a0:bc:dc:1d:4d:d6:b6:d3:77:54:45:2b: 6b:09:e7:bf:45:ef:85:e2:6e:52:a9:af:65:b9:9e: 92:81:68:59:17:a5:cf:1c:06:68:96:26:7e:05:6d: 71:d2:16:1c:6c:db:f3:6f:d3:6a:85:d9:30:08:dd: 1c:17:a8:6e:bb:94:58:40:de:2c:8d:0e:95:d7:8c: 1a:8a:5a:47:7f:fa:41:92:62:87:4b:6e:42:e6:2e: 69:1a:0e:f3:c7:5c:a7:de:0c:db:04:dc:42:f5:28: 72:09:de:0e:53:04:be:e7:31:e3:9e:d7:ca:4a:57: 28:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8C:0F:0B:D1:0E:23:05:B8:D1:5B:6B:38:70:0F:36:89:23:C3:78 X509v3 Authority Key Identifier: keyid:08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.184.0/23 Signature Algorithm: sha256WithRSAEncryption 80:36:38:68:07:b5:f5:c2:0a:74:6b:21:f2:82:74:c2:f7:fb: 17:cd:6e:fc:c4:e2:5b:22:39:f4:57:5d:a2:2b:de:d7:83:07: ac:5a:bb:ed:cc:78:c1:79:8b:fe:da:e9:59:31:08:69:5c:52: 41:37:d8:02:70:7f:78:30:ab:c0:37:e2:33:15:a6:8b:13:67: ee:38:b0:a2:5e:dd:bd:12:eb:9d:c0:e5:3c:1a:15:e6:04:21: f1:1f:04:3b:0b:7c:c8:33:07:af:65:a5:b7:0f:38:dc:11:d6: 56:01:1e:9d:de:b2:e8:40:74:ec:78:b6:5b:1a:20:80:16:63: dd:89:21:9c:55:ee:df:02:60:80:87:58:b5:b2:d6:1b:ed:e2: 12:93:fc:f5:74:58:32:6d:54:18:49:30:91:62:b2:44:bc:fc: 1b:8d:2a:1e:bc:e4:63:29:b7:4c:74:a6:bf:98:24:71:f6:56: 9c:89:4f:cb:2a:d1:24:3d:bc:3e:56:f6:7a:94:78:c1:5c:3b: 33:9c:67:f9:03:21:1e:08:be:fb:00:0d:57:30:23:95:85:29: 68:af:1f:4b:fc:35:16:b1:c1:2b:9d:f9:dd:cc:19:cd:26:e8: 6b:04:bc:09:aa:92:aa:ef:40:73:89:02:ea:45:c9:0c:a2:2a: 97:bc:4b:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTTdiENb82BRpDz9uB4LoYtQITkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEM0Q1NTZBOTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0 MDI5RTZDNDAeFw0yNjA1MDMwMjQ2NThaFw0yNzA1MDIwMjUxNThaMDMxMTAvBgNV BAMTKEU5OEMwRjBCRDEwRTIzMDVCOEQxNUI2QjM4NzAwRjM2ODkyM0MzNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBQ5MwO+MAHPCYWRo+vdGOIVfK 1a9INpjxx/U4LbGgSnL/hxGfQKPm+E9vSzQZIw33AiPgzX8mtGYPtaHHE87P0siY D79QZ6JvYJqbo5DSK0wq1pR6SZYzr5ruKiwBt3pge2kmC66F6DdoizJ59LX2jFyH 32ly7M1aubgRIan2nJt17ZX3yxhVx6C83B1N1rbTd1RFK2sJ579F74XiblKpr2W5 npKBaFkXpc8cBmiWJn4FbXHSFhxs2/Nv02qF2TAI3RwXqG67lFhA3iyNDpXXjBqK Wkd/+kGSYodLbkLmLmkaDvPHXKfeDNsE3EL1KHIJ3g5TBL7nMeOe18pKVyhZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6YwPC9EOIwW40VtrOHAPNokjw3gwHwYDVR0j BBgwFoAUCNPVVqmJ4OR37+uCQoVNekAp5sQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFhNjg3MTItMWQ5YS00MTQzLTgyZjEtMWM4MmMzMzE2NWVhLzAvMDhEM0Q1NTZB OTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0MDI5RTZDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOEQzRDU1NkE5ODlFMEU0NzdFRkVCODI0Mjg1NEQ3QTQwMjlF NkM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvzuDANBgkqhkiG 9w0BAQsFAAOCAQEAgDY4aAe19cIKdGsh8oJ0wvf7F81u/MTiWyI59Fddoive14MH rFq77cx4wXmL/trpWTEIaVxSQTfYAnB/eDCrwDfiMxWmixNn7jiwol7dvRLrncDl PBoV5gQh8R8EOwt8yDMHr2Wltw843BHWVgEend6y6EB07Hi2WxoggBZj3YkhnFXu 3wJggIdYtbLWG+3iEpP89XRYMm1UGEkwkWKyRLz8G40qHrzkYym3THSmv5gkcfZW nIlPyyrRJD28Plb2epR4wVw7M5xn+QMhHgi++wANVzAjlYUpaK8fS/w1FrHBK535 3cwZzSboawS8CaqSqu9Ac4kC6kXJDKIql7xLmg== -----END CERTIFICATE-----Generated at Wed May 13 12:40:16 2026 by rpki-client