$ rpki-client -vvf rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138342e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: Yobd92nJofxIMDnwcBhGJ8U1ARrNN8Txd0D+kOpJodU= Subject key identifier: C4:4E:0C:F6:AC:46:2F:1C:99:5B:F1:F1:4A:DC:8D:F1:9B:2E:3E:C3 Certificate issuer: /CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Certificate serial: 7DBC5E23DF41D30675F03DA17338AC3972976172 Authority key identifier: 08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa Signing time: Sun 03 May 2026 02:51:58 +0000 ROA not before: Sun 03 May 2026 02:46:58 +0000 ROA not after: Sun 02 May 2027 02:51:58 +0000 asID: 63827 IP address blocks: 43.243.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:bc:5e:23:df:41:d3:06:75:f0:3d:a1:73:38:ac:39:72:97:61:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Validity Not Before: May 3 02:46:58 2026 GMT Not After : May 2 02:51:58 2027 GMT Subject: CN=C44E0CF6AC462F1C995BF1F14ADC8DF19B2E3EC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:aa:b7:4f:36:fd:f7:fd:e4:a6:9f:a0:64: 74:75:0e:12:d6:8e:5b:68:74:76:0c:6c:41:d8:73: 7f:fb:6a:19:3c:e2:65:c6:27:18:2f:76:1b:5e:8b: 3d:47:77:72:7a:bc:53:a4:3a:27:7c:8b:72:a4:ac: ea:70:45:2a:b0:a5:4c:18:57:0b:a0:7e:06:61:85: 78:d2:58:71:cf:ac:f9:91:77:b6:65:46:5d:7c:79: 58:64:36:58:82:ba:60:6d:d4:bc:84:b8:d9:41:9a: 81:5a:52:67:3e:ec:89:0f:8b:cb:55:40:9b:db:35: 12:87:ff:68:67:cc:1c:65:6e:f7:43:39:f0:d4:47: f7:57:99:62:36:a7:60:89:58:b7:1c:36:1c:78:47: 32:76:53:a4:62:ab:5f:b4:e6:d3:83:80:9f:06:a2: bc:eb:1e:29:77:1d:57:ff:7b:db:f5:64:e2:8d:3a: 1b:4b:ac:18:a3:8f:a1:24:58:3d:29:3c:79:56:fa: c4:e9:f2:19:ae:2c:6e:c2:1f:17:64:fb:b5:ac:8a: d0:99:c2:af:1d:9b:8a:8c:6f:48:e8:33:ec:07:8a: 85:5a:d0:24:2f:d7:ef:e4:1f:eb:33:b8:7a:f9:e5: fe:b2:02:09:6b:5b:cc:64:33:9a:9b:d5:27:e6:06: 70:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4E:0C:F6:AC:46:2F:1C:99:5B:F1:F1:4A:DC:8D:F1:9B:2E:3E:C3 X509v3 Authority Key Identifier: keyid:08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.184.0/24 Signature Algorithm: sha256WithRSAEncryption 39:e9:8c:3f:3d:bd:bd:a8:be:2a:c3:47:d6:ad:86:c9:bd:a7: 61:0c:c7:56:ea:bc:39:4e:7c:2a:bf:e0:20:1d:7e:c7:33:c3: b6:52:cd:66:a2:b2:1c:37:66:ea:02:3c:8c:30:d6:e6:b8:c0: d8:a9:c5:ba:69:34:3c:ab:92:8f:99:29:8b:48:3f:e4:52:0d: f0:9f:c2:11:ad:2a:a5:d8:80:de:f3:06:3b:ac:69:c6:67:3a: 85:ec:74:3e:0c:e1:b2:58:e4:79:5a:71:b4:d6:47:b1:24:b2: df:a2:cc:62:2d:6e:cb:37:11:f5:17:37:aa:28:25:2e:c5:d1: a0:61:66:86:d7:77:b8:d3:c5:b3:91:c8:d5:c0:e6:ce:b7:b1: 2a:0f:cd:b0:2c:02:d0:6d:fc:31:1d:5e:01:1e:75:ba:b5:44: 2c:bd:b9:2b:74:50:6c:4d:e5:70:f3:68:24:14:7a:03:b0:de: 16:af:a4:a7:ab:71:9c:61:15:43:b4:9b:04:84:14:f3:21:a2: dd:7a:b0:1b:8d:47:d5:29:78:ea:9b:82:4e:b3:13:c9:5e:f5: bf:88:cf:ee:a8:c5:34:63:e8:e9:70:81:a1:67:f6:b6:d8:96: 6b:fc:d5:c9:d8:e9:88:16:de:8a:6e:1b:3a:7b:e2:b5:b3:c6: 41:8b:32:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfbxeI99B0wZ18D2hczisOXKXYXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEM0Q1NTZBOTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0 MDI5RTZDNDAeFw0yNjA1MDMwMjQ2NThaFw0yNzA1MDIwMjUxNThaMDMxMTAvBgNV BAMTKEM0NEUwQ0Y2QUM0NjJGMUM5OTVCRjFGMTRBREM4REYxOUIyRTNFQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoZaq3Tzb99/3kpp+gZHR1DhLW jltodHYMbEHYc3/7ahk84mXGJxgvdhteiz1Hd3J6vFOkOid8i3KkrOpwRSqwpUwY VwugfgZhhXjSWHHPrPmRd7ZlRl18eVhkNliCumBt1LyEuNlBmoFaUmc+7IkPi8tV QJvbNRKH/2hnzBxlbvdDOfDUR/dXmWI2p2CJWLccNhx4RzJ2U6Riq1+05tODgJ8G orzrHil3HVf/e9v1ZOKNOhtLrBijj6EkWD0pPHlW+sTp8hmuLG7CHxdk+7WsitCZ wq8dm4qMb0joM+wHioVa0CQv1+/kH+szuHr55f6yAglrW8xkM5qb1SfmBnBXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxE4M9qxGLxyZW/HxStyN8ZsuPsMwHwYDVR0j BBgwFoAUCNPVVqmJ4OR37+uCQoVNekAp5sQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFhNjg3MTItMWQ5YS00MTQzLTgyZjEtMWM4MmMzMzE2NWVhLzAvMDhEM0Q1NTZB OTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0MDI5RTZDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOEQzRDU1NkE5ODlFMEU0NzdFRkVCODI0Mjg1NEQ3QTQwMjlF NkM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuDANBgkqhkiG 9w0BAQsFAAOCAQEAOemMPz29vai+KsNH1q2Gyb2nYQzHVuq8OU58Kr/gIB1+xzPD tlLNZqKyHDdm6gI8jDDW5rjA2KnFumk0PKuSj5kpi0g/5FIN8J/CEa0qpdiA3vMG O6xpxmc6hex0PgzhsljkeVpxtNZHsSSy36LMYi1uyzcR9Rc3qiglLsXRoGFmhtd3 uNPFs5HI1cDmzrexKg/NsCwC0G38MR1eAR51urVELL25K3RQbE3lcPNoJBR6A7De Fq+kp6txnGEVQ7SbBIQU8yGi3XqwG41H1Sl46puCTrMTyV71v4jP7qjFNGPo6XCB oWf2ttiWa/zVydjpiBbeim4bOnvitbPGQYsy1Q== -----END CERTIFICATE-----Generated at Wed May 13 10:40:28 2026 by rpki-client