$ rpki-client -vvf rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138352e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138352e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: Z/jdDipYuv3lK5eimMJ72Z70XTynWpBlz182XUeNc+E= Subject key identifier: DA:72:6D:83:CF:FA:27:62:98:02:BA:6A:AD:75:19:83:EF:A9:52:33 Certificate issuer: /CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Certificate serial: 3FE890938586DD515DA687490B262143B0886E47 Authority key identifier: 08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138352e302f32342d3234203d3e203633383237.roa Signing time: Sun 03 May 2026 02:52:01 +0000 ROA not before: Sun 03 May 2026 02:47:01 +0000 ROA not after: Sun 02 May 2027 02:52:01 +0000 asID: 63827 IP address blocks: 43.243.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e8:90:93:85:86:dd:51:5d:a6:87:49:0b:26:21:43:b0:88:6e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Validity Not Before: May 3 02:47:01 2026 GMT Not After : May 2 02:52:01 2027 GMT Subject: CN=DA726D83CFFA27629802BA6AAD751983EFA95233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2b:c7:f2:5f:22:f2:60:bc:f8:e2:79:9e:fb: 7f:55:70:34:49:16:b5:da:70:85:4d:4b:2c:aa:d3: 35:10:47:8d:5f:82:bd:9b:d8:ff:b5:11:0a:4a:5c: ac:52:8b:37:20:ed:25:08:1f:6c:fc:d9:cf:26:de: 53:a3:a3:48:ab:5d:ed:ac:da:43:92:e9:3e:7e:37: df:d4:54:5a:c1:34:0f:5f:89:51:5e:a7:db:cc:5a: 9a:fe:e5:26:c8:1b:6b:d8:ce:e1:45:77:93:a2:84: f6:0f:a4:d2:31:0a:ce:0e:80:1d:56:7e:d3:a0:57: 2c:6c:7a:b8:14:67:1b:24:59:d9:ce:8b:bf:77:9d: 2e:3d:f3:56:16:28:ac:15:18:c3:92:1e:5a:7e:63: 99:a1:83:5d:28:32:f4:f6:58:97:3f:9f:7c:69:54: cd:87:4d:a7:60:ad:30:c7:a0:50:bb:b0:90:b5:24: 06:ad:02:05:03:3c:ba:95:86:34:1b:c8:97:2b:43: d7:1d:c9:42:b6:ec:14:30:e2:c0:73:d8:7c:25:38: 6c:db:bd:c8:8f:5f:61:b8:c9:34:54:c2:71:29:98: 80:77:09:af:59:39:a9:2d:d7:a4:16:6b:a3:3d:27: 14:f2:2c:f1:7c:40:26:06:29:67:02:5a:4c:5a:ac: 2f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:72:6D:83:CF:FA:27:62:98:02:BA:6A:AD:75:19:83:EF:A9:52:33 X509v3 Authority Key Identifier: keyid:08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138352e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.185.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:3a:1e:5e:d5:71:e7:9d:aa:a4:d0:6d:75:08:63:d3:bd:a0: f8:5f:42:ef:0c:a0:71:a8:a9:d0:fe:b1:49:eb:23:0a:7f:19: f7:2b:59:45:6a:c0:5d:e5:15:74:f0:ae:41:12:7e:4f:45:69: d1:f1:96:83:c8:e3:89:82:bf:13:3d:ea:9c:81:1e:ab:92:83: f3:7b:cb:d1:0b:4e:13:63:82:6c:9b:cc:d8:f3:fc:dc:81:5c: 41:68:61:16:c5:c2:47:89:d9:0f:b0:31:d7:62:cb:af:72:05: 4b:73:1b:57:c9:b8:10:2e:dc:30:de:c0:31:1c:05:a9:1a:ec: 80:c1:71:f7:d8:ad:88:65:6d:2e:a6:b5:20:46:9d:a1:2a:82: ba:5d:4d:59:24:a2:e1:42:b5:68:da:87:08:e3:f2:91:96:65: 13:ee:4f:12:09:e3:c1:76:53:f5:70:06:d0:7f:fe:7c:49:a8: f8:90:85:cb:a6:1d:02:28:27:37:0c:8d:5c:a5:76:20:e9:e1: 1d:68:bf:8e:d9:a3:02:6e:2f:4f:06:9a:de:10:c7:68:c3:36: 53:cf:f7:48:d5:7c:34:fe:38:aa:57:05:64:6f:93:bb:09:4d: 46:f9:a6:b9:27:c2:be:9c:44:c5:37:60:fa:4a:47:b2:fa:da: f5:fa:37:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP+iQk4WG3VFdpodJCyYhQ7CIbkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEM0Q1NTZBOTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0 MDI5RTZDNDAeFw0yNjA1MDMwMjQ3MDFaFw0yNzA1MDIwMjUyMDFaMDMxMTAvBgNV BAMTKERBNzI2RDgzQ0ZGQTI3NjI5ODAyQkE2QUFENzUxOTgzRUZBOTUyMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqK8fyXyLyYLz44nme+39VcDRJ FrXacIVNSyyq0zUQR41fgr2b2P+1EQpKXKxSizcg7SUIH2z82c8m3lOjo0irXe2s 2kOS6T5+N9/UVFrBNA9fiVFep9vMWpr+5SbIG2vYzuFFd5OihPYPpNIxCs4OgB1W ftOgVyxsergUZxskWdnOi793nS4981YWKKwVGMOSHlp+Y5mhg10oMvT2WJc/n3xp VM2HTadgrTDHoFC7sJC1JAatAgUDPLqVhjQbyJcrQ9cdyUK27BQw4sBz2HwlOGzb vciPX2G4yTRUwnEpmIB3Ca9ZOakt16QWa6M9JxTyLPF8QCYGKWcCWkxarC8NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2nJtg8/6J2KYArpqrXUZg++pUjMwHwYDVR0j BBgwFoAUCNPVVqmJ4OR37+uCQoVNekAp5sQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFhNjg3MTItMWQ5YS00MTQzLTgyZjEtMWM4MmMzMzE2NWVhLzAvMDhEM0Q1NTZB OTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0MDI5RTZDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOEQzRDU1NkE5ODlFMEU0NzdFRkVCODI0Mjg1NEQ3QTQwMjlF NkM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuTANBgkqhkiG 9w0BAQsFAAOCAQEATToeXtVx552qpNBtdQhj072g+F9C7wygcaip0P6xSesjCn8Z 9ytZRWrAXeUVdPCuQRJ+T0Vp0fGWg8jjiYK/Ez3qnIEeq5KD83vL0QtOE2OCbJvM 2PP83IFcQWhhFsXCR4nZD7Ax12LLr3IFS3MbV8m4EC7cMN7AMRwFqRrsgMFx99it iGVtLqa1IEadoSqCul1NWSSi4UK1aNqHCOPykZZlE+5PEgnjwXZT9XAG0H/+fEmo +JCFy6YdAignNwyNXKV2IOnhHWi/jtmjAm4vTwaa3hDHaMM2U8/3SNV8NP44qlcF ZG+TuwlNRvmmuSfCvpxExTdg+kpHsvra9fo3QA== -----END CERTIFICATE-----Generated at Wed May 13 10:40:28 2026 by rpki-client