$ rpki-client -vvf rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32332d3233203d3e203633383237.roa File: 34332e3234332e3138362e302f32332d3233203d3e203633383237.roa (raw, json) Hash identifier: qqj+W0YE7lPcQQyjA0h+/ikJ5uDXNaW6laVzLp1Qk3I= Subject key identifier: F1:F5:CD:EB:57:25:11:48:C3:BE:FB:A4:AB:A2:1E:69:A8:A8:86:9C Certificate issuer: /CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Certificate serial: 621C3137CBE553D531E07EDA7842B7A81815BF86 Authority key identifier: 08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32332d3233203d3e203633383237.roa Signing time: Sun 03 May 2026 02:52:00 +0000 ROA not before: Sun 03 May 2026 02:47:00 +0000 ROA not after: Sun 02 May 2027 02:52:00 +0000 asID: 63827 IP address blocks: 43.243.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:1c:31:37:cb:e5:53:d5:31:e0:7e:da:78:42:b7:a8:18:15:bf:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Validity Not Before: May 3 02:47:00 2026 GMT Not After : May 2 02:52:00 2027 GMT Subject: CN=F1F5CDEB57251148C3BEFBA4ABA21E69A8A8869C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d1:99:4d:b1:c8:a2:87:e6:e0:72:33:34:bd: e3:2a:5f:f6:3e:da:9d:1a:f9:4b:fa:7c:26:c3:0f: 5b:df:b5:cd:88:07:d1:1a:70:8b:db:35:e8:66:24: 18:8a:4c:eb:dc:34:66:60:a3:62:c8:14:46:8f:21: f1:9f:9f:31:b4:31:1f:a5:29:29:eb:60:8a:70:8c: 95:65:93:8a:de:27:d4:98:33:80:6e:55:32:c5:26: c1:5d:85:e5:19:a8:bf:04:e5:6a:60:b7:c9:65:02: 50:54:46:c9:e3:9e:77:69:ca:26:36:9c:a4:76:b2: 81:d7:36:4c:ab:bc:7f:8c:b1:b8:bb:55:88:47:53: 2e:cc:e5:74:02:78:e7:bf:35:21:75:83:5c:96:09: a0:62:f2:fb:08:93:7c:e7:3a:30:31:e0:41:d2:4e: f4:1a:7e:af:1b:f1:ef:f0:38:2a:32:5d:77:4d:20: f2:92:74:8d:f4:40:bf:d6:f2:a7:6e:c1:52:c7:e6: 2b:6d:1a:a0:d6:c4:1e:70:9d:b6:a4:29:ef:15:2c: 77:e6:ac:3b:df:1b:27:01:9e:32:af:ab:94:fd:1e: 02:2e:fb:a2:7f:9b:21:10:b5:54:e3:32:ad:0b:ae: 10:48:4c:f4:cb:89:27:e5:f3:07:09:ce:4a:74:e2: 05:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F5:CD:EB:57:25:11:48:C3:BE:FB:A4:AB:A2:1E:69:A8:A8:86:9C X509v3 Authority Key Identifier: keyid:08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32332d3233203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.186.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:93:74:10:ae:e1:53:66:35:58:fd:1f:b1:c6:7b:86:74:35: e1:e7:24:5d:52:4c:16:72:d3:b8:1f:01:3f:c6:b4:2c:91:3e: 2e:9f:b6:5b:48:a6:25:e9:52:2d:13:2d:f0:62:80:7c:a9:7d: b1:e2:10:77:69:4a:be:ef:ee:d2:3f:45:f7:52:a1:b4:42:22: 61:fe:bb:6f:8a:5b:6b:99:df:d6:ff:f0:43:3d:ad:3c:47:98: 9f:45:f1:69:94:ad:34:82:a7:03:52:36:2f:1d:55:8b:7e:5b: 50:71:8e:92:5e:9e:f9:51:43:e4:2d:f9:57:e3:eb:48:d8:30: 0a:38:4c:76:b1:26:46:75:c5:ae:f8:32:b7:cb:92:b4:77:89: 5c:86:24:1d:48:80:e8:c9:79:60:52:e1:da:98:af:9b:42:96: 28:e9:cd:89:cb:38:8f:29:90:c9:e7:5b:63:3e:8d:ee:a7:aa: 27:1b:50:bf:b0:1b:f3:68:18:0c:52:ed:3e:47:d6:35:d2:fa: 2e:e0:c4:c9:71:47:6d:6c:cc:df:2d:08:39:46:59:d0:bd:13: 93:bd:db:77:96:7f:d6:40:56:e1:17:fc:85:fb:98:07:31:31: bb:34:c3:10:51:33:a1:ab:fa:81:f7:71:2b:9c:1d:80:8f:ef: 85:9e:92:73 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYhwxN8vlU9Ux4H7aeEK3qBgVv4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEM0Q1NTZBOTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0 MDI5RTZDNDAeFw0yNjA1MDMwMjQ3MDBaFw0yNzA1MDIwMjUyMDBaMDMxMTAvBgNV BAMTKEYxRjVDREVCNTcyNTExNDhDM0JFRkJBNEFCQTIxRTY5QThBODg2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv0ZlNsciih+bgcjM0veMqX/Y+ 2p0a+Uv6fCbDD1vftc2IB9EacIvbNehmJBiKTOvcNGZgo2LIFEaPIfGfnzG0MR+l KSnrYIpwjJVlk4reJ9SYM4BuVTLFJsFdheUZqL8E5Wpgt8llAlBURsnjnndpyiY2 nKR2soHXNkyrvH+Msbi7VYhHUy7M5XQCeOe/NSF1g1yWCaBi8vsIk3znOjAx4EHS TvQafq8b8e/wOCoyXXdNIPKSdI30QL/W8qduwVLH5ittGqDWxB5wnbakKe8VLHfm rDvfGycBnjKvq5T9HgIu+6J/myEQtVTjMq0LrhBITPTLiSfl8wcJzkp04gU7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8fXN61clEUjDvvukq6IeaaiohpwwHwYDVR0j BBgwFoAUCNPVVqmJ4OR37+uCQoVNekAp5sQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFhNjg3MTItMWQ5YS00MTQzLTgyZjEtMWM4MmMzMzE2NWVhLzAvMDhEM0Q1NTZB OTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0MDI5RTZDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOEQzRDU1NkE5ODlFMEU0NzdFRkVCODI0Mjg1NEQ3QTQwMjlF NkM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvzujANBgkqhkiG 9w0BAQsFAAOCAQEAbZN0EK7hU2Y1WP0fscZ7hnQ14eckXVJMFnLTuB8BP8a0LJE+ Lp+2W0imJelSLRMt8GKAfKl9seIQd2lKvu/u0j9F91KhtEIiYf67b4pba5nf1v/w Qz2tPEeYn0XxaZStNIKnA1I2Lx1Vi35bUHGOkl6e+VFD5C35V+PrSNgwCjhMdrEm RnXFrvgyt8uStHeJXIYkHUiA6Ml5YFLh2pivm0KWKOnNics4jymQyedbYz6N7qeq JxtQv7Ab82gYDFLtPkfWNdL6LuDEyXFHbWzM3y0IOUZZ0L0Tk73bd5Z/1kBW4Rf8 hfuYBzExuzTDEFEzoav6gfdxK5wdgI/vhZ6Scw== -----END CERTIFICATE-----Generated at Wed May 13 12:40:15 2026 by rpki-client