$ rpki-client -vvf rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138362e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: L1mfkBCHBmcBCuB53aap/zrreHda+IVKN915WxYStVY= Subject key identifier: 7E:D1:C7:3F:2C:8F:55:53:BA:5E:15:C5:E5:3D:A0:E5:B0:E8:F5:CA Certificate issuer: /CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Certificate serial: 57BE21D5AA26264AA7E03560BC13055207F36111 Authority key identifier: 08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa Signing time: Sun 03 May 2026 02:52:01 +0000 ROA not before: Sun 03 May 2026 02:47:01 +0000 ROA not after: Sun 02 May 2027 02:52:01 +0000 asID: 63827 IP address blocks: 43.243.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:be:21:d5:aa:26:26:4a:a7:e0:35:60:bc:13:05:52:07:f3:61:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D3D556A989E0E477EFEB8242854D7A4029E6C4 Validity Not Before: May 3 02:47:01 2026 GMT Not After : May 2 02:52:01 2027 GMT Subject: CN=7ED1C73F2C8F5553BA5E15C5E53DA0E5B0E8F5CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c4:34:0c:9b:92:c9:9b:6b:0f:84:27:03:4f: 9c:e6:9e:4e:b6:dc:5f:d2:cc:50:41:d1:03:60:09: f8:6e:8a:9d:21:a1:61:e3:91:60:91:a0:db:fe:9e: 02:ef:5a:f0:48:86:82:a3:01:dd:94:7a:8d:12:d5: 47:91:cf:7b:64:8f:85:b9:b5:a6:4b:7a:db:f9:38: b9:07:47:57:9d:6f:ca:0d:5e:60:a6:c8:fd:05:91: b7:5c:df:a8:10:d6:ea:98:1e:7c:a5:55:29:72:c5: a3:a9:72:4b:71:72:f4:f9:31:04:6d:29:ef:b1:c2: 81:d5:cd:6c:60:6b:ce:61:eb:3b:84:3f:6c:43:4e: 80:1f:45:8b:4d:15:1e:08:dd:59:92:ad:1b:a5:28: af:bb:99:13:5f:b1:a9:3d:3c:3f:d2:d5:57:e1:1f: b5:99:6b:f3:cd:75:9e:b0:84:67:74:d3:fe:96:6c: 94:9c:7f:2f:eb:70:e3:99:24:3b:c4:78:32:f1:b2: 04:8c:15:20:7e:a8:e0:38:8d:08:ce:0b:a8:22:09: b6:61:cb:cf:e4:b6:e2:90:16:ad:24:79:c3:f9:c1: e3:f4:25:dd:cc:bf:ed:09:63:d2:32:d9:76:c2:0a: 74:83:c1:ff:8d:b7:4f:5f:33:71:40:4e:18:63:7e: 55:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D1:C7:3F:2C:8F:55:53:BA:5E:15:C5:E5:3D:A0:E5:B0:E8:F5:CA X509v3 Authority Key Identifier: keyid:08:D3:D5:56:A9:89:E0:E4:77:EF:EB:82:42:85:4D:7A:40:29:E6:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/08D3D556A989E0E477EFEB8242854D7A4029E6C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/08D3D556A989E0E477EFEB8242854D7A4029E6C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.186.0/24 Signature Algorithm: sha256WithRSAEncryption 17:8f:f2:13:b9:54:78:9f:3a:2c:60:a3:e5:f1:da:0b:36:50: ef:09:92:2f:6a:c4:52:36:44:cb:f8:37:97:49:0f:f4:10:3f: 21:7f:eb:e0:10:88:d7:cc:77:12:91:a6:f3:5e:ad:88:27:14: 7c:10:1a:49:67:56:e3:e1:96:22:b1:cb:e2:e1:cd:20:45:ff: b2:9f:25:59:65:79:0f:7d:20:89:64:2d:22:6a:f5:ac:43:0b: 1a:69:ef:72:2c:98:fc:47:53:4c:d4:0c:82:d7:7e:a0:84:db: 86:41:c6:e9:9b:e8:9b:64:b0:b2:4a:86:6b:21:f6:5c:9f:aa: 17:d5:1b:f3:3a:4d:45:3d:fe:2a:c0:22:95:ce:cb:e8:72:f1: 7d:94:1a:de:bb:c0:3a:d4:88:67:e9:99:61:51:68:cb:5c:5c: 34:88:10:da:22:ab:e8:81:0b:b5:04:6a:e7:de:c0:9c:06:59: 7b:de:4d:3c:a6:8d:29:eb:70:ac:50:61:24:b1:8b:e4:43:4e: 2a:e8:a3:32:22:07:5b:39:e9:91:6d:0d:93:2e:3f:aa:6a:cb: c6:c1:f9:e3:2c:39:8f:10:2a:0b:21:f8:fc:04:62:16:c4:24: a3:9b:8d:d4:7a:ec:df:62:36:23:5e:04:6d:f4:da:c2:89:99: 5a:f8:2d:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV74h1aomJkqn4DVgvBMFUgfzYREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEM0Q1NTZBOTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0 MDI5RTZDNDAeFw0yNjA1MDMwMjQ3MDFaFw0yNzA1MDIwMjUyMDFaMDMxMTAvBgNV BAMTKDdFRDFDNzNGMkM4RjU1NTNCQTVFMTVDNUU1M0RBMEU1QjBFOEY1Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSxDQMm5LJm2sPhCcDT5zmnk62 3F/SzFBB0QNgCfhuip0hoWHjkWCRoNv+ngLvWvBIhoKjAd2Ueo0S1UeRz3tkj4W5 taZLetv5OLkHR1edb8oNXmCmyP0Fkbdc36gQ1uqYHnylVSlyxaOpcktxcvT5MQRt Ke+xwoHVzWxga85h6zuEP2xDToAfRYtNFR4I3VmSrRulKK+7mRNfsak9PD/S1Vfh H7WZa/PNdZ6whGd00/6WbJScfy/rcOOZJDvEeDLxsgSMFSB+qOA4jQjOC6giCbZh y8/ktuKQFq0kecP5weP0Jd3Mv+0JY9Iy2XbCCnSDwf+Nt09fM3FAThhjflXZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUftHHPyyPVVO6XhXF5T2g5bDo9cowHwYDVR0j BBgwFoAUCNPVVqmJ4OR37+uCQoVNekAp5sQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFhNjg3MTItMWQ5YS00MTQzLTgyZjEtMWM4MmMzMzE2NWVhLzAvMDhEM0Q1NTZB OTg5RTBFNDc3RUZFQjgyNDI4NTREN0E0MDI5RTZDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOEQzRDU1NkE5ODlFMEU0NzdFRkVCODI0Mjg1NEQ3QTQwMjlF NkM0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzujANBgkqhkiG 9w0BAQsFAAOCAQEAF4/yE7lUeJ86LGCj5fHaCzZQ7wmSL2rEUjZEy/g3l0kP9BA/ IX/r4BCI18x3EpGm816tiCcUfBAaSWdW4+GWIrHL4uHNIEX/sp8lWWV5D30giWQt Imr1rEMLGmnvciyY/EdTTNQMgtd+oITbhkHG6Zvom2SwskqGayH2XJ+qF9Ub8zpN RT3+KsAilc7L6HLxfZQa3rvAOtSIZ+mZYVFoy1xcNIgQ2iKr6IELtQRq597AnAZZ e95NPKaNKetwrFBhJLGL5ENOKuijMiIHWznpkW0Nky4/qmrLxsH54yw5jxAqCyH4 /ARiFsQko5uN1Hrs32I2I14EbfTawomZWvgtOw== -----END CERTIFICATE-----Generated at Wed May 13 10:40:26 2026 by rpki-client