$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa File: 34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: P/jDOIqhS8TYGh1HRra14jw9lZ/QNU3dPScct8NOxRA= Subject key identifier: 20:31:4E:B1:5A:E0:B3:35:F2:38:FF:88:A6:64:CA:9C:8B:A9:7B:7E Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 772189FB23BB4670BDE6A834E8EEBBE9B115E079 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:09 +0000 ROA not before: Sun 03 May 2026 02:48:09 +0000 ROA not after: Sun 02 May 2027 02:53:09 +0000 asID: 131745 IP address blocks: 49.128.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:21:89:fb:23:bb:46:70:bd:e6:a8:34:e8:ee:bb:e9:b1:15:e0:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:09 2026 GMT Not After : May 2 02:53:09 2027 GMT Subject: CN=20314EB15AE0B335F238FF88A664CA9C8BA97B7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fe:b2:da:43:d9:16:37:d7:6d:3d:d8:31:a1: d4:05:ed:db:53:67:71:e2:77:63:f8:a8:b6:6c:8c: 6c:45:ba:88:65:49:f1:eb:a8:99:ff:b1:49:90:4c: 6d:21:c8:e3:99:af:2f:a5:13:9e:ff:d9:a4:bb:e0: 33:1b:ef:cb:28:6d:03:d4:91:64:14:74:9e:3a:47: 36:0b:cd:8a:f0:f4:65:15:82:b1:d4:06:67:d8:39: 97:27:71:4c:94:47:63:4d:77:72:b5:e1:09:76:77: d8:74:ed:b0:8c:7b:b7:c3:de:5a:3d:ed:31:1b:1e: c0:c4:22:4f:47:56:e7:7e:83:16:fb:89:f9:c7:69: 4e:86:b6:20:4d:41:91:82:eb:21:28:32:45:5b:69: c0:6d:b5:fa:14:25:5c:9e:5c:1c:71:86:47:ac:03: 56:19:4d:ce:17:2f:a7:af:82:73:9d:64:09:4a:ed: 54:da:0b:93:11:95:f7:8b:ca:0a:a3:1f:f8:9f:42: 4c:f1:b0:ad:c0:5d:12:fb:ff:9b:0d:2d:74:4d:95: 8d:66:41:19:5b:d1:e8:e7:77:3b:14:f1:5b:6a:2d: 94:c0:ec:37:ef:84:0d:dc:06:1a:57:29:28:62:b9: 90:ed:a0:f2:39:22:46:af:a6:49:eb:10:70:d2:fa: 78:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:31:4E:B1:5A:E0:B3:35:F2:38:FF:88:A6:64:CA:9C:8B:A9:7B:7E X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.184.0/22 Signature Algorithm: sha256WithRSAEncryption 73:f6:46:f6:98:9b:8e:32:8b:3c:a0:3f:27:1f:49:54:5b:5a: 9c:36:eb:55:95:55:24:a5:b4:d9:ff:58:84:11:14:c0:a9:fc: 41:59:76:44:11:53:89:90:df:b4:e4:08:e2:ed:67:26:39:86: d2:d1:d7:d6:37:97:a3:a9:5e:36:75:5c:9f:d4:96:63:80:e0: 1c:ff:9a:5b:7a:65:0a:02:6c:81:57:dd:4a:6b:e8:27:c7:51: b0:22:98:40:5c:79:db:14:15:98:8a:25:12:85:f4:f4:38:77: 6b:b1:2e:65:d9:ad:f2:14:8d:8e:0c:27:41:f4:89:fc:32:01: f0:76:6e:7e:67:f6:cb:48:1a:5e:5d:fa:9b:be:10:2e:d2:39: 76:2f:01:8e:a1:57:7f:74:71:f6:e7:8c:7f:bf:9a:2a:f1:b9: 81:0a:96:a0:f0:ba:16:a3:cc:83:f0:81:00:9b:9a:2b:aa:8c: af:c1:e8:d5:d5:fc:a4:fe:09:98:71:2c:68:78:e0:aa:36:9c: 53:d5:27:c4:e4:55:64:14:8e:10:e3:99:2c:49:9e:2f:26:3e: c3:5e:57:5a:30:cd:13:3c:c5:bc:2c:20:07:de:b2:85:b0:bb: f8:ad:b8:30:a8:ba:10:06:70:f0:c1:46:6a:fa:5a:da:93:99: de:ba:7c:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdyGJ+yO7RnC95qg06O676bEV4HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MDlaFw0yNzA1MDIwMjUzMDlaMDMxMTAvBgNV BAMTKDIwMzE0RUIxNUFFMEIzMzVGMjM4RkY4OEE2NjRDQTlDOEJBOTdCN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3/rLaQ9kWN9dtPdgxodQF7dtT Z3Hid2P4qLZsjGxFuohlSfHrqJn/sUmQTG0hyOOZry+lE57/2aS74DMb78sobQPU kWQUdJ46RzYLzYrw9GUVgrHUBmfYOZcncUyUR2NNd3K14Ql2d9h07bCMe7fD3lo9 7TEbHsDEIk9HVud+gxb7ifnHaU6GtiBNQZGC6yEoMkVbacBttfoUJVyeXBxxhkes A1YZTc4XL6evgnOdZAlK7VTaC5MRlfeLygqjH/ifQkzxsK3AXRL7/5sNLXRNlY1m QRlb0ejndzsU8VtqLZTA7DfvhA3cBhpXKShiuZDtoPI5IkavpknrEHDS+nhLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIDFOsVrgszXyOP+IpmTKnIupe34wHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzM0MzkyZTMxMzIzODJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCMYC4MA0GCSqG SIb3DQEBCwUAA4IBAQBz9kb2mJuOMos8oD8nH0lUW1qcNutVlVUkpbTZ/1iEERTA qfxBWXZEEVOJkN+05Aji7WcmOYbS0dfWN5ejqV42dVyf1JZjgOAc/5pbemUKAmyB V91Ka+gnx1GwIphAXHnbFBWYiiUShfT0OHdrsS5l2a3yFI2ODCdB9In8MgHwdm5+ Z/bLSBpeXfqbvhAu0jl2LwGOoVd/dHH254x/v5oq8bmBCpag8LoWo8yD8IEAm5or qoyvwejV1fyk/gmYcSxoeOCqNpxT1SfE5FVkFI4Q45ksSZ4vJj7DXldaMM0TPMW8 LCAH3rKFsLv4rbgwqLoQBnDwwUZq+lrak5neunyN -----END CERTIFICATE-----Generated at Wed May 13 11:58:39 2026 by rpki-client