$ rpki-client -vvf rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36372e302f32342d3234203d3e203338373533.roa File: 34352e3131352e36372e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: V3VFTjfw6JHfDwNHfBqmwL7xYBI+P1o53RpZqP/oI5k= Subject key identifier: B2:1D:78:B1:D4:D2:5B:6B:31:16:1C:89:44:8A:13:46:FF:28:94:0F Certificate issuer: /CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Certificate serial: 438C303A23D7B71E2ACF3271BA64B29FFD19358E Authority key identifier: 95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36372e302f32342d3234203d3e203338373533.roa Signing time: Sun 03 May 2026 02:55:22 +0000 ROA not before: Sun 03 May 2026 02:50:22 +0000 ROA not after: Sun 02 May 2027 02:55:22 +0000 asID: 38753 IP address blocks: 45.115.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8c:30:3a:23:d7:b7:1e:2a:cf:32:71:ba:64:b2:9f:fd:19:35:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=955AF2D41C7C84BFE354F8648EE3271584452C79 Validity Not Before: May 3 02:50:22 2026 GMT Not After : May 2 02:55:22 2027 GMT Subject: CN=B21D78B1D4D25B6B31161C89448A1346FF28940F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a6:e7:06:d0:ad:ec:69:6e:4e:77:4d:2a:38: 6d:99:3d:f9:39:9a:07:c9:3a:9f:02:de:fc:08:e1: d1:72:fd:34:cb:e2:f4:17:33:a5:c7:85:6b:fe:b1: 80:c5:3e:e2:75:26:55:fd:e8:01:86:5d:2b:96:ae: 1e:ed:d7:af:a6:fc:b5:75:c3:4e:3f:ce:42:00:be: 08:28:4a:53:2b:03:fb:65:fc:8e:cc:64:11:8b:3b: 9a:9d:59:e1:d1:c1:18:5a:e9:cb:0b:19:4d:df:ca: 2c:be:09:f9:79:f7:47:a0:05:fe:ab:a7:7a:ee:26: 69:f0:e3:5d:df:7b:d6:6c:e5:f8:4b:2f:59:09:b9: 4a:96:39:17:c1:75:db:9f:d1:c6:e4:c1:46:cc:ec: 7b:ae:46:5f:72:2d:16:f6:60:31:87:62:da:5d:fd: c4:84:8a:48:7c:6d:c2:01:0b:ce:e6:ee:d7:af:ae: c0:2d:1c:d5:81:96:a0:98:dd:ce:ad:e0:60:bb:ec: 46:53:d2:34:40:4e:d7:4f:ff:5f:cd:34:d1:fc:0f: bb:ea:00:da:cf:dd:1e:da:c8:8d:f0:4e:62:7c:6c: 80:d0:30:22:75:53:e5:46:85:df:e4:d8:a2:da:75: a6:94:92:ac:d8:81:62:84:c5:e3:ee:6f:8a:2f:10: c5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1D:78:B1:D4:D2:5B:6B:31:16:1C:89:44:8A:13:46:FF:28:94:0F X509v3 Authority Key Identifier: keyid:95:5A:F2:D4:1C:7C:84:BF:E3:54:F8:64:8E:E3:27:15:84:45:2C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/955AF2D41C7C84BFE354F8648EE3271584452C79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/955AF2D41C7C84BFE354F8648EE3271584452C79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36372e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.115.67.0/24 Signature Algorithm: sha256WithRSAEncryption 65:97:ab:0b:79:4f:28:17:a6:34:6a:27:64:84:89:8f:ae:c6: 08:b6:f6:d0:69:f7:51:1f:da:26:9b:1b:53:01:67:dc:b8:d3: d8:91:54:d1:f6:a6:92:26:7b:c0:53:f1:54:6f:02:c6:0a:87: 63:2a:a4:4d:55:28:6e:51:0a:bc:e2:1c:a1:66:c9:a0:42:6e: 88:6c:4c:0d:7a:a3:fe:09:44:e2:a4:fd:84:28:12:cb:c6:1a: ce:43:82:05:47:08:55:54:12:1c:36:17:5d:e7:1e:d2:89:f4: 20:97:9f:7f:1d:05:99:3d:0a:95:0c:30:74:7c:1e:b6:ae:71: 06:d9:ef:c4:80:88:4c:4f:68:7f:c1:3e:93:8c:2f:e7:6e:76: ba:d1:a5:d1:27:9c:8e:9c:d7:35:65:b5:2a:33:91:be:67:28: c3:d5:42:13:0b:b1:c3:ec:03:42:15:6f:f0:80:39:a1:2e:ea: 15:2c:3b:f1:f8:a3:e2:f0:c1:09:9a:29:09:cf:3e:51:70:80: ed:8f:44:1b:f8:a9:e1:86:e0:e3:e0:64:76:a8:5e:40:e8:53: 62:a8:6a:21:77:e6:be:d4:f1:ba:b1:a7:45:ef:87:26:89:7c: 94:31:92:1e:c3:49:5e:5e:ca:46:08:1d:e2:05:3d:40:74:e6: bb:24:98:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQ4wwOiPXtx4qzzJxumSyn/0ZNY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU1QUYyRDQxQzdDODRCRkUzNTRGODY0OEVFMzI3MTU4 NDQ1MkM3OTAeFw0yNjA1MDMwMjUwMjJaFw0yNzA1MDIwMjU1MjJaMDMxMTAvBgNV BAMTKEIyMUQ3OEIxRDREMjVCNkIzMTE2MUM4OTQ0OEExMzQ2RkYyODk0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDppucG0K3saW5Od00qOG2ZPfk5 mgfJOp8C3vwI4dFy/TTL4vQXM6XHhWv+sYDFPuJ1JlX96AGGXSuWrh7t16+m/LV1 w04/zkIAvggoSlMrA/tl/I7MZBGLO5qdWeHRwRha6csLGU3fyiy+Cfl590egBf6r p3ruJmnw413fe9Zs5fhLL1kJuUqWORfBdduf0cbkwUbM7HuuRl9yLRb2YDGHYtpd /cSEikh8bcIBC87m7tevrsAtHNWBlqCY3c6t4GC77EZT0jRATtdP/1/NNNH8D7vq ANrP3R7ayI3wTmJ8bIDQMCJ1U+VGhd/k2KLadaaUkqzYgWKExePub4ovEMVRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsh14sdTSW2sxFhyJRIoTRv8olA8wHwYDVR0j BBgwFoAUlVry1Bx8hL/jVPhkjuMnFYRFLHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTA2YjY2NzMtNDdhMS00NWU1LWI2YzItNDJhYjhiNDc2MjQ5LzAvOTU1QUYyRDQx QzdDODRCRkUzNTRGODY0OEVFMzI3MTU4NDQ1MkM3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NTVBRjJENDFDN0M4NEJGRTM1NEY4NjQ4RUUzMjcxNTg0NDUy Qzc5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzM0MzUyZTMxMzEzNTJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtc0MwDQYJKoZIhvcN AQELBQADggEBAGWXqwt5TygXpjRqJ2SEiY+uxgi29tBp91Ef2iabG1MBZ9y409iR VNH2ppIme8BT8VRvAsYKh2MqpE1VKG5RCrziHKFmyaBCbohsTA16o/4JROKk/YQo EsvGGs5DggVHCFVUEhw2F13nHtKJ9CCXn38dBZk9CpUMMHR8HraucQbZ78SAiExP aH/BPpOML+dudrrRpdEnnI6c1zVltSozkb5nKMPVQhMLscPsA0IVb/CAOaEu6hUs O/H4o+LwwQmaKQnPPlFwgO2PRBv4qeGG4OPgZHaoXkDoU2KoaiF35r7U8bqxp0Xv hyaJfJQxkh7DSV5eykYIHeIFPUB05rskmKI= -----END CERTIFICATE-----Generated at Wed May 13 04:17:08 2026 by rpki-client