$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35392e302f32342d3234203d3e20313332363437.roa File: 34352e3132362e35392e302f32342d3234203d3e20313332363437.roa (raw, json) Hash identifier: qArl8RBpNQGv7NW/pHMi5u7s8FPFuQtE+K0tYbKrjHU= Subject key identifier: 2D:AF:CB:45:FE:D2:23:31:09:21:6C:29:2C:6A:52:07:D8:D6:AF:69 Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 35CE58F495C7AB9D90B26A07B3EB5BB6343A0EBC Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35392e302f32342d3234203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:56:59 +0000 ROA not before: Sun 03 May 2026 02:51:59 +0000 ROA not after: Sun 02 May 2027 02:56:59 +0000 asID: 132647 IP address blocks: 45.126.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ce:58:f4:95:c7:ab:9d:90:b2:6a:07:b3:eb:5b:b6:34:3a:0e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:51:59 2026 GMT Not After : May 2 02:56:59 2027 GMT Subject: CN=2DAFCB45FED2233109216C292C6A5207D8D6AF69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d4:1d:4b:77:13:aa:69:53:1b:f0:f7:79:c6: f3:81:6a:6c:54:59:24:56:77:08:de:e4:01:26:83: 6f:8f:74:cb:96:38:50:12:b2:1e:2c:82:f8:da:de: 81:7d:ab:17:2e:e3:79:62:3b:42:b6:07:39:05:d3: 04:15:c2:08:27:aa:65:1e:cc:ea:fa:8a:ba:40:eb: 4c:50:71:99:f8:f7:c3:94:da:93:a1:84:99:bf:d9: 46:58:a5:4e:0f:20:09:8b:01:65:0a:5f:ce:af:28: 2d:a5:b5:d1:99:69:28:76:55:5b:52:59:98:bf:b7: 7c:98:be:0b:10:c1:ce:c3:f2:0d:2a:97:cb:13:c7: bd:14:cb:77:74:0f:f2:3b:4c:31:f3:2e:2b:0c:37: 8d:46:28:7c:f6:ba:fd:8e:a1:ea:d2:bf:8e:0f:12: cf:5d:43:e8:a7:79:0b:8c:dc:be:67:12:40:ca:db: f2:1a:d1:8e:fa:0c:d7:6c:23:f6:0d:2e:24:fb:95: 57:2d:dc:9f:75:11:a4:28:ee:95:77:03:f3:4a:bd: 85:2f:fa:4e:13:3e:25:72:91:6f:06:74:cf:41:6c: 3c:a1:63:a4:a8:07:75:ef:8c:9c:a5:cf:ed:66:22: 16:02:31:03:3e:ff:4a:98:fa:e8:35:79:54:e4:f1: 7d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AF:CB:45:FE:D2:23:31:09:21:6C:29:2C:6A:52:07:D8:D6:AF:69 X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35392e302f32342d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.59.0/24 Signature Algorithm: sha256WithRSAEncryption 56:a9:6c:de:aa:3f:28:79:dc:65:76:22:76:a5:40:0f:93:da: bf:f4:c5:10:0e:7f:36:41:e6:4a:0e:4a:f9:ec:51:d9:bf:25: a7:b9:d0:3d:27:36:94:7b:42:69:05:31:df:f6:5b:fb:45:28: c5:ab:76:22:7a:98:21:fc:b3:0c:9e:c9:f0:9d:86:c7:55:c8: f8:aa:e0:13:32:78:3f:89:45:f2:56:c7:d5:2f:66:b3:e6:d5: df:d3:4d:67:f7:de:1c:39:24:a3:5d:2f:f7:fc:0a:10:d8:e6: 38:7c:e4:45:46:50:79:93:01:90:b7:ba:80:47:9c:8a:5f:ca: c5:95:3d:49:e1:53:01:bc:27:48:9a:e6:57:aa:1a:38:16:ba: b5:31:cc:c0:dd:a3:b3:05:ee:76:a8:e6:6a:b5:d6:7c:cd:69: a8:46:ae:b4:5f:80:0e:25:91:11:bf:e4:49:ef:73:6e:cc:eb: f5:97:0e:a5:a7:ac:60:98:a4:10:89:d6:e6:45:6e:71:72:0f: 00:e3:7d:99:77:ee:ed:d3:e4:07:66:a0:e5:39:a8:60:17:8d: 92:08:15:7e:02:74:7f:18:f1:a7:4f:1d:10:61:4a:94:3b:15: 48:01:50:10:ed:4d:f6:f5:e6:1f:ca:8e:f3:ac:62:5a:94:bb: 3f:27:06:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNc5Y9JXHq52QsmoHs+tbtjQ6DrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUxNTlaFw0yNzA1MDIwMjU2NTlaMDMxMTAvBgNV BAMTKDJEQUZDQjQ1RkVEMjIzMzEwOTIxNkMyOTJDNkE1MjA3RDhENkFGNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl1B1LdxOqaVMb8Pd5xvOBamxU WSRWdwje5AEmg2+PdMuWOFASsh4sgvja3oF9qxcu43liO0K2BzkF0wQVwggnqmUe zOr6irpA60xQcZn498OU2pOhhJm/2UZYpU4PIAmLAWUKX86vKC2ltdGZaSh2VVtS WZi/t3yYvgsQwc7D8g0ql8sTx70Uy3d0D/I7TDHzLisMN41GKHz2uv2OoerSv44P Es9dQ+ineQuM3L5nEkDK2/Ia0Y76DNdsI/YNLiT7lVct3J91EaQo7pV3A/NKvYUv +k4TPiVykW8GdM9BbDyhY6SoB3XvjJylz+1mIhYCMQM+/0qY+ug1eVTk8X3lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULa/LRf7SIzEJIWwpLGpSB9jWr2kwHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzM0MzUyZTMxMzIzNjJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1+OzANBgkqhkiG 9w0BAQsFAAOCAQEAVqls3qo/KHncZXYidqVAD5Pav/TFEA5/NkHmSg5K+exR2b8l p7nQPSc2lHtCaQUx3/Zb+0Uoxat2InqYIfyzDJ7J8J2Gx1XI+KrgEzJ4P4lF8lbH 1S9ms+bV39NNZ/feHDkko10v9/wKENjmOHzkRUZQeZMBkLe6gEecil/KxZU9SeFT AbwnSJrmV6oaOBa6tTHMwN2jswXudqjmarXWfM1pqEautF+ADiWREb/kSe9zbszr 9ZcOpaesYJikEInW5kVucXIPAON9mXfu7dPkB2ag5TmoYBeNkggVfgJ0fxjxp08d EGFKlDsVSAFQEO1N9vXmH8qO86xiWpS7PycGpA== -----END CERTIFICATE-----Generated at Wed May 13 02:26:19 2026 by rpki-client