$ rpki-client -vvf rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa File: 34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa (raw, json) Hash identifier: Nvcm7ewLmZjBvUysGt40+sa1XdBbBBSl9mbMoMzL77w= Subject key identifier: 26:35:25:C0:75:94:CB:1E:AB:72:10:3C:95:DA:8E:FE:42:35:34:12 Certificate issuer: /CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Certificate serial: 75BFDEF7AFA1EFA600125048AE604EB02209DEC0 Authority key identifier: 8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa Signing time: Sun 03 May 2026 02:59:36 +0000 ROA not before: Sun 03 May 2026 02:54:36 +0000 ROA not after: Sun 02 May 2027 02:59:36 +0000 asID: 149746 IP address blocks: 43.252.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:bf:de:f7:af:a1:ef:a6:00:12:50:48:ae:60:4e:b0:22:09:de:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B Validity Not Before: May 3 02:54:36 2026 GMT Not After : May 2 02:59:36 2027 GMT Subject: CN=263525C07594CB1EAB72103C95DA8EFE42353412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a9:db:07:c7:c0:95:38:9d:2f:27:63:78:1f: fd:62:9b:8d:ed:c4:af:cd:ee:fd:80:39:f4:6a:5f: 80:2b:61:48:84:f6:c2:80:f5:ae:85:3b:89:45:58: de:35:3a:30:93:a8:cd:c9:78:41:ac:0e:f4:25:bb: 36:e6:ca:41:8a:ae:73:25:4f:9e:1a:9f:40:cf:05: 11:4c:dc:b4:8c:f7:00:00:79:dc:02:58:9b:62:03: 4e:8a:53:71:d0:c4:f0:e2:86:d6:0a:d1:56:fe:d2: 0c:43:8e:7a:3d:e6:62:77:78:31:5c:63:da:82:1c: 27:22:e5:d0:26:40:41:98:65:dd:5e:d7:48:b7:63: e3:46:37:bc:5c:ee:72:1b:61:b2:1a:24:0f:49:c2: de:19:31:6d:e5:f9:4e:86:42:a4:44:b0:ed:1d:8e: 5f:ff:7e:7f:34:72:6d:eb:f7:b8:84:a8:ad:8d:66: e6:8a:d9:6b:43:fa:da:5f:62:dd:83:64:cb:07:e6: 4a:b5:b0:69:44:fd:73:92:3c:13:a2:d8:a7:68:d6: 37:c7:c2:cd:0f:f7:0b:a0:b1:05:e9:21:63:a5:b7: 71:da:85:4b:4a:a0:63:40:a2:b4:2f:0b:45:d8:24: 88:b0:86:18:92:27:c7:73:04:d1:ec:c6:0b:d4:66: 8b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:35:25:C0:75:94:CB:1E:AB:72:10:3C:95:DA:8E:FE:42:35:34:12 X509v3 Authority Key Identifier: keyid:8C:8C:56:ED:1E:A0:C6:F9:39:1C:D9:00:8E:78:CD:F3:81:C2:72:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8C8C56ED1EA0C6F9391CD9008E78CDF381C2720B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 Signature Algorithm: sha256WithRSAEncryption 82:d2:38:b9:6b:d3:fd:84:8a:73:40:12:d3:cf:d8:6f:04:88: 2e:3e:51:e3:46:1e:ac:ee:f2:08:bf:26:d5:a3:d1:d3:f2:ff: eb:cd:37:25:b9:c3:cb:24:d4:37:c9:db:16:b7:f2:21:a9:d3: 59:6a:ae:76:7b:9f:14:50:91:9a:10:6e:18:5a:42:7b:96:4e: c5:44:f1:99:32:12:d2:43:03:0f:ee:f0:ed:9e:7f:ab:e7:24: ef:8d:47:06:12:30:01:bb:fa:2c:b2:f4:59:e5:9b:eb:4f:aa: 20:e0:ec:97:f6:f7:99:77:5f:5c:87:5f:7d:29:0e:d2:20:8e: 0f:56:44:be:55:ba:9b:bf:a2:da:88:0d:74:d0:93:ae:4b:92: ed:fc:cf:a6:fd:c9:e0:fb:bf:5b:62:d8:18:16:45:2c:2e:9c: ed:f3:f8:50:0a:47:40:8d:54:dd:cb:03:22:54:76:5e:bf:81: 9c:dd:9c:94:05:f4:f4:ff:ca:e7:fd:fe:e0:c0:63:6e:45:73: 27:b9:6b:5b:c9:37:6c:ab:0b:a3:2d:10:42:a1:ce:2e:58:66: c2:d1:b0:f4:6b:e7:0a:ea:51:5e:a0:da:d2:31:aa:0f:c9:fe: 32:6a:0a:9d:a3:b1:ab:3f:41:9f:bd:81:a0:b6:93:57:27:f6: c3:f0:da:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdb/e96+h76YAElBIrmBOsCIJ3sAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4QzU2RUQxRUEwQzZGOTM5MUNEOTAwOEU3OENERjM4 MUMyNzIwQjAeFw0yNjA1MDMwMjU0MzZaFw0yNzA1MDIwMjU5MzZaMDMxMTAvBgNV BAMTKDI2MzUyNUMwNzU5NENCMUVBQjcyMTAzQzk1REE4RUZFNDIzNTM0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMqdsHx8CVOJ0vJ2N4H/1im43t xK/N7v2AOfRqX4ArYUiE9sKA9a6FO4lFWN41OjCTqM3JeEGsDvQluzbmykGKrnMl T54an0DPBRFM3LSM9wAAedwCWJtiA06KU3HQxPDihtYK0Vb+0gxDjno95mJ3eDFc Y9qCHCci5dAmQEGYZd1e10i3Y+NGN7xc7nIbYbIaJA9Jwt4ZMW3l+U6GQqREsO0d jl//fn80cm3r97iEqK2NZuaK2WtD+tpfYt2DZMsH5kq1sGlE/XOSPBOi2Kdo1jfH ws0P9wugsQXpIWOlt3HahUtKoGNAorQvC0XYJIiwhhiSJ8dzBNHsxgvUZosTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJjUlwHWUyx6rchA8ldqO/kI1NBIwHwYDVR0j BBgwFoAUjIxW7R6gxvk5HNkAjnjN84HCcgswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVhN2ExMTUtYjhiOC00OTBiLTgzMjAtYzllNTlhMTAwM2RkLzAvOEM4QzU2RUQx RUEwQzZGOTM5MUNEOTAwOEU3OENERjM4MUMyNzIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QzhDNTZFRDFFQTBDNkY5MzkxQ0Q5MDA4RTc4Q0RGMzgxQzI3 MjBCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzMyZTMyMzUzMjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK/ycMA0GCSqG SIb3DQEBCwUAA4IBAQCC0ji5a9P9hIpzQBLTz9hvBIguPlHjRh6s7vIIvybVo9HT 8v/rzTclucPLJNQ3ydsWt/IhqdNZaq52e58UUJGaEG4YWkJ7lk7FRPGZMhLSQwMP 7vDtnn+r5yTvjUcGEjABu/ossvRZ5ZvrT6og4OyX9veZd19ch199KQ7SII4PVkS+ Vbqbv6LaiA100JOuS5Lt/M+m/cng+79bYtgYFkUsLpzt8/hQCkdAjVTdywMiVHZe v4Gc3ZyUBfT0/8rn/f7gwGNuRXMnuWtbyTdsqwujLRBCoc4uWGbC0bD0a+cK6lFe oNrSMaoPyf4yagqdo7GrP0GfvYGgtpNXJ/bD8Noz -----END CERTIFICATE-----Generated at Wed May 13 09:54:31 2026 by rpki-client