$ rpki-client -vvf rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa File: 34332e3234382e32342e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: 9zWseK0VGBFjDjSukC7sEdd2KVTBNcjvlH0F1oisM48= Subject key identifier: 86:20:49:0D:48:3E:16:25:7B:BA:21:86:5B:D2:91:F8:B3:9F:32:FF Certificate issuer: /CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Certificate serial: 5CF294098A7E119163133528EA3F747F66F491CF Authority key identifier: CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa Signing time: Sun 03 May 2026 03:00:19 +0000 ROA not before: Sun 03 May 2026 02:55:19 +0000 ROA not after: Sun 02 May 2027 03:00:19 +0000 asID: 18103 IP address blocks: 43.248.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f2:94:09:8a:7e:11:91:63:13:35:28:ea:3f:74:7f:66:f4:91:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Validity Not Before: May 3 02:55:19 2026 GMT Not After : May 2 03:00:19 2027 GMT Subject: CN=8620490D483E16257BBA21865BD291F8B39F32FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3a:0d:86:92:d0:88:9d:98:57:91:2c:73:be: 7d:30:e7:60:5e:da:07:4c:75:c5:e6:61:f3:6d:7d: 26:98:4a:31:8b:85:37:08:32:21:25:92:5c:f9:2a: e0:94:2d:d6:08:a0:5a:3c:34:12:f6:7c:17:3a:0f: c0:52:fc:8b:97:9f:c2:ac:2b:c6:7c:e1:06:03:8e: bf:b9:6a:ed:b8:63:ef:2e:0c:8a:66:f6:19:d0:eb: 30:9b:a8:48:dc:8d:63:0e:18:99:3b:10:62:ef:54: 0c:67:4c:54:50:19:f7:f9:ac:64:ef:c2:1d:60:a0: 78:21:3f:36:4c:a5:5a:6f:f2:de:a3:89:78:3f:99: f3:a4:6c:0c:5c:a2:66:82:92:2f:43:90:67:1d:40: fc:c4:da:d2:72:69:88:5c:7f:36:db:10:ca:44:d8: 6d:c8:86:17:94:ad:fd:53:99:ea:5f:07:96:f6:11: ee:1a:9c:37:d1:a2:4b:77:3c:d5:62:1b:ab:96:3e: bf:cf:ed:98:c3:fd:17:50:17:85:96:ec:f4:a2:93: a2:40:ac:d1:b4:67:b0:30:2e:d3:8e:48:25:68:3e: 01:b3:c8:96:4d:96:eb:06:3d:b8:49:ea:c9:fa:42: f5:4d:64:c7:af:37:0d:d6:9f:3d:ed:26:cf:e0:c2: 27:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:20:49:0D:48:3E:16:25:7B:BA:21:86:5B:D2:91:F8:B3:9F:32:FF X509v3 Authority Key Identifier: keyid:CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/34332e3234382e32342e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.24.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:c7:2e:6a:45:1c:36:6b:c9:07:1d:7f:eb:6f:cd:0e:71:58: 1f:5d:91:48:84:79:81:bc:5b:80:3d:83:f5:d5:4f:e5:a7:b0: 47:0d:2d:0f:1b:2a:f9:9a:02:da:55:b9:df:a3:1b:32:45:25: a2:cf:8f:23:6a:d5:83:4b:2b:1a:bb:22:2b:3d:f8:7d:c1:a6: 28:c1:4a:7f:c3:1b:0a:03:03:b6:f1:b0:4b:15:84:85:39:4f: 2e:3b:96:66:55:08:ef:04:18:6c:fc:74:96:c5:13:11:5f:10: fb:6a:b5:bd:06:96:eb:dc:af:fa:ca:2f:9a:a8:88:91:35:58: ea:82:1b:d2:75:f5:0f:3c:dc:6f:6f:83:56:a1:e1:fd:48:19: bd:37:0b:31:31:ad:58:d8:d1:80:3b:65:ea:fd:9c:6b:2e:1a: 51:44:80:4e:28:2b:c1:66:3c:82:49:cc:81:65:17:9c:5c:00: 66:4f:a8:57:de:61:4e:e6:1b:e4:aa:43:2b:5f:27:be:64:ff: f8:6a:39:38:cc:8e:7f:17:77:c4:26:2d:91:55:fe:de:53:ab: 6e:43:f2:42:84:64:6c:20:31:06:ee:f6:a8:6d:80:bd:61:d9: a4:64:81:0b:a1:cc:ce:15:5f:24:e7:96:c9:0b:5b:3d:06:f9: 64:32:a9:f6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXPKUCYp+EZFjEzUo6j90f2b0kc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Y2NzdEQzRBMEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENC Q0MwNkJFNjAeFw0yNjA1MDMwMjU1MTlaFw0yNzA1MDIwMzAwMTlaMDMxMTAvBgNV BAMTKDg2MjA0OTBENDgzRTE2MjU3QkJBMjE4NjVCRDI5MUY4QjM5RjMyRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDOg2GktCInZhXkSxzvn0w52Be 2gdMdcXmYfNtfSaYSjGLhTcIMiElklz5KuCULdYIoFo8NBL2fBc6D8BS/IuXn8Ks K8Z84QYDjr+5au24Y+8uDIpm9hnQ6zCbqEjcjWMOGJk7EGLvVAxnTFRQGff5rGTv wh1goHghPzZMpVpv8t6jiXg/mfOkbAxcomaCki9DkGcdQPzE2tJyaYhcfzbbEMpE 2G3IhheUrf1TmepfB5b2Ee4anDfRokt3PNViG6uWPr/P7ZjD/RdQF4WW7PSik6JA rNG0Z7AwLtOOSCVoPgGzyJZNlusGPbhJ6sn6QvVNZMevNw3Wnz3tJs/gwif1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhiBJDUg+FiV7uiGGW9KR+LOfMv8wHwYDVR0j BBgwFoAUz2d9xKDp9S5FjX94bBEATLzAa+YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjE5OWMxYWYtZDljNy00ZmZkLWJhMDMtYTNlMWNkZDhhZWUwLzAvQ0Y2NzdEQzRB MEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENCQ0MwNkJFNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRjY3N0RDNEEwRTlGNTJFNDU4RDdGNzg2QzExMDA0Q0JDQzA2 QkU2LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzM0MzMyZTMyMzQzODJlMzIzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+BgwDQYJKoZIhvcN AQELBQADggEBADzHLmpFHDZryQcdf+tvzQ5xWB9dkUiEeYG8W4A9g/XVT+WnsEcN LQ8bKvmaAtpVud+jGzJFJaLPjyNq1YNLKxq7Iis9+H3BpijBSn/DGwoDA7bxsEsV hIU5Ty47lmZVCO8EGGz8dJbFExFfEPtqtb0Gluvcr/rKL5qoiJE1WOqCG9J19Q88 3G9vg1ah4f1IGb03CzExrVjY0YA7Zer9nGsuGlFEgE4oK8FmPIJJzIFlF5xcAGZP qFfeYU7mG+SqQytfJ75k//hqOTjMjn8Xd8QmLZFV/t5Tq25D8kKEZGwgMQbu9qht gL1h2aRkgQuhzM4VXyTnlskLWz0G+WQyqfY= -----END CERTIFICATE-----Generated at Wed May 13 00:21:51 2026 by rpki-client