$ rpki-client -vvf rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33322e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: G18q8JLwlqfKLoA7DLJ4AF/qNYAZNJwcFEi8Kv0AWuY= Subject key identifier: F4:55:CA:99:A9:C8:44:C6:85:74:98:DE:47:CF:CD:5C:13:F0:8A:28 Certificate issuer: /CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Certificate serial: 3EC6AA500452E896CB1AB8B54E66923D1218226D Authority key identifier: E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa Signing time: Sun 03 May 2026 03:05:25 +0000 ROA not before: Sun 03 May 2026 03:00:25 +0000 ROA not after: Sun 02 May 2027 03:05:25 +0000 asID: 45312 IP address blocks: 43.247.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c6:aa:50:04:52:e8:96:cb:1a:b8:b5:4e:66:92:3d:12:18:22:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Validity Not Before: May 3 03:00:25 2026 GMT Not After : May 2 03:05:25 2027 GMT Subject: CN=F455CA99A9C844C6857498DE47CFCD5C13F08A28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:67:6d:97:b8:af:bd:4b:3d:15:cf:e9:9c: 95:68:77:b6:a9:85:b7:74:d9:23:8b:50:9d:9d:24: 18:13:84:07:de:5b:7a:02:47:ed:f8:41:f5:1f:10: db:44:64:f2:4f:60:80:ef:d4:dd:af:37:7d:dc:14: 45:69:ae:bd:14:e2:70:80:8a:25:2b:12:04:14:d2: 25:06:34:b1:fd:dc:bb:70:f4:8d:c6:92:46:2f:5e: 7f:d5:f7:6f:96:b4:f3:83:24:b9:82:0f:37:51:d1: 15:91:92:af:57:9c:f6:14:88:76:46:30:ec:b8:ec: aa:e9:62:ef:e5:bc:08:e2:f5:93:7d:7f:5a:29:5b: 55:9a:6b:09:ff:0e:54:27:55:f3:90:cc:94:ca:54: 2e:34:40:0b:29:f4:47:c3:e9:b3:17:5b:80:a7:d7: 78:d3:7a:79:d7:8d:89:3b:79:8a:45:d8:82:90:44: 70:c3:e2:85:1a:0b:b9:fd:aa:68:91:05:e0:3d:2b: d3:0f:fa:9e:a5:81:0a:88:4b:fa:be:48:0b:b7:6a: da:f2:e2:e9:21:82:90:92:a6:01:b8:1a:de:83:fe: a3:27:40:dd:95:b4:eb:19:47:26:95:af:90:ff:c8: 1d:c8:b1:77:64:b8:38:e5:08:5d:9b:53:fb:99:4d: 5d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:55:CA:99:A9:C8:44:C6:85:74:98:DE:47:CF:CD:5C:13:F0:8A:28 X509v3 Authority Key Identifier: keyid:E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.32.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:86:63:c5:21:b3:ff:a0:04:11:5b:1d:2b:44:70:6f:29:7f: bb:20:c1:cb:d5:f3:fe:24:82:d7:1b:ee:a6:40:04:87:6a:3a: 6f:9f:56:bc:be:73:a3:57:b2:52:a9:03:c9:1a:24:07:a9:ba: fd:d2:28:25:e9:20:ae:f6:e7:78:be:4b:fc:d4:22:aa:55:50: 4e:73:b6:f7:f9:a4:24:9b:a0:dd:ba:1b:5c:19:1e:88:57:f9: f2:8f:2f:e1:8f:87:4b:44:3c:4c:92:80:1f:10:6f:56:72:29: f1:28:37:07:4b:ae:71:3f:e1:72:9b:3d:a3:c5:d3:5d:8e:7a: c2:0a:83:e5:1a:46:50:25:83:90:dc:40:b0:b4:8c:4e:d1:54: e0:d5:c5:44:50:a1:c7:6f:6c:d8:6c:97:cf:b3:88:5b:43:6e: c6:32:f9:67:df:01:99:82:ee:72:33:14:e1:a7:9b:07:d8:16: 22:b2:d8:2d:bb:86:24:98:35:fb:65:a9:8e:00:bb:3d:11:36: 2b:53:30:8d:d6:a5:ce:6b:d4:e9:a0:fd:97:2b:61:2a:c4:55: 50:1c:b3:bf:ca:fd:6d:9a:e6:d5:2b:ce:14:8d:3a:81:fd:86: e7:09:fc:a5:46:51:e7:49:08:03:fb:75:c7:b8:0c:9f:1d:ad: ef:75:95:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPsaqUARS6JbLGri1TmaSPRIYIm0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNDMTE2RDkxNjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2 Q0FEODhENDAeFw0yNjA1MDMwMzAwMjVaFw0yNzA1MDIwMzA1MjVaMDMxMTAvBgNV BAMTKEY0NTVDQTk5QTlDODQ0QzY4NTc0OThERTQ3Q0ZDRDVDMTNGMDhBMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC97Gdtl7ivvUs9Fc/pnJVod7ap hbd02SOLUJ2dJBgThAfeW3oCR+34QfUfENtEZPJPYIDv1N2vN33cFEVprr0U4nCA iiUrEgQU0iUGNLH93Ltw9I3GkkYvXn/V92+WtPODJLmCDzdR0RWRkq9XnPYUiHZG MOy47KrpYu/lvAji9ZN9f1opW1Waawn/DlQnVfOQzJTKVC40QAsp9EfD6bMXW4Cn 13jTennXjYk7eYpF2IKQRHDD4oUaC7n9qmiRBeA9K9MP+p6lgQqIS/q+SAu3atry 4ukhgpCSpgG4Gt6D/qMnQN2VtOsZRyaVr5D/yB3IsXdkuDjlCF2bU/uZTV1xAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9FXKmanIRMaFdJjeR8/NXBPwiigwHwYDVR0j BBgwFoAU48EW2RYLbyH3tkfW+47BQ2ytiNQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzYyMWY3NTMtYTg4ZS00ZWRmLWEzMDYtYmQ5M2Q1YTM4ZmVhLzAvRTNDMTE2RDkx NjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2Q0FEODhENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FM0MxMTZEOTE2MEI2RjIxRjdCNjQ3RDZGQjhFQzE0MzZDQUQ4 OEQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yAwDQYJKoZIhvcN AQELBQADggEBAC2GY8Uhs/+gBBFbHStEcG8pf7sgwcvV8/4kgtcb7qZABIdqOm+f Vry+c6NXslKpA8kaJAepuv3SKCXpIK7253i+S/zUIqpVUE5ztvf5pCSboN26G1wZ HohX+fKPL+GPh0tEPEySgB8Qb1ZyKfEoNwdLrnE/4XKbPaPF012OesIKg+UaRlAl g5DcQLC0jE7RVODVxURQocdvbNhsl8+ziFtDbsYy+WffAZmC7nIzFOGnmwfYFiKy 2C27hiSYNftlqY4Auz0RNitTMI3Wpc5r1Omg/ZcrYSrEVVAcs7/K/W2a5tUrzhSN OoH9hucJ/KVGUedJCAP7dce4DJ8dre91lT4= -----END CERTIFICATE-----Generated at Wed May 13 04:54:17 2026 by rpki-client