$ rpki-client -vvf rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33332e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: erZtOAkoJsSCa1y/Ndx5gOuMo3npuD1uvhBg+kMr2B8= Subject key identifier: E1:5E:92:19:79:16:15:8C:72:30:16:D4:1A:4B:82:7B:E8:68:AE:EE Certificate issuer: /CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Certificate serial: 178D5AA4EBCD722F7F5C7B1C4CAB9D89C3C5539A Authority key identifier: E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa Signing time: Sun 03 May 2026 03:05:32 +0000 ROA not before: Sun 03 May 2026 03:00:32 +0000 ROA not after: Sun 02 May 2027 03:05:32 +0000 asID: 45312 IP address blocks: 43.247.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:8d:5a:a4:eb:cd:72:2f:7f:5c:7b:1c:4c:ab:9d:89:c3:c5:53:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4 Validity Not Before: May 3 03:00:32 2026 GMT Not After : May 2 03:05:32 2027 GMT Subject: CN=E15E92197916158C723016D41A4B827BE868AEEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:3b:89:40:45:65:3b:c4:3d:ee:bb:37:07: 68:2c:91:1b:76:37:fd:d5:bc:b3:30:3a:3e:a4:38: 27:e9:e9:60:41:2b:2d:7b:02:3c:98:29:51:df:3b: 47:b2:67:d4:32:91:74:ec:73:08:6c:5a:b6:a6:11: 5a:36:6f:06:33:8e:cf:b2:bd:94:8e:6e:28:5f:ec: 96:77:48:92:e9:a6:25:8f:1c:9a:c0:f4:05:0a:64: 8c:e1:c5:24:07:83:09:3b:03:7e:16:8a:0a:e4:d9: 61:04:bb:00:9c:07:a9:08:64:ba:c4:3d:70:81:b3: 6e:f0:ad:72:4a:48:32:00:8f:d4:5d:22:d1:e3:2b: 98:c8:03:36:d8:8d:c0:b6:0e:b7:bf:1b:28:a3:20: 31:3c:93:a4:86:e8:0f:3f:7a:01:a5:a3:d4:c8:d3: 77:40:ce:17:cb:45:15:ba:d3:9e:0a:33:65:f4:4c: 1a:c3:8b:92:ed:aa:60:2d:c4:39:0b:22:26:2d:d3: 3e:94:a4:73:98:68:39:93:b2:da:c5:68:e6:e3:6e: e4:67:ef:00:0a:88:59:3d:f9:b6:e3:59:5e:40:45: 56:96:cc:9f:ea:db:3c:05:cc:86:98:28:b5:b3:19: 21:d4:0c:83:8f:b7:31:7b:0e:a6:ae:9f:ab:3e:eb: 30:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5E:92:19:79:16:15:8C:72:30:16:D4:1A:4B:82:7B:E8:68:AE:EE X509v3 Authority Key Identifier: keyid:E3:C1:16:D9:16:0B:6F:21:F7:B6:47:D6:FB:8E:C1:43:6C:AD:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E3C116D9160B6F21F7B647D6FB8EC1436CAD88D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.33.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:5d:45:e4:55:4a:94:33:f6:20:bc:ee:72:ea:f3:6d:70:d1: e0:fa:26:b3:7c:10:9c:8f:46:a6:42:cd:c1:24:31:a7:a5:49: 8e:7b:aa:8a:c0:f9:2c:d5:cc:b5:c0:fe:38:1f:14:a6:a3:d8: c4:92:9d:e9:46:b6:de:d0:ca:cb:81:da:82:7d:53:9e:29:18: 56:0c:e1:16:7e:46:a2:00:85:54:f8:aa:78:f4:6c:cd:f2:ad: fc:4f:54:8d:9d:79:dc:cb:60:7f:95:c3:21:0f:24:99:fe:cd: 2c:be:bd:5d:42:7f:11:33:0d:e2:ac:df:f3:65:a6:24:d1:54: ad:69:d5:7a:50:d5:ff:bf:8b:8c:7f:8a:2d:2a:d6:92:56:9d: a2:45:36:d2:cf:31:05:a5:86:9b:dd:cb:d6:1e:63:24:8a:0b: 63:1a:58:47:53:c0:3d:c5:80:f7:18:57:d3:b9:b1:90:fd:57: ca:17:d2:c7:6f:89:5e:5e:e2:8c:60:53:9b:90:36:f7:1e:e0: 32:17:73:ee:2c:0a:a2:1b:d6:04:55:46:88:39:8c:cd:98:ae: 56:6f:6f:81:33:93:a5:58:ff:c3:4c:d4:96:d6:ab:f1:db:f2: 04:ac:b0:2a:c9:27:fa:ed:fc:7c:5e:11:6c:97:ec:86:cd:e0: d1:09:6f:61 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUF41apOvNci9/XHscTKudicPFU5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTNDMTE2RDkxNjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2 Q0FEODhENDAeFw0yNjA1MDMwMzAwMzJaFw0yNzA1MDIwMzA1MzJaMDMxMTAvBgNV BAMTKEUxNUU5MjE5NzkxNjE1OEM3MjMwMTZENDFBNEI4MjdCRTg2OEFFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu+juJQEVlO8Q97rs3B2gskRt2 N/3VvLMwOj6kOCfp6WBBKy17AjyYKVHfO0eyZ9QykXTscwhsWramEVo2bwYzjs+y vZSObihf7JZ3SJLppiWPHJrA9AUKZIzhxSQHgwk7A34Wigrk2WEEuwCcB6kIZLrE PXCBs27wrXJKSDIAj9RdItHjK5jIAzbYjcC2Dre/GyijIDE8k6SG6A8/egGlo9TI 03dAzhfLRRW6054KM2X0TBrDi5LtqmAtxDkLIiYt0z6UpHOYaDmTstrFaObjbuRn 7wAKiFk9+bbjWV5ARVaWzJ/q2zwFzIaYKLWzGSHUDIOPtzF7Dqaun6s+6zDJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4V6SGXkWFYxyMBbUGkuCe+horu4wHwYDVR0j BBgwFoAU48EW2RYLbyH3tkfW+47BQ2ytiNQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzYyMWY3NTMtYTg4ZS00ZWRmLWEzMDYtYmQ5M2Q1YTM4ZmVhLzAvRTNDMTE2RDkx NjBCNkYyMUY3QjY0N0Q2RkI4RUMxNDM2Q0FEODhENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FM0MxMTZEOTE2MEI2RjIxRjdCNjQ3RDZGQjhFQzE0MzZDQUQ4 OEQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yEwDQYJKoZIhvcN AQELBQADggEBAB5dReRVSpQz9iC87nLq821w0eD6JrN8EJyPRqZCzcEkMaelSY57 qorA+SzVzLXA/jgfFKaj2MSSnelGtt7QysuB2oJ9U54pGFYM4RZ+RqIAhVT4qnj0 bM3yrfxPVI2dedzLYH+VwyEPJJn+zSy+vV1CfxEzDeKs3/NlpiTRVK1p1XpQ1f+/ i4x/ii0q1pJWnaJFNtLPMQWlhpvdy9YeYySKC2MaWEdTwD3FgPcYV9O5sZD9V8oX 0sdviV5e4oxgU5uQNvce4DIXc+4sCqIb1gRVRog5jM2YrlZvb4Ezk6VY/8NM1JbW q/Hb8gSssCrJJ/rt/HxeEWyX7IbN4NEJb2E= -----END CERTIFICATE-----Generated at Wed May 13 04:19:44 2026 by rpki-client