$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa File: 34332e3234392e3134302e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: wL/pHkWZYlSpOpNVjgz7YgIvq4xTapnBHJvFGC824+g= Subject key identifier: F9:CB:6D:D2:C0:7B:1A:B8:96:53:40:F7:36:75:0F:EE:38:C8:D8:22 Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 4463B41394FBBBC6EFCDC7799F8787CD7E129D1D Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:22 +0000 ROA not before: Sun 03 May 2026 03:01:22 +0000 ROA not after: Sun 02 May 2027 03:06:22 +0000 asID: 55653 IP address blocks: 43.249.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:63:b4:13:94:fb:bb:c6:ef:cd:c7:79:9f:87:87:cd:7e:12:9d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:22 2026 GMT Not After : May 2 03:06:22 2027 GMT Subject: CN=F9CB6DD2C07B1AB8965340F736750FEE38C8D822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d7:73:2c:32:e5:d1:a5:0c:18:00:42:b2:34: ec:92:d7:53:68:a8:e7:11:e2:c1:4c:37:52:43:82: 9d:4d:91:cf:42:c8:5a:33:31:af:20:3d:97:8d:48: 28:51:30:50:6b:f3:6d:a1:3f:2a:04:76:7c:61:f4: ba:c5:58:52:86:6d:2b:51:8a:ea:3e:94:77:be:22: c6:bf:d3:6f:b5:99:08:4b:5d:74:30:ce:de:a8:e8: 4a:af:bd:80:05:66:5a:41:e6:06:c6:ae:59:8f:0f: e4:86:8b:df:8c:d9:26:96:00:eb:01:99:13:2e:f2: 6a:1c:29:51:c1:ca:21:94:5b:a0:24:bc:0c:75:2b: cf:cd:e5:e9:81:f4:11:72:72:47:4f:2c:19:7a:eb: e9:d9:24:07:1d:a9:70:6d:74:2f:82:de:41:54:6e: 2d:a1:a1:61:e2:bc:8c:83:7e:cf:15:69:e0:a7:42: a5:a2:4c:39:89:4e:4f:bf:21:5d:22:59:ac:62:32: de:d7:5f:75:f0:9d:41:e4:75:d4:7a:ac:18:db:2a: 07:e9:1c:6e:bb:f3:d4:a2:29:78:cb:9f:57:cf:97: d8:11:40:71:3e:fc:fe:05:1d:e2:8f:99:b5:7b:a8: 8b:f4:8d:da:dc:ae:29:0d:d7:99:32:45:63:62:19: 5b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CB:6D:D2:C0:7B:1A:B8:96:53:40:F7:36:75:0F:EE:38:C8:D8:22 X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.140.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:66:8a:20:0b:1e:1c:9f:77:b3:ff:db:76:74:ec:9a:87:b5: d3:d2:27:44:99:eb:3a:7a:0e:da:c0:25:d2:f2:36:7e:eb:a8: 48:41:db:8b:cc:4f:b3:69:45:ea:8e:57:5e:d2:a4:96:68:c3: ed:3f:1f:da:fc:37:d0:72:19:ae:4a:42:40:70:b6:25:05:fa: c3:e5:48:3e:d1:07:16:01:7f:d7:2b:10:6c:bf:68:24:f7:77: e1:21:e7:b7:75:77:67:5f:3d:60:0f:ca:3a:54:13:37:25:df: f0:b8:9c:c3:3a:f0:15:8d:9f:bc:a5:71:cb:49:f5:39:aa:24: 9f:79:db:ae:09:a0:2e:bc:69:af:ae:e3:32:28:12:a0:87:e1: b6:b6:c0:f9:fd:3f:7f:36:3a:a6:6c:a4:58:8d:72:de:33:73: e5:8c:c0:63:65:d2:ed:80:14:2c:06:c6:e4:fa:f6:c9:1f:c0: d0:62:15:72:42:f5:ca:f1:68:dd:f1:2f:0e:01:50:86:09:bc: 20:c4:49:e4:b5:f3:74:ef:1c:20:dd:ac:2e:14:72:bc:4b:43: 57:0a:a2:ce:ed:52:15:c2:35:ed:ef:2e:5f:6a:62:a3:aa:74: 81:76:23:3b:a6:ac:29:0a:c3:92:17:2c:90:01:2c:35:be:da: ce:79:c8:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURGO0E5T7u8bvzcd5n4eHzX4SnR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMjJaFw0yNzA1MDIwMzA2MjJaMDMxMTAvBgNV BAMTKEY5Q0I2REQyQzA3QjFBQjg5NjUzNDBGNzM2NzUwRkVFMzhDOEQ4MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC213MsMuXRpQwYAEKyNOyS11No qOcR4sFMN1JDgp1Nkc9CyFozMa8gPZeNSChRMFBr822hPyoEdnxh9LrFWFKGbStR iuo+lHe+Isa/02+1mQhLXXQwzt6o6EqvvYAFZlpB5gbGrlmPD+SGi9+M2SaWAOsB mRMu8mocKVHByiGUW6AkvAx1K8/N5emB9BFyckdPLBl66+nZJAcdqXBtdC+C3kFU bi2hoWHivIyDfs8VaeCnQqWiTDmJTk+/IV0iWaxiMt7XX3XwnUHkddR6rBjbKgfp HG6789SiKXjLn1fPl9gRQHE+/P4FHeKPmbV7qIv0jdrcrikN15kyRWNiGVsHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+ctt0sB7GriWU0D3NnUP7jjI2CIwHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv5jDANBgkqhkiG 9w0BAQsFAAOCAQEAPmaKIAseHJ93s//bdnTsmoe109InRJnrOnoO2sAl0vI2fuuo SEHbi8xPs2lF6o5XXtKklmjD7T8f2vw30HIZrkpCQHC2JQX6w+VIPtEHFgF/1ysQ bL9oJPd34SHnt3V3Z189YA/KOlQTNyXf8LicwzrwFY2fvKVxy0n1Oaokn3nbrgmg Lrxpr67jMigSoIfhtrbA+f0/fzY6pmykWI1y3jNz5YzAY2XS7YAULAbG5Pr2yR/A 0GIVckL1yvFo3fEvDgFQhgm8IMRJ5LXzdO8cIN2sLhRyvEtDVwqizu1SFcI17e8u X2pio6p0gXYjO6asKQrDkhcskAEsNb7aznnIYQ== -----END CERTIFICATE-----Generated at Wed May 13 03:56:32 2026 by rpki-client