$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32342d3234203d3e203535363533.roa File: 34332e3234392e3134302e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: 2k2h/lLJh4y28GreNoFDXEw9j2lKUZ4eXzUUiII60sQ= Subject key identifier: DE:4B:4B:C9:ED:C3:13:4B:CE:01:32:C8:C3:43:F1:1F:C3:47:8E:4F Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 42E16131AB6134F1E9F9DDC1CF1DC1368027D87A Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32342d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:24 +0000 ROA not before: Sun 03 May 2026 03:01:24 +0000 ROA not after: Sun 02 May 2027 03:06:24 +0000 asID: 55653 IP address blocks: 43.249.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e1:61:31:ab:61:34:f1:e9:f9:dd:c1:cf:1d:c1:36:80:27:d8:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:24 2026 GMT Not After : May 2 03:06:24 2027 GMT Subject: CN=DE4B4BC9EDC3134BCE0132C8C343F11FC3478E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:61:87:af:d6:8f:69:32:de:9b:bf:b2:77: d8:5d:de:79:5e:d4:03:07:5a:56:51:0b:7b:b5:d4: c9:89:5a:6d:7c:50:d7:a4:30:97:1e:ee:dd:86:79: 33:4a:64:d0:28:5d:6e:ad:9a:5e:9f:3a:11:be:e9: 30:aa:1d:5c:c4:46:b6:75:28:80:9e:b3:67:bf:f7: 2c:1f:bb:05:66:27:6e:85:84:1c:95:2b:49:62:50: 1f:cb:2e:41:35:ad:40:7c:92:8f:99:6a:07:7a:3a: c1:c1:7d:e5:f3:08:eb:fd:d1:17:0f:0e:15:32:d7: aa:a0:55:87:a3:c1:ca:6b:87:1c:6c:bd:ca:e8:b8: 92:06:1e:43:5e:9d:9b:84:54:64:28:86:d4:f3:50: 5f:cb:e5:dc:63:da:50:12:98:ac:e9:a7:25:fe:48: 0d:88:b1:5a:3b:32:04:43:60:1e:08:df:fe:e8:c4: 38:86:a3:bd:81:93:c1:46:fb:94:eb:f1:48:3d:d6: 0b:3f:05:c3:f3:78:11:45:c2:9e:7d:b7:8e:fa:94: ff:97:44:6f:fc:35:7d:00:43:83:8e:49:ef:1c:be: e6:ab:e7:31:31:fd:09:9b:4c:77:0b:9d:88:7b:63: ce:63:6c:6c:e2:90:15:46:41:3e:9f:84:07:74:bf: d7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4B:4B:C9:ED:C3:13:4B:CE:01:32:C8:C3:43:F1:1F:C3:47:8E:4F X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.140.0/24 Signature Algorithm: sha256WithRSAEncryption 12:16:e6:53:36:7f:e1:27:db:b3:07:90:77:2e:91:19:0e:34: 86:7d:52:d7:2c:18:8e:60:78:19:14:f4:0e:99:ce:57:29:2a: dd:c5:06:23:fe:1f:34:b3:97:e8:11:07:49:c7:ad:af:44:54: d4:f8:b8:56:80:1c:33:2c:1c:0a:9d:3b:58:8c:5b:68:ea:8e: af:fc:06:43:15:07:4d:a1:9c:91:5a:b3:e2:31:49:16:63:54: 4a:9f:d8:80:20:54:d4:00:84:57:26:5a:b4:b2:a7:b5:e6:45: 63:d8:6d:c0:b4:96:28:31:ee:13:76:f0:a4:98:79:c1:f8:0d: 01:af:79:f5:79:2e:e4:45:c5:79:55:52:41:ff:59:00:e4:2b: c5:c2:72:89:11:11:e9:43:24:cd:9f:a0:89:cd:aa:49:41:bc: 82:1c:2c:04:3d:00:84:59:80:11:50:0e:9a:70:dd:50:58:e1: 68:df:b2:48:cc:36:c3:da:83:80:5e:c2:38:96:e1:90:c3:50: 26:bb:62:4d:d9:96:ba:04:35:9d:73:33:46:d1:63:5a:a1:8a: eb:52:48:98:19:95:62:ba:98:be:9e:47:e0:d4:cc:14:0b:b1: e8:89:f1:2e:12:4d:6f:56:99:90:0c:1f:d7:c2:e4:06:42:e3: 1b:ab:b5:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQuFhMathNPHp+d3Bzx3BNoAn2HowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMjRaFw0yNzA1MDIwMzA2MjRaMDMxMTAvBgNV BAMTKERFNEI0QkM5RURDMzEzNEJDRTAxMzJDOEMzNDNGMTFGQzM0NzhFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxmmGHr9aPaTLem7+yd9hd3nle 1AMHWlZRC3u11MmJWm18UNekMJce7t2GeTNKZNAoXW6tml6fOhG+6TCqHVzERrZ1 KICes2e/9ywfuwVmJ26FhByVK0liUB/LLkE1rUB8ko+Zagd6OsHBfeXzCOv90RcP DhUy16qgVYejwcprhxxsvcrouJIGHkNenZuEVGQohtTzUF/L5dxj2lASmKzppyX+ SA2IsVo7MgRDYB4I3/7oxDiGo72Bk8FG+5Tr8Ug91gs/BcPzeBFFwp59t476lP+X RG/8NX0AQ4OOSe8cvuar5zEx/QmbTHcLnYh7Y85jbGzikBVGQT6fhAd0v9f/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3ktLye3DE0vOATLIw0PxH8NHjk8wHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv5jDANBgkqhkiG 9w0BAQsFAAOCAQEAEhbmUzZ/4SfbsweQdy6RGQ40hn1S1ywYjmB4GRT0DpnOVykq 3cUGI/4fNLOX6BEHScetr0RU1Pi4VoAcMywcCp07WIxbaOqOr/wGQxUHTaGckVqz 4jFJFmNUSp/YgCBU1ACEVyZatLKnteZFY9htwLSWKDHuE3bwpJh5wfgNAa959Xku 5EXFeVVSQf9ZAOQrxcJyiRER6UMkzZ+gic2qSUG8ghwsBD0AhFmAEVAOmnDdUFjh aN+ySMw2w9qDgF7COJbhkMNQJrtiTdmWugQ1nXMzRtFjWqGK61JImBmVYrqYvp5H 4NTMFAux6InxLhJNb1aZkAwf18LkBkLjG6u1wA== -----END CERTIFICATE-----Generated at Wed May 13 03:47:31 2026 by rpki-client