$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134312e302f32342d3234203d3e203535363533.roa File: 34332e3234392e3134312e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: Bc5YFcqICb+bh4tRwH4x3D73YQXCDozUg5+ESseoBXI= Subject key identifier: 72:12:FA:2C:01:FF:ED:51:60:2A:51:62:F3:A2:E9:5B:AB:DB:F3:5F Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 749C9FE7EBB99E5D8B01B13AD710D5C0DF12BBDC Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134312e302f32342d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:20 +0000 ROA not before: Sun 03 May 2026 03:01:20 +0000 ROA not after: Sun 02 May 2027 03:06:20 +0000 asID: 55653 IP address blocks: 43.249.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9c:9f:e7:eb:b9:9e:5d:8b:01:b1:3a:d7:10:d5:c0:df:12:bb:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:20 2026 GMT Not After : May 2 03:06:20 2027 GMT Subject: CN=7212FA2C01FFED51602A5162F3A2E95BABDBF35F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4b:16:21:17:e4:fd:56:7d:96:79:bc:ac:fa: 07:ca:1f:ff:37:ec:03:61:91:76:f4:c4:c0:f1:64: ee:f8:fa:bd:5a:a4:7a:95:eb:99:bb:8d:e5:83:f7: 4a:2f:89:cc:a5:96:5b:77:92:3c:7a:1f:85:f6:7d: ab:97:c2:3d:d0:35:ce:dd:d7:1e:69:77:5c:a5:63: 55:1a:6f:a5:1c:5e:29:77:0f:f4:ae:43:1f:93:7a: 01:d2:f5:0d:66:0a:d6:43:20:7d:c5:84:c5:71:57: d4:0b:ea:84:75:3c:45:92:0c:8f:6b:93:06:bb:28: 8a:94:5a:b8:82:66:3c:7c:64:81:ac:bb:73:98:ce: 03:80:5d:e8:55:97:09:f2:bd:70:83:39:f1:d1:15: 27:05:a5:a6:0d:d1:80:ae:79:b1:0d:e3:3e:6b:bd: b3:1b:ff:50:1d:22:2a:55:5b:de:d7:15:db:e8:f3: b6:a3:aa:20:21:01:59:9a:a5:41:fd:db:4f:e0:11: 18:37:8c:37:fb:4a:db:97:ae:9a:c9:02:9e:d2:c7: a8:02:d7:82:3c:4b:10:a1:54:78:4b:ff:a9:ba:7f: 56:4f:b6:97:aa:82:4a:fe:aa:14:97:26:89:7b:90: 03:e6:35:35:65:91:27:d2:67:ed:72:e3:13:12:28: 9a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:12:FA:2C:01:FF:ED:51:60:2A:51:62:F3:A2:E9:5B:AB:DB:F3:5F X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134312e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.141.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:05:8e:7b:e8:5b:f3:63:48:e5:cd:e7:4c:72:ee:8a:4d:da: 51:6a:b0:a1:e0:78:4b:ce:58:e4:a7:f3:67:fc:80:23:91:e9: dd:80:37:f6:e9:52:1b:6d:4d:9b:19:8e:3f:84:6f:4b:ce:89: d8:14:d2:66:70:1e:5b:a6:3e:69:70:be:ef:1f:64:57:69:9a: 54:d8:96:33:f9:27:78:1a:9c:dc:13:0e:2b:08:11:31:2a:76: c6:cb:27:99:24:e5:cf:50:92:62:d1:31:d0:45:94:19:f5:19: 5d:a8:93:d8:e8:ee:d5:bb:bd:a7:17:30:1c:07:45:4d:5b:89: 16:e2:fd:61:84:f3:cb:30:b2:f0:e1:b3:91:ee:be:0f:89:93: 04:32:19:4e:39:a3:ae:40:12:51:b0:eb:4a:a6:2e:78:cd:9d: 43:76:f6:c9:3b:1e:62:58:be:65:a4:c8:37:99:32:b4:80:9e: 48:b1:bd:c8:4f:ae:ee:02:dc:29:66:10:9a:e0:d5:c2:80:99: ed:17:b4:1b:37:13:7d:b6:d0:f4:b8:12:29:2d:ff:a7:a4:eb: af:bc:f9:32:e8:ef:50:0d:05:38:1f:fa:b5:db:d2:c5:92:f7: 70:d7:35:d0:1e:1c:ef:e4:eb:09:bf:26:8f:cd:98:12:65:53: 40:d1:47:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdJyf5+u5nl2LAbE61xDVwN8Su9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMjBaFw0yNzA1MDIwMzA2MjBaMDMxMTAvBgNV BAMTKDcyMTJGQTJDMDFGRkVENTE2MDJBNTE2MkYzQTJFOTVCQUJEQkYzNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2SxYhF+T9Vn2Webys+gfKH/83 7ANhkXb0xMDxZO74+r1apHqV65m7jeWD90ovicylllt3kjx6H4X2fauXwj3QNc7d 1x5pd1ylY1Uab6UcXil3D/SuQx+TegHS9Q1mCtZDIH3FhMVxV9QL6oR1PEWSDI9r kwa7KIqUWriCZjx8ZIGsu3OYzgOAXehVlwnyvXCDOfHRFScFpaYN0YCuebEN4z5r vbMb/1AdIipVW97XFdvo87ajqiAhAVmapUH920/gERg3jDf7StuXrprJAp7Sx6gC 14I8SxChVHhL/6m6f1ZPtpeqgkr+qhSXJol7kAPmNTVlkSfSZ+1y4xMSKJo1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUchL6LAH/7VFgKlFi86LpW6vb818wHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv5jTANBgkqhkiG 9w0BAQsFAAOCAQEAGgWOe+hb82NI5c3nTHLuik3aUWqwoeB4S85Y5KfzZ/yAI5Hp 3YA39ulSG21NmxmOP4RvS86J2BTSZnAeW6Y+aXC+7x9kV2maVNiWM/kneBqc3BMO KwgRMSp2xssnmSTlz1CSYtEx0EWUGfUZXaiT2Oju1bu9pxcwHAdFTVuJFuL9YYTz yzCy8OGzke6+D4mTBDIZTjmjrkASUbDrSqYueM2dQ3b2yTseYli+ZaTIN5kytICe SLG9yE+u7gLcKWYQmuDVwoCZ7Re0GzcTfbbQ9LgSKS3/p6Trr7z5MujvUA0FOB/6 tdvSxZL3cNc10B4c7+TrCb8mj82YEmVTQNFHjg== -----END CERTIFICATE-----Generated at Wed May 13 02:15:57 2026 by rpki-client