$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134322e302f32342d3234203d3e203535363533.roa File: 34332e3234392e3134322e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: nVmldivYscT9yIlUPfak+eYDC8xGQfjxxTwl5kvmf58= Subject key identifier: 2B:7F:9F:90:9B:3D:B6:91:3D:D3:21:AE:F0:19:2C:3A:8D:BE:58:27 Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 47A3A5073FDBB062DDD36F5EB5BE21FE61BD6C68 Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134322e302f32342d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:26 +0000 ROA not before: Sun 03 May 2026 03:01:26 +0000 ROA not after: Sun 02 May 2027 03:06:26 +0000 asID: 55653 IP address blocks: 43.249.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:a3:a5:07:3f:db:b0:62:dd:d3:6f:5e:b5:be:21:fe:61:bd:6c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:26 2026 GMT Not After : May 2 03:06:26 2027 GMT Subject: CN=2B7F9F909B3DB6913DD321AEF0192C3A8DBE5827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:be:f6:96:0b:1d:29:4a:ae:13:65:a7:c8:e7: 17:1c:37:48:13:f1:79:07:43:f7:33:b5:72:bc:de: 02:54:57:7a:8f:c5:75:a4:75:da:3c:5c:3b:71:d8: 17:d2:11:f6:76:23:d8:ef:b2:c4:14:fc:8f:51:c5: 8a:8c:41:d9:07:46:4f:cd:37:15:c1:30:1c:10:ea: 6e:c6:d8:c3:50:70:50:5e:f8:84:c3:c8:64:32:ea: e3:44:01:62:f1:ba:c3:15:8c:36:44:c8:0c:73:1e: f4:cb:37:f4:5f:e2:a8:60:04:07:78:fa:6f:aa:6f: 5a:57:5a:6a:d9:6f:1a:db:ed:d3:0c:37:d3:ec:94: 13:7e:07:43:26:37:91:aa:b2:6d:ce:8c:8d:69:b2: 43:d5:a3:9f:0d:fe:51:ed:a7:49:38:08:83:8e:f7: 35:78:d7:f3:a4:7d:a9:2d:7f:0c:0f:e4:45:09:76: cc:a9:1d:69:cd:94:54:6e:af:b4:8c:41:31:bd:fa: f3:34:18:27:86:ea:8c:6c:2e:75:49:99:24:3c:90: 81:5a:35:07:7a:ed:96:db:f9:f5:c3:08:26:44:42: a2:f4:4b:47:0d:10:10:b8:74:f9:b5:1e:0a:81:89: 62:0d:96:57:f7:22:62:78:15:0b:1c:09:27:fc:5e: 1a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7F:9F:90:9B:3D:B6:91:3D:D3:21:AE:F0:19:2C:3A:8D:BE:58:27 X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134322e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.142.0/24 Signature Algorithm: sha256WithRSAEncryption 09:37:c2:6e:7d:66:a4:d9:8e:6e:84:99:6b:52:5d:7c:91:99: 0a:47:d6:55:f7:21:5e:f0:4d:b9:58:b1:ce:b2:a7:6b:14:4a: f4:24:51:16:23:d3:ec:8c:09:73:3b:a2:73:9a:eb:37:ac:c8: d3:9a:a4:49:4c:f1:a8:5b:6b:c0:2e:7d:be:00:e6:c0:7f:ad: 75:d2:df:16:23:70:47:12:e0:c8:50:69:26:67:e0:3a:77:4b: e9:19:1f:80:67:9d:24:8f:7d:1f:ae:69:5c:04:5b:62:b4:b5: aa:57:52:d7:bd:72:76:5e:62:bb:cc:53:91:53:30:0c:31:05: f0:09:36:28:4d:06:7d:c2:ab:29:96:97:1f:88:15:3b:95:e6: dc:c8:3a:7a:ce:8c:21:67:5e:00:ca:da:42:09:12:a2:28:3b: 40:06:ba:d1:7b:65:b1:ed:53:2f:b1:f4:17:f6:82:7f:6f:44: c6:94:f4:4b:3e:eb:99:23:71:da:b6:e4:e9:d4:f2:80:84:1f: a7:32:f7:23:bf:fa:a4:40:d7:d6:f5:e9:04:29:0d:50:b5:7f: 20:f5:31:74:3c:b1:9f:7c:56:4f:ab:2d:a6:45:db:44:e5:c1: 71:25:aa:b7:b0:12:4e:d7:b2:f4:4c:e7:13:c5:5f:b6:53:ad: 2c:8c:46:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR6OlBz/bsGLd029etb4h/mG9bGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMjZaFw0yNzA1MDIwMzA2MjZaMDMxMTAvBgNV BAMTKDJCN0Y5RjkwOUIzREI2OTEzREQzMjFBRUYwMTkyQzNBOERCRTU4MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuvvaWCx0pSq4TZafI5xccN0gT 8XkHQ/cztXK83gJUV3qPxXWkddo8XDtx2BfSEfZ2I9jvssQU/I9RxYqMQdkHRk/N NxXBMBwQ6m7G2MNQcFBe+ITDyGQy6uNEAWLxusMVjDZEyAxzHvTLN/Rf4qhgBAd4 +m+qb1pXWmrZbxrb7dMMN9PslBN+B0MmN5Gqsm3OjI1pskPVo58N/lHtp0k4CIOO 9zV41/OkfaktfwwP5EUJdsypHWnNlFRur7SMQTG9+vM0GCeG6oxsLnVJmSQ8kIFa NQd67Zbb+fXDCCZEQqL0S0cNEBC4dPm1HgqBiWINllf3ImJ4FQscCSf8XhrVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK3+fkJs9tpE90yGu8BksOo2+WCcwHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv5jjANBgkqhkiG 9w0BAQsFAAOCAQEACTfCbn1mpNmOboSZa1JdfJGZCkfWVfchXvBNuVixzrKnaxRK 9CRRFiPT7IwJczuic5rrN6zI05qkSUzxqFtrwC59vgDmwH+tddLfFiNwRxLgyFBp JmfgOndL6RkfgGedJI99H65pXARbYrS1qldS171ydl5iu8xTkVMwDDEF8Ak2KE0G fcKrKZaXH4gVO5Xm3Mg6es6MIWdeAMraQgkSoig7QAa60Xtlse1TL7H0F/aCf29E xpT0Sz7rmSNx2rbk6dTygIQfpzL3I7/6pEDX1vXpBCkNULV/IPUxdDyxn3xWT6st pkXbROXBcSWqt7ASTtey9EznE8VftlOtLIxGww== -----END CERTIFICATE-----Generated at Wed May 13 02:49:09 2026 by rpki-client