$ rpki-client -vvf rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134332e302f32342d3234203d3e203535363533.roa File: 34332e3234392e3134332e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: qdZ5s/RPKJd1zWpn0OA8oOkj/7C1tf+45M/HrbWmTwI= Subject key identifier: 6C:18:D4:22:9B:02:D3:CD:8E:8E:3D:9F:3C:13:5F:0F:E7:03:55:C5 Certificate issuer: /CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Certificate serial: 61081CCAECCABA6B80396DFA33F6513F02FA2200 Authority key identifier: 0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134332e302f32342d3234203d3e203535363533.roa Signing time: Sun 03 May 2026 03:06:19 +0000 ROA not before: Sun 03 May 2026 03:01:19 +0000 ROA not after: Sun 02 May 2027 03:06:19 +0000 asID: 55653 IP address blocks: 43.249.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:08:1c:ca:ec:ca:ba:6b:80:39:6d:fa:33:f6:51:3f:02:fa:22:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BD738D9C7AB72C813EB893E3955A68B3190CFD2 Validity Not Before: May 3 03:01:19 2026 GMT Not After : May 2 03:06:19 2027 GMT Subject: CN=6C18D4229B02D3CD8E8E3D9F3C135F0FE70355C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f3:22:10:fd:50:6f:e0:a4:2d:ea:59:27:2d: 57:04:29:c8:ea:9d:e0:04:65:35:6c:4f:06:a8:0b: b7:da:82:f5:dd:43:9b:6c:48:db:19:5b:82:ad:73: 45:03:81:e7:56:35:0e:bf:81:07:9e:34:dd:b5:bf: 66:7d:72:2f:c7:48:54:fc:6d:49:9f:69:0a:fd:6f: a0:7f:39:bf:82:f8:e9:2e:ba:7d:95:29:17:6c:cf: 7d:c2:d1:e6:e7:f7:c4:f4:43:c6:88:1b:92:1e:b4: dd:32:03:18:b3:38:35:2a:4d:7d:45:ee:a8:b2:67: 86:74:6f:da:76:37:9d:3d:53:c5:c7:82:44:1e:1d: 59:6e:ac:a0:56:cb:52:4e:20:a2:54:a4:0b:1b:56: 8d:4a:c1:a1:73:c3:c8:02:6c:ce:61:91:68:a8:44: a1:93:73:2e:f1:2e:cf:61:b2:26:e1:02:22:48:b6: 9f:fb:c0:10:00:55:ee:d0:bb:9e:c4:5a:dc:93:f2: d9:e1:61:e0:a5:bd:a0:1c:11:77:c5:a5:d1:3b:81: 07:d5:58:68:7a:40:f8:ac:22:40:29:14:41:88:4b: 18:9b:af:b8:92:7e:ca:ff:7d:2a:9f:77:42:b4:62: 4d:8d:b4:30:d4:c1:99:e3:15:d6:62:6b:5e:e2:b2: 03:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:18:D4:22:9B:02:D3:CD:8E:8E:3D:9F:3C:13:5F:0F:E7:03:55:C5 X509v3 Authority Key Identifier: keyid:0B:D7:38:D9:C7:AB:72:C8:13:EB:89:3E:39:55:A6:8B:31:90:CF:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BD738D9C7AB72C813EB893E3955A68B3190CFD2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134332e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.143.0/24 Signature Algorithm: sha256WithRSAEncryption a0:4d:20:3a:d3:73:bb:15:d2:37:38:ed:6f:f2:b4:a5:0c:06: 36:8b:dc:1a:0d:60:68:6a:75:44:ea:ae:72:77:66:d8:17:e7: e8:79:57:54:53:0f:be:dd:2b:e1:b6:bd:bd:40:6f:de:28:d5: 72:58:54:d2:36:35:8a:68:33:6b:0c:ac:f2:a6:66:80:d2:f3: 5d:f2:b6:e8:c9:20:be:57:92:e1:5e:24:35:ec:a3:54:ea:9d: 58:3b:8a:6e:87:c1:4d:76:1e:5d:e6:ba:74:86:1b:31:a7:56: 57:ea:5b:52:f5:01:a1:76:6a:60:56:f3:08:b4:2e:2c:74:ce: 49:25:8c:58:71:77:ac:8d:e2:18:d0:ff:81:4c:e7:91:98:c2: 42:ed:bd:d8:c1:e6:6f:10:f1:fe:22:4d:3e:7b:fa:64:82:52: 43:20:3c:23:23:15:de:31:72:c5:42:40:bd:ed:e1:43:87:7d: 27:56:ba:ef:2e:c8:67:57:3c:fe:f9:68:ac:66:5a:01:26:9b: a3:6d:f9:c2:0d:3a:6a:61:5f:5b:ca:cb:00:91:e8:f2:55:bb: c9:6e:48:20:fa:45:94:38:7a:45:db:03:6c:1d:6b:f3:f4:fc: ee:9e:21:d9:54:3d:30:ec:7c:fe:f1:e6:66:4c:3b:67:3f:36: 50:d7:fe:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYQgcyuzKumuAOW36M/ZRPwL6IgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJENzM4RDlDN0FCNzJDODEzRUI4OTNFMzk1NUE2OEIz MTkwQ0ZEMjAeFw0yNjA1MDMwMzAxMTlaFw0yNzA1MDIwMzA2MTlaMDMxMTAvBgNV BAMTKDZDMThENDIyOUIwMkQzQ0Q4RThFM0Q5RjNDMTM1RjBGRTcwMzU1QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP8yIQ/VBv4KQt6lknLVcEKcjq neAEZTVsTwaoC7fagvXdQ5tsSNsZW4Ktc0UDgedWNQ6/gQeeNN21v2Z9ci/HSFT8 bUmfaQr9b6B/Ob+C+Okuun2VKRdsz33C0ebn98T0Q8aIG5IetN0yAxizODUqTX1F 7qiyZ4Z0b9p2N509U8XHgkQeHVlurKBWy1JOIKJUpAsbVo1KwaFzw8gCbM5hkWio RKGTcy7xLs9hsibhAiJItp/7wBAAVe7Qu57EWtyT8tnhYeClvaAcEXfFpdE7gQfV WGh6QPisIkApFEGISxibr7iSfsr/fSqfd0K0Yk2NtDDUwZnjFdZia17isgOnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbBjUIpsC082Ojj2fPBNfD+cDVcUwHwYDVR0j BBgwFoAUC9c42cercsgT64k+OVWmizGQz9IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzk3NDY1ZTMtNzhhMC00OTY1LWFlMTQtZTRjYjRkMGZjMTg1LzAvMEJENzM4RDlD N0FCNzJDODEzRUI4OTNFMzk1NUE2OEIzMTkwQ0ZEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkQ3MzhEOUM3QUI3MkM4MTNFQjg5M0UzOTU1QTY4QjMxOTBD RkQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv5jzANBgkqhkiG 9w0BAQsFAAOCAQEAoE0gOtNzuxXSNzjtb/K0pQwGNovcGg1gaGp1ROqucndm2Bfn 6HlXVFMPvt0r4ba9vUBv3ijVclhU0jY1imgzawys8qZmgNLzXfK26MkgvleS4V4k NeyjVOqdWDuKbofBTXYeXea6dIYbMadWV+pbUvUBoXZqYFbzCLQuLHTOSSWMWHF3 rI3iGND/gUznkZjCQu292MHmbxDx/iJNPnv6ZIJSQyA8IyMV3jFyxUJAve3hQ4d9 J1a67y7IZ1c8/vlorGZaASabo235wg06amFfW8rLAJHo8lW7yW5IIPpFlDh6RdsD bB1r8/T87p4h2VQ9MOx8/vHmZkw7Zz82UNf+8Q== -----END CERTIFICATE-----Generated at Wed May 13 03:23:28 2026 by rpki-client