$ rpki-client -vvf rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa File: 34332e3234302e3232352e302f32342d3234203d3e203633343933.roa (raw, json) Hash identifier: NJ/ZuXg3IzseC0419KTO2YbQ/VOZZfzQExIZsLUwy0I= Subject key identifier: FF:2A:BE:85:5F:B6:52:C5:8C:11:26:30:63:E8:57:C6:A5:A0:37:B9 Certificate issuer: /CN=3B5092CF38247651A4F776617E70229749D4DF27 Certificate serial: 18CCA42283757915D5BA77EA4102056438D7A7A6 Authority key identifier: 3B:50:92:CF:38:24:76:51:A4:F7:76:61:7E:70:22:97:49:D4:DF:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa Signing time: Sun 03 May 2026 03:07:49 +0000 ROA not before: Sun 03 May 2026 03:02:49 +0000 ROA not after: Sun 02 May 2027 03:07:49 +0000 asID: 63493 IP address blocks: 43.240.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.crl rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:cc:a4:22:83:75:79:15:d5:ba:77:ea:41:02:05:64:38:d7:a7:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B5092CF38247651A4F776617E70229749D4DF27 Validity Not Before: May 3 03:02:49 2026 GMT Not After : May 2 03:07:49 2027 GMT Subject: CN=FF2ABE855FB652C58C11263063E857C6A5A037B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:06:94:22:0a:93:8d:cd:ab:32:dd:5b:b5:93: 4f:cc:26:4f:e7:ca:d1:c9:3f:32:a2:b4:16:ae:d5: b1:fc:4d:bc:f6:21:e1:54:e8:03:e9:c0:c5:f1:be: f1:0e:b6:13:b4:8f:97:13:7c:66:73:e8:f9:cf:d2: ae:25:ff:fe:37:1c:9e:06:9b:06:6a:00:bf:64:4b: b7:6e:38:1c:19:5f:72:ce:fe:60:34:d1:2c:9d:36: 20:1d:39:4d:5c:be:6b:f3:79:0a:f1:be:9a:85:8e: 49:12:f1:88:f2:d0:30:18:80:1a:b9:20:5e:1f:ba: 6f:8c:7a:ba:6a:04:46:54:d0:f6:14:2b:a8:e5:86: c7:b3:c1:7a:7b:ba:3e:25:92:f1:ce:9f:3d:30:e4: 3b:9e:19:fa:42:5b:51:31:93:9b:41:4e:71:1d:cf: ea:03:98:dc:59:3c:a3:0a:fb:81:06:fe:30:f7:d0: 95:0c:b6:24:2c:f1:fd:37:c9:1a:a6:0b:d6:c6:f5: a1:fc:33:9a:39:7c:cb:51:39:41:e6:e6:3e:96:e4: 42:45:37:59:0e:77:9b:4e:bf:a0:d6:a2:c7:03:00: 08:15:30:b6:75:0d:89:66:11:2c:d0:2d:82:2e:88: 04:ba:8b:85:fb:49:79:d4:d9:96:b4:20:b9:f8:d7: 24:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2A:BE:85:5F:B6:52:C5:8C:11:26:30:63:E8:57:C6:A5:A0:37:B9 X509v3 Authority Key Identifier: keyid:3B:50:92:CF:38:24:76:51:A4:F7:76:61:7E:70:22:97:49:D4:DF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232352e302f32342d3234203d3e203633343933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.225.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:26:1a:4f:7f:4c:ee:a7:62:97:98:b0:a3:3e:d4:ce:2e:be: 5d:c4:16:87:7f:77:92:e0:81:02:c4:c7:4f:6a:53:60:12:60: 25:75:4f:f5:fb:f1:64:ac:21:6d:f6:83:4d:2c:a4:ab:d0:95: b4:85:70:7b:f7:54:7f:c9:c2:bb:76:01:ec:10:7e:f3:8b:7e: ee:c7:1d:97:1d:32:bc:24:21:02:e6:5c:a2:13:b4:61:3b:cb: 9a:11:41:28:bd:72:f9:77:5f:7e:bd:03:fd:b7:5a:5b:d4:3c: 09:37:f6:9d:8a:0f:cf:a2:e3:de:2a:13:65:60:4a:3a:7a:22: a4:fd:c4:15:2d:48:c0:66:33:04:8f:51:cd:02:27:f4:40:0a: 0b:d0:d9:60:16:c3:10:9e:7b:68:e4:05:4e:66:e4:30:c1:be: 80:eb:9b:3c:5a:3c:c0:7a:e4:92:57:41:cd:48:21:eb:c1:9a: 5e:19:fc:b7:76:6b:10:1e:d5:1a:6c:be:06:6c:9d:fa:2d:5e: 06:2d:74:19:b9:f7:ea:8b:2a:17:c9:7b:ac:62:f3:fa:e0:45: 9b:12:0c:47:50:0d:34:56:d2:d1:ba:cf:ac:93:5f:a5:ad:e6: ae:53:1a:d0:b0:b6:87:57:f2:a2:f9:a4:2c:d9:bb:f8:fa:5f: 50:b6:97:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGMykIoN1eRXVunfqQQIFZDjXp6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I1MDkyQ0YzODI0NzY1MUE0Rjc3NjYxN0U3MDIyOTc0 OUQ0REYyNzAeFw0yNjA1MDMwMzAyNDlaFw0yNzA1MDIwMzA3NDlaMDMxMTAvBgNV BAMTKEZGMkFCRTg1NUZCNjUyQzU4QzExMjYzMDYzRTg1N0M2QTVBMDM3QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjBpQiCpONzasy3Vu1k0/MJk/n ytHJPzKitBau1bH8Tbz2IeFU6APpwMXxvvEOthO0j5cTfGZz6PnP0q4l//43HJ4G mwZqAL9kS7duOBwZX3LO/mA00SydNiAdOU1cvmvzeQrxvpqFjkkS8Yjy0DAYgBq5 IF4fum+MerpqBEZU0PYUK6jlhsezwXp7uj4lkvHOnz0w5DueGfpCW1Exk5tBTnEd z+oDmNxZPKMK+4EG/jD30JUMtiQs8f03yRqmC9bG9aH8M5o5fMtROUHm5j6W5EJF N1kOd5tOv6DWoscDAAgVMLZ1DYlmESzQLYIuiAS6i4X7SXnU2Za0ILn41yTpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/yq+hV+2UsWMESYwY+hXxqWgN7kwHwYDVR0j BBgwFoAUO1CSzzgkdlGk93ZhfnAil0nU3ycwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2ZhYmVjNzEtN2VjYi00ZGJkLWE0MjEtOTliOWNkMjA5MDNhLzAvM0I1MDkyQ0Yz ODI0NzY1MUE0Rjc3NjYxN0U3MDIyOTc0OUQ0REYyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjUwOTJDRjM4MjQ3NjUxQTRGNzc2NjE3RTcwMjI5NzQ5RDRE RjI3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw4TANBgkqhkiG 9w0BAQsFAAOCAQEAPSYaT39M7qdil5iwoz7Uzi6+XcQWh393kuCBAsTHT2pTYBJg JXVP9fvxZKwhbfaDTSykq9CVtIVwe/dUf8nCu3YB7BB+84t+7scdlx0yvCQhAuZc ohO0YTvLmhFBKL1y+Xdffr0D/bdaW9Q8CTf2nYoPz6Lj3ioTZWBKOnoipP3EFS1I wGYzBI9RzQIn9EAKC9DZYBbDEJ57aOQFTmbkMMG+gOubPFo8wHrkkldBzUgh68Ga Xhn8t3ZrEB7VGmy+Bmyd+i1eBi10Gbn36osqF8l7rGLz+uBFmxIMR1ANNFbS0brP rJNfpa3mrlMa0LC2h1fyovmkLNm7+PpfULaXZw== -----END CERTIFICATE-----Generated at Wed May 13 01:36:50 2026 by rpki-client