$ rpki-client -vvf rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e203633343933.roa File: 34332e3234302e3232362e302f32342d3234203d3e203633343933.roa (raw, json) Hash identifier: J0FfR9JSKls+f1CuVbHQ5JPg6SCAprcR1QwuMf2ba6c= Subject key identifier: 1F:5C:EE:89:86:E9:0B:6B:72:07:39:22:6F:E6:ED:36:BB:2E:97:6B Certificate issuer: /CN=3B5092CF38247651A4F776617E70229749D4DF27 Certificate serial: 1244776660DC6C109B1B7DFBBF415632970CD340 Authority key identifier: 3B:50:92:CF:38:24:76:51:A4:F7:76:61:7E:70:22:97:49:D4:DF:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e203633343933.roa Signing time: Sun 03 May 2026 03:07:48 +0000 ROA not before: Sun 03 May 2026 03:02:48 +0000 ROA not after: Sun 02 May 2027 03:07:48 +0000 asID: 63493 IP address blocks: 43.240.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.crl rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:44:77:66:60:dc:6c:10:9b:1b:7d:fb:bf:41:56:32:97:0c:d3:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B5092CF38247651A4F776617E70229749D4DF27 Validity Not Before: May 3 03:02:48 2026 GMT Not After : May 2 03:07:48 2027 GMT Subject: CN=1F5CEE8986E90B6B720739226FE6ED36BB2E976B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4b:ca:f8:c5:96:1d:dd:91:f0:eb:91:23:4c: ba:97:f0:d7:ac:3d:51:19:44:3b:be:87:c0:e8:25: 13:6d:f6:44:ca:27:78:30:8b:03:cf:c6:94:32:d1: e7:ee:43:80:b2:4f:06:76:17:f8:79:86:6f:15:fb: 2f:28:3e:9a:11:7c:e2:e6:ae:2d:27:42:ed:de:8a: 11:67:11:34:ea:32:51:58:b1:fe:7d:50:24:a9:31: ad:9f:44:6f:b1:b5:9e:28:fb:79:d1:c6:77:19:82: 5f:2b:18:c6:36:b4:f0:a5:90:65:78:6f:e4:60:d8: 1a:8d:0e:52:4c:fd:77:6d:29:2c:d3:af:b7:5c:0f: 4f:4a:b6:2b:11:b0:cf:3b:bf:e2:de:77:c9:f4:f5: a6:93:ff:c6:c7:07:e6:d3:98:10:b9:f1:5e:8d:9b: 72:5e:dd:ee:bc:9c:04:29:fb:2f:39:ad:e3:23:eb: 11:52:07:54:d5:a1:70:e7:70:73:85:45:4e:db:52: 40:fb:b3:c9:ed:4d:ac:90:df:bd:e4:e7:8b:16:7e: ce:75:d6:76:0a:06:61:79:11:2b:8e:b6:4e:d8:a4: 1e:00:58:be:5a:79:81:a8:b3:be:3a:62:ba:2a:52: 9c:26:a3:48:7b:a9:dd:44:b2:37:ae:ec:2f:03:2c: 2b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5C:EE:89:86:E9:0B:6B:72:07:39:22:6F:E6:ED:36:BB:2E:97:6B X509v3 Authority Key Identifier: keyid:3B:50:92:CF:38:24:76:51:A4:F7:76:61:7E:70:22:97:49:D4:DF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/3B5092CF38247651A4F776617E70229749D4DF27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B5092CF38247651A4F776617E70229749D4DF27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232362e302f32342d3234203d3e203633343933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.226.0/24 Signature Algorithm: sha256WithRSAEncryption 80:e1:51:62:17:72:b5:c5:f9:2c:c4:f0:a1:b5:6b:b8:bb:0c: 94:bc:61:cf:16:13:af:8f:34:cb:96:3e:e3:4d:e0:ec:20:16: 66:63:0f:04:87:b1:d3:62:cd:13:15:82:6f:75:fe:76:ee:bf: 31:f2:81:c2:98:29:ca:99:77:48:2d:3d:1e:7d:62:81:0d:fc: 8f:e7:20:03:df:b8:88:96:0a:c9:53:4d:40:82:29:fc:71:9f: f2:df:2a:48:50:5c:52:5f:c5:82:a8:c9:db:f6:87:f3:9b:7e: 73:24:a0:b3:8c:e6:ed:5f:3c:43:c5:8d:b2:1d:3a:96:e9:06: b5:47:43:86:14:fc:f7:c8:c8:c6:5c:b6:26:9b:10:ed:c4:40: 45:25:42:a5:71:fe:2a:33:52:fc:c7:17:83:aa:73:8b:aa:09: e8:9b:83:fc:e8:4f:5b:3f:6b:a9:47:a2:78:e3:34:07:cb:aa: 5d:0f:f0:bd:46:7f:af:20:bb:66:85:b8:00:b0:62:6f:d5:89: 0f:98:99:85:bd:24:93:dd:83:ff:88:81:50:66:7a:1b:4a:14: 49:54:a7:14:de:a6:f8:bd:2d:19:48:d4:fb:11:ed:61:55:30: 02:d5:58:56:dc:2a:1b:93:fb:96:47:a0:12:d3:72:50:b9:ce: 53:86:98:dd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEkR3ZmDcbBCbG337v0FWMpcM00AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I1MDkyQ0YzODI0NzY1MUE0Rjc3NjYxN0U3MDIyOTc0 OUQ0REYyNzAeFw0yNjA1MDMwMzAyNDhaFw0yNzA1MDIwMzA3NDhaMDMxMTAvBgNV BAMTKDFGNUNFRTg5ODZFOTBCNkI3MjA3MzkyMjZGRTZFRDM2QkIyRTk3NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVS8r4xZYd3ZHw65EjTLqX8Nes PVEZRDu+h8DoJRNt9kTKJ3gwiwPPxpQy0efuQ4CyTwZ2F/h5hm8V+y8oPpoRfOLm ri0nQu3eihFnETTqMlFYsf59UCSpMa2fRG+xtZ4o+3nRxncZgl8rGMY2tPClkGV4 b+Rg2BqNDlJM/XdtKSzTr7dcD09KtisRsM87v+Led8n09aaT/8bHB+bTmBC58V6N m3Je3e68nAQp+y85reMj6xFSB1TVoXDncHOFRU7bUkD7s8ntTayQ373k54sWfs51 1nYKBmF5ESuOtk7YpB4AWL5aeYGos746YroqUpwmo0h7qd1Esjeu7C8DLCvJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH1zuiYbpC2tyBzkib+btNrsul2swHwYDVR0j BBgwFoAUO1CSzzgkdlGk93ZhfnAil0nU3ycwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2ZhYmVjNzEtN2VjYi00ZGJkLWE0MjEtOTliOWNkMjA5MDNhLzAvM0I1MDkyQ0Yz ODI0NzY1MUE0Rjc3NjYxN0U3MDIyOTc0OUQ0REYyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjUwOTJDRjM4MjQ3NjUxQTRGNzc2NjE3RTcwMjI5NzQ5RDRE RjI3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw4jANBgkqhkiG 9w0BAQsFAAOCAQEAgOFRYhdytcX5LMTwobVruLsMlLxhzxYTr480y5Y+403g7CAW ZmMPBIex02LNExWCb3X+du6/MfKBwpgpypl3SC09Hn1igQ38j+cgA9+4iJYKyVNN QIIp/HGf8t8qSFBcUl/FgqjJ2/aH85t+cySgs4zm7V88Q8WNsh06lukGtUdDhhT8 98jIxly2JpsQ7cRARSVCpXH+KjNS/McXg6pzi6oJ6JuD/OhPWz9rqUeieOM0B8uq XQ/wvUZ/ryC7ZoW4ALBib9WJD5iZhb0kk92D/4iBUGZ6G0oUSVSnFN6m+L0tGUjU +xHtYVUwAtVYVtwqG5P7lkegEtNyULnOU4aY3Q== -----END CERTIFICATE-----Generated at Wed May 13 01:36:17 2026 by rpki-client