$ rpki-client -vvf rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa File: 34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: Z9BOHD/0KrdQ2ipOJFVWwYLdiKLHdOuinxG+lCgyfSU= Subject key identifier: C6:53:B5:0E:7E:C9:62:44:5C:69:C0:8E:D0:15:EF:9B:BB:DD:24:A7 Certificate issuer: /CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Certificate serial: 6348F3424250FB5FDB2B14ECC95EE7C4CA2187A7 Authority key identifier: CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa Signing time: Sun 03 May 2026 03:08:08 +0000 ROA not before: Sun 03 May 2026 03:03:08 +0000 ROA not after: Sun 02 May 2027 03:08:08 +0000 asID: 131717 IP address blocks: 45.118.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:48:f3:42:42:50:fb:5f:db:2b:14:ec:c9:5e:e7:c4:ca:21:87:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB0A606FD0642E68B5212AE751953E0B9A92959F Validity Not Before: May 3 03:03:08 2026 GMT Not After : May 2 03:08:08 2027 GMT Subject: CN=C653B50E7EC962445C69C08ED015EF9BBBDD24A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:32:f5:3b:17:c6:18:c2:37:6d:4b:cf:fc: af:ca:b3:66:8a:12:07:7b:52:8c:50:ac:b5:a4:87: e4:83:d2:02:46:17:5e:3d:91:0a:a3:d0:34:33:0f: 40:dd:43:f7:04:58:c2:f5:7b:d9:8d:65:be:36:cf: a3:85:a4:43:86:95:61:dd:1f:b9:b1:6d:03:82:e5: 1b:3d:62:b0:11:a8:cc:9b:3c:65:b1:ea:47:e6:65: 20:56:19:ec:fa:cd:48:30:05:b1:b3:d6:23:71:31: b0:50:03:03:69:64:3b:26:00:70:41:3b:34:b2:60: 42:ed:64:38:c5:f2:48:ef:e7:5b:af:f1:e8:1f:e4: 3a:ed:05:5b:fb:d2:8f:ee:fb:3b:41:9a:26:1a:b1: ee:a9:5f:6b:72:f9:d2:b0:07:18:54:83:ba:9f:19: 75:e7:42:4c:50:5d:7b:7e:ec:9f:60:97:d3:5a:f5: 5b:01:e6:7e:f8:4b:b6:b7:e7:62:82:65:ae:dc:dc: 0e:63:c8:52:98:ff:06:d5:1d:34:af:90:9b:26:41: 6c:e7:43:b2:66:4d:5d:30:c1:35:21:02:f7:10:14: c0:88:eb:d9:a9:3a:63:fd:83:39:de:55:d5:3a:e0: 03:bf:c3:05:44:2a:8d:55:b3:78:29:4f:b9:ab:55: 19:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:53:B5:0E:7E:C9:62:44:5C:69:C0:8E:D0:15:EF:9B:BB:DD:24:A7 X509v3 Authority Key Identifier: keyid:CB:0A:60:6F:D0:64:2E:68:B5:21:2A:E7:51:95:3E:0B:9A:92:95:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/CB0A606FD0642E68B5212AE751953E0B9A92959F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CB0A606FD0642E68B5212AE751953E0B9A92959F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:ae:3b:f4:89:15:54:18:3d:e3:73:57:cb:2f:63:ae:25:64: 24:56:96:e9:59:cc:59:9e:c8:44:29:5c:a5:b4:a1:4e:51:57: 94:c2:9f:da:f2:ab:a8:4e:f3:de:9b:aa:e3:2a:cc:f8:db:b9: 02:66:3e:1c:5d:91:7a:4e:67:bf:a9:9a:80:bc:0d:e5:57:2f: b6:31:f2:7a:f0:36:d1:c9:b5:aa:b3:f9:34:6b:5c:78:eb:f8: 87:08:47:b7:51:51:04:7f:5d:49:bb:35:2a:3d:31:8e:2d:b6: 9f:3b:4e:e0:d6:7f:14:5c:be:14:79:79:7a:b2:9d:e3:09:56: b9:7e:df:bf:ca:74:74:81:a0:1e:47:13:15:9a:60:2e:42:77: 1a:5a:91:77:ca:e5:07:c0:be:37:e3:22:3d:74:aa:ea:c7:7d: 09:a2:6d:64:a5:04:7e:bd:89:46:2b:73:13:36:94:76:88:c9: 18:72:de:e1:70:ab:f8:7d:5a:ff:63:b4:07:3d:89:86:01:e6: 3d:8f:ce:50:7e:a7:f3:e9:b0:d2:d2:c4:bc:f2:f7:a1:f9:61: dc:b1:50:a3:5d:14:32:5c:26:63:2b:b4:70:d2:f5:99:34:88: 07:2b:31:08:7c:3e:8c:f7:5e:bb:74:f3:cf:05:91:b8:31:f4: 01:e2:32:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY0jzQkJQ+1/bKxTsyV7nxMohh6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0IwQTYwNkZEMDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5 QTkyOTU5RjAeFw0yNjA1MDMwMzAzMDhaFw0yNzA1MDIwMzA4MDhaMDMxMTAvBgNV BAMTKEM2NTNCNTBFN0VDOTYyNDQ1QzY5QzA4RUQwMTVFRjlCQkJERDI0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ZzL1OxfGGMI3bUvP/K/Ks2aK Egd7UoxQrLWkh+SD0gJGF149kQqj0DQzD0DdQ/cEWML1e9mNZb42z6OFpEOGlWHd H7mxbQOC5Rs9YrARqMybPGWx6kfmZSBWGez6zUgwBbGz1iNxMbBQAwNpZDsmAHBB OzSyYELtZDjF8kjv51uv8egf5DrtBVv70o/u+ztBmiYase6pX2ty+dKwBxhUg7qf GXXnQkxQXXt+7J9gl9Na9VsB5n74S7a352KCZa7c3A5jyFKY/wbVHTSvkJsmQWzn Q7JmTV0wwTUhAvcQFMCI69mpOmP9gzneVdU64AO/wwVEKo1Vs3gpT7mrVRk3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxlO1Dn7JYkRcacCO0BXvm7vdJKcwHwYDVR0j BBgwFoAUywpgb9BkLmi1ISrnUZU+C5qSlZ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA3NDcxYTMtZWU1My00OTljLTlmMmQtY2YxNmIxZTRhMzUzLzAvQ0IwQTYwNkZE MDY0MkU2OEI1MjEyQUU3NTE5NTNFMEI5QTkyOTU5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQjBBNjA2RkQwNjQyRTY4QjUyMTJBRTc1MTk1M0UwQjlBOTI5 NTlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQA7rjv0iRVUGD3jc1fLL2OuJWQkVpbpWcxZnshEKVyltKFO UVeUwp/a8quoTvPem6rjKsz427kCZj4cXZF6Tme/qZqAvA3lVy+2MfJ68DbRybWq s/k0a1x46/iHCEe3UVEEf11JuzUqPTGOLbafO07g1n8UXL4UeXl6sp3jCVa5ft+/ ynR0gaAeRxMVmmAuQncaWpF3yuUHwL434yI9dKrqx30Jom1kpQR+vYlGK3MTNpR2 iMkYct7hcKv4fVr/Y7QHPYmGAeY9j85Qfqfz6bDS0sS88veh+WHcsVCjXRQyXCZj K7Rw0vWZNIgHKzEIfD6M9167dPPPBZG4MfQB4jLg -----END CERTIFICATE-----Generated at Wed May 13 02:49:10 2026 by rpki-client