$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa File: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: icfsfhUwquzTy2StQKBYwmmyOmAVCsssAYK5CyA5iDI= Subject key identifier: 45:D9:62:0E:AC:32:7B:BE:50:79:BE:F6:A2:BF:DA:0E:40:81:B0:4F Certificate issuer: /CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Certificate serial: 6F7881FC85E14B213BC1E274976D220634CD9459 Authority key identifier: 8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 03:09:29 +0000 ROA not before: Sun 03 May 2026 03:04:29 +0000 ROA not after: Sun 02 May 2027 03:09:29 +0000 asID: 58477 IP address blocks: 45.127.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:78:81:fc:85:e1:4b:21:3b:c1:e2:74:97:6d:22:06:34:cd:94:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Validity Not Before: May 3 03:04:29 2026 GMT Not After : May 2 03:09:29 2027 GMT Subject: CN=45D9620EAC327BBE5079BEF6A2BFDA0E4081B04F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:98:74:48:00:82:a9:a8:3a:c4:c1:22:e4: 67:47:b8:ef:dd:b4:cd:15:41:37:c2:74:48:9f:de: d7:a0:03:83:4f:f3:70:0f:d5:0b:0a:9c:4a:03:20: aa:e1:38:30:b8:11:98:98:fc:07:19:2f:2b:50:b8: 29:3d:e5:8d:b4:96:5f:ca:d5:9f:7f:29:f1:5a:a0: b9:8c:e2:9b:1a:fa:02:72:73:dd:c0:18:85:94:ea: 4b:b7:48:e9:d1:b9:47:40:05:a8:c0:b5:97:de:bd: 55:65:e0:4c:09:0e:ad:ec:c5:70:2e:af:b4:8a:bf: a0:21:21:5d:6a:21:61:f1:55:45:86:d7:84:be:8e: a8:3a:bf:8e:94:63:94:cb:32:c7:7e:89:8f:c1:b1: 4e:9f:2c:32:a2:dd:5f:62:96:6f:75:25:7c:2a:96: 46:f3:c0:6d:5b:7f:b6:5f:7a:77:af:4b:57:ac:c7: 2e:1d:f1:39:3b:b0:41:8c:17:88:40:6a:82:55:4a: 89:c9:75:26:ae:63:43:cd:85:6a:24:be:68:49:00: c1:b0:a5:ac:77:84:4b:dc:80:3d:c5:64:98:92:0d: bc:c3:49:55:51:19:32:3c:cb:95:10:9f:a6:05:34: 5b:07:7c:8c:b2:2e:76:88:9d:93:97:7f:90:e4:66: 5d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D9:62:0E:AC:32:7B:BE:50:79:BE:F6:A2:BF:DA:0E:40:81:B0:4F X509v3 Authority Key Identifier: keyid:8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.133.0/24 Signature Algorithm: sha256WithRSAEncryption 95:cb:9b:79:e5:a4:6a:a1:a6:23:2b:d2:ee:8a:f3:e2:dd:c5: 78:11:75:a2:33:65:81:b2:3a:33:9b:37:11:c3:96:23:b8:94: 23:26:56:a7:40:10:8e:50:b3:4d:38:64:57:e7:f5:52:5d:51: 1d:38:c9:9c:e0:80:95:c4:91:ba:ca:52:9e:88:83:c5:2f:6c: 95:e1:84:dd:54:07:8b:f6:27:74:1d:83:4d:8c:a3:f1:f5:7a: be:b9:ea:c0:fb:19:07:68:2f:1e:54:63:13:3c:aa:e6:a2:4d: 9e:31:ec:f9:e8:71:e5:2e:33:d0:de:72:ee:8c:00:6d:6c:e7: 1e:4b:25:16:e2:91:30:cc:5a:2f:b2:71:ce:c5:b4:76:ce:71: f8:64:bd:91:9e:db:2e:4b:4b:90:c4:0f:3d:6b:fd:49:18:f4: 1b:92:2a:58:77:b3:76:bf:a8:0d:8a:45:56:60:b7:9b:4e:77: 33:43:46:ef:68:6b:f6:b9:f9:c2:12:fb:a8:5c:d5:67:7b:12: 1e:a1:74:3b:cd:a5:2a:01:aa:74:cf:5a:c3:0f:ce:d5:8b:e5: 1a:79:14:e9:80:09:95:92:63:73:13:b7:df:5c:9f:40:e5:c9: 5d:69:41:4c:90:6c:c1:2e:09:6e:3b:04:3d:d3:ec:ce:ca:bb: 67:f1:bb:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb3iB/IXhSyE7weJ0l20iBjTNlFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFFOUJCMjEwMDNFODczOTZDRURENzg5OEI0QTUwNDI0 RThDRUM4RjAeFw0yNjA1MDMwMzA0MjlaFw0yNzA1MDIwMzA5MjlaMDMxMTAvBgNV BAMTKDQ1RDk2MjBFQUMzMjdCQkU1MDc5QkVGNkEyQkZEQTBFNDA4MUIwNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBiph0SACCqag6xMEi5GdHuO/d tM0VQTfCdEif3tegA4NP83AP1QsKnEoDIKrhODC4EZiY/AcZLytQuCk95Y20ll/K 1Z9/KfFaoLmM4psa+gJyc93AGIWU6ku3SOnRuUdABajAtZfevVVl4EwJDq3sxXAu r7SKv6AhIV1qIWHxVUWG14S+jqg6v46UY5TLMsd+iY/BsU6fLDKi3V9ilm91JXwq lkbzwG1bf7ZfenevS1esxy4d8Tk7sEGMF4hAaoJVSonJdSauY0PNhWokvmhJAMGw pax3hEvcgD3FZJiSDbzDSVVRGTI8y5UQn6YFNFsHfIyyLnaInZOXf5DkZl3FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURdliDqwye75Qeb72or/aDkCBsE8wHwYDVR0j BBgwFoAUium7IQA+hzls7deJi0pQQk6M7I8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNmOGY1NWMtOWUzNS00Y2UyLTg5MGYtMGRlM2UyNDA0NjExLzAvOEFFOUJCMjEw MDNFODczOTZDRURENzg5OEI0QTUwNDI0RThDRUM4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QUU5QkIyMTAwM0U4NzM5NkNFREQ3ODk4QjRBNTA0MjRFOENF QzhGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1/hTANBgkqhkiG 9w0BAQsFAAOCAQEAlcubeeWkaqGmIyvS7orz4t3FeBF1ojNlgbI6M5s3EcOWI7iU IyZWp0AQjlCzTThkV+f1Ul1RHTjJnOCAlcSRuspSnoiDxS9sleGE3VQHi/YndB2D TYyj8fV6vrnqwPsZB2gvHlRjEzyq5qJNnjHs+ehx5S4z0N5y7owAbWznHkslFuKR MMxaL7JxzsW0ds5x+GS9kZ7bLktLkMQPPWv9SRj0G5IqWHezdr+oDYpFVmC3m053 M0NG72hr9rn5whL7qFzVZ3sSHqF0O82lKgGqdM9aww/O1YvlGnkU6YAJlZJjcxO3 31yfQOXJXWlBTJBswS4JbjsEPdPszsq7Z/G7SA== -----END CERTIFICATE-----Generated at Wed May 13 05:47:33 2026 by rpki-client