$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133342e302f32342d3234203d3e203538343737.roa File: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: rkn+DI7lNxqSqCTlwACNzV0qOshNnDXKFLIZsdocYhE= Subject key identifier: CD:A2:D8:27:AB:A2:FE:50:68:37:41:13:19:E5:7C:15:B3:DA:CC:AE Certificate issuer: /CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Certificate serial: 2CD2D9D6E5F520D56F0D15823FCEFEB4556F1045 Authority key identifier: 8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133342e302f32342d3234203d3e203538343737.roa Signing time: Sun 03 May 2026 03:09:32 +0000 ROA not before: Sun 03 May 2026 03:04:32 +0000 ROA not after: Sun 02 May 2027 03:09:32 +0000 asID: 58477 IP address blocks: 45.127.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d2:d9:d6:e5:f5:20:d5:6f:0d:15:82:3f:ce:fe:b4:55:6f:10:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Validity Not Before: May 3 03:04:32 2026 GMT Not After : May 2 03:09:32 2027 GMT Subject: CN=CDA2D827ABA2FE506837411319E57C15B3DACCAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a0:36:83:23:81:80:85:97:e5:fe:66:54:47: e2:11:66:d6:37:56:9d:3e:57:e1:79:1a:4e:df:32: f8:5d:b7:18:5b:72:c7:b6:3d:4c:55:4b:ce:9a:a2: e5:c7:dd:fd:18:b8:8f:5e:94:d9:e2:49:e3:f4:13: b0:1b:43:f8:58:da:15:e1:7c:a7:f3:01:d5:38:4f: c9:fd:9a:61:e4:c5:84:9a:51:b4:a9:d4:87:d3:21: 4b:26:93:d8:75:46:38:ed:21:a6:f1:4a:6a:c3:f2: f4:b3:1c:82:f9:bd:90:36:10:17:0f:9b:32:c7:d0: ca:b3:31:24:4f:fe:aa:57:88:d2:f0:f4:9b:c8:b2: 1c:62:e3:22:87:1a:17:1b:82:d7:70:eb:fb:2d:93: 76:d2:38:98:ca:1d:26:d7:d4:ef:a2:bd:67:11:7f: fa:a1:ee:29:6d:65:c1:4f:35:48:eb:38:c4:48:4d: de:19:e2:36:79:1d:e3:5c:66:ad:a7:12:aa:fe:92: 55:38:4e:99:5b:f5:95:ac:4b:f2:85:22:b7:23:19: bb:93:c0:7f:fe:5d:f4:73:7f:c4:74:44:45:06:32: f6:c6:ce:db:ae:42:c7:19:2f:ee:24:19:fa:03:88: 16:28:11:8e:4d:02:86:61:84:e5:90:75:fb:5f:09: 61:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A2:D8:27:AB:A2:FE:50:68:37:41:13:19:E5:7C:15:B3:DA:CC:AE X509v3 Authority Key Identifier: keyid:8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133342e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.134.0/24 Signature Algorithm: sha256WithRSAEncryption a0:32:55:19:79:93:2d:ca:98:03:18:57:41:3d:77:9b:0d:ff: 87:8a:80:b5:26:17:b4:4d:19:99:19:8f:85:14:47:a0:56:25: 82:23:cb:23:83:43:43:99:d2:b2:53:74:78:b1:78:11:20:f4: db:e6:31:d4:0a:62:8d:77:d4:d9:4e:2a:2b:4f:75:82:32:f6: b1:83:44:bb:47:d0:99:a0:1b:97:73:a7:6e:28:88:e5:63:70: ac:bf:f4:bd:ef:c3:62:de:c0:cf:48:a9:8d:62:aa:ae:99:c1: 7a:77:f4:71:b7:ee:61:b3:c8:03:31:30:f2:5b:04:73:7d:62: 59:93:f9:98:42:aa:7c:4b:96:f2:05:29:4e:be:03:ca:3e:bc: 51:d1:07:86:bc:8a:d1:ff:74:16:26:94:b9:ac:fb:5b:35:46: f6:8e:1c:7c:69:d9:60:ac:e6:68:04:72:8f:9f:ae:9a:fa:25: af:60:41:14:ee:70:ab:87:eb:a2:05:57:c1:71:41:da:20:f9: 55:04:26:d7:ca:55:9b:28:ab:f3:bc:d1:f9:61:3d:fc:99:c2: ce:71:04:48:2b:41:e2:03:02:51:81:e8:fc:d4:3c:8e:b5:53: b8:dc:00:c9:96:5f:46:a5:6a:1a:91:ff:21:41:53:3e:32:bd: 88:d6:3c:c7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULNLZ1uX1INVvDRWCP87+tFVvEEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFFOUJCMjEwMDNFODczOTZDRURENzg5OEI0QTUwNDI0 RThDRUM4RjAeFw0yNjA1MDMwMzA0MzJaFw0yNzA1MDIwMzA5MzJaMDMxMTAvBgNV BAMTKENEQTJEODI3QUJBMkZFNTA2ODM3NDExMzE5RTU3QzE1QjNEQUNDQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnoDaDI4GAhZfl/mZUR+IRZtY3 Vp0+V+F5Gk7fMvhdtxhbcse2PUxVS86aouXH3f0YuI9elNniSeP0E7AbQ/hY2hXh fKfzAdU4T8n9mmHkxYSaUbSp1IfTIUsmk9h1RjjtIabxSmrD8vSzHIL5vZA2EBcP mzLH0MqzMSRP/qpXiNLw9JvIshxi4yKHGhcbgtdw6/stk3bSOJjKHSbX1O+ivWcR f/qh7iltZcFPNUjrOMRITd4Z4jZ5HeNcZq2nEqr+klU4Tplb9ZWsS/KFIrcjGbuT wH/+XfRzf8R0REUGMvbGztuuQscZL+4kGfoDiBYoEY5NAoZhhOWQdftfCWHFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzaLYJ6ui/lBoN0ETGeV8FbPazK4wHwYDVR0j BBgwFoAUium7IQA+hzls7deJi0pQQk6M7I8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNmOGY1NWMtOWUzNS00Y2UyLTg5MGYtMGRlM2UyNDA0NjExLzAvOEFFOUJCMjEw MDNFODczOTZDRURENzg5OEI0QTUwNDI0RThDRUM4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QUU5QkIyMTAwM0U4NzM5NkNFREQ3ODk4QjRBNTA0MjRFOENF QzhGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1/hjANBgkqhkiG 9w0BAQsFAAOCAQEAoDJVGXmTLcqYAxhXQT13mw3/h4qAtSYXtE0ZmRmPhRRHoFYl giPLI4NDQ5nSslN0eLF4ESD02+Yx1ApijXfU2U4qK091gjL2sYNEu0fQmaAbl3On biiI5WNwrL/0ve/DYt7Az0ipjWKqrpnBenf0cbfuYbPIAzEw8lsEc31iWZP5mEKq fEuW8gUpTr4Dyj68UdEHhryK0f90FiaUuaz7WzVG9o4cfGnZYKzmaARyj5+umvol r2BBFO5wq4frogVXwXFB2iD5VQQm18pVmyir87zR+WE9/JnCznEESCtB4gMCUYHo /NQ8jrVTuNwAyZZfRqVqGpH/IUFTPjK9iNY8xw== -----END CERTIFICATE-----Generated at Wed May 13 02:38:13 2026 by rpki-client