$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa File: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: 0WsKsDzY8LPfrJ1pgXZgjbVmTWXixBFTK8YpHb3DNxU= Subject key identifier: EB:A7:AD:49:81:1A:89:8B:D9:C8:DC:C7:62:21:FC:5A:76:4E:57:A9 Certificate issuer: /CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Certificate serial: 6DC20F15E7D7F4CDC8D8C37B2820FF667ADCF8AE Authority key identifier: 8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa Signing time: Sun 03 May 2026 03:09:31 +0000 ROA not before: Sun 03 May 2026 03:04:31 +0000 ROA not after: Sun 02 May 2027 03:09:31 +0000 asID: 135360 IP address blocks: 45.127.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c2:0f:15:e7:d7:f4:cd:c8:d8:c3:7b:28:20:ff:66:7a:dc:f8:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE9BB21003E87396CEDD7898B4A50424E8CEC8F Validity Not Before: May 3 03:04:31 2026 GMT Not After : May 2 03:09:31 2027 GMT Subject: CN=EBA7AD49811A898BD9C8DCC76221FC5A764E57A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:1f:e2:f2:e2:47:07:91:f9:4d:c9:c6:30:76: a3:f4:fd:54:dd:ca:4c:fd:65:41:25:80:9e:d5:c6: 05:53:ac:5e:26:27:fc:3c:39:d6:8f:c8:ff:40:63: 2a:b9:2e:81:cb:04:7d:2f:d9:fc:98:59:1c:e3:fe: 4b:e3:32:a2:b3:ca:09:4d:53:56:0b:47:39:b4:be: 99:d7:ec:01:2e:61:90:94:78:a7:b5:2f:bb:7f:fb: f5:3b:09:c4:b0:df:ef:b2:c1:b5:7a:ff:be:d2:72: d5:cb:51:4d:a5:72:c9:9a:af:75:3d:9b:d2:d5:4b: a7:85:21:2a:19:25:20:82:0d:a5:5e:ce:50:fe:67: f8:92:74:ba:48:0b:0c:b7:77:cc:d4:a5:4f:e1:69: 1a:c5:55:78:d9:48:18:1f:c3:a4:1a:26:f1:38:58: 41:f6:de:9f:45:85:f2:b6:47:e4:13:9b:95:96:0d: 1d:2a:44:a2:fc:88:30:55:e4:f4:af:72:f6:8a:d9: ba:d5:e6:b7:bd:9d:65:c5:7c:41:ce:24:55:31:7a: 10:14:1e:2e:80:f2:37:57:f0:d9:a7:f6:2d:60:22: 9e:de:e6:da:93:b5:a6:30:9b:b8:1b:31:42:df:a3: 06:a8:02:18:02:7c:ae:8b:bf:86:af:ff:23:8f:d5: dc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A7:AD:49:81:1A:89:8B:D9:C8:DC:C7:62:21:FC:5A:76:4E:57:A9 X509v3 Authority Key Identifier: keyid:8A:E9:BB:21:00:3E:87:39:6C:ED:D7:89:8B:4A:50:42:4E:8C:EC:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8AE9BB21003E87396CEDD7898B4A50424E8CEC8F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.135.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:1d:4e:2b:0e:53:ed:bd:56:e4:1d:ea:4b:56:58:4e:51:0e: 34:8b:f1:20:58:40:83:95:94:b6:02:e6:72:21:f9:e7:68:19: 67:64:78:f2:26:c2:de:64:ff:ae:ac:f9:52:5e:c0:2b:d5:b7: 61:a7:58:70:70:74:ac:50:dc:d9:6d:1d:5f:46:1b:45:66:4f: 16:b3:b3:4d:5b:9b:21:64:8d:30:7c:90:55:d0:34:a0:a6:5e: 4c:96:0a:da:d1:96:b0:3e:60:a1:a4:76:7d:81:10:01:5a:61: 35:b2:6e:7e:0f:54:79:18:ad:0e:17:41:3d:66:fc:f0:8e:14: 8a:30:cd:6a:e9:ef:6d:1c:00:83:0c:4c:09:ee:aa:f6:bc:9f: 62:7d:9f:a7:bc:69:a3:4e:cb:85:90:03:c9:d5:1e:dd:d9:2d: 86:4e:0c:66:30:43:c1:69:3f:e1:b9:70:c4:fb:94:96:ff:ff: 11:c3:c4:0c:3a:5e:b5:49:dc:85:e1:92:dd:49:a4:3a:6f:5b: f9:bc:09:e6:34:69:97:d9:88:7e:03:16:20:39:97:d0:ae:67: 05:d7:ca:75:3b:d6:56:db:cc:37:7e:e9:79:89:54:60:e0:09: 59:b5:78:c0:02:79:ea:8c:1c:fa:44:41:55:b9:a7:61:15:44: bc:2c:09:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbcIPFefX9M3I2MN7KCD/Znrc+K4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFFOUJCMjEwMDNFODczOTZDRURENzg5OEI0QTUwNDI0 RThDRUM4RjAeFw0yNjA1MDMwMzA0MzFaFw0yNzA1MDIwMzA5MzFaMDMxMTAvBgNV BAMTKEVCQTdBRDQ5ODExQTg5OEJEOUM4RENDNzYyMjFGQzVBNzY0RTU3QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHH+Ly4kcHkflNycYwdqP0/VTd ykz9ZUElgJ7VxgVTrF4mJ/w8OdaPyP9AYyq5LoHLBH0v2fyYWRzj/kvjMqKzyglN U1YLRzm0vpnX7AEuYZCUeKe1L7t/+/U7CcSw3++ywbV6/77SctXLUU2lcsmar3U9 m9LVS6eFISoZJSCCDaVezlD+Z/iSdLpICwy3d8zUpU/haRrFVXjZSBgfw6QaJvE4 WEH23p9FhfK2R+QTm5WWDR0qRKL8iDBV5PSvcvaK2brV5re9nWXFfEHOJFUxehAU Hi6A8jdX8Nmn9i1gIp7e5tqTtaYwm7gbMULfowaoAhgCfK6Lv4av/yOP1dzBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU66etSYEaiYvZyNzHYiH8WnZOV6kwHwYDVR0j BBgwFoAUium7IQA+hzls7deJi0pQQk6M7I8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNmOGY1NWMtOWUzNS00Y2UyLTg5MGYtMGRlM2UyNDA0NjExLzAvOEFFOUJCMjEw MDNFODczOTZDRURENzg5OEI0QTUwNDI0RThDRUM4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QUU5QkIyMTAwM0U4NzM5NkNFREQ3ODk4QjRBNTA0MjRFOENF QzhGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALX+HMA0GCSqG SIb3DQEBCwUAA4IBAQB/HU4rDlPtvVbkHepLVlhOUQ40i/EgWECDlZS2AuZyIfnn aBlnZHjyJsLeZP+urPlSXsAr1bdhp1hwcHSsUNzZbR1fRhtFZk8Ws7NNW5shZI0w fJBV0DSgpl5Mlgra0ZawPmChpHZ9gRABWmE1sm5+D1R5GK0OF0E9ZvzwjhSKMM1q 6e9tHACDDEwJ7qr2vJ9ifZ+nvGmjTsuFkAPJ1R7d2S2GTgxmMEPBaT/huXDE+5SW //8Rw8QMOl61SdyF4ZLdSaQ6b1v5vAnmNGmX2Yh+AxYgOZfQrmcF18p1O9ZW28w3 ful5iVRg4AlZtXjAAnnqjBz6REFVuadhFUS8LAmN -----END CERTIFICATE-----Generated at Wed May 13 04:08:40 2026 by rpki-client