$ rpki-client -vvf rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa File: 34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa (raw, json) Hash identifier: InPNxYRaf3FwNMQXVehetQN/Y6CMxZDL5d0U1h33pOA= Subject key identifier: 37:F3:36:CA:73:13:5A:9B:71:AA:86:48:54:F1:88:56:77:86:E5:75 Certificate issuer: /CN=3B76D59A3F168F6110E52A62ED7649A3D0E93F40 Certificate serial: 3B2509C08E5C630447207443457A145FAFB2F3C7 Authority key identifier: 3B:76:D5:9A:3F:16:8F:61:10:E5:2A:62:ED:76:49:A3:D0:E9:3F:40 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa Signing time: Sun 03 May 2026 03:10:05 +0000 ROA not before: Sun 03 May 2026 03:05:05 +0000 ROA not after: Sun 02 May 2027 03:10:05 +0000 asID: 152026 IP address blocks: 45.123.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.crl rsync://rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:25:09:c0:8e:5c:63:04:47:20:74:43:45:7a:14:5f:af:b2:f3:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B76D59A3F168F6110E52A62ED7649A3D0E93F40 Validity Not Before: May 3 03:05:05 2026 GMT Not After : May 2 03:10:05 2027 GMT Subject: CN=37F336CA73135A9B71AA864854F188567786E575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:db:6b:c6:ef:2d:67:63:16:16:a3:66:9a: 98:97:0b:15:8b:73:09:0d:bd:7d:95:6d:82:4a:de: 83:1d:73:e3:15:c3:54:df:09:11:42:24:64:bb:a4: 94:1b:1c:c5:05:64:7d:82:38:8a:67:43:0b:3e:22: 30:92:77:4b:87:45:bf:73:98:0f:ce:d9:48:af:67: 15:d6:81:39:99:ab:23:43:21:52:14:d3:ef:8e:95: 9e:54:dd:cb:08:ff:17:c8:29:cc:4e:45:04:65:31: b6:4b:9a:2e:fd:8c:68:02:49:36:d7:db:29:59:21: 13:5d:45:0f:92:67:7b:48:74:8a:87:80:fd:5e:1d: 08:a0:6c:64:8e:6e:12:8e:80:3b:1e:b4:1e:59:68: 49:a4:d4:5c:b4:04:3c:7b:11:9b:99:29:c8:45:8b: ba:12:c1:5d:c6:80:9d:97:34:10:95:a4:7a:09:57: 3c:b4:71:d2:1b:c4:6e:a5:a7:97:df:db:c9:a0:89: 41:49:79:50:64:82:0b:81:df:81:81:ba:e4:ec:b5: 2e:fd:4b:44:95:23:14:e1:30:a4:ac:10:96:f6:51: e9:5c:cc:1f:1c:43:35:bd:81:ac:b1:98:7c:74:79: 6b:ea:1b:f8:e5:84:91:12:ff:dc:c6:11:a7:52:72: 73:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F3:36:CA:73:13:5A:9B:71:AA:86:48:54:F1:88:56:77:86:E5:75 X509v3 Authority Key Identifier: keyid:3B:76:D5:9A:3F:16:8F:61:10:E5:2A:62:ED:76:49:A3:D0:E9:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B76D59A3F168F6110E52A62ED7649A3D0E93F40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.142.0/24 Signature Algorithm: sha256WithRSAEncryption 90:56:e8:79:fc:10:cd:50:f0:ce:3a:96:01:75:ae:37:d7:36: 08:e0:b5:60:6d:cb:f8:39:78:c6:ef:76:07:a8:71:5c:b5:de: 6e:48:39:07:c7:49:35:24:5b:af:e4:04:d2:28:44:1c:91:1b: 9c:8d:35:51:73:c5:ca:5d:52:d7:eb:26:f7:9a:5a:ea:88:55: 36:0e:24:49:37:e5:75:8f:55:ef:87:a8:55:bb:e6:19:d7:74: 14:2a:ff:bd:cc:43:ae:54:62:b2:b7:35:1e:ae:93:50:e2:f3: 96:b1:8b:90:3d:25:23:62:43:23:62:3b:f5:e0:c5:3b:66:67: 8b:5d:39:5c:81:cf:38:fd:be:68:3d:04:8a:a8:c5:4f:89:06: 6b:1e:16:6a:24:51:6e:59:fa:6e:c3:7e:53:cb:ab:86:6a:0e: ef:49:53:ee:bd:ed:9e:83:cb:75:1e:06:3e:af:ec:af:d6:6b: 18:59:59:2b:2c:91:f8:6e:10:2c:8f:b7:bd:6c:c2:a1:a4:55: 4c:4a:9d:19:37:b5:84:42:78:ef:2d:d3:cd:8f:02:74:50:97: 4e:dd:ba:8d:66:3f:b0:a8:21:81:91:2d:f8:cd:9c:14:4d:d0: ce:1a:2c:7c:7e:f7:af:a9:44:3c:d9:98:8a:ea:62:07:a3:2b: 0f:0e:d8:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOyUJwI5cYwRHIHRDRXoUX6+y88cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I3NkQ1OUEzRjE2OEY2MTEwRTUyQTYyRUQ3NjQ5QTNE MEU5M0Y0MDAeFw0yNjA1MDMwMzA1MDVaFw0yNzA1MDIwMzEwMDVaMDMxMTAvBgNV BAMTKDM3RjMzNkNBNzMxMzVBOUI3MUFBODY0ODU0RjE4ODU2Nzc4NkU1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwb9trxu8tZ2MWFqNmmpiXCxWL cwkNvX2VbYJK3oMdc+MVw1TfCRFCJGS7pJQbHMUFZH2COIpnQws+IjCSd0uHRb9z mA/O2UivZxXWgTmZqyNDIVIU0++OlZ5U3csI/xfIKcxORQRlMbZLmi79jGgCSTbX 2ylZIRNdRQ+SZ3tIdIqHgP1eHQigbGSObhKOgDsetB5ZaEmk1Fy0BDx7EZuZKchF i7oSwV3GgJ2XNBCVpHoJVzy0cdIbxG6lp5ff28mgiUFJeVBkgguB34GBuuTstS79 S0SVIxThMKSsEJb2UelczB8cQzW9gayxmHx0eWvqG/jlhJES/9zGEadScnMPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN/M2ynMTWptxqoZIVPGIVneG5XUwHwYDVR0j BBgwFoAUO3bVmj8Wj2EQ5Spi7XZJo9DpP0AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDc0YTE1MjctNWM4ZS00YmQzLWExYzctOWQxZWQyZDIzZTE0LzAvM0I3NkQ1OUEz RjE2OEY2MTEwRTUyQTYyRUQ3NjQ5QTNEMEU5M0Y0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjc2RDU5QTNGMTY4RjYxMTBFNTJBNjJFRDc2NDlBM0QwRTkz RjQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3NGExNTI3LTVjOGUtNGJkMy1h MWM3LTlkMWVkMmQyM2UxNC8wLzM0MzUyZTMxMzIzMzJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXuOMA0GCSqG SIb3DQEBCwUAA4IBAQCQVuh5/BDNUPDOOpYBda431zYI4LVgbcv4OXjG73YHqHFc td5uSDkHx0k1JFuv5ATSKEQckRucjTVRc8XKXVLX6yb3mlrqiFU2DiRJN+V1j1Xv h6hVu+YZ13QUKv+9zEOuVGKytzUerpNQ4vOWsYuQPSUjYkMjYjv14MU7ZmeLXTlc gc84/b5oPQSKqMVPiQZrHhZqJFFuWfpuw35Ty6uGag7vSVPuve2eg8t1HgY+r+yv 1msYWVkrLJH4bhAsj7e9bMKhpFVMSp0ZN7WEQnjvLdPNjwJ0UJdO3bqNZj+wqCGB kS34zZwUTdDOGix8fvevqUQ82ZiK6mIHoysPDtjL -----END CERTIFICATE-----Generated at Wed May 13 02:15:58 2026 by rpki-client