$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: LXPm+M8vAxjssdAZLO3Rx0wFITGhuZf7YIbnBsCAbss= Subject key identifier: CC:B4:FB:8C:AE:BC:32:00:36:EF:1E:DD:F3:03:8B:CA:9A:9A:96:4A Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 3CE4E124722C2BD4C44E65397F0886AAEB194C14 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:00 +0000 ROA not before: Sun 03 May 2026 03:07:00 +0000 ROA not after: Sun 02 May 2027 03:12:00 +0000 asID: 45325 IP address blocks: 122.248.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e4:e1:24:72:2c:2b:d4:c4:4e:65:39:7f:08:86:aa:eb:19:4c:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:00 2026 GMT Not After : May 2 03:12:00 2027 GMT Subject: CN=CCB4FB8CAEBC320036EF1EDDF3038BCA9A9A964A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:6f:81:d5:a7:fc:21:22:b3:30:b2:fc:97: 70:a8:cd:f0:97:82:b8:4f:be:77:4a:99:d2:f1:1c: 7a:de:f5:c9:7c:72:e7:77:35:d7:36:c5:8a:b5:67: a6:e5:12:d7:71:af:70:23:a0:b3:c1:93:37:13:11: c8:81:9b:9b:61:65:d9:88:6c:24:09:52:67:4c:f7: 66:b7:6d:9c:07:55:17:cd:8b:59:e5:f6:a0:d6:26: bf:8d:b3:69:5a:bb:40:f4:d6:75:1a:33:02:6f:a2: 4e:05:c8:3f:47:0c:d6:ad:f3:e2:38:2e:3b:66:4c: 66:cc:52:9c:91:63:cc:a0:87:fe:d1:3a:5e:18:3a: ff:5e:35:f1:7c:78:04:79:47:0d:27:34:c2:1d:68: 13:61:c0:25:c8:76:69:cf:f3:67:84:1a:d0:94:cd: 1a:7c:31:2d:63:3b:eb:66:c1:85:0e:68:0a:bd:e0: b3:e9:7c:9d:0e:e9:e4:28:44:fa:28:56:98:41:c2: cf:5f:02:67:4c:fa:d8:05:d5:a2:e0:a6:4d:bf:46: f9:3f:97:be:22:c8:45:5f:97:4b:7f:d8:f8:fe:cc: fe:3c:66:98:09:23:17:f4:22:1a:ff:fa:95:91:5c: 94:a9:3f:21:8d:9a:ac:82:53:51:d8:d8:f0:96:00: fa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B4:FB:8C:AE:BC:32:00:36:EF:1E:DD:F3:03:8B:CA:9A:9A:96:4A X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.32.0/24 Signature Algorithm: sha256WithRSAEncryption 13:73:9a:7f:3e:df:5f:c7:90:85:87:86:64:75:f3:f3:8f:57: 12:f4:ca:ee:d8:82:78:e4:0e:e3:74:72:a1:75:dc:d9:37:48: 1b:0a:da:10:69:04:42:c6:40:36:09:35:5c:d6:fe:92:95:db: ab:e5:3d:f7:53:3d:07:1e:c5:3b:50:f9:3e:11:82:65:af:bb: 11:b6:76:b1:3a:9e:83:a0:3a:c9:f1:7a:50:b5:7a:a9:14:85: d9:27:c8:9d:5f:78:5a:ae:e0:80:d5:9f:99:0d:e6:3e:b1:b9: b2:77:f3:cd:2d:89:98:7b:15:45:30:da:e4:73:9c:78:c4:b1: e5:9f:01:1b:b8:1e:bf:1e:9d:fb:65:f2:15:64:d4:ad:fb:a7: ef:76:4e:a6:54:62:ce:f1:35:44:35:f4:f0:3f:3a:cf:9a:e6: bf:7d:1b:53:34:79:72:eb:29:9c:86:68:a1:74:57:ea:7b:85: 50:26:ac:a5:f2:27:00:63:06:86:e3:8a:26:19:89:19:aa:1a: 51:92:f5:37:c0:ac:28:01:30:45:bd:d9:99:99:9d:10:75:23: 89:a8:f3:14:3f:d9:a8:f1:00:c1:e2:2b:5f:12:c8:7d:29:20: 55:00:fd:39:3f:58:ca:e5:11:7f:2b:5e:47:3c:2b:fd:cd:b2: 76:9b:56:c1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPOThJHIsK9TETmU5fwiGqusZTBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDBaFw0yNzA1MDIwMzEyMDBaMDMxMTAvBgNV BAMTKENDQjRGQjhDQUVCQzMyMDAzNkVGMUVEREYzMDM4QkNBOUE5QTk2NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvc2+B1af8ISKzMLL8l3CozfCX grhPvndKmdLxHHre9cl8cud3Ndc2xYq1Z6blEtdxr3AjoLPBkzcTEciBm5thZdmI bCQJUmdM92a3bZwHVRfNi1nl9qDWJr+Ns2lau0D01nUaMwJvok4FyD9HDNat8+I4 LjtmTGbMUpyRY8ygh/7ROl4YOv9eNfF8eAR5Rw0nNMIdaBNhwCXIdmnP82eEGtCU zRp8MS1jO+tmwYUOaAq94LPpfJ0O6eQoRPooVphBws9fAmdM+tgF1aLgpk2/Rvk/ l74iyEVfl0t/2Pj+zP48ZpgJIxf0Ihr/+pWRXJSpPyGNmqyCU1HY2PCWAPq1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzLT7jK68MgA27x7d8wOLypqalkowHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IDANBgkqhkiG 9w0BAQsFAAOCAQEAE3Oafz7fX8eQhYeGZHXz849XEvTK7tiCeOQO43RyoXXc2TdI GwraEGkEQsZANgk1XNb+kpXbq+U991M9Bx7FO1D5PhGCZa+7EbZ2sTqeg6A6yfF6 ULV6qRSF2SfInV94Wq7ggNWfmQ3mPrG5snfzzS2JmHsVRTDa5HOceMSx5Z8BG7ge vx6d+2XyFWTUrfun73ZOplRizvE1RDX08D86z5rmv30bUzR5cuspnIZooXRX6nuF UCaspfInAGMGhuOKJhmJGaoaUZL1N8CsKAEwRb3ZmZmdEHUjiajzFD/ZqPEAweIr XxLIfSkgVQD9OT9YyuURfyteRzwr/c2ydptWwQ== -----END CERTIFICATE-----Generated at Wed May 13 02:15:14 2026 by rpki-client