$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33332e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33332e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: zRrlJoG5zcUtX6wFVCQMeL8cPbII1W88o2EQ5g8PVNA= Subject key identifier: F2:7B:81:24:64:EB:09:75:D3:57:98:B6:B2:A2:E4:E8:2F:C3:1A:14 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 08B775B3BD3C989208C6C0DE3C05799C2F83994D Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33332e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:05 +0000 ROA not before: Sun 03 May 2026 03:07:05 +0000 ROA not after: Sun 02 May 2027 03:12:05 +0000 asID: 45325 IP address blocks: 122.248.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b7:75:b3:bd:3c:98:92:08:c6:c0:de:3c:05:79:9c:2f:83:99:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:05 2026 GMT Not After : May 2 03:12:05 2027 GMT Subject: CN=F27B812464EB0975D35798B6B2A2E4E82FC31A14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ca:42:43:d1:5a:a3:7d:f0:aa:67:83:77:55: 08:db:84:2a:1b:c5:e0:9c:90:b6:86:30:3e:e6:1b: 5e:77:5a:26:9b:07:47:fa:21:6b:96:1a:35:09:5a: 0d:c5:16:6b:2b:49:54:1c:a0:4e:80:10:39:3f:c8: 88:23:1f:04:eb:b2:a1:ca:f1:6d:1f:af:9c:30:17: d7:63:8c:36:1b:85:2d:8e:e1:e7:ee:87:81:f6:b6: fa:89:b4:1f:fc:13:d7:11:8a:b1:da:68:e8:32:aa: 68:36:64:b3:41:07:8a:db:30:91:6b:97:ac:42:ab: 85:c4:d9:7d:bf:d5:8b:54:b4:48:4c:46:45:55:cc: 68:36:5a:05:91:c1:7c:47:59:81:14:39:e6:70:7f: c8:35:a4:0c:cd:d5:06:fa:25:db:ba:88:80:e3:4a: 46:45:45:9a:e2:80:fc:00:0a:23:ea:d9:ff:8e:6e: a0:00:26:ba:b1:c9:f7:0c:7d:76:49:9b:12:07:7e: 98:82:c8:6e:e9:0a:3a:fd:fb:06:41:cc:4f:aa:8c: 82:af:b8:ae:72:28:63:a7:df:37:43:2b:e8:b1:d0: de:b4:98:50:dd:c7:04:e9:91:d8:09:ec:6c:62:54: f1:70:47:9a:40:c7:36:91:1e:15:20:e8:f8:d1:8a: 9a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7B:81:24:64:EB:09:75:D3:57:98:B6:B2:A2:E4:E8:2F:C3:1A:14 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33332e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.33.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4c:f3:9b:51:21:63:27:51:07:0e:c0:be:85:7f:bb:50:a3: 68:b0:34:30:a3:00:5b:a9:66:f2:75:29:ea:6c:32:77:69:a3: 63:8e:f0:3a:d3:a6:58:9a:a6:6e:59:31:91:b8:05:e1:3e:1d: a8:49:49:23:28:7b:78:a0:fa:09:bd:df:32:64:a0:2d:ac:ec: c2:09:af:d8:20:19:36:83:2e:f3:15:86:6a:5e:f1:ca:a2:f2: 57:88:9d:6f:ee:a5:72:98:be:60:7c:e0:1f:07:9f:9c:b2:65: 4b:7f:1a:e9:79:60:2d:85:a5:f7:32:32:da:99:38:c6:ed:34: 26:98:45:6b:a4:c6:e7:b9:c7:13:3d:b6:4c:ba:ad:30:fb:45: 62:56:a1:35:96:86:58:6b:97:13:05:46:d5:74:d7:e4:4a:6d: 29:3d:21:d5:4d:bc:23:52:dd:db:5d:91:16:37:bf:f3:5c:c7: 18:0d:10:7e:fd:48:f8:a3:f7:18:37:71:56:68:0d:f4:d7:33: 17:db:f0:86:e3:c5:87:0c:a3:9a:12:ce:3a:15:1a:69:ea:4d: 79:9b:e3:83:01:ba:b5:33:df:35:f7:8a:45:19:c8:cc:8c:95: 01:34:f2:cf:b2:16:d2:e4:30:ce:7a:60:79:7e:1b:c0:66:b6: 60:b8:72:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCLd1s708mJIIxsDePAV5nC+DmU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDVaFw0yNzA1MDIwMzEyMDVaMDMxMTAvBgNV BAMTKEYyN0I4MTI0NjRFQjA5NzVEMzU3OThCNkIyQTJFNEU4MkZDMzFBMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwykJD0VqjffCqZ4N3VQjbhCob xeCckLaGMD7mG153WiabB0f6IWuWGjUJWg3FFmsrSVQcoE6AEDk/yIgjHwTrsqHK 8W0fr5wwF9djjDYbhS2O4efuh4H2tvqJtB/8E9cRirHaaOgyqmg2ZLNBB4rbMJFr l6xCq4XE2X2/1YtUtEhMRkVVzGg2WgWRwXxHWYEUOeZwf8g1pAzN1Qb6Jdu6iIDj SkZFRZrigPwACiPq2f+ObqAAJrqxyfcMfXZJmxIHfpiCyG7pCjr9+wZBzE+qjIKv uK5yKGOn3zdDK+ix0N60mFDdxwTpkdgJ7GxiVPFwR5pAxzaRHhUg6PjRipqvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8nuBJGTrCXXTV5i2sqLk6C/DGhQwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4ITANBgkqhkiG 9w0BAQsFAAOCAQEANUzzm1EhYydRBw7AvoV/u1CjaLA0MKMAW6lm8nUp6mwyd2mj Y47wOtOmWJqmblkxkbgF4T4dqElJIyh7eKD6Cb3fMmSgLazswgmv2CAZNoMu8xWG al7xyqLyV4idb+6lcpi+YHzgHwefnLJlS38a6XlgLYWl9zIy2pk4xu00JphFa6TG 57nHEz22TLqtMPtFYlahNZaGWGuXEwVG1XTX5EptKT0h1U28I1Ld212RFje/81zH GA0Qfv1I+KP3GDdxVmgN9NczF9vwhuPFhwyjmhLOOhUaaepNeZvjgwG6tTPfNfeK RRnIzIyVATTyz7IW0uQwznpgeX4bwGa2YLhy/Q== -----END CERTIFICATE-----Generated at Wed May 13 01:35:57 2026 by rpki-client