$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33342e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: SHUyhFJkNlfUafPQZznwzypagEog72AhZ4GF3ZoArLM= Subject key identifier: 24:E1:32:2E:7A:24:60:41:3A:91:99:F1:0F:95:06:DF:3F:D9:AE:D1 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 315A387365AB83F66B78DA434401AD16490B9950 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:11:59 +0000 ROA not before: Sun 03 May 2026 03:06:59 +0000 ROA not after: Sun 02 May 2027 03:11:59 +0000 asID: 45325 IP address blocks: 122.248.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5a:38:73:65:ab:83:f6:6b:78:da:43:44:01:ad:16:49:0b:99:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:06:59 2026 GMT Not After : May 2 03:11:59 2027 GMT Subject: CN=24E1322E7A2460413A9199F10F9506DF3FD9AED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fc:0a:8e:37:f0:3e:de:56:11:f6:b6:d8:22: e4:53:24:5f:52:52:d7:69:91:34:de:50:b5:f6:a3: 41:aa:47:77:03:d3:69:c7:84:f3:66:d3:05:78:55: 60:03:20:59:7a:3c:a8:3d:07:98:35:51:91:63:e3: 27:7a:2a:75:90:43:ef:1a:a3:1f:23:8f:5b:2a:9b: 6d:a3:fd:3f:7e:7e:aa:f4:75:88:7a:19:73:c6:c9: 92:73:bf:19:e7:a2:be:26:ec:14:6e:37:10:9b:07: 4a:1a:0f:4b:7e:20:7c:03:7b:ea:c8:d4:5e:2a:67: 95:dd:f2:71:fe:07:cb:9b:75:4f:8c:4e:13:32:2d: ad:30:42:90:3e:a5:56:79:95:52:7b:5e:77:53:a6: 86:9f:3d:78:95:43:9a:81:b2:32:07:2c:bd:10:9c: 5f:d2:1d:67:24:0b:c6:fe:b1:c1:0e:65:e9:a8:10: 42:09:c7:52:03:9a:0e:e7:76:dc:00:8b:7f:62:0a: b8:38:37:de:2d:c6:b6:ed:d9:3d:35:d7:d6:75:22: b2:8d:df:a4:3b:4b:ff:47:f9:18:fb:d6:3f:b6:5f: 6d:ff:69:76:6e:d6:99:8d:7f:31:87:3b:f9:15:e8: 25:e3:55:e2:08:46:70:d9:6f:0f:f5:8a:c1:58:16: de:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E1:32:2E:7A:24:60:41:3A:91:99:F1:0F:95:06:DF:3F:D9:AE:D1 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.34.0/24 Signature Algorithm: sha256WithRSAEncryption 41:36:58:06:ce:20:eb:ab:2d:ef:c5:d4:b6:bc:c3:89:76:15: d2:b6:dd:17:eb:29:71:64:ad:fe:39:f5:cf:fe:3c:41:f9:fc: 57:d9:63:28:7e:cf:fc:91:dd:40:7e:2f:c0:7f:76:1e:91:a8: 73:ba:0b:04:c1:d8:31:3e:38:a7:4b:f1:42:80:c4:bf:2c:66: 3e:c0:df:f9:2a:a8:dd:32:71:2b:cd:a8:3e:cb:95:48:49:c7: 83:8d:f5:32:42:dc:73:cf:e6:c3:dc:23:b0:36:c0:53:c2:79: 18:2f:92:eb:fe:bd:6a:e2:d9:73:80:a3:ca:1d:6a:20:74:58: bd:77:98:4c:8d:fc:0f:cd:fe:43:f9:c1:72:bb:37:5b:eb:e3: 7a:12:1b:05:4f:ef:ac:25:61:0a:40:33:69:0a:29:54:eb:f0: 73:db:7e:9d:86:4b:b8:3c:a2:9a:82:79:da:46:79:a0:28:59: b8:9f:57:0b:db:11:a2:17:f1:da:67:ea:94:8b:72:f9:75:3d: 77:04:d1:77:3c:62:71:ce:b1:4e:31:32:48:9a:8e:bc:0f:8d: 2e:60:e9:32:53:ca:8a:49:2f:a7:d1:71:58:9a:40:15:d9:07: 29:ba:a2:58:82:e8:41:f9:94:10:97:9e:4e:39:ce:db:d3:b3: 0f:ff:eb:ef -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMVo4c2Wrg/ZreNpDRAGtFkkLmVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA2NTlaFw0yNzA1MDIwMzExNTlaMDMxMTAvBgNV BAMTKDI0RTEzMjJFN0EyNDYwNDEzQTkxOTlGMTBGOTUwNkRGM0ZEOUFFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc/AqON/A+3lYR9rbYIuRTJF9S UtdpkTTeULX2o0GqR3cD02nHhPNm0wV4VWADIFl6PKg9B5g1UZFj4yd6KnWQQ+8a ox8jj1sqm22j/T9+fqr0dYh6GXPGyZJzvxnnor4m7BRuNxCbB0oaD0t+IHwDe+rI 1F4qZ5Xd8nH+B8ubdU+MThMyLa0wQpA+pVZ5lVJ7XndTpoafPXiVQ5qBsjIHLL0Q nF/SHWckC8b+scEOZemoEEIJx1IDmg7ndtwAi39iCrg4N94txrbt2T0119Z1IrKN 36Q7S/9H+Rj71j+2X23/aXZu1pmNfzGHO/kV6CXjVeIIRnDZbw/1isFYFt4VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJOEyLnokYEE6kZnxD5UG3z/ZrtEwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IjANBgkqhkiG 9w0BAQsFAAOCAQEAQTZYBs4g66st78XUtrzDiXYV0rbdF+spcWSt/jn1z/48Qfn8 V9ljKH7P/JHdQH4vwH92HpGoc7oLBMHYMT44p0vxQoDEvyxmPsDf+Sqo3TJxK82o PsuVSEnHg431MkLcc8/mw9wjsDbAU8J5GC+S6/69auLZc4Cjyh1qIHRYvXeYTI38 D83+Q/nBcrs3W+vjehIbBU/vrCVhCkAzaQopVOvwc9t+nYZLuDyimoJ52kZ5oChZ uJ9XC9sRohfx2mfqlIty+XU9dwTRdzxicc6xTjEySJqOvA+NLmDpMlPKikkvp9Fx WJpAFdkHKbqiWILoQfmUEJeeTjnO29OzD//r7w== -----END CERTIFICATE-----Generated at Wed May 13 02:12:43 2026 by rpki-client