$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa File: 3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa (raw, json) Hash identifier: bM/0Dm/kJz164oUyk+EyLG8dzY/v3xcPNTwfnlLmVSk= Subject key identifier: 32:2B:53:0F:B4:39:51:24:43:90:10:00:18:19:DC:49:7F:44:8C:8D Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 163FF96C6B1CEE941172AADD32E527473B382051 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa Signing time: Sun 03 May 2026 03:11:59 +0000 ROA not before: Sun 03 May 2026 03:06:59 +0000 ROA not after: Sun 02 May 2027 03:11:59 +0000 asID: 141142 IP address blocks: 122.248.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:3f:f9:6c:6b:1c:ee:94:11:72:aa:dd:32:e5:27:47:3b:38:20:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:06:59 2026 GMT Not After : May 2 03:11:59 2027 GMT Subject: CN=322B530FB4395124439010001819DC497F448C8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:d9:e2:05:58:1a:52:9a:76:fe:43:45:95: 72:e3:74:77:9a:86:c3:de:9b:71:86:50:bb:47:de: 68:24:a2:1c:ea:44:b7:8e:a9:95:39:72:e9:06:4f: fc:5f:ae:2c:39:6c:87:e5:e3:b3:62:ec:9a:72:50: 61:80:49:be:4d:d4:97:39:f9:0a:d1:63:3d:fe:05: 89:d3:e7:60:73:06:b3:66:97:8f:f1:b1:ca:37:76: 49:78:31:8e:fc:c2:22:b2:82:a4:03:bf:eb:d8:af: 37:ff:37:10:68:7a:4c:e3:cb:93:c0:f0:f1:05:62: 51:27:03:de:66:72:e7:01:db:6c:a4:1c:77:9e:93: 4d:a0:e2:4b:66:5e:f9:6e:6b:e5:a9:44:0a:4f:ac: 0f:65:53:3b:a8:1d:f6:8c:f7:1b:c0:ef:81:36:a0: 89:2e:a3:50:91:9d:5f:67:49:ae:4f:53:8c:c9:59: b6:21:5c:93:1f:c8:1e:8a:f7:33:3a:c6:be:55:21: a4:16:cf:e5:49:64:d8:a9:14:0d:78:6c:03:26:4d: 6e:5b:6f:7a:bc:d7:b9:10:14:ef:8b:47:9f:40:bb: 94:cc:f1:c1:e0:ce:f8:b1:01:7c:f9:4c:a2:86:ae: 73:3f:ba:b3:6a:72:96:18:e1:a3:01:d8:7c:cf:71: d6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2B:53:0F:B4:39:51:24:43:90:10:00:18:19:DC:49:7F:44:8C:8D X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e20313431313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.35.0/24 Signature Algorithm: sha256WithRSAEncryption 16:b9:30:0a:82:3d:20:5f:99:a1:58:cc:7d:df:57:15:e7:1b: df:d7:e5:83:f9:59:98:d1:7a:87:52:ca:8a:eb:60:de:38:f9: 20:d2:b9:cf:dd:e0:b9:1b:83:a4:09:b0:fe:d4:83:13:56:23: 72:f9:e1:32:7d:2b:47:f1:35:0a:62:e5:95:e9:ab:7b:3a:a5: 22:94:ef:b3:15:53:17:28:93:4c:c4:14:a1:3e:72:84:65:e3: 04:a9:cf:2f:20:d8:e9:6f:99:5b:29:03:95:1c:2c:aa:93:91: 22:7a:06:a7:ef:c7:d7:c3:f1:92:e0:23:1c:5e:d1:4f:19:16: 49:40:ff:90:85:01:af:18:a2:28:b7:a7:46:89:76:72:40:eb: 83:7e:1a:35:23:79:4e:9d:00:4f:5f:d2:ec:90:65:89:d2:ed: b8:22:bc:66:fa:51:11:00:6e:43:23:f2:c4:b6:1f:34:cc:f3: 15:c1:16:74:a4:ab:1e:21:c8:90:8d:c8:8e:d5:39:ee:d3:e6: c0:56:28:a8:ea:95:73:68:a1:9a:1a:99:dd:07:23:d2:17:43: e8:4f:68:0f:7f:42:3a:2a:28:32:0e:67:10:45:2b:c5:fe:67: f2:e6:80:a1:51:94:f1:46:bb:4b:cb:ac:2b:ce:60:cf:26:c0: ad:e0:11:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFj/5bGsc7pQRcqrdMuUnRzs4IFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA2NTlaFw0yNzA1MDIwMzExNTlaMDMxMTAvBgNV BAMTKDMyMkI1MzBGQjQzOTUxMjQ0MzkwMTAwMDE4MTlEQzQ5N0Y0NDhDOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17dniBVgaUpp2/kNFlXLjdHea hsPem3GGULtH3mgkohzqRLeOqZU5cukGT/xfriw5bIfl47Ni7JpyUGGASb5N1Jc5 +QrRYz3+BYnT52BzBrNml4/xsco3dkl4MY78wiKygqQDv+vYrzf/NxBoekzjy5PA 8PEFYlEnA95mcucB22ykHHeek02g4ktmXvlua+WpRApPrA9lUzuoHfaM9xvA74E2 oIkuo1CRnV9nSa5PU4zJWbYhXJMfyB6K9zM6xr5VIaQWz+VJZNipFA14bAMmTW5b b3q817kQFO+LR59Au5TM8cHgzvixAXz5TKKGrnM/urNqcpYY4aMB2HzPcdbrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMitTD7Q5USRDkBAAGBncSX9EjI0wHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAevgjMA0GCSqG SIb3DQEBCwUAA4IBAQAWuTAKgj0gX5mhWMx931cV5xvf1+WD+VmY0XqHUsqK62De OPkg0rnP3eC5G4OkCbD+1IMTViNy+eEyfStH8TUKYuWV6at7OqUilO+zFVMXKJNM xBShPnKEZeMEqc8vINjpb5lbKQOVHCyqk5Eiegan78fXw/GS4CMcXtFPGRZJQP+Q hQGvGKIot6dGiXZyQOuDfho1I3lOnQBPX9LskGWJ0u24Irxm+lERAG5DI/LEth80 zPMVwRZ0pKseIciQjciO1Tnu0+bAViio6pVzaKGaGpndByPSF0PoT2gPf0I6Kigy DmcQRSvF/mfy5oChUZTxRrtLy6wrzmDPJsCt4BEY -----END CERTIFICATE-----Generated at Wed May 13 02:12:00 2026 by rpki-client