$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: L0mPxNgbcwwNWadhYDVYcEPoRwXw/apNhz/JQNHU27s= Subject key identifier: 4D:04:83:B4:28:02:84:00:1D:25:85:C7:98:E4:BB:E9:8E:54:41:63 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 3A3C5B5FEADD03C969F7D37A3DCE764EC293E36B Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:04 +0000 ROA not before: Sun 03 May 2026 03:07:04 +0000 ROA not after: Sun 02 May 2027 03:12:04 +0000 asID: 45325 IP address blocks: 122.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:3c:5b:5f:ea:dd:03:c9:69:f7:d3:7a:3d:ce:76:4e:c2:93:e3:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:04 2026 GMT Not After : May 2 03:12:04 2027 GMT Subject: CN=4D0483B4280284001D2585C798E4BBE98E544163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ab:9c:80:39:f1:6a:78:c9:b1:2b:af:bc:53: 67:24:eb:e7:8c:88:51:17:dd:6a:2e:35:65:c4:9e: f8:4a:6e:44:8f:bc:67:df:08:4d:83:0a:2b:96:0a: e0:e6:af:e6:1f:e7:52:d5:8f:5f:67:7c:0d:9f:d2: 91:d9:cd:bd:ad:d1:ac:37:42:0c:8e:3a:f3:07:d7: e0:a2:cd:73:80:b0:d6:8e:65:63:3e:63:6e:df:24: 75:41:3e:b7:8d:fd:38:c6:12:db:bb:8c:35:8b:8a: 5c:eb:47:ef:21:0e:11:85:0a:f1:0c:a2:19:34:bf: 5b:44:a0:e5:a1:2c:62:99:d5:80:03:7e:d5:92:19: 4f:50:2b:d9:69:4e:27:ab:83:25:1f:82:5f:03:78: cc:98:e9:3b:3a:2b:8d:c0:01:6a:c9:51:fe:0c:85: e0:3e:62:35:77:fb:77:bc:af:ea:6f:c5:59:d3:26: a1:b3:29:8f:ab:34:3b:f3:7b:9b:11:ef:11:73:b6: 41:18:3d:a1:b6:d5:78:59:fa:d4:04:e1:7d:99:74: e0:7f:21:31:8a:04:c1:e6:ad:8e:6a:c1:aa:99:d2: f5:03:a5:4e:8c:43:15:d6:9b:ca:a3:ae:af:41:ff: b3:7d:07:58:40:56:92:72:7c:c6:9a:66:ba:95:4c: ac:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:04:83:B4:28:02:84:00:1D:25:85:C7:98:E4:BB:E9:8E:54:41:63 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 64:1a:5f:09:48:cc:51:4d:cf:35:4c:b3:cb:9f:bb:22:57:87: 3c:65:f4:8e:4a:ec:87:8c:b6:70:92:4c:e1:72:4f:5e:71:fc: af:6a:c1:07:10:eb:71:46:58:32:a8:6a:cf:46:de:2c:34:26: bd:06:14:d4:cc:34:62:fb:16:3b:9b:ee:94:b8:8c:fa:4d:e5: 56:a7:91:02:a0:57:f1:07:6c:a5:ac:34:1f:9d:f2:88:f9:6a: c0:bd:be:f1:38:aa:de:48:77:7a:65:44:4f:b2:c9:bb:d4:ad: ca:fa:8d:3a:9b:49:25:9a:ab:e0:6b:d6:a8:b0:92:03:a3:c0: 85:5a:f8:6b:98:90:54:9d:31:2e:72:87:c0:eb:eb:f0:69:f8: b8:ea:a3:15:b7:44:a7:56:3a:4f:67:30:4f:a2:6d:a2:07:94: ae:f1:04:03:71:15:d5:98:ca:24:b3:30:2d:05:fc:ac:34:ef: 1b:6e:dc:4a:68:05:fa:2f:b3:69:7b:96:5f:6b:2f:f0:46:a4: 55:88:1f:00:4c:01:21:38:65:5d:4e:13:39:ea:6e:07:6b:84: 88:2e:12:d4:fb:68:f9:1a:48:b3:8a:61:65:79:c7:52:ab:5a: ae:76:e9:93:77:3f:ea:1d:1f:d7:15:62:4c:05:4f:4e:b3:c2: 86:7a:97:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOjxbX+rdA8lp99N6Pc52TsKT42swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDRaFw0yNzA1MDIwMzEyMDRaMDMxMTAvBgNV BAMTKDREMDQ4M0I0MjgwMjg0MDAxRDI1ODVDNzk4RTRCQkU5OEU1NDQxNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnq5yAOfFqeMmxK6+8U2ck6+eM iFEX3WouNWXEnvhKbkSPvGffCE2DCiuWCuDmr+Yf51LVj19nfA2f0pHZzb2t0aw3 QgyOOvMH1+CizXOAsNaOZWM+Y27fJHVBPreN/TjGEtu7jDWLilzrR+8hDhGFCvEM ohk0v1tEoOWhLGKZ1YADftWSGU9QK9lpTiergyUfgl8DeMyY6Ts6K43AAWrJUf4M heA+YjV3+3e8r+pvxVnTJqGzKY+rNDvze5sR7xFztkEYPaG21XhZ+tQE4X2ZdOB/ ITGKBMHmrY5qwaqZ0vUDpU6MQxXWm8qjrq9B/7N9B1hAVpJyfMaaZrqVTKyjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTQSDtCgChAAdJYXHmOS76Y5UQWMwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JDANBgkqhkiG 9w0BAQsFAAOCAQEAZBpfCUjMUU3PNUyzy5+7IleHPGX0jkrsh4y2cJJM4XJPXnH8 r2rBBxDrcUZYMqhqz0beLDQmvQYU1Mw0YvsWO5vulLiM+k3lVqeRAqBX8Qdspaw0 H53yiPlqwL2+8Tiq3kh3emVET7LJu9StyvqNOptJJZqr4GvWqLCSA6PAhVr4a5iQ VJ0xLnKHwOvr8Gn4uOqjFbdEp1Y6T2cwT6JtogeUrvEEA3EV1ZjKJLMwLQX8rDTv G27cSmgF+i+zaXuWX2sv8EakVYgfAEwBIThlXU4TOepuB2uEiC4S1Pto+RpIs4ph ZXnHUqtarnbpk3c/6h0f1xViTAVPTrPChnqXQA== -----END CERTIFICATE-----Generated at Wed May 13 02:12:38 2026 by rpki-client