$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33382e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: O/C54fK6Fh0hkPYgUaevMk58lHbQGzg+mBNsocdzdL4= Subject key identifier: A5:66:72:56:98:4D:9B:7B:31:05:62:3C:63:1F:23:EA:06:54:9A:B8 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 6ADBDDC37121CB77389F57962BD22AD0967C3424 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:11:58 +0000 ROA not before: Sun 03 May 2026 03:06:58 +0000 ROA not after: Sun 02 May 2027 03:11:58 +0000 asID: 45325 IP address blocks: 122.248.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:db:dd:c3:71:21:cb:77:38:9f:57:96:2b:d2:2a:d0:96:7c:34:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:06:58 2026 GMT Not After : May 2 03:11:58 2027 GMT Subject: CN=A5667256984D9B7B3105623C631F23EA06549AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:a9:f7:36:dc:e7:c8:c0:a8:12:26:a0:97: 30:ac:71:c0:ae:a3:4f:da:67:52:c6:02:05:91:8a: 0d:5a:35:db:1b:d9:5f:88:d2:fd:a0:15:ec:da:c0: 77:80:2c:28:74:8c:fc:3e:2a:9b:c8:b8:5b:90:c6: 88:2e:48:6f:17:fb:9a:01:a0:69:57:02:62:c2:7c: 1b:af:4b:76:0e:5a:26:d5:26:82:dc:26:fe:8e:09: 02:f5:74:46:fb:68:88:ee:13:7a:5b:88:1e:92:91: 3c:ba:7a:9b:9d:c6:11:b3:21:d1:bd:36:6d:a6:de: c8:77:ed:1f:e5:2a:78:63:87:2c:28:67:44:69:59: f7:81:66:2d:93:84:6c:6a:c8:1d:d7:ee:0d:f6:bc: 1b:80:c3:42:d1:fd:81:8f:20:bd:b1:ba:c8:88:ab: c9:f3:e9:25:ec:ff:7e:0a:01:a6:28:a8:e8:25:f1: ff:08:ed:2d:a8:40:3d:36:12:2f:eb:f0:e5:51:ff: 68:71:ab:a4:0f:7e:a6:2c:45:0d:77:cb:c0:af:9d: 73:b1:ca:f4:ba:a9:53:ee:55:80:ae:2c:7b:76:d3: a4:a3:45:f2:91:6c:99:ac:6c:dc:6d:3a:31:37:bc: b0:73:dd:04:1c:50:f8:cc:20:19:1d:87:ae:d3:c4: cb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:66:72:56:98:4D:9B:7B:31:05:62:3C:63:1F:23:EA:06:54:9A:B8 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.38.0/24 Signature Algorithm: sha256WithRSAEncryption 02:18:74:36:78:da:83:d9:bc:b3:e9:58:9a:d3:3d:de:32:57: d2:6a:f6:b9:ac:c7:e4:ee:55:02:5b:de:f8:9e:b4:f7:8a:21: 6f:79:0a:1b:9f:5c:14:97:b9:d3:0b:e3:dd:2e:7e:40:e0:11: aa:c3:8a:b9:35:81:04:b1:03:64:cd:db:f1:0e:b9:90:a1:bb: 18:22:14:db:01:e8:f8:9a:30:44:91:b3:7b:d5:f2:20:d6:2f: 15:68:42:df:79:29:f9:da:a5:2a:4a:d2:72:07:2c:a5:73:3f: f2:93:91:d2:19:e5:22:a9:ff:cf:2d:8a:ab:d9:42:63:86:2d: 81:c5:9b:12:9c:fe:2d:c0:ba:e0:0a:82:f9:86:17:1d:e2:4a: 06:56:15:f8:7b:9a:aa:e7:ab:35:e2:21:07:d6:23:91:53:81: 85:da:f3:64:19:d1:30:56:88:eb:b0:df:15:2c:c4:c5:a8:ae: 8b:8f:d5:7d:5e:36:73:d4:fc:68:60:7d:21:ea:4a:6a:83:1c: 2f:e3:71:0a:f1:ad:67:90:4f:0f:c0:a0:e4:de:1e:43:48:7e: 52:c8:cc:23:58:6e:f8:9b:e4:d5:9d:16:8a:3d:96:2a:89:6b: df:1a:d6:5c:68:a2:e6:98:61:78:12:72:ba:7a:e7:f5:c6:d5: 2d:6e:58:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUatvdw3Ehy3c4n1eWK9Iq0JZ8NCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA2NThaFw0yNzA1MDIwMzExNThaMDMxMTAvBgNV BAMTKEE1NjY3MjU2OTg0RDlCN0IzMTA1NjIzQzYzMUYyM0VBMDY1NDlBQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjran3NtznyMCoEiaglzCsccCu o0/aZ1LGAgWRig1aNdsb2V+I0v2gFezawHeALCh0jPw+KpvIuFuQxoguSG8X+5oB oGlXAmLCfBuvS3YOWibVJoLcJv6OCQL1dEb7aIjuE3pbiB6SkTy6epudxhGzIdG9 Nm2m3sh37R/lKnhjhywoZ0RpWfeBZi2ThGxqyB3X7g32vBuAw0LR/YGPIL2xusiI q8nz6SXs/34KAaYoqOgl8f8I7S2oQD02Ei/r8OVR/2hxq6QPfqYsRQ13y8CvnXOx yvS6qVPuVYCuLHt206SjRfKRbJmsbNxtOjE3vLBz3QQcUPjMIBkdh67TxMvJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpWZyVphNm3sxBWI8Yx8j6gZUmrgwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JjANBgkqhkiG 9w0BAQsFAAOCAQEAAhh0Nnjag9m8s+lYmtM93jJX0mr2uazH5O5VAlve+J6094oh b3kKG59cFJe50wvj3S5+QOARqsOKuTWBBLEDZM3b8Q65kKG7GCIU2wHo+JowRJGz e9XyINYvFWhC33kp+dqlKkrScgcspXM/8pOR0hnlIqn/zy2Kq9lCY4YtgcWbEpz+ LcC64AqC+YYXHeJKBlYV+HuaquerNeIhB9YjkVOBhdrzZBnRMFaI67DfFSzExaiu i4/VfV42c9T8aGB9IepKaoMcL+NxCvGtZ5BPD8Cg5N4eQ0h+UsjMI1hu+Jvk1Z0W ij2WKolr3xrWXGii5phheBJyunrn9cbVLW5Y5Q== -----END CERTIFICATE-----Generated at Wed May 13 02:51:11 2026 by rpki-client