$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34302e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: 0eliJEonh/Nebf/NJDVLw46smOx9iWVTCt/50JmdxX4= Subject key identifier: 49:BE:66:47:04:B2:60:F5:80:2B:2B:FD:D5:41:33:E8:04:AB:08:46 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 6AB11F6124FEBB920D3ECF35C74B0218290CB688 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:11:59 +0000 ROA not before: Sun 03 May 2026 03:06:59 +0000 ROA not after: Sun 02 May 2027 03:11:59 +0000 asID: 45325 IP address blocks: 122.248.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b1:1f:61:24:fe:bb:92:0d:3e:cf:35:c7:4b:02:18:29:0c:b6:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:06:59 2026 GMT Not After : May 2 03:11:59 2027 GMT Subject: CN=49BE664704B260F5802B2BFDD54133E804AB0846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9d:17:f7:ec:b8:ea:78:15:98:47:98:54:62: 3b:ef:42:4e:f6:48:4e:82:5a:12:92:67:b4:6b:e3: d1:86:d7:fc:35:38:08:44:29:e2:b8:71:76:ec:0c: ca:f9:cb:e3:2a:c2:a0:19:87:56:d8:95:c0:ed:9d: af:42:da:a4:98:55:99:8a:e7:68:9b:91:8b:89:c9: 13:65:19:10:99:89:18:b8:28:9d:2c:ba:04:10:ae: fa:c9:3a:f1:15:dd:76:ba:0b:5e:2b:07:b3:fe:d5: 0c:d3:0d:d5:79:38:4f:5a:72:85:1a:5a:a2:fe:dd: 69:1e:58:e1:33:a3:35:e4:79:d9:a7:7e:70:74:71: 31:93:44:85:f9:41:4c:1a:a6:ca:72:2b:a8:2e:01: 07:24:f6:33:7d:7f:e8:d2:11:9c:3a:01:3c:0c:de: 29:c0:b9:11:3c:61:df:a4:c2:7e:41:36:4b:f0:2c: 53:a7:b3:b0:14:d5:53:2e:c7:0b:8a:b7:5f:ac:f8: 0b:00:82:5c:58:33:9d:2b:a5:6d:c0:69:bd:85:b9: 64:9a:f8:4d:8e:e7:5d:15:04:33:bd:2d:84:16:7d: 20:ed:bf:8d:18:5d:24:08:a9:53:83:3f:47:b0:41: 59:1b:33:6a:9b:64:6c:11:37:81:ab:af:ce:89:58: a1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BE:66:47:04:B2:60:F5:80:2B:2B:FD:D5:41:33:E8:04:AB:08:46 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.40.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:57:4a:0e:49:af:45:8c:c0:42:15:71:6e:ca:c2:60:4a:54: 23:fd:aa:96:f1:38:89:75:bb:ff:26:14:48:3f:e6:b1:ca:89: 3b:22:2b:49:26:ab:f3:e5:05:e0:ef:2f:07:6e:bc:ad:80:92: 74:6b:7f:b7:49:8a:bc:03:82:36:0e:26:81:ba:be:a2:5c:c0: 2e:c6:69:2d:d2:9e:fc:49:4f:14:c0:11:9f:dc:14:8f:8c:f6: 17:29:27:45:21:90:c5:9a:fe:6d:2e:a9:f6:60:c7:aa:4d:75: 62:2f:3a:b4:f0:cd:ec:db:7b:da:90:d2:eb:60:d3:d5:2b:d6: 32:d1:42:91:f3:4f:ab:ef:24:3a:f5:e4:ec:16:ac:23:fd:63: 8c:db:3e:ce:83:a7:f2:54:98:71:d3:38:c7:6d:51:13:d1:25: 86:28:f7:76:86:ac:69:0b:6d:bb:4f:e8:dc:25:75:9f:f5:52: e0:da:3a:52:69:e9:95:99:8f:92:5c:ad:af:bc:ba:67:87:4b: f9:e2:ef:36:62:08:7f:f5:08:32:30:94:db:35:d1:a3:8b:ea: 9e:0c:c6:e5:e9:f6:d0:8a:13:e2:3b:04:0a:88:b4:cb:fd:9a: 74:9a:bc:43:31:17:1b:c9:c3:df:5f:0f:7f:af:75:3c:87:f7: 05:fb:db:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUarEfYST+u5INPs81x0sCGCkMtogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA2NTlaFw0yNzA1MDIwMzExNTlaMDMxMTAvBgNV BAMTKDQ5QkU2NjQ3MDRCMjYwRjU4MDJCMkJGREQ1NDEzM0U4MDRBQjA4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChnRf37LjqeBWYR5hUYjvvQk72 SE6CWhKSZ7Rr49GG1/w1OAhEKeK4cXbsDMr5y+MqwqAZh1bYlcDtna9C2qSYVZmK 52ibkYuJyRNlGRCZiRi4KJ0sugQQrvrJOvEV3Xa6C14rB7P+1QzTDdV5OE9acoUa WqL+3WkeWOEzozXkedmnfnB0cTGTRIX5QUwapspyK6guAQck9jN9f+jSEZw6ATwM 3inAuRE8Yd+kwn5BNkvwLFOns7AU1VMuxwuKt1+s+AsAglxYM50rpW3Aab2FuWSa +E2O510VBDO9LYQWfSDtv40YXSQIqVODP0ewQVkbM2qbZGwRN4Grr86JWKH7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSb5mRwSyYPWAKyv91UEz6ASrCEYwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KDANBgkqhkiG 9w0BAQsFAAOCAQEAf1dKDkmvRYzAQhVxbsrCYEpUI/2qlvE4iXW7/yYUSD/mscqJ OyIrSSar8+UF4O8vB268rYCSdGt/t0mKvAOCNg4mgbq+olzALsZpLdKe/ElPFMAR n9wUj4z2FyknRSGQxZr+bS6p9mDHqk11Yi86tPDN7Nt72pDS62DT1SvWMtFCkfNP q+8kOvXk7BasI/1jjNs+zoOn8lSYcdM4x21RE9Elhij3doasaQttu0/o3CV1n/VS 4No6UmnplZmPklytr7y6Z4dL+eLvNmIIf/UIMjCU2zXRo4vqngzG5en20IoT4jsE Coi0y/2adJq8QzEXG8nD318Pf691PIf3BfvbDA== -----END CERTIFICATE-----Generated at Wed May 13 02:12:14 2026 by rpki-client