$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34332e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: fTQwNjegjWMOzBPfeCGxyPxzuktj8uBwcPPy5ukBNDg= Subject key identifier: 10:97:70:EF:2A:8D:69:81:1D:2D:BA:DD:AF:21:E1:19:F5:F8:F0:80 Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 2A9F9FFE9B1F80332AD95C0944AEBAF7C5D81F54 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:03 +0000 ROA not before: Sun 03 May 2026 03:07:03 +0000 ROA not after: Sun 02 May 2027 03:12:03 +0000 asID: 45325 IP address blocks: 122.248.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9f:9f:fe:9b:1f:80:33:2a:d9:5c:09:44:ae:ba:f7:c5:d8:1f:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:03 2026 GMT Not After : May 2 03:12:03 2027 GMT Subject: CN=109770EF2A8D69811D2DBADDAF21E119F5F8F080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:6b:a2:12:d2:f9:17:a8:11:79:41:1e:3a: 93:d9:cd:be:6c:b1:17:1c:cb:90:85:ae:c3:cb:16: 3e:0c:51:0b:7e:0d:7b:1b:fb:0b:42:3d:a0:f1:b9: 89:8c:88:71:53:bb:c6:3c:bc:54:7b:2e:db:43:b8: 53:44:52:e5:d6:12:fc:4d:3f:4d:f8:4e:ac:34:e4: 25:92:fd:d0:4f:53:1d:b5:90:83:a4:73:5f:06:36: af:9c:2a:fa:90:94:01:69:6b:ca:67:8f:d0:05:99: d9:a9:ac:2d:8f:de:59:44:22:04:db:b1:70:50:d8: fa:1c:61:bb:05:27:0a:c5:39:58:3f:b0:59:f0:91: 25:49:d5:9b:d8:22:75:fb:cb:ab:2a:ff:e2:5d:db: 78:58:31:a4:42:65:cd:03:eb:4f:a4:c8:71:a1:c9: da:a9:10:02:e7:f8:69:27:37:04:a8:c5:c1:80:80: 2a:54:a8:86:84:b1:41:60:d9:91:81:3a:ee:2f:79: 61:86:89:5b:14:09:fc:0e:df:2c:50:6a:c1:2b:89: 98:c6:e8:12:05:2c:b4:11:bd:b7:74:81:13:15:66: d5:a0:92:16:e4:de:ec:e9:b4:c1:0d:98:7a:80:4e: 85:6c:c3:90:3c:c5:33:05:25:51:de:51:d5:48:b4: 6f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:97:70:EF:2A:8D:69:81:1D:2D:BA:DD:AF:21:E1:19:F5:F8:F0:80 X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34332e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.43.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d7:0c:9d:89:ad:d7:f1:9c:b0:b4:96:3d:d4:20:41:8b:53: f6:37:63:96:30:3a:57:a9:a8:a7:70:30:ac:aa:ec:7a:d5:55: 04:21:b0:0d:1a:3b:da:21:96:c8:85:14:4f:e4:c8:94:be:f2: 6f:66:e2:19:66:9e:16:55:53:8e:de:0f:9c:93:72:6a:b1:ac: 3d:d5:cd:3c:00:ed:eb:b4:56:b3:39:a3:be:ec:d0:2a:e2:58: a6:eb:25:ec:ba:5a:f5:a6:a3:ef:69:5a:c1:75:b7:0c:f3:71: 03:ca:d6:9b:86:71:0a:f9:4d:ec:dd:c4:7e:73:52:e6:3b:7a: 0c:36:22:60:77:8f:01:c1:ec:e1:37:de:85:c7:a3:4b:89:94: 97:64:53:b9:67:22:d8:55:e7:34:4f:57:18:76:06:72:1b:76: a0:d2:c8:02:9b:25:fa:e7:77:65:05:a6:71:37:a0:1b:e7:bc: 9a:ee:b0:ba:c6:5b:67:6b:94:fc:62:b7:bf:03:ff:6c:81:d9: a4:00:24:f3:3c:f2:bc:09:48:6c:89:10:f8:27:47:03:3c:dc: 2a:7f:cd:51:a2:e3:64:60:3a:71:cd:d5:1a:ef:97:60:98:2c: 77:4a:10:9c:7a:6a:4d:4e:6b:48:72:e8:ee:66:1e:01:d7:bc: 43:65:32:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKp+f/psfgDMq2VwJRK6698XYH1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDNaFw0yNzA1MDIwMzEyMDNaMDMxMTAvBgNV BAMTKDEwOTc3MEVGMkE4RDY5ODExRDJEQkFEREFGMjFFMTE5RjVGOEYwODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ0WuiEtL5F6gReUEeOpPZzb5s sRccy5CFrsPLFj4MUQt+DXsb+wtCPaDxuYmMiHFTu8Y8vFR7LttDuFNEUuXWEvxN P034Tqw05CWS/dBPUx21kIOkc18GNq+cKvqQlAFpa8pnj9AFmdmprC2P3llEIgTb sXBQ2PocYbsFJwrFOVg/sFnwkSVJ1ZvYInX7y6sq/+Jd23hYMaRCZc0D60+kyHGh ydqpEALn+GknNwSoxcGAgCpUqIaEsUFg2ZGBOu4veWGGiVsUCfwO3yxQasEriZjG 6BIFLLQRvbd0gRMVZtWgkhbk3uzptMENmHqAToVsw5A8xTMFJVHeUdVItG+fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEJdw7yqNaYEdLbrdryHhGfX48IAwHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KzANBgkqhkiG 9w0BAQsFAAOCAQEAfdcMnYmt1/GcsLSWPdQgQYtT9jdjljA6V6mop3AwrKrsetVV BCGwDRo72iGWyIUUT+TIlL7yb2biGWaeFlVTjt4PnJNyarGsPdXNPADt67RWszmj vuzQKuJYpusl7Lpa9aaj72lawXW3DPNxA8rWm4ZxCvlN7N3EfnNS5jt6DDYiYHeP AcHs4TfehcejS4mUl2RTuWci2FXnNE9XGHYGcht2oNLIApsl+ud3ZQWmcTegG+e8 mu6wusZbZ2uU/GK3vwP/bIHZpAAk8zzyvAlIbIkQ+CdHAzzcKn/NUaLjZGA6cc3V Gu+XYJgsd0oQnHpqTU5rSHLo7mYeAde8Q2UyqQ== -----END CERTIFICATE-----Generated at Wed May 13 02:51:14 2026 by rpki-client