$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: YFkGY+wSseirD/L/4qz7sLnl/2atYUZvqHfKN+6xB9M= Subject key identifier: CB:2E:C3:3B:A3:A0:BA:33:2E:72:5D:80:CB:B8:1B:8C:E7:EF:D5:BD Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 0EFD9669663D104E853566EF1656A3DD50098CBA Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:11:57 +0000 ROA not before: Sun 03 May 2026 03:06:57 +0000 ROA not after: Sun 02 May 2027 03:11:57 +0000 asID: 45325 IP address blocks: 122.248.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fd:96:69:66:3d:10:4e:85:35:66:ef:16:56:a3:dd:50:09:8c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:06:57 2026 GMT Not After : May 2 03:11:57 2027 GMT Subject: CN=CB2EC33BA3A0BA332E725D80CBB81B8CE7EFD5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cc:f5:08:a6:db:50:99:eb:02:45:01:01:19: 20:ed:50:64:dc:29:66:5f:80:65:3a:ab:62:49:3c: 29:84:e6:11:ce:62:4b:e8:19:cf:cd:49:51:66:1f: 28:4c:fe:65:df:db:f6:e5:75:ef:29:ad:ae:b7:cc: c3:e4:95:f6:ce:c6:29:7e:1a:96:02:69:6b:48:e3: 9b:f6:7e:69:07:b4:62:98:1d:48:4e:b3:32:86:87: 94:54:db:f1:fb:52:0f:45:ee:7a:4c:3a:f5:99:c7: f9:4b:1e:48:3d:cd:a3:e9:40:3d:c5:c6:f2:b0:66: 8f:c0:b0:fe:6b:a3:3b:2d:16:c6:72:10:e4:96:53: 3a:a2:df:88:cc:2d:21:df:46:ff:47:fc:18:26:fd: d6:5e:06:4f:a1:94:33:3d:06:db:06:95:11:80:52: e3:60:ce:db:fa:ab:6e:22:78:19:b0:ca:2a:7c:fa: 1b:b2:d7:32:8a:00:aa:ed:be:37:8e:1f:5a:83:f7: 9c:f4:58:b2:a6:af:a9:36:63:54:6d:fb:58:73:c3: 1b:08:02:f2:c1:55:5f:80:18:84:62:a1:37:0e:61: 6a:d8:dd:51:1c:35:e8:da:78:50:a3:41:91:ed:be: 09:40:96:bc:bf:19:11:c4:bb:a9:fd:03:10:5f:99: cc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2E:C3:3B:A3:A0:BA:33:2E:72:5D:80:CB:B8:1B:8C:E7:EF:D5:BD X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.45.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f6:30:f4:ee:49:03:c3:39:6f:db:d8:09:f4:8a:92:a4:c4: c6:08:eb:fd:0d:ca:8e:64:43:f8:23:95:61:e2:94:40:2e:80: bf:56:14:9d:cd:4b:52:60:cd:73:a5:00:5a:9c:14:81:97:89: 91:88:4d:55:db:41:34:68:64:12:db:b1:3e:08:42:c8:f0:9f: 2e:8c:f4:2a:e1:8b:95:f3:10:b2:4f:dd:92:f9:e2:60:f3:64: a0:23:0f:5d:3e:7a:97:c6:c2:1a:00:fb:36:51:4e:21:87:af: 6b:b3:5c:4e:18:f3:47:05:54:9f:76:e7:8b:55:5c:65:21:cb: 51:18:a2:80:b9:40:17:c0:e2:d6:d1:49:48:fc:e4:54:e3:90: 99:64:e1:7e:ba:5d:f3:ca:a5:1d:7a:6e:4c:7f:0b:b1:fa:32: fa:aa:32:c6:83:b2:50:bd:f4:5d:6d:b9:23:a4:83:88:4c:d6: 19:32:a6:1f:f2:6e:02:45:00:5c:f3:a9:37:27:dd:8a:32:fe: a2:a1:9e:05:77:7d:c8:c0:e9:ff:5b:a1:ec:04:e3:f4:fc:8a: 07:13:08:97:ef:2b:f2:2c:4d:ea:d9:16:98:59:ce:f9:fe:43: 0c:05:40:3b:15:9c:35:09:d2:59:2a:5a:1e:f1:37:5a:e7:db: 33:9e:a0:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDv2WaWY9EE6FNWbvFlaj3VAJjLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA2NTdaFw0yNzA1MDIwMzExNTdaMDMxMTAvBgNV BAMTKENCMkVDMzNCQTNBMEJBMzMyRTcyNUQ4MENCQjgxQjhDRTdFRkQ1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzPUIpttQmesCRQEBGSDtUGTc KWZfgGU6q2JJPCmE5hHOYkvoGc/NSVFmHyhM/mXf2/blde8pra63zMPklfbOxil+ GpYCaWtI45v2fmkHtGKYHUhOszKGh5RU2/H7Ug9F7npMOvWZx/lLHkg9zaPpQD3F xvKwZo/AsP5rozstFsZyEOSWUzqi34jMLSHfRv9H/Bgm/dZeBk+hlDM9BtsGlRGA UuNgztv6q24ieBmwyip8+huy1zKKAKrtvjeOH1qD95z0WLKmr6k2Y1Rt+1hzwxsI AvLBVV+AGIRioTcOYWrY3VEcNejaeFCjQZHtvglAlry/GRHEu6n9AxBfmcz9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyy7DO6OgujMucl2Ay7gbjOfv1b0wHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LTANBgkqhkiG 9w0BAQsFAAOCAQEALfYw9O5JA8M5b9vYCfSKkqTExgjr/Q3KjmRD+COVYeKUQC6A v1YUnc1LUmDNc6UAWpwUgZeJkYhNVdtBNGhkEtuxPghCyPCfLoz0KuGLlfMQsk/d kvniYPNkoCMPXT56l8bCGgD7NlFOIYeva7NcThjzRwVUn3bni1VcZSHLURiigLlA F8Di1tFJSPzkVOOQmWThfrpd88qlHXpuTH8Lsfoy+qoyxoOyUL30XW25I6SDiEzW GTKmH/JuAkUAXPOpNyfdijL+oqGeBXd9yMDp/1uh7ATj9PyKBxMIl+8r8ixN6tkW mFnO+f5DDAVAOxWcNQnSWSpaHvE3WufbM56gBw== -----END CERTIFICATE-----Generated at Wed May 13 02:37:47 2026 by rpki-client