$ rpki-client -vvf rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: zZKnPm65wCA/b7MgYVi6OYfLbBSyB9aR0+gTJCkjT98= Subject key identifier: 56:34:40:F8:5C:25:ED:75:A9:12:0B:1D:17:15:53:80:2B:C6:35:5E Certificate issuer: /CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Certificate serial: 0CBA875658E4202B1841B27691589B61D40B7E03 Authority key identifier: D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa Signing time: Sun 03 May 2026 03:12:03 +0000 ROA not before: Sun 03 May 2026 03:07:03 +0000 ROA not after: Sun 02 May 2027 03:12:03 +0000 asID: 45325 IP address blocks: 122.248.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ba:87:56:58:e4:20:2b:18:41:b2:76:91:58:9b:61:d4:0b:7e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35962E8F839460DC5283C472D81ADB87BBD3992 Validity Not Before: May 3 03:07:03 2026 GMT Not After : May 2 03:12:03 2027 GMT Subject: CN=563440F85C25ED75A9120B1D171553802BC6355E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a3:b5:12:89:27:4f:30:bf:58:19:cf:56:35: 42:90:6f:16:aa:2e:6b:7d:35:01:34:8a:43:a2:36: 9e:7d:5a:ae:a5:57:88:3e:22:a5:b2:7e:26:6e:93: a5:23:eb:cd:63:4f:14:8a:b2:a1:da:c8:83:9c:71: f1:2c:31:81:db:7e:1c:41:0f:ff:98:ec:89:6f:db: 67:7e:7c:c7:ec:8f:5d:52:70:7d:d1:08:1f:b0:8c: 3a:67:93:36:15:cf:1d:1b:b7:f1:4b:b9:fc:92:c4: 8a:28:31:fe:9d:ad:9e:3b:66:d9:a2:60:9d:b7:84: 49:b9:4d:d8:71:b0:0b:80:f2:cc:c5:f2:18:5e:08: 41:4b:b9:32:db:57:9a:8e:1e:ce:34:f7:86:b8:df: 59:2d:c5:5a:d6:6b:d3:51:a8:c0:f5:b5:ab:95:4a: 8b:e6:c7:67:d2:5c:3d:2c:34:b2:f8:e0:d8:5a:15: a9:e3:f9:de:fe:8d:a7:8f:86:f6:fc:ae:a6:56:54: a5:eb:5b:20:cb:20:d9:da:81:ef:d6:04:0d:b6:06: e1:9e:b0:ba:30:5a:b0:d9:b4:ec:18:41:ee:6d:f5: 6e:34:98:44:d8:c0:6a:b7:22:c6:74:1e:f8:64:fb: 23:0c:4c:9e:83:05:39:ce:25:69:f5:f5:15:10:d2: 71:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:34:40:F8:5C:25:ED:75:A9:12:0B:1D:17:15:53:80:2B:C6:35:5E X509v3 Authority Key Identifier: keyid:D3:59:62:E8:F8:39:46:0D:C5:28:3C:47:2D:81:AD:B8:7B:BD:39:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/D35962E8F839460DC5283C472D81ADB87BBD3992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D35962E8F839460DC5283C472D81ADB87BBD3992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.46.0/24 Signature Algorithm: sha256WithRSAEncryption 01:df:93:58:dd:0a:4b:30:89:3d:c8:24:7f:01:f6:37:7c:ad: 69:ad:18:21:69:d6:1a:0f:8b:74:39:56:76:c6:c7:15:15:21: c3:a5:60:2b:38:56:e2:e4:e0:4f:5c:13:e8:fe:28:6f:69:ea: 30:6e:fe:8c:3b:6c:de:29:bc:a9:97:e6:38:36:dd:ae:aa:f3: 52:3f:1d:6d:4d:59:67:77:fa:6a:d4:f8:16:70:25:a0:cc:3b: 63:5d:52:31:64:02:aa:db:b7:5e:41:8c:92:cd:59:4a:a5:a5: ff:e1:a6:d1:a0:1f:ed:9d:71:bf:04:c3:6e:1b:76:29:15:1d: 2c:46:36:96:e0:cd:f6:c4:75:75:9e:ed:91:94:1d:8a:6d:d4: 73:ad:fa:b0:34:53:15:4e:68:69:84:19:d2:7a:4a:f1:93:5a: 07:41:68:a5:6b:63:44:e0:6c:3e:47:74:7d:b8:a8:b5:d2:9e: f6:9c:0a:2d:5d:a9:ca:7d:ed:22:68:a4:9b:de:b0:e2:6c:01: 70:46:2a:bb:ba:c8:1d:3b:0f:6c:c2:2a:16:a2:69:c1:6b:0f: 87:f3:b0:be:85:20:62:c5:1a:d8:97:a8:4b:46:fb:a8:94:b2: bd:c5:aa:c9:f0:86:ab:16:32:32:c3:3b:97:5f:2c:85:49:52: 0f:01:f9:29 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDLqHVljkICsYQbJ2kVibYdQLfgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1OTYyRThGODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3 QkJEMzk5MjAeFw0yNjA1MDMwMzA3MDNaFw0yNzA1MDIwMzEyMDNaMDMxMTAvBgNV BAMTKDU2MzQ0MEY4NUMyNUVENzVBOTEyMEIxRDE3MTU1MzgwMkJDNjM1NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6o7USiSdPML9YGc9WNUKQbxaq Lmt9NQE0ikOiNp59Wq6lV4g+IqWyfiZuk6Uj681jTxSKsqHayIOccfEsMYHbfhxB D/+Y7Ilv22d+fMfsj11ScH3RCB+wjDpnkzYVzx0bt/FLufySxIooMf6drZ47Ztmi YJ23hEm5TdhxsAuA8szF8hheCEFLuTLbV5qOHs4094a431ktxVrWa9NRqMD1tauV Sovmx2fSXD0sNLL44NhaFanj+d7+jaePhvb8rqZWVKXrWyDLINnage/WBA22BuGe sLowWrDZtOwYQe5t9W40mETYwGq3IsZ0Hvhk+yMMTJ6DBTnOJWn19RUQ0nF3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVjRA+Fwl7XWpEgsdFxVTgCvGNV4wHwYDVR0j BBgwFoAU01li6Pg5Rg3FKDxHLYGtuHu9OZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYyZTdmZDYtZWI1ZS00ODBhLThlOTctYzU1ZjY4ZTA1ODlhLzAvRDM1OTYyRThG ODM5NDYwREM1MjgzQzQ3MkQ4MUFEQjg3QkJEMzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMzU5NjJFOEY4Mzk0NjBEQzUyODNDNDcyRDgxQURCODdCQkQz OTkyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LjANBgkqhkiG 9w0BAQsFAAOCAQEAAd+TWN0KSzCJPcgkfwH2N3ytaa0YIWnWGg+LdDlWdsbHFRUh w6VgKzhW4uTgT1wT6P4ob2nqMG7+jDts3im8qZfmODbdrqrzUj8dbU1ZZ3f6atT4 FnAloMw7Y11SMWQCqtu3XkGMks1ZSqWl/+Gm0aAf7Z1xvwTDbht2KRUdLEY2luDN 9sR1dZ7tkZQdim3Uc636sDRTFU5oaYQZ0npK8ZNaB0FopWtjROBsPkd0fbiotdKe 9pwKLV2pyn3tImikm96w4mwBcEYqu7rIHTsPbMIqFqJpwWsPh/OwvoUgYsUa2Jeo S0b7qJSyvcWqyfCGqxYyMsM7l18shUlSDwH5KQ== -----END CERTIFICATE-----Generated at Wed May 13 02:50:52 2026 by rpki-client