$ rpki-client -vvf rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa File: 34352e36342e3130302e302f32322d3234203d3e203435373836.roa (raw, json) Hash identifier: NpWQoJWkTFRWtu5IgmdpgROmr0Z1lBzNGKqs6X4eLkI= Subject key identifier: 8E:2C:7B:B1:23:2A:49:05:B9:35:99:48:CB:5E:5F:5F:35:08:59:71 Certificate issuer: /CN=BCD5E05E570F2280ECEF33171EB7ADC87DF556D8 Certificate serial: 49DC9381D149B0A6E4EF25C2A80A065F4CCC11CF Authority key identifier: BC:D5:E0:5E:57:0F:22:80:EC:EF:33:17:1E:B7:AD:C8:7D:F5:56:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa Signing time: Sun 03 May 2026 03:13:26 +0000 ROA not before: Sun 03 May 2026 03:08:26 +0000 ROA not after: Sun 02 May 2027 03:13:26 +0000 asID: 45786 IP address blocks: 45.64.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.crl rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:dc:93:81:d1:49:b0:a6:e4:ef:25:c2:a8:0a:06:5f:4c:cc:11:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCD5E05E570F2280ECEF33171EB7ADC87DF556D8 Validity Not Before: May 3 03:08:26 2026 GMT Not After : May 2 03:13:26 2027 GMT Subject: CN=8E2C7BB1232A4905B9359948CB5E5F5F35085971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:39:b6:b0:0b:1f:33:93:35:7d:8a:21:37:08: c1:4c:29:88:de:31:35:0c:0e:e1:ea:68:9c:41:1d: be:92:e1:59:fd:3a:41:13:e7:b6:05:a0:a2:f9:58: aa:2d:89:c8:6c:c5:46:85:bf:32:b2:01:25:4a:b6: 9b:6f:74:95:cf:3d:76:70:b2:fc:23:59:d4:66:85: 0c:8b:c6:89:66:2d:ef:71:38:cd:e2:0e:d6:29:27: a1:fd:32:d3:01:b4:a4:a3:81:55:d0:4d:9b:8d:67: a9:83:0f:ce:23:08:12:68:dd:62:d6:72:77:63:fc: 90:04:32:47:98:83:44:45:1f:ea:a3:c4:ff:57:21: 49:02:91:b8:f7:1f:ab:f4:74:e7:e5:a2:97:0c:fe: 86:1b:dc:53:60:f0:53:4b:d9:ab:a9:b0:4b:e8:79: 1a:00:e8:5a:60:eb:11:e7:7c:4b:23:e9:21:8b:50: a9:2e:15:a4:83:67:a9:ae:8a:cd:99:74:5b:40:60: 11:6c:0d:3d:17:38:e8:4a:e4:80:1d:f9:1e:88:fa: 1c:0e:a7:66:28:34:8c:f5:b0:28:da:2a:74:28:2c: 63:7e:bb:06:d7:13:90:b9:58:ae:f9:4e:f9:53:a0: 6d:a9:d9:58:10:92:0a:8f:1d:0b:bf:c8:e9:0d:65: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2C:7B:B1:23:2A:49:05:B9:35:99:48:CB:5E:5F:5F:35:08:59:71 X509v3 Authority Key Identifier: keyid:BC:D5:E0:5E:57:0F:22:80:EC:EF:33:17:1E:B7:AD:C8:7D:F5:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.100.0/22 Signature Algorithm: sha256WithRSAEncryption 11:78:d1:66:d3:31:ea:5f:86:59:c2:2f:51:d5:14:8e:1c:22: 9b:4c:03:28:a6:88:bc:6b:68:35:3f:74:04:06:a9:11:4d:44: 23:75:ca:6c:84:e5:24:26:d7:ac:0c:8f:7f:b8:4d:43:55:45: 2d:de:11:cf:1b:93:66:a5:89:c9:80:2b:39:8d:bb:a0:ba:45: 3f:cf:83:35:82:98:cd:1d:2f:0e:e6:b6:85:ae:8e:ef:ab:2f: 3a:74:d5:54:ea:54:5f:8c:12:46:48:fd:c8:ad:59:2a:31:84: 4c:90:8d:b2:48:d2:93:9b:74:53:20:70:3f:12:30:05:12:7b: 63:aa:88:15:ab:9b:fa:33:c3:3d:cf:07:37:a5:e1:c5:39:ab: 1e:8f:fe:b4:45:54:66:19:78:a6:cd:9a:88:4c:ba:6b:6f:1f: 70:92:60:f3:76:22:54:7a:80:0c:ae:4d:a4:8d:6a:3c:9c:31: 5c:ec:e9:1d:d9:db:5e:25:08:02:47:86:b1:85:b5:bd:71:2e: 91:36:39:f4:79:b4:f4:07:a3:fe:21:28:28:25:ad:c0:ac:c7: 99:08:4f:9b:f8:06:83:e0:bc:a6:82:8a:34:88:7d:2f:c3:c7: 58:7c:ec:ce:24:7a:ba:be:5e:01:b2:fa:99:d4:eb:ec:16:f1: 3c:5d:21:43 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSdyTgdFJsKbk7yXCqAoGX0zMEc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNENUUwNUU1NzBGMjI4MEVDRUYzMzE3MUVCN0FEQzg3 REY1NTZEODAeFw0yNjA1MDMwMzA4MjZaFw0yNzA1MDIwMzEzMjZaMDMxMTAvBgNV BAMTKDhFMkM3QkIxMjMyQTQ5MDVCOTM1OTk0OENCNUU1RjVGMzUwODU5NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiObawCx8zkzV9iiE3CMFMKYje MTUMDuHqaJxBHb6S4Vn9OkET57YFoKL5WKotichsxUaFvzKyASVKtptvdJXPPXZw svwjWdRmhQyLxolmLe9xOM3iDtYpJ6H9MtMBtKSjgVXQTZuNZ6mDD84jCBJo3WLW cndj/JAEMkeYg0RFH+qjxP9XIUkCkbj3H6v0dOflopcM/oYb3FNg8FNL2aupsEvo eRoA6Fpg6xHnfEsj6SGLUKkuFaSDZ6muis2ZdFtAYBFsDT0XOOhK5IAd+R6I+hwO p2YoNIz1sCjaKnQoLGN+uwbXE5C5WK75TvlToG2p2VgQkgqPHQu/yOkNZRtFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjix7sSMqSQW5NZlIy15fXzUIWXEwHwYDVR0j BBgwFoAUvNXgXlcPIoDs7zMXHretyH31VtgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTUwZGE0NDctYTEzOC00NjI1LWE0MjAtYTcxMWFjMjQzNTE5LzAvQkNENUUwNUU1 NzBGMjI4MEVDRUYzMzE3MUVCN0FEQzg3REY1NTZEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQ0Q1RTA1RTU3MEYyMjgwRUNFRjMzMTcxRUI3QURDODdERjU1 NkQ4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzM0MzUyZTM2MzQyZTMxMzAzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzNzM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItQGQwDQYJKoZIhvcN AQELBQADggEBABF40WbTMepfhlnCL1HVFI4cIptMAyimiLxraDU/dAQGqRFNRCN1 ymyE5SQm16wMj3+4TUNVRS3eEc8bk2alicmAKzmNu6C6RT/PgzWCmM0dLw7mtoWu ju+rLzp01VTqVF+MEkZI/citWSoxhEyQjbJI0pObdFMgcD8SMAUSe2OqiBWrm/oz wz3PBzel4cU5qx6P/rRFVGYZeKbNmohMumtvH3CSYPN2IlR6gAyuTaSNajycMVzs 6R3Z214lCAJHhrGFtb1xLpE2OfR5tPQHo/4hKCglrcCsx5kIT5v4BoPgvKaCijSI fS/Dx1h87M4kerq+XgGy+pnU6+wW8TxdIUM= -----END CERTIFICATE-----Generated at Wed May 13 10:40:19 2026 by rpki-client