$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa File: 34352e3132362e38302e302f32322d3234203d3e20313335343738.roa (raw, json) Hash identifier: b2lWOoaou2J1YIxknocGyrbJm7waL5thO0MNRGLl9mc= Subject key identifier: 45:1C:3D:35:8B:88:AA:33:D7:69:92:D9:C9:F9:8B:38:5C:D8:0E:06 Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 65186BF43007CC038D067E5F6F2084F40C14D399 Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa Signing time: Sun 03 May 2026 03:15:07 +0000 ROA not before: Sun 03 May 2026 03:10:07 +0000 ROA not after: Sun 02 May 2027 03:15:07 +0000 asID: 135478 IP address blocks: 45.126.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:18:6b:f4:30:07:cc:03:8d:06:7e:5f:6f:20:84:f4:0c:14:d3:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:07 2026 GMT Not After : May 2 03:15:07 2027 GMT Subject: CN=451C3D358B88AA33D76992D9C9F98B385CD80E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e6:b4:f4:bd:f6:31:d4:90:20:99:7d:e0:b8: c4:05:4d:fe:fb:77:07:28:00:13:d7:19:be:4f:f0: 41:07:bc:65:0d:81:f9:45:b1:7d:61:b4:8f:c1:40: 6a:6d:98:0b:c3:16:aa:ec:9e:64:b6:ff:b0:88:2c: 6c:99:eb:00:ec:c1:5c:a7:37:5b:0b:83:8b:af:90: 84:6a:99:37:d6:52:fc:97:b7:8f:7b:2f:a9:b1:7f: 73:0d:f4:1e:92:da:c1:c4:38:59:f3:1c:d2:ec:a1: 00:07:45:d3:33:da:8b:f6:91:3e:55:f7:91:38:2d: 49:8d:23:09:43:35:d8:85:86:b6:bd:9b:b8:5f:aa: 05:5e:e9:73:98:eb:e6:ae:63:38:ca:ba:ba:ee:f6: 15:d7:79:56:46:eb:8f:d5:96:50:33:75:70:ac:19: 6a:a5:00:6f:f7:d0:a6:02:f3:9f:62:dd:ed:da:6a: 6e:b8:f9:b8:8d:ed:ab:60:9e:a7:c0:9d:82:d9:83: 6f:fc:21:04:99:b2:fb:21:ac:7b:10:b4:6f:e3:25: 8a:e7:ba:24:03:4a:d0:4b:7c:06:52:48:c5:c5:60: 4a:af:6b:dc:c1:76:24:5a:f6:e7:96:a3:fc:a8:84: fe:5f:66:71:1e:0e:73:34:2d:70:4f:97:c9:07:25: c7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1C:3D:35:8B:88:AA:33:D7:69:92:D9:C9:F9:8B:38:5C:D8:0E:06 X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/34352e3132362e38302e302f32322d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.80.0/22 Signature Algorithm: sha256WithRSAEncryption a7:ef:16:ec:0d:69:9c:70:fb:24:9a:21:dd:b1:99:5a:1b:b0: 1b:b6:a6:a2:7a:b5:a6:ca:9d:61:56:12:f6:62:30:7d:e1:88: c5:1c:e5:f7:f0:d5:8e:5c:c0:8f:45:39:83:fb:32:36:f8:d6: 41:86:9f:de:0e:53:be:da:12:32:6a:67:86:92:00:5b:f6:b5: 35:95:63:67:03:96:70:3e:27:35:85:5d:4c:72:23:ae:88:5c: c4:88:73:b6:6b:a0:ec:ff:07:69:90:7f:73:8c:2d:d5:a5:1f: a1:ef:f4:72:a4:80:dc:61:09:ea:0e:b9:30:1a:29:aa:0e:e3: bd:9a:06:a6:69:0f:ad:cb:f3:0f:d9:8b:c3:43:a8:f8:27:ff: a7:05:41:c4:b8:de:3c:fb:74:e3:12:80:cb:6c:9d:04:0c:6a: 4d:31:97:ea:34:14:aa:fe:6e:88:61:e5:1e:5e:90:f9:ed:50: 9e:26:dc:d7:7d:12:90:de:e4:a8:2d:f4:f8:6e:52:38:6e:d5: 2e:9d:fc:c3:cc:c9:e4:d1:e1:f7:b4:20:3d:06:ae:15:c8:95: f7:ea:da:b9:bb:87:80:9c:21:ba:1e:7c:c0:f9:f1:e3:4c:db: de:59:a5:41:3e:24:c3:89:e7:14:3e:c1:2d:a4:b0:70:ad:8a: 26:c5:a5:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZRhr9DAHzAONBn5fbyCE9AwU05kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMDdaFw0yNzA1MDIwMzE1MDdaMDMxMTAvBgNV BAMTKDQ1MUMzRDM1OEI4OEFBMzNENzY5OTJEOUM5Rjk4QjM4NUNEODBFMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT5rT0vfYx1JAgmX3guMQFTf77 dwcoABPXGb5P8EEHvGUNgflFsX1htI/BQGptmAvDFqrsnmS2/7CILGyZ6wDswVyn N1sLg4uvkIRqmTfWUvyXt497L6mxf3MN9B6S2sHEOFnzHNLsoQAHRdMz2ov2kT5V 95E4LUmNIwlDNdiFhra9m7hfqgVe6XOY6+auYzjKurru9hXXeVZG64/VllAzdXCs GWqlAG/30KYC859i3e3aam64+biN7atgnqfAnYLZg2/8IQSZsvshrHsQtG/jJYrn uiQDStBLfAZSSMXFYEqva9zBdiRa9ueWo/yohP5fZnEeDnM0LXBPl8kHJcfnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURRw9NYuIqjPXaZLZyfmLOFzYDgYwHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzM0MzUyZTMxMzIzNjJlMzgzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1+UDANBgkqhkiG 9w0BAQsFAAOCAQEAp+8W7A1pnHD7JJoh3bGZWhuwG7amonq1psqdYVYS9mIwfeGI xRzl9/DVjlzAj0U5g/syNvjWQYaf3g5TvtoSMmpnhpIAW/a1NZVjZwOWcD4nNYVd THIjrohcxIhztmug7P8HaZB/c4wt1aUfoe/0cqSA3GEJ6g65MBopqg7jvZoGpmkP rcvzD9mLw0Oo+Cf/pwVBxLjePPt04xKAy2ydBAxqTTGX6jQUqv5uiGHlHl6Q+e1Q nibc130SkN7kqC30+G5SOG7VLp38w8zJ5NHh97QgPQauFciV9+raubuHgJwhuh58 wPnx40zb3lmlQT4kw4nnFD7BLaSwcK2KJsWlRQ== -----END CERTIFICATE-----Generated at Wed May 13 03:23:28 2026 by rpki-client