$ rpki-client -vvf rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa File: 34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa (raw, json) Hash identifier: ljFouV7ZlSbTbdDcS0zoJf3jqUeKDHqtCtUhcsruCg4= Subject key identifier: 46:CD:7E:42:83:8E:E6:41:FF:EC:FE:FF:9F:2F:25:32:2D:74:36:DA Certificate issuer: /CN=B7D0DDFE90146E06D3BEA13C2C794B527F3151F8 Certificate serial: 64223861032CAB970F8798756553A1B0B8A8E5B6 Authority key identifier: B7:D0:DD:FE:90:14:6E:06:D3:BE:A1:3C:2C:79:4B:52:7F:31:51:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa Signing time: Sun 03 May 2026 03:16:36 +0000 ROA not before: Sun 03 May 2026 03:11:36 +0000 ROA not after: Sun 02 May 2027 03:16:36 +0000 asID: 152087 IP address blocks: 43.241.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.crl rsync://rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:22:38:61:03:2c:ab:97:0f:87:98:75:65:53:a1:b0:b8:a8:e5:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7D0DDFE90146E06D3BEA13C2C794B527F3151F8 Validity Not Before: May 3 03:11:36 2026 GMT Not After : May 2 03:16:36 2027 GMT Subject: CN=46CD7E42838EE641FFECFEFF9F2F25322D7436DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:e9:c0:21:fd:3c:d9:08:c0:0f:75:91:1c: 15:95:66:bf:e3:0d:1d:9d:3f:b9:39:7b:ce:66:b8: e7:2d:b0:4f:d8:34:8e:cf:06:f8:ae:d6:7b:81:76: 3a:a6:49:41:b7:58:0f:c4:64:cc:8e:3c:61:11:03: a5:83:5a:13:13:ad:d8:c0:5c:6a:ba:df:b8:70:60: 73:3d:e5:0c:1b:73:8b:b5:ec:8d:95:84:03:c0:74: f5:2f:78:e9:60:8a:57:77:cc:7e:15:f8:fb:3a:77: 24:5c:4b:1c:0b:aa:c2:11:8a:09:06:eb:ef:54:77: e5:6e:15:d9:fa:10:0b:d1:19:10:55:d3:0a:b6:c3: b8:0f:a0:05:d9:a0:3d:79:64:4d:69:61:0d:b3:3a: 31:7c:55:a7:aa:cf:b3:c2:1a:d7:54:c9:0f:37:5d: ae:86:23:39:90:b3:cb:fd:61:30:93:24:e6:ad:46: 93:ab:40:b2:c7:01:87:df:cd:82:53:92:b8:a0:57: cb:b0:0c:12:95:5e:1a:ff:e3:86:22:a3:30:5a:83: 01:01:19:3e:96:5f:0d:e0:61:2e:29:82:af:1f:d9: 54:a3:3e:04:e6:c1:0d:5e:37:90:11:e1:51:b1:f8: de:3a:ad:ff:da:79:54:0d:ca:de:63:26:aa:e5:5d: 9b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CD:7E:42:83:8E:E6:41:FF:EC:FE:FF:9F:2F:25:32:2D:74:36:DA X509v3 Authority Key Identifier: keyid:B7:D0:DD:FE:90:14:6E:06:D3:BE:A1:3C:2C:79:4B:52:7F:31:51:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B7D0DDFE90146E06D3BEA13C2C794B527F3151F8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.246.0/23 Signature Algorithm: sha256WithRSAEncryption 22:b0:df:38:77:be:94:a9:16:75:60:88:e4:f0:1d:61:cc:f3: 48:f5:e9:fc:21:0d:0e:e8:84:f9:6a:93:be:a9:ad:d2:c5:a1: bb:a1:28:25:f0:80:5a:ff:90:f0:32:d9:c5:3f:af:16:44:34: 08:f5:49:5f:a8:8f:1a:5c:a4:1d:7e:84:2b:a4:2b:2e:e6:b9: 24:61:fc:10:89:c4:f2:8d:11:fc:aa:8c:08:a3:b5:32:8f:7e: d7:77:9e:de:5a:02:1f:82:3e:6b:2d:b9:e9:33:34:a1:ca:88: ce:60:dd:ee:52:93:ba:0a:4f:f8:a8:ed:6c:6d:f6:f6:d5:2f: 5e:f6:0b:e5:e3:47:55:4b:48:9a:37:ad:f9:f2:4b:77:03:74: 85:84:18:10:0b:72:d2:bf:13:cc:64:6b:7f:f2:24:60:a6:d9: 13:d8:45:fa:04:e9:80:7d:fc:04:bb:b5:98:aa:67:84:e2:e6: 69:65:17:7f:ae:2b:b5:ae:2c:6f:73:04:1a:46:36:14:c2:37: ce:83:04:ae:93:c0:15:a4:16:f0:7d:2c:3b:91:45:02:49:2a: a5:c2:c7:0a:4a:7c:bc:63:fb:8a:fa:29:d1:ab:57:4b:d2:ae: 74:6d:d7:e5:70:f7:47:0b:a3:d6:d0:8e:19:15:75:02:e4:e9: 7b:71:4b:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZCI4YQMsq5cPh5h1ZVOhsLio5bYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjdEMERERkU5MDE0NkUwNkQzQkVBMTNDMkM3OTRCNTI3 RjMxNTFGODAeFw0yNjA1MDMwMzExMzZaFw0yNzA1MDIwMzE2MzZaMDMxMTAvBgNV BAMTKDQ2Q0Q3RTQyODM4RUU2NDFGRkVDRkVGRjlGMkYyNTMyMkQ3NDM2REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE5OnAIf082QjAD3WRHBWVZr/j DR2dP7k5e85muOctsE/YNI7PBviu1nuBdjqmSUG3WA/EZMyOPGERA6WDWhMTrdjA XGq637hwYHM95Qwbc4u17I2VhAPAdPUveOlgild3zH4V+Ps6dyRcSxwLqsIRigkG 6+9Ud+VuFdn6EAvRGRBV0wq2w7gPoAXZoD15ZE1pYQ2zOjF8Vaeqz7PCGtdUyQ83 Xa6GIzmQs8v9YTCTJOatRpOrQLLHAYffzYJTkrigV8uwDBKVXhr/44YiozBagwEB GT6WXw3gYS4pgq8f2VSjPgTmwQ1eN5AR4VGx+N46rf/aeVQNyt5jJqrlXZvDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURs1+QoOO5kH/7P7/ny8lMi10NtowHwYDVR0j BBgwFoAUt9Dd/pAUbgbTvqE8LHlLUn8xUfgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjEwODcxNTktMzBkZC00MWJhLTk5NzktMDM1ODgxMTJhNzgwLzAvQjdEMERERkU5 MDE0NkUwNkQzQkVBMTNDMkM3OTRCNTI3RjMxNTFGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CN0QwRERGRTkwMTQ2RTA2RDNCRUExM0MyQzc5NEI1MjdGMzE1 MUY4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxMDg3MTU5LTMwZGQtNDFiYS05 OTc5LTAzNTg4MTEyYTc4MC8wLzM0MzMyZTMyMzQzMTJlMzIzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBK/H2MA0GCSqG SIb3DQEBCwUAA4IBAQAisN84d76UqRZ1YIjk8B1hzPNI9en8IQ0O6IT5apO+qa3S xaG7oSgl8IBa/5DwMtnFP68WRDQI9UlfqI8aXKQdfoQrpCsu5rkkYfwQicTyjRH8 qowIo7Uyj37Xd57eWgIfgj5rLbnpMzShyojOYN3uUpO6Ck/4qO1sbfb21S9e9gvl 40dVS0iaN6358kt3A3SFhBgQC3LSvxPMZGt/8iRgptkT2EX6BOmAffwEu7WYqmeE 4uZpZRd/riu1rixvcwQaRjYUwjfOgwSuk8AVpBbwfSw7kUUCSSqlwscKSny8Y/uK +inRq1dL0q50bdflcPdHC6PW0I4ZFXUC5Ol7cUvl -----END CERTIFICATE-----Generated at Wed May 13 11:35:07 2026 by rpki-client