$ rpki-client -vvf rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa File: 34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: 1kRWH/01ZY8vcD8ZJ7NSjogRu3r8TcailYL1T9WDQmE= Subject key identifier: 05:96:B0:E1:F1:62:1B:F4:EC:E4:F2:4C:90:4C:16:8B:F1:D7:D1:EB Certificate issuer: /CN=EEEEDDCDA44B0713B397D27040721EEC4848E5DC Certificate serial: 1C221B80823AA6974356C286CF87FBCAB116585A Authority key identifier: EE:EE:DD:CD:A4:4B:07:13:B3:97:D2:70:40:72:1E:EC:48:48:E5:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa Signing time: Sun 03 May 2026 03:19:18 +0000 ROA not before: Sun 03 May 2026 03:14:18 +0000 ROA not after: Sun 02 May 2027 03:19:18 +0000 asID: 131740 IP address blocks: 43.245.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.crl rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:22:1b:80:82:3a:a6:97:43:56:c2:86:cf:87:fb:ca:b1:16:58:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEEEDDCDA44B0713B397D27040721EEC4848E5DC Validity Not Before: May 3 03:14:18 2026 GMT Not After : May 2 03:19:18 2027 GMT Subject: CN=0596B0E1F1621BF4ECE4F24C904C168BF1D7D1EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2f:2b:80:63:fa:d1:12:86:f8:92:59:2f:d8: 5a:59:e4:08:fb:3b:98:58:72:e3:dd:dc:6c:70:2d: 97:96:2d:15:ab:0e:dc:b7:34:f6:e7:8c:9c:ba:80: 47:78:ed:36:3b:c4:93:b3:4e:b4:23:ba:d2:af:4c: 6c:6d:5a:2b:6d:32:7c:fc:e6:c0:79:95:27:b6:af: db:a4:e6:b8:7a:04:73:e1:b7:de:6e:7e:4f:bd:50: b6:31:af:d5:c0:8e:2c:cd:06:e6:95:14:c5:d9:a7: 1f:e4:78:36:48:bb:02:6f:2e:99:5a:f4:e7:ee:a5: 6e:56:6a:d2:c6:e2:1a:a4:8d:07:61:84:18:9b:99: 54:4c:a9:03:7f:ff:b1:b6:92:7b:ce:f7:b4:ab:15: 88:88:10:44:8c:a9:be:b6:da:c0:75:7d:56:1b:78: 15:ef:4b:ae:15:1d:ca:f2:d7:b2:e9:1f:47:aa:2f: 15:7c:f9:5b:22:cf:62:ec:92:a3:0c:81:00:98:b2: 34:9f:ec:08:df:43:af:41:0b:6d:9b:4b:ef:56:65: 1a:91:43:c0:ad:c6:71:72:06:88:76:67:58:36:29: fe:fb:8a:c2:e5:f7:1f:c5:75:bf:46:81:f0:93:25: da:34:f2:ab:4a:80:56:06:df:1c:ff:fd:db:32:be: e2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:96:B0:E1:F1:62:1B:F4:EC:E4:F2:4C:90:4C:16:8B:F1:D7:D1:EB X509v3 Authority Key Identifier: keyid:EE:EE:DD:CD:A4:4B:07:13:B3:97:D2:70:40:72:1E:EC:48:48:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEEEDDCDA44B0713B397D27040721EEC4848E5DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234382e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.248.0/24 Signature Algorithm: sha256WithRSAEncryption 99:0c:b3:aa:1a:9d:6a:be:03:d7:23:d6:a5:a8:04:a7:43:ce: 32:5e:37:22:08:54:f9:7a:09:5a:f7:71:44:fc:0b:8d:e1:f6: 22:d1:f5:e2:3e:d2:e7:0e:7f:99:41:e5:78:bb:17:5d:1d:02: aa:dc:27:51:ad:80:aa:98:40:35:3d:02:d0:6b:a8:72:b3:5d: 35:73:07:e2:14:61:26:a9:5e:d9:c2:9a:ad:ec:8e:d3:23:5c: 9e:c6:82:2f:dc:cb:d3:5d:4e:34:1b:8d:5d:4e:85:2d:19:7f: ea:f0:c1:20:6b:f6:6c:11:31:98:df:cf:99:f8:94:b8:38:c7: 9a:1a:70:86:5b:85:29:6b:d7:a9:f6:79:67:47:fc:8d:ce:8c: 55:70:d9:32:ba:70:c6:20:8d:8f:6f:cc:01:82:fc:36:9f:26: ce:d1:05:cb:1d:cc:c8:6d:3c:73:a7:0a:78:aa:b4:c1:43:c4: 0f:78:ee:07:51:69:6d:76:c5:81:a6:64:11:64:a7:cd:fe:19: de:4a:80:e7:74:70:2c:ff:47:21:bb:5d:85:8d:69:40:a1:73: 10:dd:f5:0f:67:fc:48:91:b4:c3:c7:1d:75:ac:23:18:f8:32: 5b:f3:67:8b:b0:5d:f5:76:59:c7:4f:a5:6b:88:92:e0:e1:72: 21:fd:f8:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHCIbgII6ppdDVsKGz4f7yrEWWFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVFRUREQ0RBNDRCMDcxM0IzOTdEMjcwNDA3MjFFRUM0 ODQ4RTVEQzAeFw0yNjA1MDMwMzE0MThaFw0yNzA1MDIwMzE5MThaMDMxMTAvBgNV BAMTKDA1OTZCMEUxRjE2MjFCRjRFQ0U0RjI0QzkwNEMxNjhCRjFEN0QxRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjLyuAY/rREob4klkv2FpZ5Aj7 O5hYcuPd3GxwLZeWLRWrDty3NPbnjJy6gEd47TY7xJOzTrQjutKvTGxtWittMnz8 5sB5lSe2r9uk5rh6BHPht95ufk+9ULYxr9XAjizNBuaVFMXZpx/keDZIuwJvLpla 9OfupW5WatLG4hqkjQdhhBibmVRMqQN//7G2knvO97SrFYiIEESMqb622sB1fVYb eBXvS64VHcry17LpH0eqLxV8+Vsiz2LskqMMgQCYsjSf7AjfQ69BC22bS+9WZRqR Q8CtxnFyBoh2Z1g2Kf77isLl9x/Fdb9GgfCTJdo08qtKgFYG3xz//dsyvuLXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBZaw4fFiG/Ts5PJMkEwWi/HX0eswHwYDVR0j BBgwFoAU7u7dzaRLBxOzl9JwQHIe7EhI5dwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmM2ZjgzMmItNWE5ZS00Y2FhLWJkZDQtMjYzNDcyN2E5ZWQ0LzAvRUVFRUREQ0RB NDRCMDcxM0IzOTdEMjcwNDA3MjFFRUM0ODQ4RTVEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRUVFRERDREE0NEIwNzEzQjM5N0QyNzA0MDcyMUVFQzQ4NDhF NURDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzM0MzMyZTMyMzQzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/X4MA0GCSqG SIb3DQEBCwUAA4IBAQCZDLOqGp1qvgPXI9alqASnQ84yXjciCFT5egla93FE/AuN 4fYi0fXiPtLnDn+ZQeV4uxddHQKq3CdRrYCqmEA1PQLQa6hys101cwfiFGEmqV7Z wpqt7I7TI1yexoIv3MvTXU40G41dToUtGX/q8MEga/ZsETGY38+Z+JS4OMeaGnCG W4Upa9ep9nlnR/yNzoxVcNkyunDGII2Pb8wBgvw2nybO0QXLHczIbTxzpwp4qrTB Q8QPeO4HUWltdsWBpmQRZKfN/hneSoDndHAs/0chu12FjWlAoXMQ3fUPZ/xIkbTD xx11rCMY+DJb82eLsF31dlnHT6VriJLg4XIh/fg2 -----END CERTIFICATE-----Generated at Wed May 13 07:34:48 2026 by rpki-client