$ rpki-client -vvf rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134302e302f32332d3233203d3e20313532303439.roa File: 34352e3132332e3134302e302f32332d3233203d3e20313532303439.roa (raw, json) Hash identifier: tNx5eutje4LD11CaRHcsx/WHY/Yrs8sJ8oFq8sH2t08= Subject key identifier: A5:2F:13:73:B7:4D:A6:86:8A:61:09:08:05:55:36:FC:65:8D:6D:C2 Certificate issuer: /CN=548D1B6B6BA9A165E77ADEEFE2842487042C325E Certificate serial: 657E0A3ACA89693113BA84F16F84B011170D1E8E Authority key identifier: 54:8D:1B:6B:6B:A9:A1:65:E7:7A:DE:EF:E2:84:24:87:04:2C:32:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134302e302f32332d3233203d3e20313532303439.roa Signing time: Sun 03 May 2026 03:19:39 +0000 ROA not before: Sun 03 May 2026 03:14:39 +0000 ROA not after: Sun 02 May 2027 03:19:39 +0000 asID: 152049 IP address blocks: 45.123.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.crl rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7e:0a:3a:ca:89:69:31:13:ba:84:f1:6f:84:b0:11:17:0d:1e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=548D1B6B6BA9A165E77ADEEFE2842487042C325E Validity Not Before: May 3 03:14:39 2026 GMT Not After : May 2 03:19:39 2027 GMT Subject: CN=A52F1373B74DA6868A610908055536FC658D6DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e2:a0:e2:4a:8e:6e:cb:c0:df:97:0e:9f:a7: a9:d9:78:a6:be:09:46:c4:88:db:76:1c:4f:a8:24: 5b:87:68:85:9a:a2:30:09:c6:93:10:18:aa:6c:e8: da:e5:b2:ba:fe:95:64:f6:d5:25:9d:40:90:d8:41: 64:b9:9c:44:d0:23:56:ad:15:c6:85:10:93:64:f5: bc:e6:69:1e:77:47:c0:c1:d2:11:2b:d0:0e:e9:66: 36:26:48:d0:3c:16:a7:d7:e4:5b:f8:16:71:f7:1c: 34:27:b4:1a:29:12:69:c0:34:6a:0d:e8:f2:e0:e0: 75:ae:19:1e:b5:84:4b:6a:0c:59:1c:d3:bc:24:69: 87:3b:cb:5a:3d:bf:60:ea:14:fd:9b:9b:26:75:50: fe:2e:cb:f0:8a:17:7d:64:05:15:e8:da:b2:49:6f: 4f:42:9f:5a:a1:7b:63:89:3a:fc:b1:a3:0d:22:12: 37:f9:57:4e:83:4b:3a:e6:1d:79:9a:73:22:cb:36: b8:e2:a2:1c:41:48:7a:f7:46:d7:ee:80:ea:ad:54: 8a:c0:ba:20:22:80:c0:94:81:56:82:cf:b6:dd:51: 6f:a4:a9:a5:ad:da:88:44:19:80:7f:37:5b:d0:f0: 4b:6f:48:40:eb:f4:c7:e4:ab:03:89:b2:80:9a:5d: 6a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2F:13:73:B7:4D:A6:86:8A:61:09:08:05:55:36:FC:65:8D:6D:C2 X509v3 Authority Key Identifier: keyid:54:8D:1B:6B:6B:A9:A1:65:E7:7A:DE:EF:E2:84:24:87:04:2C:32:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134302e302f32332d3233203d3e20313532303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.140.0/23 Signature Algorithm: sha256WithRSAEncryption 20:a5:00:2c:ba:b3:61:68:fd:35:81:08:3a:27:f8:cf:9f:44: 16:08:64:1b:8c:86:30:fe:a0:10:bd:8a:cd:7e:05:62:d1:44: 89:3d:8f:1c:51:04:16:b3:63:ab:d1:3d:af:f6:e1:f9:3d:f2: 39:69:ee:21:c2:b6:c5:67:77:3a:61:5c:f7:bb:35:94:17:2e: 4d:61:ff:d8:de:56:7f:5a:4a:2c:87:5c:8c:43:b9:a6:66:81: 06:18:0e:b6:be:26:c9:ed:3d:b2:df:0f:a1:d5:1b:36:84:81: 8c:d8:5d:35:0c:ac:1a:c8:64:55:63:6e:46:01:17:8a:35:37: 1c:af:73:ba:cf:ac:4a:0f:dd:e5:ed:f7:6f:eb:a5:43:7f:a7: bb:11:43:4f:a2:44:d9:db:14:31:2f:fc:12:01:50:3f:9e:fb: 30:58:bf:df:23:4d:47:db:aa:d9:e9:58:7c:4e:d3:08:50:fa: ac:ae:4b:11:ed:92:92:bb:5c:4a:e1:a1:1c:1e:2e:7e:fb:f2: 1c:39:b4:62:db:2a:54:df:24:65:68:82:f2:d0:b6:8b:b1:a0: 84:5e:84:24:d0:2f:fe:68:62:0e:72:a9:7f:27:ca:c6:82:0d: 94:69:35:1b:b8:0d:e3:59:cd:4a:57:56:47:55:b6:74:f6:74: d0:2a:e8:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZX4KOsqJaTETuoTxb4SwERcNHo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTQ4RDFCNkI2QkE5QTE2NUU3N0FERUVGRTI4NDI0ODcw NDJDMzI1RTAeFw0yNjA1MDMwMzE0MzlaFw0yNzA1MDIwMzE5MzlaMDMxMTAvBgNV BAMTKEE1MkYxMzczQjc0REE2ODY4QTYxMDkwODA1NTUzNkZDNjU4RDZEQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT4qDiSo5uy8Dflw6fp6nZeKa+ CUbEiNt2HE+oJFuHaIWaojAJxpMQGKps6Nrlsrr+lWT21SWdQJDYQWS5nETQI1at FcaFEJNk9bzmaR53R8DB0hEr0A7pZjYmSNA8FqfX5Fv4FnH3HDQntBopEmnANGoN 6PLg4HWuGR61hEtqDFkc07wkaYc7y1o9v2DqFP2bmyZ1UP4uy/CKF31kBRXo2rJJ b09Cn1qhe2OJOvyxow0iEjf5V06DSzrmHXmacyLLNrjiohxBSHr3RtfugOqtVIrA uiAigMCUgVaCz7bdUW+kqaWt2ohEGYB/N1vQ8EtvSEDr9MfkqwOJsoCaXWqtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpS8Tc7dNpoaKYQkIBVU2/GWNbcIwHwYDVR0j BBgwFoAUVI0ba2upoWXnet7v4oQkhwQsMl4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmY3YTdkOTgtMjMzOC00ZDc3LTk2NjItZjMzZWE2OGM4NmYyLzAvNTQ4RDFCNkI2 QkE5QTE2NUU3N0FERUVGRTI4NDI0ODcwNDJDMzI1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NDhEMUI2QjZCQTlBMTY1RTc3QURFRUZFMjg0MjQ4NzA0MkMz MjVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZmN2E3ZDk4LTIzMzgtNGQ3Ny05 NjYyLWYzM2VhNjhjODZmMi8wLzM0MzUyZTMxMzIzMzJlMzEzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXuMMA0GCSqG SIb3DQEBCwUAA4IBAQAgpQAsurNhaP01gQg6J/jPn0QWCGQbjIYw/qAQvYrNfgVi 0USJPY8cUQQWs2Or0T2v9uH5PfI5ae4hwrbFZ3c6YVz3uzWUFy5NYf/Y3lZ/Wkos h1yMQ7mmZoEGGA62vibJ7T2y3w+h1Rs2hIGM2F01DKwayGRVY25GAReKNTccr3O6 z6xKD93l7fdv66VDf6e7EUNPokTZ2xQxL/wSAVA/nvswWL/fI01H26rZ6Vh8TtMI UPqsrksR7ZKSu1xK4aEcHi5++/IcObRi2ypU3yRlaILy0LaLsaCEXoQk0C/+aGIO cql/J8rGgg2UaTUbuA3jWc1KV1ZHVbZ09nTQKujm -----END CERTIFICATE-----Generated at Wed May 13 06:48:06 2026 by rpki-client