$ rpki-client -vvf rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134312e302f32342d3234203d3e20313532303439.roa File: 34352e3132332e3134312e302f32342d3234203d3e20313532303439.roa (raw, json) Hash identifier: z7b5wYvP0ol8wMsB+eUBC4JsGZJCfnyyWM+aWZV2US0= Subject key identifier: 22:CE:22:72:69:FD:B8:5D:CD:A3:F2:E7:16:2C:27:88:7C:D3:D0:AA Certificate issuer: /CN=548D1B6B6BA9A165E77ADEEFE2842487042C325E Certificate serial: 3B84F30D7E6C8187CAD852A22D47A53833694C90 Authority key identifier: 54:8D:1B:6B:6B:A9:A1:65:E7:7A:DE:EF:E2:84:24:87:04:2C:32:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134312e302f32342d3234203d3e20313532303439.roa Signing time: Sun 03 May 2026 03:19:40 +0000 ROA not before: Sun 03 May 2026 03:14:40 +0000 ROA not after: Sun 02 May 2027 03:19:40 +0000 asID: 152049 IP address blocks: 45.123.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.crl rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:84:f3:0d:7e:6c:81:87:ca:d8:52:a2:2d:47:a5:38:33:69:4c:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=548D1B6B6BA9A165E77ADEEFE2842487042C325E Validity Not Before: May 3 03:14:40 2026 GMT Not After : May 2 03:19:40 2027 GMT Subject: CN=22CE227269FDB85DCDA3F2E7162C27887CD3D0AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:24:02:09:a0:72:2b:cf:dc:6c:0b:b4:03:10: a7:47:20:9f:fd:8d:fb:93:1e:5f:00:20:81:0a:34: df:4e:7d:07:85:ca:dd:c8:a6:8c:85:83:60:02:72: f7:ff:93:f1:8c:eb:75:88:64:58:20:f7:bd:52:5e: 22:5f:1a:5a:a3:83:f4:70:60:00:9e:2a:2a:14:9a: 0f:56:01:08:d8:07:00:36:55:ff:a1:4a:97:12:fa: 74:e4:f8:fe:f0:bc:50:e6:2f:22:03:7e:d5:fe:b3: 0a:25:83:db:09:70:3e:39:43:ac:59:54:32:70:d0: 5b:a2:c5:7a:60:42:fd:38:bf:13:12:5d:cf:2b:78: c7:55:80:fa:ec:00:3a:7f:d9:4f:d3:fa:d5:bb:bc: a0:39:52:ed:9a:bb:1f:38:b4:45:0e:2f:bc:2f:1e: dd:9d:ef:44:3d:4d:69:c7:df:2e:85:aa:e4:29:c5: 3e:78:ac:99:7b:86:2d:6a:7f:65:a4:e5:18:f5:10: e6:3d:fe:08:9f:89:9e:99:a5:68:d1:af:12:d7:42: 05:4d:02:8b:d6:05:8d:c7:3e:3f:2e:c0:ed:25:1b: ac:b0:ba:30:75:56:dd:fa:62:6b:f4:87:bb:0f:da: a5:07:30:93:d7:d8:e9:ae:d5:b7:99:10:da:c3:61: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CE:22:72:69:FD:B8:5D:CD:A3:F2:E7:16:2C:27:88:7C:D3:D0:AA X509v3 Authority Key Identifier: keyid:54:8D:1B:6B:6B:A9:A1:65:E7:7A:DE:EF:E2:84:24:87:04:2C:32:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/548D1B6B6BA9A165E77ADEEFE2842487042C325E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/548D1B6B6BA9A165E77ADEEFE2842487042C325E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ff7a7d98-2338-4d77-9662-f33ea68c86f2/0/34352e3132332e3134312e302f32342d3234203d3e20313532303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.141.0/24 Signature Algorithm: sha256WithRSAEncryption 49:cb:e8:40:c5:28:b4:00:83:5d:1a:78:6e:92:55:ec:5d:c9: 7b:bb:80:70:15:00:03:4f:9e:6b:07:dd:69:74:8d:dc:07:2e: 85:eb:13:94:c4:8d:d0:c3:e6:69:4c:c2:b7:aa:a0:60:20:aa: 49:d6:df:d6:d0:70:fe:dc:43:20:91:1d:4c:22:4a:cf:ac:12: 7d:26:f1:85:f9:22:47:86:d1:10:9b:0f:dc:33:15:51:f2:88: 13:59:8e:1c:48:16:cb:09:3f:a6:3e:f4:63:0c:8d:97:8e:72: 5b:98:e4:79:ad:14:85:22:b1:f3:c4:41:a4:09:dc:3b:fa:c4: 27:75:04:42:fb:69:1d:55:e3:72:4c:88:61:be:e8:8f:ad:35: 2d:64:ed:3f:d9:93:55:0b:14:37:eb:52:34:dc:6b:26:6c:d0: 2f:a5:b4:61:fb:c9:23:91:35:bf:25:97:4b:bf:01:31:d6:c7: 02:bb:3d:68:f0:b7:bd:c8:21:a2:db:c0:84:39:32:f7:4e:3b: a1:ce:3d:68:76:22:97:17:5a:b6:d8:af:af:19:02:90:fa:c0: 59:56:63:89:d9:ac:fa:a7:33:70:f4:cb:47:63:da:1d:dd:9b: 1c:46:3c:91:4f:10:2c:3e:81:91:2e:10:a6:85:27:60:49:6c: a6:db:1c:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO4TzDX5sgYfK2FKiLUelODNpTJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTQ4RDFCNkI2QkE5QTE2NUU3N0FERUVGRTI4NDI0ODcw NDJDMzI1RTAeFw0yNjA1MDMwMzE0NDBaFw0yNzA1MDIwMzE5NDBaMDMxMTAvBgNV BAMTKDIyQ0UyMjcyNjlGREI4NURDREEzRjJFNzE2MkMyNzg4N0NEM0QwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdJAIJoHIrz9xsC7QDEKdHIJ/9 jfuTHl8AIIEKNN9OfQeFyt3IpoyFg2ACcvf/k/GM63WIZFgg971SXiJfGlqjg/Rw YACeKioUmg9WAQjYBwA2Vf+hSpcS+nTk+P7wvFDmLyIDftX+swolg9sJcD45Q6xZ VDJw0FuixXpgQv04vxMSXc8reMdVgPrsADp/2U/T+tW7vKA5Uu2aux84tEUOL7wv Ht2d70Q9TWnH3y6FquQpxT54rJl7hi1qf2Wk5Rj1EOY9/gifiZ6ZpWjRrxLXQgVN AovWBY3HPj8uwO0lG6ywujB1Vt36Ymv0h7sP2qUHMJPX2Omu1beZENrDYWTpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIs4icmn9uF3No/LnFiwniHzT0KowHwYDVR0j BBgwFoAUVI0ba2upoWXnet7v4oQkhwQsMl4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmY3YTdkOTgtMjMzOC00ZDc3LTk2NjItZjMzZWE2OGM4NmYyLzAvNTQ4RDFCNkI2 QkE5QTE2NUU3N0FERUVGRTI4NDI0ODcwNDJDMzI1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NDhEMUI2QjZCQTlBMTY1RTc3QURFRUZFMjg0MjQ4NzA0MkMz MjVFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZmN2E3ZDk4LTIzMzgtNGQ3Ny05 NjYyLWYzM2VhNjhjODZmMi8wLzM0MzUyZTMxMzIzMzJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXuNMA0GCSqG SIb3DQEBCwUAA4IBAQBJy+hAxSi0AINdGnhuklXsXcl7u4BwFQADT55rB91pdI3c By6F6xOUxI3Qw+ZpTMK3qqBgIKpJ1t/W0HD+3EMgkR1MIkrPrBJ9JvGF+SJHhtEQ mw/cMxVR8ogTWY4cSBbLCT+mPvRjDI2XjnJbmOR5rRSFIrHzxEGkCdw7+sQndQRC +2kdVeNyTIhhvuiPrTUtZO0/2ZNVCxQ361I03GsmbNAvpbRh+8kjkTW/JZdLvwEx 1scCuz1o8Le9yCGi28CEOTL3Tjuhzj1odiKXF1q22K+vGQKQ+sBZVmOJ2az6pzNw 9MtHY9od3ZscRjyRTxAsPoGRLhCmhSdgSWym2xzM -----END CERTIFICATE-----Generated at Wed May 13 08:00:11 2026 by rpki-client