$ rpki-client -vvf rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: AyZ67OXVVcRP+SaexkcDHK81T3la7ye6jL1yJZbUj4M= Subject key identifier: 6A:B9:EC:87:38:0D:DC:53:4F:A6:F7:A2:DB:87:01:AC:71:CF:08:48 Certificate issuer: /CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Certificate serial: 576E0B849050429F42594689CE5CCD7401DA6447 Authority key identifier: 8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa Signing time: Sun 03 May 2026 02:24:24 +0000 ROA not before: Sun 03 May 2026 02:19:24 +0000 ROA not after: Sun 02 May 2027 02:24:24 +0000 asID: 58474 IP address blocks: 43.248.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 21:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6e:0b:84:90:50:42:9f:42:59:46:89:ce:5c:cd:74:01:da:64:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Validity Not Before: May 3 02:19:24 2026 GMT Not After : May 2 02:24:24 2027 GMT Subject: CN=6AB9EC87380DDC534FA6F7A2DB8701AC71CF0848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:38:fd:3c:3b:97:68:3f:11:33:53:7d:58:0e: a2:ed:d7:e7:2e:5d:2d:a4:43:04:a0:c7:02:7d:6e: c6:49:fc:ee:5e:a3:57:ba:90:bd:c3:e6:80:d9:d7: 48:13:ac:18:e2:4e:6d:d8:fd:21:c6:fb:b0:af:a5: b0:5e:8b:4b:4c:2d:16:ef:6b:05:df:3f:9c:53:f8: a3:bf:8c:0e:2f:5f:93:99:eb:47:0e:8d:d4:47:50: ca:43:e7:93:a7:74:c7:44:ff:28:cd:81:49:0f:ef: e5:c6:5b:8b:18:56:b0:7f:55:f0:b1:3e:7c:11:c8: a7:20:02:b5:53:85:5e:5e:ae:00:f3:0e:f1:c2:dd: 15:5b:2d:6c:9c:af:f8:5c:3a:35:a9:3a:91:1e:30: 23:2f:39:b6:2f:23:f9:b7:a3:7a:d0:be:ab:b4:af: ac:17:ea:3f:1a:c1:8b:2b:1b:34:d2:63:5f:21:75: cb:c9:e3:00:f5:ba:31:5b:0b:88:e0:e2:60:55:66: 54:a6:dd:a3:f8:bc:2f:2d:84:cc:31:a4:ad:53:94: 9e:44:36:a3:55:53:db:1b:4f:e9:51:72:dd:fb:27: 7c:a2:f6:b7:09:e5:72:27:73:f6:16:61:c0:6a:a3: 93:8e:f5:6b:c5:7d:17:33:06:9c:78:16:65:19:d7: 56:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B9:EC:87:38:0D:DC:53:4F:A6:F7:A2:DB:87:01:AC:71:CF:08:48 X509v3 Authority Key Identifier: keyid:8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231332e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.213.0/24 Signature Algorithm: sha256WithRSAEncryption 33:5b:87:26:65:eb:78:48:3b:1c:bf:7c:bb:a9:f9:28:55:c1: 29:bb:14:4f:29:38:ab:91:27:0f:f4:2e:fc:c9:d0:72:d6:9c: 43:47:14:b9:97:a6:b2:aa:77:c9:95:8c:64:3e:ee:ba:93:31: 51:7a:2d:c9:47:21:dc:aa:cd:5c:27:62:89:d2:ea:bc:67:09: c9:5c:31:33:03:2e:f8:fa:7d:77:40:ce:3c:9d:62:9f:eb:be: b3:52:16:fa:63:9e:05:9d:e0:75:e5:3c:2a:64:ab:41:cc:7d: 6e:97:7b:d8:83:98:bc:ca:c2:e6:12:45:f6:5a:ab:2b:ec:be: 91:9f:e1:29:a4:d3:b5:3e:ae:77:d1:6b:70:1b:99:1a:9b:75: a7:dd:65:a5:f6:52:26:90:ef:4c:3c:47:9f:7c:87:20:19:c1: d5:41:55:26:3c:c6:b3:43:63:20:ed:da:11:be:9e:45:34:51: 5a:8a:0c:5f:a8:c5:d2:65:06:5a:b3:3c:be:b1:63:80:63:d9: 31:46:b4:d7:27:c7:3b:83:3a:6b:4a:ca:39:18:bb:95:08:45: 67:fb:fe:94:9a:ec:e4:8e:13:2e:e6:76:df:59:70:2b:68:9f: ea:c4:01:7a:55:97:14:cb:ac:f3:f7:f0:17:61:b4:98:3a:b0: 3a:ef:81:be -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV24LhJBQQp9CWUaJzlzNdAHaZEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOEI4MTlCQzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0 QUY1MkVENDAeFw0yNjA1MDMwMjE5MjRaFw0yNzA1MDIwMjI0MjRaMDMxMTAvBgNV BAMTKDZBQjlFQzg3MzgwRERDNTM0RkE2RjdBMkRCODcwMUFDNzFDRjA4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfOP08O5doPxEzU31YDqLt1+cu XS2kQwSgxwJ9bsZJ/O5eo1e6kL3D5oDZ10gTrBjiTm3Y/SHG+7CvpbBei0tMLRbv awXfP5xT+KO/jA4vX5OZ60cOjdRHUMpD55OndMdE/yjNgUkP7+XGW4sYVrB/VfCx PnwRyKcgArVThV5ergDzDvHC3RVbLWycr/hcOjWpOpEeMCMvObYvI/m3o3rQvqu0 r6wX6j8awYsrGzTSY18hdcvJ4wD1ujFbC4jg4mBVZlSm3aP4vC8thMwxpK1TlJ5E NqNVU9sbT+lRct37J3yi9rcJ5XInc/YWYcBqo5OO9WvFfRczBpx4FmUZ11a5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUarnshzgN3FNPpvei24cBrHHPCEgwHwYDVR0j BBgwFoAUixi4GbwBC0pOxmd3VDSG40r1LtQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMwNTE3N2EtYTUwMC00OTk2LWIzZmYtNzBjMTQ0ZWRmZWNlLzAvOEIxOEI4MTlC QzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0QUY1MkVENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjE4QjgxOUJDMDEwQjRBNEVDNjY3Nzc1NDM0ODZFMzRBRjUy RUQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41TANBgkqhkiG 9w0BAQsFAAOCAQEAM1uHJmXreEg7HL98u6n5KFXBKbsUTyk4q5EnD/Qu/MnQctac Q0cUuZemsqp3yZWMZD7uupMxUXotyUch3KrNXCdiidLqvGcJyVwxMwMu+Pp9d0DO PJ1in+u+s1IW+mOeBZ3gdeU8KmSrQcx9bpd72IOYvMrC5hJF9lqrK+y+kZ/hKaTT tT6ud9FrcBuZGpt1p91lpfZSJpDvTDxHn3yHIBnB1UFVJjzGs0NjIO3aEb6eRTRR WooMX6jF0mUGWrM8vrFjgGPZMUa01yfHO4M6a0rKORi7lQhFZ/v+lJrs5I4TLuZ2 31lwK2if6sQBelWXFMus8/fwF2G0mDqwOu+Bvg== -----END CERTIFICATE-----Generated at Mon May 4 13:04:57 2026 by rpki-client