$ rpki-client -vvf rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231342e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: djWo0EMecCkqgPGbJNZ3i1Hzh/Gf4zrbm7OL5FtozEI= Subject key identifier: 59:4E:3D:4C:8D:5B:76:78:7A:B9:83:F3:3D:9D:CA:A2:75:A1:DA:FD Certificate issuer: /CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Certificate serial: 2206030D10D618F96E46A618072156405F9FCF8D Authority key identifier: 8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231342e302f32342d3234203d3e203538343734.roa Signing time: Sun 03 May 2026 02:24:25 +0000 ROA not before: Sun 03 May 2026 02:19:25 +0000 ROA not after: Sun 02 May 2027 02:24:25 +0000 asID: 58474 IP address blocks: 43.248.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 21:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:06:03:0d:10:d6:18:f9:6e:46:a6:18:07:21:56:40:5f:9f:cf:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Validity Not Before: May 3 02:19:25 2026 GMT Not After : May 2 02:24:25 2027 GMT Subject: CN=594E3D4C8D5B76787AB983F33D9DCAA275A1DAFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:30:ec:a3:8f:6b:74:8b:8b:a4:6a:bf:7f: e7:d2:ff:bf:d8:c8:c7:a4:87:47:bf:7b:f1:a1:dc: d1:5a:9b:12:23:f1:c2:ac:33:12:0b:0b:ad:6e:f0: 08:e5:3c:6a:65:45:c1:7b:3f:4a:eb:21:6b:3d:79: 62:43:f5:1a:cb:db:21:4b:41:b4:b7:a5:14:b9:10: 82:60:bc:9b:9c:ce:c9:9c:36:74:8c:a5:e5:11:af: 5b:02:69:9d:21:56:44:13:71:78:62:84:9b:5f:66: 62:1f:9f:a5:cf:0d:35:c9:97:67:55:06:f8:64:94: 79:17:ab:a7:8d:94:e7:15:44:b4:94:2d:fe:e0:0a: 1e:cb:70:cf:01:95:f4:03:1b:7d:28:de:f4:0f:de: 22:a7:ba:e3:8e:ec:ff:2c:e0:e0:4d:31:5b:1d:cb: cc:be:f2:41:1b:76:d2:9b:2e:9d:cd:50:3a:a1:ec: 5e:55:3c:5f:e2:f6:53:1d:47:c7:1b:00:16:b2:8c: 25:33:b0:4a:41:34:65:cf:62:5d:fd:cd:db:ef:02: 22:27:92:40:a8:83:05:00:bd:a5:21:3c:a5:84:34: 1c:68:5b:40:09:99:8c:3b:bb:f8:00:26:08:6e:aa: 38:60:77:a9:21:cd:63:e5:a1:3b:7b:a8:60:f7:6d: 5e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:4E:3D:4C:8D:5B:76:78:7A:B9:83:F3:3D:9D:CA:A2:75:A1:DA:FD X509v3 Authority Key Identifier: keyid:8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231342e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.214.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:e1:09:82:88:0e:08:cb:65:17:e7:af:3e:e1:e6:f4:1a:07: 85:ec:8c:6b:79:9f:1d:69:6c:4c:c3:e3:16:b7:24:6e:bf:62: 28:65:0f:4c:88:d1:ef:ad:cb:df:08:30:a5:eb:e1:5b:76:b5: f4:5f:53:6b:a7:00:00:ee:54:c9:ad:4d:93:bb:e2:02:de:f1: 6e:e1:68:60:e8:0f:2e:ce:74:87:31:9f:88:78:20:c5:d8:a5: 7a:6a:3e:19:fe:3c:4c:f4:97:3b:75:43:93:5c:f8:20:d3:d0: cc:07:4c:38:3e:7c:f4:10:28:e7:8f:35:f6:bc:45:6b:6f:c0: 76:be:5d:a0:3d:cb:78:5e:17:6e:bd:4c:47:a5:0f:52:31:d1: 99:f0:c3:21:0f:b4:a9:8a:cc:dc:7d:09:b0:a8:79:9a:9c:91: 73:99:e4:44:25:8a:9a:82:78:d6:9e:75:d6:43:ce:b3:bb:42: f6:9d:70:8f:36:18:cc:5f:4f:88:36:86:6e:f5:93:5d:cc:3b: 5e:21:b1:3b:0d:09:10:be:74:f0:69:09:4c:a3:ca:7a:73:3a: 39:6d:ea:e0:54:be:da:a3:96:80:f1:49:69:61:b0:ce:97:57: d5:93:bb:9b:63:6a:b3:53:4b:05:e9:aa:b8:f7:25:e5:8d:d7: 51:c2:fe:71 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIgYDDRDWGPluRqYYByFWQF+fz40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOEI4MTlCQzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0 QUY1MkVENDAeFw0yNjA1MDMwMjE5MjVaFw0yNzA1MDIwMjI0MjVaMDMxMTAvBgNV BAMTKDU5NEUzRDRDOEQ1Qjc2Nzg3QUI5ODNGMzNEOURDQUEyNzVBMURBRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrtDDso49rdIuLpGq/f+fS/7/Y yMekh0e/e/Gh3NFamxIj8cKsMxILC61u8AjlPGplRcF7P0rrIWs9eWJD9RrL2yFL QbS3pRS5EIJgvJuczsmcNnSMpeURr1sCaZ0hVkQTcXhihJtfZmIfn6XPDTXJl2dV BvhklHkXq6eNlOcVRLSULf7gCh7LcM8BlfQDG30o3vQP3iKnuuOO7P8s4OBNMVsd y8y+8kEbdtKbLp3NUDqh7F5VPF/i9lMdR8cbABayjCUzsEpBNGXPYl39zdvvAiIn kkCogwUAvaUhPKWENBxoW0AJmYw7u/gAJghuqjhgd6khzWPloTt7qGD3bV7FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWU49TI1bdnh6uYPzPZ3KonWh2v0wHwYDVR0j BBgwFoAUixi4GbwBC0pOxmd3VDSG40r1LtQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMwNTE3N2EtYTUwMC00OTk2LWIzZmYtNzBjMTQ0ZWRmZWNlLzAvOEIxOEI4MTlC QzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0QUY1MkVENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjE4QjgxOUJDMDEwQjRBNEVDNjY3Nzc1NDM0ODZFMzRBRjUy RUQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41jANBgkqhkiG 9w0BAQsFAAOCAQEALeEJgogOCMtlF+evPuHm9BoHheyMa3mfHWlsTMPjFrckbr9i KGUPTIjR763L3wgwpevhW3a19F9Ta6cAAO5Uya1Nk7viAt7xbuFoYOgPLs50hzGf iHggxdilemo+Gf48TPSXO3VDk1z4INPQzAdMOD589BAo54819rxFa2/Adr5doD3L eF4Xbr1MR6UPUjHRmfDDIQ+0qYrM3H0JsKh5mpyRc5nkRCWKmoJ41p511kPOs7tC 9p1wjzYYzF9PiDaGbvWTXcw7XiGxOw0JEL508GkJTKPKenM6OW3q4FS+2qOWgPFJ aWGwzpdX1ZO7m2Nqs1NLBemquPcl5Y3XUcL+cQ== -----END CERTIFICATE-----Generated at Mon May 4 13:04:02 2026 by rpki-client