$ rpki-client -vvf rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: COlbyHboqjdr0Rxi+nWQW3DOPTwsTgMlnilTtD4HKm4= Subject key identifier: 73:68:11:B2:0F:34:50:7F:AD:BA:7C:13:B7:8E:34:D8:D5:8A:28:91 Certificate issuer: /CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Certificate serial: 224B85F8A1032C1789D3E6E4CCC1D592DD1A2409 Authority key identifier: 8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa Signing time: Sun 03 May 2026 02:24:23 +0000 ROA not before: Sun 03 May 2026 02:19:23 +0000 ROA not after: Sun 02 May 2027 02:24:23 +0000 asID: 58474 IP address blocks: 43.248.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 21:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4b:85:f8:a1:03:2c:17:89:d3:e6:e4:cc:c1:d5:92:dd:1a:24:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B18B819BC010B4A4EC66777543486E34AF52ED4 Validity Not Before: May 3 02:19:23 2026 GMT Not After : May 2 02:24:23 2027 GMT Subject: CN=736811B20F34507FADBA7C13B78E34D8D58A2891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:94:8a:0c:42:6a:b2:95:e4:2c:ff:a5:4a: ce:b8:55:3a:29:8a:06:bb:d8:6e:3b:1d:38:60:cd: 59:bd:14:1b:13:3d:01:0d:ee:ea:56:4c:36:87:71: f1:b3:ea:89:0f:4e:9d:44:a6:bc:2a:54:33:69:1a: 3d:24:62:c2:3a:66:f8:66:65:f8:91:aa:1e:53:bc: 0a:8c:23:b3:11:ca:57:6b:e2:ca:52:c4:46:ef:30: 22:ad:53:f3:3c:00:5c:58:e0:f7:a7:c0:ad:ee:75: f1:59:ef:bc:de:f0:11:53:5e:50:62:9d:a9:a9:54: 2e:68:df:95:5e:b4:ea:5f:30:b3:88:44:6f:d3:bf: 4c:b2:cf:e1:31:9e:19:22:45:85:ca:8e:13:2b:c6: 1b:f0:38:49:77:47:e4:72:6c:d7:29:48:95:5a:4c: 90:2c:2d:96:a0:81:ea:4c:99:bb:69:ef:c1:44:ee: 72:45:36:12:a7:b7:88:65:59:66:4d:be:09:bc:04: fa:15:8f:d5:ba:ff:63:86:0f:b6:3e:4c:17:a2:c2: 56:64:5b:50:43:73:c0:0a:49:94:86:3b:e7:55:79: 7a:5d:1d:a0:bb:e3:49:63:86:3f:ee:1b:79:c2:8e: 34:c8:79:a5:4d:6a:ea:ed:5f:c5:cb:c3:cb:a8:51: b2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:68:11:B2:0F:34:50:7F:AD:BA:7C:13:B7:8E:34:D8:D5:8A:28:91 X509v3 Authority Key Identifier: keyid:8B:18:B8:19:BC:01:0B:4A:4E:C6:67:77:54:34:86:E3:4A:F5:2E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/8B18B819BC010B4A4EC66777543486E34AF52ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B18B819BC010B4A4EC66777543486E34AF52ED4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231352e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.215.0/24 Signature Algorithm: sha256WithRSAEncryption 35:62:7d:1d:69:82:6f:ec:13:7c:db:cc:33:57:23:5a:f8:2a: aa:96:fa:7c:d4:e0:8d:fc:22:df:6a:97:ae:c0:ab:88:a5:51: 78:b8:87:c8:93:04:fe:9d:83:54:0e:f2:63:f3:4a:2a:92:a9: 42:d6:24:7a:e5:4a:70:31:b5:a2:21:76:26:cf:85:2b:6f:03: f7:48:e4:08:96:bf:ef:bc:b1:bc:ca:bb:b9:1c:da:ab:cf:0e: 10:11:81:05:fb:d5:f3:af:ed:84:61:f9:57:af:bb:a9:a8:11: bd:ea:18:4c:f5:ca:9a:41:84:fa:d5:26:5d:b4:2d:41:22:39: 2b:2b:d6:b0:ab:25:03:4c:da:6d:a6:18:27:7f:00:9b:06:b0: 0a:b1:97:dc:c9:0b:37:26:40:0d:80:c4:9c:23:98:3e:b9:83: 12:d5:9b:b2:c5:d5:28:f5:b0:56:33:b1:c6:be:45:57:2e:5b: c5:30:50:77:3e:d0:d6:8c:61:99:b5:a1:0d:7d:6e:2b:3e:ec: 81:91:2e:03:ad:6a:61:f7:7c:c0:77:e2:26:b8:7d:04:82:28: dc:c2:9b:48:ef:ba:56:c2:3e:b9:fb:13:99:75:7c:8b:d9:a4: a2:7a:b8:d9:95:78:b6:30:a9:4d:62:cc:9b:48:47:9a:e5:66: 47:dc:ae:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIkuF+KEDLBeJ0+bkzMHVkt0aJAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOEI4MTlCQzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0 QUY1MkVENDAeFw0yNjA1MDMwMjE5MjNaFw0yNzA1MDIwMjI0MjNaMDMxMTAvBgNV BAMTKDczNjgxMUIyMEYzNDUwN0ZBREJBN0MxM0I3OEUzNEQ4RDU4QTI4OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeZZSKDEJqspXkLP+lSs64VTop iga72G47HThgzVm9FBsTPQEN7upWTDaHcfGz6okPTp1EprwqVDNpGj0kYsI6Zvhm ZfiRqh5TvAqMI7MRyldr4spSxEbvMCKtU/M8AFxY4PenwK3udfFZ77ze8BFTXlBi nampVC5o35VetOpfMLOIRG/Tv0yyz+ExnhkiRYXKjhMrxhvwOEl3R+RybNcpSJVa TJAsLZaggepMmbtp78FE7nJFNhKnt4hlWWZNvgm8BPoVj9W6/2OGD7Y+TBeiwlZk W1BDc8AKSZSGO+dVeXpdHaC740ljhj/uG3nCjjTIeaVNaurtX8XLw8uoUbIjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc2gRsg80UH+tunwTt4402NWKKJEwHwYDVR0j BBgwFoAUixi4GbwBC0pOxmd3VDSG40r1LtQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzMwNTE3N2EtYTUwMC00OTk2LWIzZmYtNzBjMTQ0ZWRmZWNlLzAvOEIxOEI4MTlC QzAxMEI0QTRFQzY2Nzc3NTQzNDg2RTM0QUY1MkVENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjE4QjgxOUJDMDEwQjRBNEVDNjY3Nzc1NDM0ODZFMzRBRjUy RUQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41zANBgkqhkiG 9w0BAQsFAAOCAQEANWJ9HWmCb+wTfNvMM1cjWvgqqpb6fNTgjfwi32qXrsCriKVR eLiHyJME/p2DVA7yY/NKKpKpQtYkeuVKcDG1oiF2Js+FK28D90jkCJa/77yxvMq7 uRzaq88OEBGBBfvV86/thGH5V6+7qagRveoYTPXKmkGE+tUmXbQtQSI5KyvWsKsl A0zabaYYJ38AmwawCrGX3MkLNyZADYDEnCOYPrmDEtWbssXVKPWwVjOxxr5FVy5b xTBQdz7Q1oxhmbWhDX1uKz7sgZEuA61qYfd8wHfiJrh9BIIo3MKbSO+6VsI+ufsT mXV8i9mkonq42ZV4tjCpTWLMm0hHmuVmR9yu/Q== -----END CERTIFICATE-----Generated at Mon May 4 13:03:44 2026 by rpki-client