$ rpki-client -vvf rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133392e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: v6dOLx0SCwjzqMjQ3ImqjGTnffSPJhWT9kStYUIxMa8= Subject key identifier: BA:3D:72:52:38:2A:CE:3C:2F:E1:21:2F:36:4F:D7:9C:74:6B:03:39 Certificate issuer: /CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Certificate serial: 1D15EDC72A6BC7EB558F720931AD1B4BB93E5080 Authority key identifier: 9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa Signing time: Sun 03 May 2026 02:41:35 +0000 ROA not before: Sun 03 May 2026 02:36:35 +0000 ROA not after: Sun 02 May 2027 02:41:35 +0000 asID: 58404 IP address blocks: 43.252.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:15:ed:c7:2a:6b:c7:eb:55:8f:72:09:31:ad:1b:4b:b9:3e:50:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Validity Not Before: May 3 02:36:35 2026 GMT Not After : May 2 02:41:35 2027 GMT Subject: CN=BA3D7252382ACE3C2FE1212F364FD79C746B0339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:8c:33:d0:d6:04:8d:6a:03:a5:32:18:d6: 8a:2c:0b:a2:0a:8f:d3:78:f7:86:7a:e4:68:64:d9: 92:62:f4:23:b7:10:58:7c:ee:25:b3:8c:c3:87:34: 90:e3:3a:90:0c:07:29:a7:41:b9:2d:16:70:39:bc: 52:70:9f:a1:86:23:d4:1c:78:2b:32:dd:28:f6:a7: 3b:56:76:86:18:21:8b:69:b1:61:2c:95:42:50:d6: e0:08:5f:77:64:fb:9b:aa:47:e8:24:30:72:dc:e7: d2:f6:86:2b:c8:72:4f:d2:08:a6:a5:79:35:76:0c: 08:89:3e:47:f8:62:e8:52:4f:b7:fe:a5:ba:2f:dc: 22:16:a1:0e:a7:8c:36:29:34:1c:cf:2a:fb:cf:71: 45:ab:a2:fe:04:c2:9c:6a:f7:bb:16:50:c5:e1:42: b6:82:52:e2:c7:5d:9a:c9:3e:f9:8f:97:17:34:52: 83:f1:5c:1a:5b:79:97:45:9a:ff:d0:ad:7c:6f:31: 70:ac:cb:42:20:5e:89:d6:9e:90:20:e2:07:f3:72: ec:84:32:82:fb:40:37:30:26:41:c3:cc:57:44:3e: c3:cf:d0:f6:4b:e5:07:0f:5b:f6:02:8d:4e:c3:a5: ba:cc:1c:f0:9e:11:93:6b:fa:a2:50:75:61:c7:ca: 3e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:3D:72:52:38:2A:CE:3C:2F:E1:21:2F:36:4F:D7:9C:74:6B:03:39 X509v3 Authority Key Identifier: keyid:9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.139.0/24 Signature Algorithm: sha256WithRSAEncryption 16:cc:3b:34:2e:8e:9e:f4:14:f2:cb:ff:c3:d7:04:46:92:ba: c0:1c:02:fe:28:16:e8:6b:97:50:6d:1c:a9:1d:91:60:cb:0c: ae:ba:66:71:e3:2f:1b:ba:b6:3b:71:06:86:6a:41:52:b8:ae: 1b:84:f2:40:23:5a:20:7c:de:ff:bd:40:11:b6:47:be:56:6e: 9e:14:df:cc:0f:c3:17:2b:7a:19:d1:67:3b:b6:b5:17:c2:fc: ed:c7:0a:ba:1c:34:93:24:78:ad:3f:78:ff:49:7e:76:c2:58: f1:b3:d4:b6:cf:44:b3:1c:71:23:fa:33:a6:f9:27:3b:18:7c: 46:12:1a:9e:99:0f:23:cd:61:37:ac:08:41:13:05:49:2a:7d: c4:10:35:90:d0:41:eb:c5:45:90:fe:53:1f:58:26:12:f3:70: d6:67:5f:dc:49:8f:b4:6b:df:6c:64:02:4f:9a:ae:30:96:51: d7:48:cd:81:6f:7a:5b:99:fa:c5:f7:ff:ab:59:be:65:3a:2e: b3:62:65:d5:d1:97:94:44:fd:af:75:73:1c:2f:a7:66:3b:69: 1e:f8:f3:72:e4:8c:6d:62:3b:e9:f7:12:7a:2a:be:fd:7d:85: b9:f3:d6:c7:0a:91:21:b5:17:e6:17:05:47:51:e4:6e:c9:dd: 31:cf:0b:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHRXtxyprx+tVj3IJMa0bS7k+UIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM1OEMxQzZBRkJCNUI2NkM2NDA2OTRBOTg1OTczMDZD Qzg4REEwQjAeFw0yNjA1MDMwMjM2MzVaFw0yNzA1MDIwMjQxMzVaMDMxMTAvBgNV BAMTKEJBM0Q3MjUyMzgyQUNFM0MyRkUxMjEyRjM2NEZENzlDNzQ2QjAzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZYwz0NYEjWoDpTIY1oosC6IK j9N494Z65Ghk2ZJi9CO3EFh87iWzjMOHNJDjOpAMBymnQbktFnA5vFJwn6GGI9Qc eCsy3Sj2pztWdoYYIYtpsWEslUJQ1uAIX3dk+5uqR+gkMHLc59L2hivIck/SCKal eTV2DAiJPkf4YuhST7f+pbov3CIWoQ6njDYpNBzPKvvPcUWrov4Ewpxq97sWUMXh QraCUuLHXZrJPvmPlxc0UoPxXBpbeZdFmv/QrXxvMXCsy0IgXonWnpAg4gfzcuyE MoL7QDcwJkHDzFdEPsPP0PZL5QcPW/YCjU7DpbrMHPCeEZNr+qJQdWHHyj4nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuj1yUjgqzjwv4SEvNk/XnHRrAzkwHwYDVR0j BBgwFoAUnFjBxq+7W2bGQGlKmFlzBsyI2gswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmUwZjkxNjMtM2U1YS00ZWZhLThiZDktNGFjNGJjNjMwNDE0LzAvOUM1OEMxQzZB RkJCNUI2NkM2NDA2OTRBOTg1OTczMDZDQzg4REEwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QzU4QzFDNkFGQkI1QjY2QzY0MDY5NEE5ODU5NzMwNkNDODhE QTBCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8izANBgkqhkiG 9w0BAQsFAAOCAQEAFsw7NC6OnvQU8sv/w9cERpK6wBwC/igW6GuXUG0cqR2RYMsM rrpmceMvG7q2O3EGhmpBUriuG4TyQCNaIHze/71AEbZHvlZunhTfzA/DFyt6GdFn O7a1F8L87ccKuhw0kyR4rT94/0l+dsJY8bPUts9EsxxxI/ozpvknOxh8RhIanpkP I81hN6wIQRMFSSp9xBA1kNBB68VFkP5TH1gmEvNw1mdf3EmPtGvfbGQCT5quMJZR 10jNgW96W5n6xff/q1m+ZTous2Jl1dGXlET9r3VzHC+nZjtpHvjzcuSMbWI76fcS eiq+/X2FufPWxwqRIbUX5hcFR1HkbsndMc8L9Q== -----END CERTIFICATE-----Generated at Wed May 13 23:01:25 2026 by rpki-client