$ rpki-client -vvf rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa File: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (raw, json) Hash identifier: /RO2VDTS2O1unkJvgBqg7eacIIlQXn+fwKq2bmsfQaY= Subject key identifier: 61:01:13:66:63:88:CB:C5:E3:77:42:81:69:39:2E:4A:77:40:24:8E Certificate issuer: /CN=54A9AA4CF14C7CF2ED286484218857A15AE91E9A Certificate serial: 29067B8C8CE3FA7ADCAB25ED0C33096736FCE904 Authority key identifier: 54:A9:AA:4C:F1:4C:7C:F2:ED:28:64:84:21:88:57:A1:5A:E9:1E:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa Signing time: Sun 03 May 2026 02:11:35 +0000 ROA not before: Sun 03 May 2026 02:06:35 +0000 ROA not after: Sun 02 May 2027 02:11:35 +0000 asID: 24534 IP address blocks: 58.147.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.crl rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:06:7b:8c:8c:e3:fa:7a:dc:ab:25:ed:0c:33:09:67:36:fc:e9:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54A9AA4CF14C7CF2ED286484218857A15AE91E9A Validity Not Before: May 3 02:06:35 2026 GMT Not After : May 2 02:11:35 2027 GMT Subject: CN=610113666388CBC5E377428169392E4A7740248E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f4:0f:03:c8:e3:83:ef:ef:0e:a2:2b:d8:45: 47:70:9b:b5:40:f0:4f:d8:69:42:78:db:55:a3:c2: 69:c2:25:12:68:5c:5e:04:43:c6:a1:3c:4d:c1:6d: e2:a7:b4:65:b9:95:10:17:71:69:c1:8f:85:07:bc: 77:b1:c3:8a:c6:75:96:b2:1f:f7:56:b7:4a:f4:46: 0d:4f:e4:dd:1c:54:f2:ee:26:c6:02:d4:17:72:ac: f1:8d:17:f0:3d:7a:6f:58:00:b7:93:31:a2:9b:bd: 13:44:42:f3:56:96:64:69:d3:ba:1a:8f:36:1d:0e: c6:63:a5:a7:d7:63:5e:63:df:0c:0e:7b:50:ef:b1: a9:09:54:70:6c:27:b4:84:47:6f:93:ac:34:9a:88: 01:29:fe:0b:9a:b3:06:b8:58:a7:de:11:05:61:51: c7:85:77:26:08:0f:b9:37:c7:d3:15:78:38:38:f4: 64:27:dd:0f:68:31:6a:42:3d:29:9f:a9:b0:b4:22: 16:95:71:8b:6e:1c:be:20:55:1b:9e:91:b2:20:59: 79:19:4e:57:49:81:29:28:2c:11:b7:50:47:1f:1f: bc:57:bd:e1:92:99:3f:e2:ae:fa:14:72:0b:b1:b6: e1:53:9c:6d:38:3a:58:97:f3:42:91:18:53:20:9f: 2c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:01:13:66:63:88:CB:C5:E3:77:42:81:69:39:2E:4A:77:40:24:8E X509v3 Authority Key Identifier: keyid:54:A9:AA:4C:F1:4C:7C:F2:ED:28:64:84:21:88:57:A1:5A:E9:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54A9AA4CF14C7CF2ED286484218857A15AE91E9A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138372e302f32342d3234203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.147.187.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:b7:41:87:11:f6:5a:0f:a6:cc:be:7d:c4:47:25:16:19:64: 5b:8c:8b:8e:23:eb:22:d0:1f:84:44:91:c3:f8:09:0f:f6:da: f7:a3:5e:1e:45:65:a4:22:8f:51:1f:04:57:92:6a:7c:ed:56: 70:77:42:af:39:cf:77:ec:aa:3d:62:32:cb:f6:30:f8:a8:a9: 48:0e:74:0c:42:52:fc:45:b4:04:b1:5c:e4:17:8e:fd:f3:ff: 90:37:ef:38:7b:a8:79:38:4e:bb:20:f5:5e:73:3e:0b:f1:4d: 7c:dd:8b:d0:ba:9f:c1:54:cb:80:b1:78:d9:eb:12:7b:e7:09: 14:44:6d:29:c8:07:2f:41:bc:1a:e2:2f:95:04:25:7d:5f:9c: e0:30:73:9b:de:87:32:05:cb:0f:26:77:4f:bc:d3:2c:c6:6e: a2:80:41:25:dd:00:a3:4e:81:ea:10:96:5e:7d:b6:a3:e6:5e: 26:ca:74:2e:b5:a6:d8:b4:e5:62:9a:c1:99:f6:90:2d:03:4e: cb:2e:82:91:3e:0e:c2:b0:62:31:4b:cb:10:18:9a:d3:bc:0c: 4f:3f:87:65:a6:7b:28:35:55:86:55:9b:fc:27:17:11:5a:57: 13:cd:28:a5:cf:58:e0:02:04:bd:e6:ad:be:92:56:70:90:14: f0:4c:ea:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKQZ7jIzj+nrcqyXtDDMJZzb86QQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRBOUFBNENGMTRDN0NGMkVEMjg2NDg0MjE4ODU3QTE1 QUU5MUU5QTAeFw0yNjA1MDMwMjA2MzVaFw0yNzA1MDIwMjExMzVaMDMxMTAvBgNV BAMTKDYxMDExMzY2NjM4OENCQzVFMzc3NDI4MTY5MzkyRTRBNzc0MDI0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW9A8DyOOD7+8OoivYRUdwm7VA 8E/YaUJ421WjwmnCJRJoXF4EQ8ahPE3BbeKntGW5lRAXcWnBj4UHvHexw4rGdZay H/dWt0r0Rg1P5N0cVPLuJsYC1BdyrPGNF/A9em9YALeTMaKbvRNEQvNWlmRp07oa jzYdDsZjpafXY15j3wwOe1DvsakJVHBsJ7SER2+TrDSaiAEp/guaswa4WKfeEQVh UceFdyYID7k3x9MVeDg49GQn3Q9oMWpCPSmfqbC0IhaVcYtuHL4gVRuekbIgWXkZ TldJgSkoLBG3UEcfH7xXveGSmT/irvoUcguxtuFTnG04OliX80KRGFMgnyzdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYQETZmOIy8Xjd0KBaTkuSndAJI4wHwYDVR0j BBgwFoAUVKmqTPFMfPLtKGSEIYhXoVrpHpowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDYyNDA1MmUtMjIwNS00OGYzLWEzY2ItY2U4YjMyNmI4ZjcxLzAvNTRBOUFBNENG MTRDN0NGMkVEMjg2NDg0MjE4ODU3QTE1QUU5MUU5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NEE5QUE0Q0YxNEM3Q0YyRUQyODY0ODQyMTg4NTdBMTVBRTkx RTlBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuzANBgkqhkiG 9w0BAQsFAAOCAQEAbLdBhxH2Wg+mzL59xEclFhlkW4yLjiPrItAfhESRw/gJD/ba 96NeHkVlpCKPUR8EV5JqfO1WcHdCrznPd+yqPWIyy/Yw+KipSA50DEJS/EW0BLFc 5BeO/fP/kDfvOHuoeThOuyD1XnM+C/FNfN2L0LqfwVTLgLF42esSe+cJFERtKcgH L0G8GuIvlQQlfV+c4DBzm96HMgXLDyZ3T7zTLMZuooBBJd0Ao06B6hCWXn22o+Ze Jsp0LrWm2LTlYprBmfaQLQNOyy6CkT4OwrBiMUvLEBia07wMTz+HZaZ7KDVVhlWb /CcXEVpXE80opc9Y4AIEveatvpJWcJAU8EzqxQ== -----END CERTIFICATE-----Generated at Wed May 13 08:39:50 2026 by rpki-client