$ rpki-client -vvf rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa File: 34352e3234392e3232302e302f32342d3234203d3e203535363634.roa (raw, json) Hash identifier: ZB3QPiqCUU/NDBlFWb9Xc84TcqNHZ8w/CZwc7mHYkwI= Subject key identifier: AA:B2:60:3D:E0:92:D8:E2:67:B4:C3:4D:BB:D4:06:FD:81:EE:14:CB Certificate issuer: /CN=055B63D1B5F66B71EA3283775B07777CB0E06BCB Certificate serial: 78E56934CE474AE211D4FC8012A6414DB051315E Authority key identifier: 05:5B:63:D1:B5:F6:6B:71:EA:32:83:77:5B:07:77:7C:B0:E0:6B:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa Signing time: Sun 03 May 2026 02:21:22 +0000 ROA not before: Sun 03 May 2026 02:16:22 +0000 ROA not after: Sun 02 May 2027 02:21:22 +0000 asID: 55664 IP address blocks: 45.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.crl rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e5:69:34:ce:47:4a:e2:11:d4:fc:80:12:a6:41:4d:b0:51:31:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=055B63D1B5F66B71EA3283775B07777CB0E06BCB Validity Not Before: May 3 02:16:22 2026 GMT Not After : May 2 02:21:22 2027 GMT Subject: CN=AAB2603DE092D8E267B4C34DBBD406FD81EE14CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:69:cc:2e:f8:8f:d9:03:5b:9e:7b:ff:0d: 16:0e:7d:88:1c:75:6f:89:69:d9:da:8f:09:38:b3: 44:8f:00:ba:7c:46:90:8f:63:d9:16:70:a5:41:90: 7a:d8:ce:84:3c:12:d7:00:93:f8:c8:f6:97:e8:81: e0:ee:31:d9:02:bf:39:6e:30:66:0c:a2:68:2f:c9: 62:30:79:0e:51:d6:0e:1b:db:40:b3:ea:c5:bc:ea: a4:e4:f5:bb:f5:3d:46:e3:0a:70:21:e2:dc:ef:b6: b7:c2:19:36:8f:cb:d2:c1:ff:56:b4:15:82:6c:5c: 07:18:97:d1:d4:a5:a1:36:07:80:7c:bd:5b:91:2e: 48:70:3c:b5:29:75:2f:90:2e:40:fe:ca:07:8a:fc: c3:35:12:bc:5f:17:3c:33:ec:5d:f3:5a:09:d0:ed: 10:bd:e0:6d:b7:10:74:48:87:19:2e:54:27:2d:1e: cd:e6:5b:d0:82:71:6b:d4:73:89:40:54:e0:d2:5c: 3f:38:19:05:af:39:9a:dc:a9:af:26:d2:21:00:fb: 64:54:7a:b2:7b:45:86:62:3e:5a:80:5b:ed:79:bb: a2:d9:27:40:52:ab:bb:cc:56:0f:e7:89:96:4e:49: 5d:2d:e5:e2:fe:f9:3b:c7:4d:57:22:9e:21:14:3d: ff:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B2:60:3D:E0:92:D8:E2:67:B4:C3:4D:BB:D4:06:FD:81:EE:14:CB X509v3 Authority Key Identifier: keyid:05:5B:63:D1:B5:F6:6B:71:EA:32:83:77:5B:07:77:7C:B0:E0:6B:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 12:fe:94:a6:10:6f:96:c2:d6:1f:84:8d:41:54:26:51:b4:b9: c7:bd:95:51:6b:8e:77:02:b2:59:09:76:c3:f6:a0:51:b3:42: bb:64:66:60:21:b2:97:7b:f7:cf:dc:d5:13:1a:11:e1:e9:64: 15:53:e0:6e:b1:a5:5c:98:bd:b4:a7:d7:c7:80:ed:25:86:c2: 72:8f:3e:d9:4b:21:25:ae:41:bb:ec:00:c5:b6:cb:3d:ad:26: a7:45:bc:b5:39:f2:b9:65:98:c7:56:2f:62:5a:0f:71:1c:00: ed:70:a9:af:c7:76:60:2c:e6:2d:cc:08:c7:bb:9f:b7:e5:59: 61:4d:d3:20:58:8d:6e:1a:87:37:f4:a5:e3:80:95:50:74:59: b8:ea:c8:e0:4d:f7:93:85:26:32:af:f8:9e:96:b8:a4:ff:16: 98:f9:35:48:e3:a8:37:ec:cf:b7:38:df:1c:cb:e1:88:70:0f: 67:95:7f:7b:be:25:da:a8:31:ed:1b:ee:7c:c4:34:67:fb:8b: 0f:a9:ef:b1:04:a1:b1:81:2e:32:b5:fc:95:ac:71:b2:f3:c6: 03:7d:ea:06:00:2c:b6:71:b6:91:16:ca:a6:e0:ba:11:97:36: 40:08:7c:8e:d7:00:c7:1d:46:f1:10:a6:32:db:15:e5:ca:1f: 8e:56:64:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeOVpNM5HSuIR1PyAEqZBTbBRMV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU1QjYzRDFCNUY2NkI3MUVBMzI4Mzc3NUIwNzc3N0NC MEUwNkJDQjAeFw0yNjA1MDMwMjE2MjJaFw0yNzA1MDIwMjIxMjJaMDMxMTAvBgNV BAMTKEFBQjI2MDNERTA5MkQ4RTI2N0I0QzM0REJCRDQwNkZEODFFRTE0Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt2GnMLviP2QNbnnv/DRYOfYgc dW+Jadnajwk4s0SPALp8RpCPY9kWcKVBkHrYzoQ8EtcAk/jI9pfogeDuMdkCvzlu MGYMomgvyWIweQ5R1g4b20Cz6sW86qTk9bv1PUbjCnAh4tzvtrfCGTaPy9LB/1a0 FYJsXAcYl9HUpaE2B4B8vVuRLkhwPLUpdS+QLkD+ygeK/MM1ErxfFzwz7F3zWgnQ 7RC94G23EHRIhxkuVCctHs3mW9CCcWvUc4lAVODSXD84GQWvOZrcqa8m0iEA+2RU erJ7RYZiPlqAW+15u6LZJ0BSq7vMVg/niZZOSV0t5eL++TvHTVciniEUPf+PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqrJgPeCS2OJntMNNu9QG/YHuFMswHwYDVR0j BBgwFoAUBVtj0bX2a3HqMoN3Wwd3fLDga8swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjhhNzk3NTUtMjM4YS00NmQyLWIwNTItMzA1ODdiZjllZmY3LzAvMDU1QjYzRDFC NUY2NkI3MUVBMzI4Mzc3NUIwNzc3N0NCMEUwNkJDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNTVCNjNEMUI1RjY2QjcxRUEzMjgzNzc1QjA3Nzc3Q0IwRTA2 QkNCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI4YTc5NzU1LTIzOGEtNDZkMi1i MDUyLTMwNTg3YmY5ZWZmNy8wLzM0MzUyZTMyMzQzOTJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC353DANBgkqhkiG 9w0BAQsFAAOCAQEAEv6UphBvlsLWH4SNQVQmUbS5x72VUWuOdwKyWQl2w/agUbNC u2RmYCGyl3v3z9zVExoR4elkFVPgbrGlXJi9tKfXx4DtJYbCco8+2UshJa5Bu+wA xbbLPa0mp0W8tTnyuWWYx1YvYloPcRwA7XCpr8d2YCzmLcwIx7uft+VZYU3TIFiN bhqHN/Sl44CVUHRZuOrI4E33k4UmMq/4npa4pP8WmPk1SOOoN+zPtzjfHMvhiHAP Z5V/e74l2qgx7RvufMQ0Z/uLD6nvsQShsYEuMrX8laxxsvPGA33qBgAstnG2kRbK puC6EZc2QAh8jtcAxx1G8RCmMtsV5cofjlZkVg== -----END CERTIFICATE-----Generated at Wed May 13 12:40:09 2026 by rpki-client