$ rpki-client -vvf rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232332e302f32342d3234203d3e203535363634.roa File: 34352e3234392e3232332e302f32342d3234203d3e203535363634.roa (raw, json) Hash identifier: UTP7n2LHofA1cQoeYla9G+hP0kV5GAsKQRjCB14UyyM= Subject key identifier: C8:5C:7A:B3:B2:69:89:66:DB:A8:0A:EA:9B:74:17:D9:81:B4:9B:9C Certificate issuer: /CN=055B63D1B5F66B71EA3283775B07777CB0E06BCB Certificate serial: 7D3897B172CF77396AA4053A95FABD1DECF7AA75 Authority key identifier: 05:5B:63:D1:B5:F6:6B:71:EA:32:83:77:5B:07:77:7C:B0:E0:6B:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232332e302f32342d3234203d3e203535363634.roa Signing time: Sun 03 May 2026 02:21:21 +0000 ROA not before: Sun 03 May 2026 02:16:21 +0000 ROA not after: Sun 02 May 2027 02:21:21 +0000 asID: 55664 IP address blocks: 45.249.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.crl rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:38:97:b1:72:cf:77:39:6a:a4:05:3a:95:fa:bd:1d:ec:f7:aa:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=055B63D1B5F66B71EA3283775B07777CB0E06BCB Validity Not Before: May 3 02:16:21 2026 GMT Not After : May 2 02:21:21 2027 GMT Subject: CN=C85C7AB3B2698966DBA80AEA9B7417D981B49B9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:19:11:08:4e:fb:1f:82:01:8a:24:11:c5:2c: eb:29:9e:5a:86:c6:a7:7c:23:42:ae:c0:81:f8:a9: b2:74:49:16:3d:7a:55:a9:0a:4c:2d:35:b7:a7:6e: 4d:62:e8:eb:a5:74:ac:15:b5:5c:3d:ee:34:cd:a5: 8c:0e:ba:b0:be:43:3b:ca:e9:83:f8:5c:2c:28:76: f7:c5:c0:8b:45:b4:e4:72:4b:46:2a:47:3b:0e:1c: 2f:55:14:01:8f:50:e9:f0:63:4b:07:ec:16:6d:01: 9b:fb:99:63:f0:c7:f5:07:ca:66:63:13:a3:bd:8a: 75:d9:8a:c7:ce:c5:5c:94:ce:a8:3f:d8:08:de:de: 03:20:0a:7d:33:ef:2a:89:c6:be:73:0e:04:c1:af: ea:69:cc:a8:13:14:99:75:eb:d3:19:62:1d:0c:fd: 58:b0:4b:f6:be:ea:bb:2e:75:5a:71:f7:81:84:1d: 59:5f:bb:30:a4:53:be:b4:ca:4c:77:15:80:25:9e: 49:d5:23:28:39:05:21:1c:67:49:1b:0d:89:96:4f: 1e:fa:77:cd:d3:2f:59:83:73:c0:b5:a9:d0:74:5f: ff:8d:23:07:a0:33:b8:aa:70:18:33:7a:40:a3:e3: b8:58:21:16:d4:24:15:4f:9c:fb:23:14:be:fd:66: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:5C:7A:B3:B2:69:89:66:DB:A8:0A:EA:9B:74:17:D9:81:B4:9B:9C X509v3 Authority Key Identifier: keyid:05:5B:63:D1:B5:F6:6B:71:EA:32:83:77:5B:07:77:7C:B0:E0:6B:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/055B63D1B5F66B71EA3283775B07777CB0E06BCB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/055B63D1B5F66B71EA3283775B07777CB0E06BCB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232332e302f32342d3234203d3e203535363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.223.0/24 Signature Algorithm: sha256WithRSAEncryption 18:dc:cc:3b:80:57:60:43:69:68:fd:10:61:f1:29:cc:8c:4b: 3c:bb:d6:b3:46:40:cf:7f:e1:e3:0e:93:90:a1:f7:eb:03:6f: 4d:07:5a:38:65:58:84:55:af:49:8f:3b:5e:e9:42:50:4b:41: 0c:d4:d4:c8:2f:81:2f:58:dc:86:45:01:63:8a:cc:d0:33:fc: 1b:ee:9c:1a:1d:91:90:54:77:81:c0:84:ce:8d:af:2f:99:af: a7:36:6f:9b:a8:a3:1d:de:a5:56:e5:64:c0:92:a8:72:91:96: d3:ea:87:6f:cf:0d:3b:c6:30:3c:a5:c8:d0:16:4e:8d:b8:4f: fa:1b:24:6e:29:51:01:4e:99:bb:ac:d8:f7:64:d6:ab:11:7d: 05:eb:71:03:75:d9:94:ee:44:ed:dc:6f:c9:5a:17:96:5d:0d: 58:80:ea:f4:2e:52:53:e6:89:98:ed:69:13:ac:48:9c:22:49: e2:48:7e:d9:2b:00:4e:7c:09:54:9c:93:f4:07:69:a2:f2:c4: 0d:a3:0d:d9:29:ac:e4:51:13:79:0b:15:60:ff:00:d9:e9:25: 12:c3:a7:94:d6:50:06:f0:21:88:82:0c:0a:61:d4:c2:24:c7: 91:02:6e:7e:a9:c0:3e:46:d4:7b:cf:f8:83:a5:05:ad:60:d1: 14:28:04:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfTiXsXLPdzlqpAU6lfq9Hez3qnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU1QjYzRDFCNUY2NkI3MUVBMzI4Mzc3NUIwNzc3N0NC MEUwNkJDQjAeFw0yNjA1MDMwMjE2MjFaFw0yNzA1MDIwMjIxMjFaMDMxMTAvBgNV BAMTKEM4NUM3QUIzQjI2OTg5NjZEQkE4MEFFQTlCNzQxN0Q5ODFCNDlCOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaGREITvsfggGKJBHFLOspnlqG xqd8I0KuwIH4qbJ0SRY9elWpCkwtNbenbk1i6OuldKwVtVw97jTNpYwOurC+QzvK 6YP4XCwodvfFwItFtORyS0YqRzsOHC9VFAGPUOnwY0sH7BZtAZv7mWPwx/UHymZj E6O9inXZisfOxVyUzqg/2Aje3gMgCn0z7yqJxr5zDgTBr+ppzKgTFJl169MZYh0M /ViwS/a+6rsudVpx94GEHVlfuzCkU760ykx3FYAlnknVIyg5BSEcZ0kbDYmWTx76 d83TL1mDc8C1qdB0X/+NIwegM7iqcBgzekCj47hYIRbUJBVPnPsjFL79ZvdFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyFx6s7JpiWbbqArqm3QX2YG0m5wwHwYDVR0j BBgwFoAUBVtj0bX2a3HqMoN3Wwd3fLDga8swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjhhNzk3NTUtMjM4YS00NmQyLWIwNTItMzA1ODdiZjllZmY3LzAvMDU1QjYzRDFC NUY2NkI3MUVBMzI4Mzc3NUIwNzc3N0NCMEUwNkJDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNTVCNjNEMUI1RjY2QjcxRUEzMjgzNzc1QjA3Nzc3Q0IwRTA2 QkNCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI4YTc5NzU1LTIzOGEtNDZkMi1i MDUyLTMwNTg3YmY5ZWZmNy8wLzM0MzUyZTMyMzQzOTJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC353zANBgkqhkiG 9w0BAQsFAAOCAQEAGNzMO4BXYENpaP0QYfEpzIxLPLvWs0ZAz3/h4w6TkKH36wNv TQdaOGVYhFWvSY87XulCUEtBDNTUyC+BL1jchkUBY4rM0DP8G+6cGh2RkFR3gcCE zo2vL5mvpzZvm6ijHd6lVuVkwJKocpGW0+qHb88NO8YwPKXI0BZOjbhP+hskbilR AU6Zu6zY92TWqxF9BetxA3XZlO5E7dxvyVoXll0NWIDq9C5SU+aJmO1pE6xInCJJ 4kh+2SsATnwJVJyT9AdpovLEDaMN2Sms5FETeQsVYP8A2eklEsOnlNZQBvAhiIIM CmHUwiTHkQJufqnAPkbUe8/4g6UFrWDRFCgE2A== -----END CERTIFICATE-----Generated at Wed May 13 12:40:05 2026 by rpki-client