$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232342e302f32302d3230203d3e203633383539.roa File: 36362e39362e3232342e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: +VpU3dzeY+oUGttQ4U2PPlymqnS39naBL4q3QpeDx2o= Subject key identifier: 94:71:C5:F1:6F:D1:7E:C8:5E:5E:01:03:0C:68:E1:FC:8B:4F:76:8D Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 45C2DC14A46570BD4DEFFB04240922A5B60AF20D Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232342e302f32302d3230203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:18 +0000 ROA not before: Sun 03 May 2026 02:22:18 +0000 ROA not after: Sun 02 May 2027 02:27:18 +0000 asID: 63859 IP address blocks: 66.96.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c2:dc:14:a4:65:70:bd:4d:ef:fb:04:24:09:22:a5:b6:0a:f2:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:18 2026 GMT Not After : May 2 02:27:18 2027 GMT Subject: CN=9471C5F16FD17EC85E5E01030C68E1FC8B4F768D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:00:c4:22:86:43:66:c6:0b:34:8c:0b:aa: 08:a5:41:bf:96:e5:6d:22:ea:18:38:c0:90:3e:86: fe:e2:1f:54:1a:b5:cc:54:fd:f5:da:c4:11:cf:5b: e7:23:2d:26:23:1c:3c:41:50:56:37:b4:e7:ee:cc: 77:3a:04:1b:e2:31:22:cd:6b:7b:35:55:d7:68:40: 77:a4:65:c9:36:e1:18:71:19:9e:af:af:94:a7:cf: 75:97:9d:47:19:47:20:c1:a4:63:5b:b6:54:a2:1e: f8:ae:40:8a:1a:5b:3e:28:51:d4:7e:4d:ff:00:14: 90:5f:b4:50:29:a9:1f:88:d8:08:d0:a3:95:02:7a: 0a:21:60:05:64:ba:5d:5d:09:e1:a2:df:6f:90:93: 63:ca:79:06:07:10:dd:d0:e1:55:6f:27:03:9d:29: aa:4c:b9:e7:71:bf:40:97:ed:72:b0:d3:01:b1:b1: bc:b3:92:d9:48:6f:25:1b:2b:5d:13:eb:9f:a2:ee: 80:03:fb:e5:35:bd:fa:6a:7a:0d:08:cb:16:38:31: a0:36:10:e7:c5:af:1b:6f:a4:d4:0c:05:b2:3e:79: 71:01:a7:0c:b0:90:29:17:b3:bd:34:06:2c:9e:f4: b9:63:7f:d6:e6:8c:66:8b:e6:4d:d2:4f:ec:0a:a4: bc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:71:C5:F1:6F:D1:7E:C8:5E:5E:01:03:0C:68:E1:FC:8B:4F:76:8D X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232342e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/20 Signature Algorithm: sha256WithRSAEncryption c3:98:6c:e1:fb:89:6a:b6:c9:3f:9a:53:45:6a:5a:a9:54:f1: b4:89:70:4f:61:8b:f0:c7:64:e5:ee:43:55:cd:80:e3:90:26: dc:c4:ab:a3:e9:bf:23:85:22:17:0f:f1:f4:53:a8:03:e3:be: 2e:e9:77:aa:f9:bf:b3:a0:36:82:f8:93:01:bf:7e:3d:87:b3: 35:d3:fb:52:12:a7:f6:b4:66:01:74:d9:64:bb:1b:b8:fa:d9: ea:c5:9f:42:1a:44:54:fd:26:25:b5:92:b4:ae:96:ac:be:32: 45:de:e8:9f:e4:43:eb:01:17:e0:86:5c:1c:c8:5c:ab:e7:5d: fa:9a:4a:44:f5:45:30:43:08:08:1a:1f:b3:f8:f8:6e:4a:58: 23:35:9b:fe:b6:4d:59:79:7b:30:59:06:c7:4a:19:3c:f2:86: 5b:ee:c2:78:90:6e:40:a4:af:1a:52:cd:2c:54:eb:59:a1:84: 41:26:a9:ae:38:a8:af:dc:ae:57:2e:d0:60:37:e6:33:0a:64: 05:7b:42:3a:a3:91:77:1f:7b:e1:d3:6e:26:39:71:93:b6:be: c8:69:16:b1:ee:ff:8e:b9:ff:24:82:80:91:62:71:96:9c:14: d9:91:68:9b:92:e1:4f:e9:1c:8b:dd:b8:d8:d2:d8:67:7f:79: d1:e4:32:0f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURcLcFKRlcL1N7/sEJAkipbYK8g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMThaFw0yNzA1MDIwMjI3MThaMDMxMTAvBgNV BAMTKDk0NzFDNUYxNkZEMTdFQzg1RTVFMDEwMzBDNjhFMUZDOEI0Rjc2OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf7gDEIoZDZsYLNIwLqgilQb+W 5W0i6hg4wJA+hv7iH1QatcxU/fXaxBHPW+cjLSYjHDxBUFY3tOfuzHc6BBviMSLN a3s1VddoQHekZck24RhxGZ6vr5Snz3WXnUcZRyDBpGNbtlSiHviuQIoaWz4oUdR+ Tf8AFJBftFApqR+I2AjQo5UCegohYAVkul1dCeGi32+Qk2PKeQYHEN3Q4VVvJwOd KapMuedxv0CX7XKw0wGxsbyzktlIbyUbK10T65+i7oAD++U1vfpqeg0IyxY4MaA2 EOfFrxtvpNQMBbI+eXEBpwywkCkXs700Biye9Lljf9bmjGaL5k3ST+wKpLy7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlHHF8W/RfsheXgEDDGjh/ItPdo0wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzAy ZDMyMzAyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARCYOAwDQYJKoZIhvcN AQELBQADggEBAMOYbOH7iWq2yT+aU0VqWqlU8bSJcE9hi/DHZOXuQ1XNgOOQJtzE q6PpvyOFIhcP8fRTqAPjvi7pd6r5v7OgNoL4kwG/fj2HszXT+1ISp/a0ZgF02WS7 G7j62erFn0IaRFT9JiW1krSulqy+MkXe6J/kQ+sBF+CGXBzIXKvnXfqaSkT1RTBD CAgaH7P4+G5KWCM1m/62TVl5ezBZBsdKGTzyhlvuwniQbkCkrxpSzSxU61mhhEEm qa44qK/crlcu0GA35jMKZAV7QjqjkXcfe+HTbiY5cZO2vshpFrHu/465/ySCgJFi cZacFNmRaJuS4U/pHIvduNjS2Gd/edHkMg8= -----END CERTIFICATE-----Generated at Wed May 13 01:06:49 2026 by rpki-client