$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232382e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Qa1RewHXGuqZ6DJ9q5F8H3LGFaJfBQOgaBOzkAUPwro= Subject key identifier: E9:AF:A2:4E:CF:16:F2:F7:B1:E2:B7:0B:8F:5E:97:A9:2A:56:D9:42 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 66BB8854BC4FEC4677EDB8A9F81AD0BAEE4D39DD Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232382e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:26 +0000 ROA not before: Sun 03 May 2026 02:22:26 +0000 ROA not after: Sun 02 May 2027 02:27:26 +0000 asID: 63859 IP address blocks: 66.96.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bb:88:54:bc:4f:ec:46:77:ed:b8:a9:f8:1a:d0:ba:ee:4d:39:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:26 2026 GMT Not After : May 2 02:27:26 2027 GMT Subject: CN=E9AFA24ECF16F2F7B1E2B70B8F5E97A92A56D942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:26:62:c7:46:e2:b8:ea:27:d6:a6:13:06: 3d:54:af:a0:33:a7:a9:4d:a5:74:4f:7c:21:4a:d9: 02:df:1d:7d:8d:b1:5f:1e:aa:e5:be:76:ef:2c:e3: 17:0c:9e:41:26:ef:2b:b0:2c:1c:8e:1f:16:55:e1: 1c:78:fc:a7:82:b0:50:f7:ce:24:d3:26:f8:9d:7e: 15:26:56:b1:8c:1c:ff:ef:2c:93:ce:27:a6:17:0d: 50:c6:34:9d:fb:63:96:fb:ef:ee:a7:82:2a:89:b2: 29:2b:d0:4a:d6:5b:0f:0e:4f:ee:c5:60:86:d4:19: 4c:7c:56:41:a9:ef:4a:22:f6:90:aa:1d:a3:32:08: ef:49:9c:44:d8:13:f7:7b:39:c0:17:ba:ee:d4:89: 34:aa:9e:a2:70:4c:59:a4:7a:8f:c7:a2:e5:c3:fe: a6:b9:71:d4:ae:a3:a6:f7:7b:71:db:a3:b2:fb:18: 80:c8:26:32:0f:b3:15:55:52:77:01:37:59:3b:3f: 14:85:96:27:13:0f:19:1e:b9:09:dd:97:10:08:6c: 7f:cd:52:10:60:cc:ac:da:44:ee:a2:66:7d:7d:0d: e6:41:ef:1b:fb:06:0d:57:3d:23:74:1f:a8:6b:9e: 00:11:de:0e:b0:37:bd:6e:d5:e6:3c:11:44:46:f4: dd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AF:A2:4E:CF:16:F2:F7:B1:E2:B7:0B:8F:5E:97:A9:2A:56:D9:42 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.228.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:6a:45:06:55:f6:81:49:07:b0:77:f3:a8:56:13:52:44:9e: 47:01:bb:e8:08:14:3c:ee:b5:b3:20:34:ea:de:4d:79:35:bb: 2f:83:bc:35:ad:7f:9c:37:1f:91:ba:c6:23:e9:5d:68:89:2f: cc:65:04:8f:af:50:3a:7e:e8:2a:b2:ac:d3:f1:52:c5:26:8a: 47:97:bd:b0:a2:32:94:a3:e5:9b:6b:10:12:80:bc:13:ff:46: 50:ae:bf:59:c3:a3:84:61:5a:da:84:ca:a4:32:dd:87:87:11: 97:5a:14:ce:97:40:96:15:55:85:00:65:ca:49:f2:1a:0a:4b: e6:60:ef:27:9b:69:a0:87:c7:36:d3:7c:55:47:ec:ed:58:d3: 14:17:81:80:d5:20:77:fb:9a:51:08:e3:89:63:8f:60:70:c9: 33:5b:35:de:f5:59:38:25:c5:2c:31:e3:2c:77:ae:75:01:9c: a8:9d:02:05:4c:46:2f:91:9b:0b:b7:a7:2c:33:d4:42:f7:65: 62:7e:15:87:5b:2d:9f:1e:7b:f4:06:56:0f:90:fc:4c:56:bf: 6d:1b:41:59:d2:e8:97:43:99:58:cd:4d:d3:10:78:c9:0e:47: 8c:88:e0:c1:58:d3:b5:e1:c0:4e:66:3d:d9:a2:1f:5a:31:b1: 96:e0:11:2d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZruIVLxP7EZ37bip+BrQuu5NOd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjZaFw0yNzA1MDIwMjI3MjZaMDMxMTAvBgNV BAMTKEU5QUZBMjRFQ0YxNkYyRjdCMUUyQjcwQjhGNUU5N0E5MkE1NkQ5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxSZix0biuOon1qYTBj1Ur6Az p6lNpXRPfCFK2QLfHX2NsV8equW+du8s4xcMnkEm7yuwLByOHxZV4Rx4/KeCsFD3 ziTTJvidfhUmVrGMHP/vLJPOJ6YXDVDGNJ37Y5b77+6ngiqJsikr0ErWWw8OT+7F YIbUGUx8VkGp70oi9pCqHaMyCO9JnETYE/d7OcAXuu7UiTSqnqJwTFmkeo/HouXD /qa5cdSuo6b3e3Hbo7L7GIDIJjIPsxVVUncBN1k7PxSFlicTDxkeuQndlxAIbH/N UhBgzKzaRO6iZn19DeZB7xv7Bg1XPSN0H6hrngAR3g6wN71u1eY8EURG9N1HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6a+iTs8W8vex4rcLj16XqSpW2UIwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzM2MzYyZTM5MzYyZTMyMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOQwDQYJKoZIhvcN AQELBQADggEBAF1qRQZV9oFJB7B386hWE1JEnkcBu+gIFDzutbMgNOreTXk1uy+D vDWtf5w3H5G6xiPpXWiJL8xlBI+vUDp+6CqyrNPxUsUmikeXvbCiMpSj5ZtrEBKA vBP/RlCuv1nDo4RhWtqEyqQy3YeHEZdaFM6XQJYVVYUAZcpJ8hoKS+Zg7yebaaCH xzbTfFVH7O1Y0xQXgYDVIHf7mlEI44ljj2BwyTNbNd71WTglxSwx4yx3rnUBnKid AgVMRi+Rmwu3pywz1EL3ZWJ+FYdbLZ8ee/QGVg+Q/ExWv20bQVnS6JdDmVjNTdMQ eMkOR4yI4MFY07XhwE5mPdmiH1oxsZbgES0= -----END CERTIFICATE-----Generated at Wed May 13 00:44:21 2026 by rpki-client