$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3230382e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: QO5w5W9cp8cI6poTkpuXpM9F3mhiRyQeqAdZ2Rfgw6w= Subject key identifier: A3:34:04:90:B3:23:CA:3E:40:9F:64:48:B3:30:39:92:D0:65:49:37 Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 7F312AB667CA3F4DE1A6BECEB4650D09EE1C3629 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:38 +0000 ROA not before: Sun 03 May 2026 02:32:38 +0000 ROA not after: Sun 02 May 2027 02:37:38 +0000 asID: 38142 IP address blocks: 210.57.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:31:2a:b6:67:ca:3f:4d:e1:a6:be:ce:b4:65:0d:09:ee:1c:36:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:38 2026 GMT Not After : May 2 02:37:38 2027 GMT Subject: CN=A3340490B323CA3E409F6448B3303992D0654937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:83:31:c5:69:41:cb:96:56:18:48:fb:23: 4a:6b:c7:01:77:14:cf:26:53:f1:ba:c4:23:93:10: f2:d1:7d:c9:41:40:77:a0:f1:0c:10:04:d6:75:f5: 93:1e:73:c6:99:b9:c0:c6:b6:5f:99:ec:ed:bf:e2: 18:2e:cd:f3:aa:28:fe:2e:9c:d5:78:94:a2:65:7d: 73:a3:d7:ae:7b:1f:87:43:3d:99:ac:6e:76:1c:d1: 5c:64:0c:ab:c7:aa:c6:d6:6d:2d:df:00:0c:b2:df: 4b:68:ec:4b:07:77:53:e6:a9:71:df:5b:eb:87:e5: b1:24:40:46:c1:77:e3:be:47:4d:d7:b6:ee:cb:55: 91:25:90:26:4f:23:d0:27:b1:e0:f7:bf:38:7f:34: 93:0a:dd:1d:00:e0:7a:cb:82:68:74:e5:8a:51:8c: 77:c3:db:b7:23:50:dd:23:be:77:78:d3:7d:b6:76: d2:7f:bd:57:ac:78:45:ed:d5:b0:35:b6:53:c1:fd: 03:9d:4b:16:3f:5a:8e:1c:07:2e:ab:ae:fc:c8:ae: 5e:c8:6f:28:7e:35:65:ad:09:8e:56:9e:5a:07:f8: 21:8c:0d:a9:28:ef:3f:ba:05:6e:e5:fb:48:12:d4: ba:d8:51:6f:dd:8e:f3:1a:f2:da:3d:88:4d:3c:90: 3c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:34:04:90:B3:23:CA:3E:40:9F:64:48:B3:30:39:92:D0:65:49:37 X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3230382e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.208.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ac:ae:21:26:9a:3f:2c:67:42:17:87:80:25:9a:9f:64:0c: 3c:84:84:ee:d7:c4:18:6f:73:0f:50:df:b3:20:56:3e:19:90: aa:41:90:69:25:fa:1b:c2:99:c0:9b:2f:ac:36:08:b9:bb:c6: 13:b9:e2:da:ec:e4:91:e6:0d:81:f1:95:3a:df:f6:84:1b:74: 99:55:e9:99:bc:c9:05:67:cd:af:fc:43:0b:e6:2a:15:40:0d: df:ef:43:22:ce:44:fd:1c:0e:b5:b5:f3:17:20:0c:e4:c6:d3: 1e:5b:df:bd:f8:bb:d6:c8:ef:48:5e:29:ac:5f:72:37:fa:0a: f2:7b:10:40:7b:21:2c:ac:0d:35:b2:f9:b2:26:db:12:f9:fd: 90:70:d7:ef:4a:fa:23:37:66:6e:f5:88:ab:57:95:e7:5e:70: c7:41:c2:ea:42:6e:d2:67:8e:94:c2:fb:69:ee:a1:89:85:bc: aa:e5:f8:7a:25:c2:46:b7:ce:a9:57:9b:ad:ab:d4:bd:4f:e3: 5b:89:da:1b:5b:78:20:05:7c:db:2b:b9:cc:84:f0:27:b5:be: 1b:ec:54:19:38:f8:22:bf:ce:75:34:44:72:39:51:d8:6f:0c: 72:cf:db:1e:7b:2c:4e:10:15:46:43:64:a4:88:e5:6b:a1:ae: eb:6d:67:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfzEqtmfKP03hpr7OtGUNCe4cNikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyMzhaFw0yNzA1MDIwMjM3MzhaMDMxMTAvBgNV BAMTKEEzMzQwNDkwQjMyM0NBM0U0MDlGNjQ0OEIzMzAzOTkyRDA2NTQ5MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17oMxxWlBy5ZWGEj7I0prxwF3 FM8mU/G6xCOTEPLRfclBQHeg8QwQBNZ19ZMec8aZucDGtl+Z7O2/4hguzfOqKP4u nNV4lKJlfXOj1657H4dDPZmsbnYc0VxkDKvHqsbWbS3fAAyy30to7EsHd1PmqXHf W+uH5bEkQEbBd+O+R03Xtu7LVZElkCZPI9AnseD3vzh/NJMK3R0A4HrLgmh05YpR jHfD27cjUN0jvnd40322dtJ/vVeseEXt1bA1tlPB/QOdSxY/Wo4cBy6rrvzIrl7I byh+NWWtCY5WnloH+CGMDako7z+6BW7l+0gS1LrYUW/djvMa8to9iE08kDxtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUozQEkLMjyj5An2RIszA5ktBlSTcwHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI50DANBgkqhkiG 9w0BAQsFAAOCAQEAFqyuISaaPyxnQheHgCWan2QMPISE7tfEGG9zD1DfsyBWPhmQ qkGQaSX6G8KZwJsvrDYIubvGE7ni2uzkkeYNgfGVOt/2hBt0mVXpmbzJBWfNr/xD C+YqFUAN3+9DIs5E/RwOtbXzFyAM5MbTHlvfvfi71sjvSF4prF9yN/oK8nsQQHsh LKwNNbL5sibbEvn9kHDX70r6IzdmbvWIq1eV515wx0HC6kJu0meOlML7ae6hiYW8 quX4eiXCRrfOqVebravUvU/jW4naG1t4IAV82yu5zITwJ7W+G+xUGTj4Ir/OdTRE cjlR2G8Mcs/bHnssThAVRkNkpIjla6Gu621nOg== -----END CERTIFICATE-----Generated at Wed May 13 14:10:50 2026 by rpki-client