$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231322e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 9Uh4g+j84Dsp+SQG55jiqFV/GXapMzCJHzdMQ8QVMIs= Subject key identifier: 11:1F:16:FB:2F:E5:3D:8B:FA:74:69:93:A5:85:6E:08:3A:35:C7:E5 Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 6AB5B7C0AFE09B9E9527A4A9E8A460F343F09E16 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:38 +0000 ROA not before: Sun 03 May 2026 02:32:38 +0000 ROA not after: Sun 02 May 2027 02:37:38 +0000 asID: 38142 IP address blocks: 210.57.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b5:b7:c0:af:e0:9b:9e:95:27:a4:a9:e8:a4:60:f3:43:f0:9e:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:38 2026 GMT Not After : May 2 02:37:38 2027 GMT Subject: CN=111F16FB2FE53D8BFA746993A5856E083A35C7E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:af:2d:88:c0:64:58:51:38:ed:41:c3:36:11: 78:36:1b:99:bd:34:15:59:88:33:d5:c0:cf:d0:83: 6e:2d:76:88:8f:65:a8:bb:f0:99:65:99:3a:e6:a6: ea:f6:41:90:2c:f5:3f:fa:82:7c:3b:bf:ae:71:52: d3:29:17:b5:26:85:ea:35:48:a0:27:db:02:43:df: f1:4b:22:07:91:73:68:e9:cd:1a:e1:24:9d:fd:d6: d8:cc:9b:82:0b:bf:30:2e:6e:bd:cb:ed:6d:16:cb: 7d:cd:9a:54:46:36:14:b6:71:ae:c2:58:47:36:16: 8b:5e:48:cc:48:d7:0c:ac:db:77:27:b1:d6:b4:71: 54:68:95:0a:a1:05:01:4b:62:e6:03:73:3f:d6:bd: dc:36:c0:03:88:12:82:54:75:8f:15:81:27:38:c8: 0a:8f:76:94:7a:4b:ee:95:e1:65:02:99:2b:1e:18: 22:3b:7e:a2:78:0d:e0:40:a3:79:27:15:85:87:d9: 50:76:e7:40:d9:79:de:fd:d8:f0:c2:98:d7:6c:fc: a4:22:73:0f:1b:85:fb:f9:90:71:39:7f:e9:c1:b1: 78:de:07:a7:7e:54:0c:ed:a8:47:5f:1c:76:8b:59: 1c:47:75:b3:dd:d1:fb:09:c2:7a:1c:2b:10:74:c0: d3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1F:16:FB:2F:E5:3D:8B:FA:74:69:93:A5:85:6E:08:3A:35:C7:E5 X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231322e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.212.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:82:41:3f:12:76:58:f3:07:fe:d1:ce:28:64:49:f3:25:bd: 6b:28:29:03:31:74:07:62:74:c2:73:60:88:92:23:ea:b4:a2: 87:a7:bd:61:46:7b:d8:c2:e5:28:fb:53:36:8b:76:ff:67:16: 42:0b:42:32:fe:77:96:85:b7:c6:4f:6a:86:1d:67:98:11:13: d2:08:1e:4a:c2:82:6d:f7:70:fe:03:c2:a8:8f:ea:b6:76:ce: f6:c9:32:3d:df:2e:7d:05:13:6e:92:a9:82:9c:47:d7:ad:1a: 7d:52:4f:7e:d5:a0:1f:4b:42:42:f1:46:bd:46:88:8b:99:2c: 10:83:1a:23:aa:7d:2f:f9:20:69:10:e9:c0:e9:96:30:34:45: 1c:d4:f5:ce:bf:42:00:8e:40:e5:bb:65:6a:8a:8f:ab:fa:07: aa:b2:55:11:80:d2:09:dd:e9:db:bb:e7:8a:1d:53:9f:5f:80: d5:6a:3d:1e:7e:10:04:51:c1:69:55:d7:72:d4:95:c8:20:5b: 04:25:7b:24:45:62:64:79:31:2f:f9:47:04:3c:c6:6f:3f:36: 37:b9:87:42:53:c4:96:dc:4c:11:1f:5e:88:a2:17:b8:8b:21: 36:2f:93:b5:77:dd:89:37:f4:64:00:3e:1b:44:4e:9b:22:64: cf:21:fe:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUarW3wK/gm56VJ6Sp6KRg80PwnhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyMzhaFw0yNzA1MDIwMjM3MzhaMDMxMTAvBgNV BAMTKDExMUYxNkZCMkZFNTNEOEJGQTc0Njk5M0E1ODU2RTA4M0EzNUM3RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ry2IwGRYUTjtQcM2EXg2G5m9 NBVZiDPVwM/Qg24tdoiPZai78JllmTrmpur2QZAs9T/6gnw7v65xUtMpF7Umheo1 SKAn2wJD3/FLIgeRc2jpzRrhJJ391tjMm4ILvzAubr3L7W0Wy33NmlRGNhS2ca7C WEc2FoteSMxI1wys23cnsda0cVRolQqhBQFLYuYDcz/Wvdw2wAOIEoJUdY8VgSc4 yAqPdpR6S+6V4WUCmSseGCI7fqJ4DeBAo3knFYWH2VB250DZed792PDCmNds/KQi cw8bhfv5kHE5f+nBsXjeB6d+VAztqEdfHHaLWRxHdbPd0fsJwnocKxB0wNOtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUER8W+y/lPYv6dGmTpYVuCDo1x+UwHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51DANBgkqhkiG 9w0BAQsFAAOCAQEAaoJBPxJ2WPMH/tHOKGRJ8yW9aygpAzF0B2J0wnNgiJIj6rSi h6e9YUZ72MLlKPtTNot2/2cWQgtCMv53loW3xk9qhh1nmBET0ggeSsKCbfdw/gPC qI/qtnbO9skyPd8ufQUTbpKpgpxH160afVJPftWgH0tCQvFGvUaIi5ksEIMaI6p9 L/kgaRDpwOmWMDRFHNT1zr9CAI5A5btlaoqPq/oHqrJVEYDSCd3p27vnih1Tn1+A 1Wo9Hn4QBFHBaVXXctSVyCBbBCV7JEViZHkxL/lHBDzGbz82N7mHQlPEltxMER9e iKIXuIshNi+TtXfdiTf0ZAA+G0ROmyJkzyH+JQ== -----END CERTIFICATE-----Generated at Wed May 13 14:37:18 2026 by rpki-client