$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: tc07x6I5GlIGtQm74mFDwkPY7veOT+58YPaMpLFuMP8= Subject key identifier: A0:FA:3E:D2:ED:8D:16:C7:B3:BC:4D:7D:B1:DE:93:14:2F:FE:2B:3D Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 70B4083CD2DBFE5F1A55B5AB0202FC2DF4ADDC84 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:41 +0000 ROA not before: Sun 03 May 2026 02:32:41 +0000 ROA not after: Sun 02 May 2027 02:37:41 +0000 asID: 38142 IP address blocks: 210.57.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b4:08:3c:d2:db:fe:5f:1a:55:b5:ab:02:02:fc:2d:f4:ad:dc:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:41 2026 GMT Not After : May 2 02:37:41 2027 GMT Subject: CN=A0FA3ED2ED8D16C7B3BC4D7DB1DE93142FFE2B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6a:dc:be:65:19:1d:53:80:c8:29:f5:a4:6e: 39:e8:f3:a1:7b:4c:b5:55:20:45:25:a0:00:66:d1: d2:98:07:0c:a3:cc:08:b2:46:9b:ac:b7:af:a8:f7: b4:9d:43:69:20:bb:40:ca:53:5c:b9:e8:5b:79:7a: f4:81:9c:cd:dc:f1:06:05:1d:59:c1:04:e3:5b:fb: f1:77:f5:e3:0b:00:1d:66:cd:72:24:92:b3:ed:c2: 5f:ad:8d:46:82:1b:15:b8:7a:f8:1c:5d:d0:4f:a0: 9d:0b:31:17:fb:c9:74:ad:94:0e:85:f9:86:e7:05: 76:05:f5:f5:20:99:14:20:4f:2a:3a:b4:7d:5a:66: 00:6b:aa:2b:18:bb:b7:56:f9:f6:7c:87:b4:2e:d3: 55:d9:90:4c:2b:ef:91:78:eb:a8:a4:89:c6:0a:51: ef:8f:cd:57:92:23:46:e2:a8:e2:33:a8:4f:8a:04: ac:fe:8c:e3:d0:05:18:b7:3a:3b:da:28:9d:55:bd: 9c:7f:6c:20:07:5d:74:79:ae:8b:f7:32:d1:c7:6a: 0b:0a:98:fa:30:b7:ae:c4:78:1e:9b:78:37:9f:b6: 94:56:80:c3:be:28:ac:0f:a3:f4:e5:82:9d:37:8e: 51:b1:f7:e3:7e:6c:1b:11:a8:d0:80:d1:3a:04:44: 6c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FA:3E:D2:ED:8D:16:C7:B3:BC:4D:7D:B1:DE:93:14:2F:FE:2B:3D X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.213.0/24 Signature Algorithm: sha256WithRSAEncryption 57:9a:c0:21:8a:b8:10:05:60:64:fb:03:ef:bf:0c:ec:ec:a4: c2:66:34:ec:14:01:ae:55:00:2b:c1:9c:f2:f7:a5:e6:4b:1d: fc:7b:d4:2b:71:0b:ca:d7:e9:cb:7c:a8:6e:1d:d2:04:96:91: 94:ea:5c:f8:f1:5c:20:32:b5:9d:ff:a3:6c:d6:4b:c3:69:57: 50:35:9f:c1:68:2e:bb:84:d1:01:e9:c5:c9:03:50:55:55:7b: 01:56:db:69:16:64:69:31:51:35:f6:8d:2c:11:4d:22:e7:2b: 96:81:5d:2c:ab:23:03:01:97:b9:ee:6a:69:77:8f:a2:23:7c: 67:8b:12:f7:7d:35:fc:64:0c:5c:73:cf:80:19:34:5d:9b:cc: 0b:fe:2b:f1:21:09:2c:8f:aa:da:4c:c1:93:96:22:fd:c4:cc: a7:20:22:3e:8f:21:dc:db:22:7f:8c:c9:37:f4:38:43:b2:6c: d0:fe:3a:3f:07:75:31:1a:09:2f:80:fc:9d:97:51:aa:09:12: b8:b1:17:5f:ec:93:d5:2e:1e:03:b2:49:34:2a:58:5a:bc:8d: ce:95:43:26:88:ca:3c:d7:3d:68:66:7e:39:72:94:2d:12:10: c6:ef:a4:6e:cc:ee:39:17:50:69:7c:e9:4d:ae:53:87:2f:44: 13:38:1d:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcLQIPNLb/l8aVbWrAgL8LfSt3IQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyNDFaFw0yNzA1MDIwMjM3NDFaMDMxMTAvBgNV BAMTKEEwRkEzRUQyRUQ4RDE2QzdCM0JDNEQ3REIxREU5MzE0MkZGRTJCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWaty+ZRkdU4DIKfWkbjno86F7 TLVVIEUloABm0dKYBwyjzAiyRpust6+o97SdQ2kgu0DKU1y56Ft5evSBnM3c8QYF HVnBBONb+/F39eMLAB1mzXIkkrPtwl+tjUaCGxW4evgcXdBPoJ0LMRf7yXStlA6F +YbnBXYF9fUgmRQgTyo6tH1aZgBrqisYu7dW+fZ8h7Qu01XZkEwr75F466ikicYK Ue+PzVeSI0biqOIzqE+KBKz+jOPQBRi3OjvaKJ1VvZx/bCAHXXR5rov3MtHHagsK mPowt67EeB6beDeftpRWgMO+KKwPo/Tlgp03jlGx9+N+bBsRqNCA0ToERGw/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoPo+0u2NFsezvE19sd6TFC/+Kz0wHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51TANBgkqhkiG 9w0BAQsFAAOCAQEAV5rAIYq4EAVgZPsD778M7OykwmY07BQBrlUAK8Gc8vel5ksd /HvUK3ELytfpy3yobh3SBJaRlOpc+PFcIDK1nf+jbNZLw2lXUDWfwWguu4TRAenF yQNQVVV7AVbbaRZkaTFRNfaNLBFNIucrloFdLKsjAwGXue5qaXePoiN8Z4sS9301 /GQMXHPPgBk0XZvMC/4r8SEJLI+q2kzBk5Yi/cTMpyAiPo8h3Nsif4zJN/Q4Q7Js 0P46Pwd1MRoJL4D8nZdRqgkSuLEXX+yT1S4eA7JJNCpYWryNzpVDJojKPNc9aGZ+ OXKULRIQxu+kbszuORdQaXzpTa5Thy9EEzgdPw== -----END CERTIFICATE-----Generated at Wed May 13 14:11:24 2026 by rpki-client