$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231352e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: ZJYJND6cBL2XfAoUPgiKsDkKfS/wfCExUcg8XPfgBm0= Subject key identifier: CB:D8:5D:EE:AA:89:76:2E:69:CB:D8:4A:15:0E:F5:34:3E:3A:09:91 Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 5F9FC7121475FB9BD0E651835BEE02BA6E0B9387 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:42 +0000 ROA not before: Sun 03 May 2026 02:32:42 +0000 ROA not after: Sun 02 May 2027 02:37:42 +0000 asID: 38142 IP address blocks: 210.57.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:9f:c7:12:14:75:fb:9b:d0:e6:51:83:5b:ee:02:ba:6e:0b:93:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:42 2026 GMT Not After : May 2 02:37:42 2027 GMT Subject: CN=CBD85DEEAA89762E69CBD84A150EF5343E3A0991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ae:10:d1:92:e2:08:56:81:8b:1a:82:f6:68: 12:ad:e0:b8:0f:cb:36:06:cb:6b:86:a4:5c:8a:dd: 0a:be:83:bb:d8:4d:8a:11:98:8f:dc:b4:d1:1e:ca: 84:79:8e:46:e9:62:12:8b:aa:e1:bc:11:4e:ca:43: 38:e2:26:10:a7:97:9f:f5:3f:87:5b:db:8c:b2:72: 9e:d4:3f:78:88:62:03:93:60:73:e6:e8:18:d9:33: e8:87:4f:71:a0:3b:18:12:8c:df:37:e5:7b:7a:cf: 9c:17:82:1a:86:66:6e:a9:e5:70:fb:e5:be:dd:0b: b0:78:53:c4:2c:0b:1a:87:11:d0:58:61:06:9f:a5: 45:b1:5a:07:27:92:5a:a4:0d:22:eb:2b:d3:ed:1e: 38:62:43:75:a5:9b:de:cb:2b:b8:5f:cb:a5:16:ec: 8e:2b:41:7f:0b:82:4b:68:56:d1:8d:e2:25:04:97: 69:9d:43:5d:9b:5b:b6:7a:fb:05:16:d1:81:41:28: 5a:78:78:9b:69:f4:73:be:a8:e4:80:f9:bb:64:87: 6a:2f:cf:7d:be:69:eb:b4:ed:31:29:57:0f:82:53: 71:72:c8:c8:e1:99:3b:c7:ad:02:ac:e9:e4:7e:a4: 12:e9:80:80:d4:c4:54:c0:d9:d3:cc:ab:16:94:fd: 68:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D8:5D:EE:AA:89:76:2E:69:CB:D8:4A:15:0E:F5:34:3E:3A:09:91 X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231352e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.215.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:ad:e4:da:93:d3:fe:41:29:46:03:55:63:dd:36:dd:09:b2: 8a:63:74:1f:c4:d4:a4:8e:c7:f8:49:63:21:4e:39:77:67:e3: 3b:41:d3:20:a2:28:71:60:ea:4a:47:ec:a7:ba:b3:f6:ed:34: 69:7c:88:f3:04:51:80:b6:3a:83:42:90:aa:80:21:6f:91:61: 89:62:b2:4a:db:39:dd:81:02:31:38:db:54:cd:3f:08:fa:4e: 04:d7:55:76:e1:aa:eb:02:d3:71:db:04:8e:62:e6:bd:ea:e2: fd:5c:85:a2:e8:5c:62:a9:57:ce:01:2e:3f:f1:0a:5d:cd:9e: 42:e3:18:f6:26:87:ed:31:d5:82:72:a1:2d:eb:a9:45:27:46: d9:90:40:f2:77:8e:4b:16:e1:68:16:6e:31:56:20:24:6d:11: 21:1b:21:26:a1:65:17:1b:70:8b:77:d8:c8:bb:f7:89:7b:1b: 71:af:e0:c5:a1:88:07:58:77:7c:18:15:9a:f9:f6:94:0a:62: 35:15:7b:b1:09:e6:1a:14:0b:62:ca:eb:23:c4:44:49:d7:59: c2:9a:00:c3:d3:34:46:c9:1c:37:4c:b3:23:46:5f:62:b8:49: 91:97:ed:29:16:f1:e2:10:80:62:6c:47:82:14:8e:b3:2d:72: d2:5e:45:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX5/HEhR1+5vQ5lGDW+4Cum4Lk4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyNDJaFw0yNzA1MDIwMjM3NDJaMDMxMTAvBgNV BAMTKENCRDg1REVFQUE4OTc2MkU2OUNCRDg0QTE1MEVGNTM0M0UzQTA5OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfrhDRkuIIVoGLGoL2aBKt4LgP yzYGy2uGpFyK3Qq+g7vYTYoRmI/ctNEeyoR5jkbpYhKLquG8EU7KQzjiJhCnl5/1 P4db24yycp7UP3iIYgOTYHPm6BjZM+iHT3GgOxgSjN835Xt6z5wXghqGZm6p5XD7 5b7dC7B4U8QsCxqHEdBYYQafpUWxWgcnklqkDSLrK9PtHjhiQ3Wlm97LK7hfy6UW 7I4rQX8LgktoVtGN4iUEl2mdQ12bW7Z6+wUW0YFBKFp4eJtp9HO+qOSA+btkh2ov z32+aeu07TEpVw+CU3FyyMjhmTvHrQKs6eR+pBLpgIDUxFTA2dPMqxaU/WirAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy9hd7qqJdi5py9hKFQ71ND46CZEwHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI51zANBgkqhkiG 9w0BAQsFAAOCAQEAaq3k2pPT/kEpRgNVY9023QmyimN0H8TUpI7H+EljIU45d2fj O0HTIKIocWDqSkfsp7qz9u00aXyI8wRRgLY6g0KQqoAhb5FhiWKySts53YECMTjb VM0/CPpOBNdVduGq6wLTcdsEjmLmveri/VyFouhcYqlXzgEuP/EKXc2eQuMY9iaH 7THVgnKhLeupRSdG2ZBA8neOSxbhaBZuMVYgJG0RIRshJqFlFxtwi3fYyLv3iXsb ca/gxaGIB1h3fBgVmvn2lApiNRV7sQnmGhQLYsrrI8RESddZwpoAw9M0RskcN0yz I0ZfYrhJkZftKRbx4hCAYmxHghSOsy1y0l5FZw== -----END CERTIFICATE-----Generated at Wed May 13 14:33:31 2026 by rpki-client