$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231362e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: Fncw6ejzrq4zIDml7sJv0ARYNNSdP3usP81sr9K6idM= Subject key identifier: 94:DA:A5:01:8B:3D:7C:06:06:25:50:F8:6D:CE:03:C2:66:ED:AE:00 Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 194E9BBCBB61589EEBB3E80F1D275E5408179D36 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:42 +0000 ROA not before: Sun 03 May 2026 02:32:42 +0000 ROA not after: Sun 02 May 2027 02:37:42 +0000 asID: 38142 IP address blocks: 210.57.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:4e:9b:bc:bb:61:58:9e:eb:b3:e8:0f:1d:27:5e:54:08:17:9d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:42 2026 GMT Not After : May 2 02:37:42 2027 GMT Subject: CN=94DAA5018B3D7C06062550F86DCE03C266EDAE00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ea:ba:be:31:f3:11:15:47:24:44:b1:13:86: b5:ab:d9:99:52:da:7b:83:0e:ae:5f:88:52:5d:71: e4:69:39:70:ed:cc:80:d9:5d:1e:fd:39:db:cf:5e: 7a:fe:9f:65:8d:86:59:c1:af:60:37:98:36:f7:19: ee:b7:72:cb:96:a5:50:b6:ee:d6:be:1a:e0:4d:af: 10:dc:0f:0e:42:87:a7:8a:46:67:71:26:ef:58:5f: bd:b3:f7:c1:73:e8:5e:10:3c:a8:7f:37:49:af:68: d2:a1:72:64:14:51:7f:a0:84:f4:a3:8f:ae:ba:10: f1:ef:aa:73:45:97:42:03:7e:ea:70:f5:15:63:26: 3e:8c:1b:a7:e9:4f:7e:72:66:12:9a:f3:9c:93:3a: a4:14:cd:83:29:55:30:e8:a7:85:cd:57:dc:e3:2d: c6:eb:9c:05:ce:96:d2:51:bb:a1:b4:d2:bd:c5:d5: 1a:c0:58:26:c2:42:43:6f:4c:8e:80:e3:eb:be:f6: 0e:f5:d1:7c:fa:89:72:2a:86:93:5f:95:4f:33:23: 82:5a:69:3b:e1:85:7c:b0:ce:a2:6d:e5:0b:c1:70: 3d:fc:4f:9e:f4:42:5b:e0:95:14:82:30:26:3f:3f: ce:93:5e:76:92:f3:c3:e7:2c:73:30:45:f5:3b:45: 06:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:DA:A5:01:8B:3D:7C:06:06:25:50:F8:6D:CE:03:C2:66:ED:AE:00 X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.216.0/24 Signature Algorithm: sha256WithRSAEncryption b1:04:1e:35:53:5d:c6:6c:53:af:98:aa:4b:bb:01:b8:db:70: f5:79:ec:80:dd:04:a6:61:44:37:53:2c:bf:c8:f5:f2:8a:a2: 20:59:29:b0:ee:73:46:f3:84:43:75:eb:b6:92:37:47:f5:77: 97:84:01:33:d4:f8:2c:a7:34:16:3b:60:24:ad:c7:18:64:29: 51:ae:46:2e:25:89:ad:45:b8:d7:0c:84:15:60:85:43:db:da: 31:6a:29:ff:32:30:0e:99:c2:1f:67:47:d9:e7:f4:65:3a:90: cd:5a:af:09:37:cc:2f:0d:d4:5e:74:14:33:db:37:bf:62:23: 9a:11:5d:67:ec:4c:2c:63:26:04:8e:0c:2c:f4:76:c4:65:dc: 51:f6:91:6e:34:2e:62:2d:2d:48:50:38:dd:1d:0b:6f:35:96: f2:21:39:98:6b:f6:1e:0d:91:3b:37:38:5f:6c:7e:32:71:18: 2b:16:3d:8f:71:fe:6d:28:fa:8b:e5:54:43:59:5f:df:eb:5a: 4f:83:92:55:86:bc:e0:b1:69:c1:b2:5e:5c:aa:8c:19:53:7e: 0a:77:13:74:c7:9e:f2:c9:69:3d:3b:41:cd:cf:22:bb:3e:e1: a1:41:b8:9c:7f:0e:5d:53:44:0f:5b:76:ae:04:87:b6:aa:c4: 1e:5c:c0:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGU6bvLthWJ7rs+gPHSdeVAgXnTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyNDJaFw0yNzA1MDIwMjM3NDJaMDMxMTAvBgNV BAMTKDk0REFBNTAxOEIzRDdDMDYwNjI1NTBGODZEQ0UwM0MyNjZFREFFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC96rq+MfMRFUckRLEThrWr2ZlS 2nuDDq5fiFJdceRpOXDtzIDZXR79OdvPXnr+n2WNhlnBr2A3mDb3Ge63csuWpVC2 7ta+GuBNrxDcDw5Ch6eKRmdxJu9YX72z98Fz6F4QPKh/N0mvaNKhcmQUUX+ghPSj j666EPHvqnNFl0IDfupw9RVjJj6MG6fpT35yZhKa85yTOqQUzYMpVTDop4XNV9zj LcbrnAXOltJRu6G00r3F1RrAWCbCQkNvTI6A4+u+9g710Xz6iXIqhpNflU8zI4Ja aTvhhXywzqJt5QvBcD38T570QlvglRSCMCY/P86TXnaS88PnLHMwRfU7RQavAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlNqlAYs9fAYGJVD4bc4DwmbtrgAwHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52DANBgkqhkiG 9w0BAQsFAAOCAQEAsQQeNVNdxmxTr5iqS7sBuNtw9XnsgN0EpmFEN1Msv8j18oqi IFkpsO5zRvOEQ3XrtpI3R/V3l4QBM9T4LKc0FjtgJK3HGGQpUa5GLiWJrUW41wyE FWCFQ9vaMWop/zIwDpnCH2dH2ef0ZTqQzVqvCTfMLw3UXnQUM9s3v2IjmhFdZ+xM LGMmBI4MLPR2xGXcUfaRbjQuYi0tSFA43R0LbzWW8iE5mGv2Hg2ROzc4X2x+MnEY KxY9j3H+bSj6i+VUQ1lf3+taT4OSVYa84LFpwbJeXKqMGVN+CncTdMee8slpPTtB zc8iuz7hoUG4nH8OXVNED1t2rgSHtqrEHlzA7Q== -----END CERTIFICATE-----Generated at Wed May 13 14:27:30 2026 by rpki-client