$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3231392e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: SZ3yY2r9mzkD9TfHT8RxuOv5AwUhsGvKGPEF8U53ZKI= Subject key identifier: 88:13:3A:D4:F3:BC:AD:6E:C1:9F:0D:F4:02:ED:35:AB:A7:14:3E:5F Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 177D19A7F60BD3A862F7FA436887FA3D35007D56 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:42 +0000 ROA not before: Sun 03 May 2026 02:32:42 +0000 ROA not after: Sun 02 May 2027 02:37:42 +0000 asID: 38142 IP address blocks: 210.57.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7d:19:a7:f6:0b:d3:a8:62:f7:fa:43:68:87:fa:3d:35:00:7d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:42 2026 GMT Not After : May 2 02:37:42 2027 GMT Subject: CN=88133AD4F3BCAD6EC19F0DF402ED35ABA7143E5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c7:d5:48:49:4d:c8:06:68:ff:d7:8b:b4:8e: ce:bd:c2:36:2d:c8:86:a3:97:2a:4f:a4:c7:bf:3f: dd:be:5d:9f:6f:24:c6:ce:e3:5a:5c:47:bd:e5:69: 85:a9:da:a7:43:77:b3:79:be:75:ce:4e:f2:5b:49: ee:ec:e1:fb:0d:ef:f3:84:ee:d4:77:c8:23:6d:7c: df:2b:33:be:84:16:14:a1:76:9e:fe:c7:8f:c2:c3: 2e:7f:c8:22:ae:bd:8b:40:96:10:d4:ad:a1:80:e5: fc:c9:f5:96:d5:9b:0b:e9:2f:96:5a:82:78:21:45: 4b:82:53:ce:1e:84:86:d9:87:ad:0a:ec:0e:32:43: ed:dc:f3:dc:0f:3e:51:25:db:ac:e3:aa:b0:8c:9e: c8:4f:7d:26:1c:a5:ee:52:fc:98:ad:d2:f3:8b:ac: b5:a1:84:2e:cc:ab:21:07:2d:53:b2:2e:5f:f8:4c: 0c:f1:07:06:cb:09:2e:5f:61:5d:b3:e9:c3:ea:1d: 18:5d:9b:d2:4c:12:2e:30:fb:7e:8a:e9:27:ac:1d: 1e:52:6d:fa:a5:f4:b6:d1:05:60:f4:6e:f4:69:84: 9a:e0:17:2a:26:7d:05:c6:a6:cd:9e:44:b6:74:06: 18:1c:ff:5f:e8:4f:4f:af:59:a3:65:07:5e:72:aa: 9d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:13:3A:D4:F3:BC:AD:6E:C1:9F:0D:F4:02:ED:35:AB:A7:14:3E:5F X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231392e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.219.0/24 Signature Algorithm: sha256WithRSAEncryption 23:45:ba:7c:78:7c:6e:66:30:35:32:95:95:b3:8d:7a:33:90: f9:ff:8b:d0:1a:41:2f:0b:96:c8:49:22:87:10:33:97:09:9e: b5:88:1b:e3:d1:1a:04:fc:eb:21:94:9d:71:c9:2b:f6:81:a6: 00:0a:1f:ff:42:45:a6:83:c6:64:7c:d7:a9:02:4e:59:df:aa: fb:88:71:42:9b:59:93:d6:c5:26:b4:54:b5:cf:f0:73:26:59: 7c:04:5f:6c:ee:6d:6e:24:88:90:a1:b4:74:42:8b:46:a8:3d: 9c:08:12:56:4a:a0:c9:03:2c:e9:86:6b:79:75:3f:4d:e3:84: 4d:d5:9b:c9:d4:1e:53:e4:07:2c:aa:31:7d:c1:6e:23:43:60: 30:55:e3:ad:f8:ef:c2:ed:1a:bf:48:9e:6b:b0:ee:7f:2c:85: 62:fe:6f:be:f8:e9:7e:a2:f1:a6:9e:1c:70:84:d1:9d:c0:8f: 92:f6:3f:ef:e4:e7:67:78:09:3a:6a:7f:67:1c:f3:9a:0e:e3: fe:05:06:8f:86:ef:c3:5c:16:1d:8b:e7:67:69:4a:4d:36:ee: 73:f4:7f:ab:92:7d:d6:b9:32:01:46:95:3b:ae:9c:c1:3c:35: f0:07:af:77:e2:f1:0c:09:b4:7f:31:ae:ec:0c:dd:ea:3a:a3: 60:5f:34:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF30Zp/YL06hi9/pDaIf6PTUAfVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyNDJaFw0yNzA1MDIwMjM3NDJaMDMxMTAvBgNV BAMTKDg4MTMzQUQ0RjNCQ0FENkVDMTlGMERGNDAyRUQzNUFCQTcxNDNFNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhx9VISU3IBmj/14u0js69wjYt yIajlypPpMe/P92+XZ9vJMbO41pcR73laYWp2qdDd7N5vnXOTvJbSe7s4fsN7/OE 7tR3yCNtfN8rM76EFhShdp7+x4/Cwy5/yCKuvYtAlhDUraGA5fzJ9ZbVmwvpL5Za gnghRUuCU84ehIbZh60K7A4yQ+3c89wPPlEl26zjqrCMnshPfSYcpe5S/Jit0vOL rLWhhC7MqyEHLVOyLl/4TAzxBwbLCS5fYV2z6cPqHRhdm9JMEi4w+36K6SesHR5S bfql9LbRBWD0bvRphJrgFyomfQXGps2eRLZ0Bhgc/1/oT0+vWaNlB15yqp3nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiBM61PO8rW7Bnw30Au01q6cUPl8wHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI52zANBgkqhkiG 9w0BAQsFAAOCAQEAI0W6fHh8bmYwNTKVlbONejOQ+f+L0BpBLwuWyEkihxAzlwme tYgb49EaBPzrIZSdcckr9oGmAAof/0JFpoPGZHzXqQJOWd+q+4hxQptZk9bFJrRU tc/wcyZZfARfbO5tbiSIkKG0dEKLRqg9nAgSVkqgyQMs6YZreXU/TeOETdWbydQe U+QHLKoxfcFuI0NgMFXjrfjvwu0av0iea7DufyyFYv5vvvjpfqLxpp4ccITRncCP kvY/7+TnZ3gJOmp/Zxzzmg7j/gUGj4bvw1wWHYvnZ2lKTTbuc/R/q5J91rkyAUaV O66cwTw18Aevd+LxDAm0fzGu7Azd6jqjYF80+w== -----END CERTIFICATE-----Generated at Wed May 13 14:03:26 2026 by rpki-client