$ rpki-client -vvf rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232312e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: 8kncCReHuUftWwxEVQGeXIdZhJBx7PmiqOaqTEDqEqo= Subject key identifier: 93:9F:71:4D:ED:B3:9C:03:DC:E4:53:96:EA:61:EF:DD:FD:C8:4B:45 Certificate issuer: /CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Certificate serial: 28D13F30BCB279C9826ADD3B5C7E508128724188 Authority key identifier: 3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa Signing time: Sun 03 May 2026 02:37:36 +0000 ROA not before: Sun 03 May 2026 02:32:36 +0000 ROA not after: Sun 02 May 2027 02:37:36 +0000 asID: 38142 IP address blocks: 210.57.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d1:3f:30:bc:b2:79:c9:82:6a:dd:3b:5c:7e:50:81:28:72:41:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D090A1BCE9471798EE6D079EEC0726ECA9A0187 Validity Not Before: May 3 02:32:36 2026 GMT Not After : May 2 02:37:36 2027 GMT Subject: CN=939F714DEDB39C03DCE45396EA61EFDDFDC84B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:dd:33:b0:c5:ae:a1:73:c3:1d:49:0a:58: 12:35:23:e1:af:43:3d:74:f2:32:e9:cc:97:96:39: 1f:9c:d1:90:35:5a:f4:f9:97:50:a3:13:4c:fa:b5: 09:ca:79:80:99:ba:ad:17:d8:13:d0:c3:4f:c6:db: 7c:df:8d:28:f4:43:b8:8a:c1:33:7d:2e:13:64:c1: 4e:12:b3:82:c1:c9:96:eb:c7:b7:55:00:f7:a6:bb: 9a:bf:41:1c:76:d3:f6:b6:36:f4:13:7f:05:19:8e: 38:93:c0:eb:f5:5c:9a:59:c0:5f:84:6f:57:b7:23: 3d:4b:d5:09:bc:ea:40:f8:38:a1:ad:81:4b:a2:e1: 43:fa:68:df:02:98:66:a8:93:56:37:4f:23:27:76: e2:2e:c6:73:e6:38:b7:f6:30:57:06:eb:94:b1:b8: 09:21:94:37:17:7e:93:bf:71:78:3e:ac:a8:ad:9b: 59:60:90:da:0a:c5:68:e4:2d:bc:7b:35:2c:35:9c: cb:86:0d:61:36:28:59:46:c0:36:a1:d4:e6:f8:69: 72:a8:ed:03:60:e0:85:ab:92:95:96:ae:c1:7d:75: 9a:06:ee:e0:48:30:69:39:45:b2:57:60:7b:27:81: 02:62:af:f3:32:71:fc:9f:e2:56:f5:2e:f2:6f:0e: c1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9F:71:4D:ED:B3:9C:03:DC:E4:53:96:EA:61:EF:DD:FD:C8:4B:45 X509v3 Authority Key Identifier: keyid:3D:09:0A:1B:CE:94:71:79:8E:E6:D0:79:EE:C0:72:6E:CA:9A:01:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3D090A1BCE9471798EE6D079EEC0726ECA9A0187.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232312e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.221.0/24 Signature Algorithm: sha256WithRSAEncryption 82:d3:5d:77:20:b9:b7:4d:e7:b3:69:ba:f4:87:54:5b:45:e6: 0e:7b:2c:ec:61:d1:e3:26:b8:e5:dc:d2:c0:b9:11:f7:2f:87: 1d:6a:59:9e:28:99:ad:fc:23:33:39:37:70:70:c5:53:55:93: 43:7a:59:4e:8f:47:43:2a:60:6f:8e:c5:cd:11:ed:95:17:13: ab:9a:06:92:79:59:d3:b6:32:8a:9b:d5:59:f7:45:3c:01:fe: 95:11:a7:54:52:5b:af:7b:c6:fa:ae:09:e3:03:66:12:8f:04: 57:ba:52:03:42:50:5d:33:b3:e7:8c:56:8c:64:90:b0:c7:b9: c7:64:7c:70:43:a4:b0:6d:d9:af:ae:25:62:b3:1d:b5:ed:26: 66:14:02:cb:c9:49:1f:b1:02:d1:5c:10:28:9e:e1:0c:62:e6: 32:6a:a6:3d:13:a3:03:97:f8:dc:f1:33:d3:fb:d6:d8:c5:47: 01:5b:62:56:c8:96:4a:38:74:8f:c5:fd:e7:67:ef:42:cf:85: 63:9d:57:6a:f0:2f:20:a3:e9:48:fd:95:e3:4f:6b:9e:96:38: 97:01:3b:a6:5b:34:b3:d5:16:d6:fd:21:9e:58:5f:71:0f:61: a8:96:08:31:c6:0b:f6:24:2e:d9:f6:d3:7e:53:36:e0:c2:5e: eb:7d:32:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKNE/MLyyecmCat07XH5QgShyQYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwOTBBMUJDRTk0NzE3OThFRTZEMDc5RUVDMDcyNkVD QTlBMDE4NzAeFw0yNjA1MDMwMjMyMzZaFw0yNzA1MDIwMjM3MzZaMDMxMTAvBgNV BAMTKDkzOUY3MTRERURCMzlDMDNEQ0U0NTM5NkVBNjFFRkRERkRDODRCNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq/90zsMWuoXPDHUkKWBI1I+Gv Qz108jLpzJeWOR+c0ZA1WvT5l1CjE0z6tQnKeYCZuq0X2BPQw0/G23zfjSj0Q7iK wTN9LhNkwU4Ss4LByZbrx7dVAPemu5q/QRx20/a2NvQTfwUZjjiTwOv1XJpZwF+E b1e3Iz1L1Qm86kD4OKGtgUui4UP6aN8CmGaok1Y3TyMnduIuxnPmOLf2MFcG65Sx uAkhlDcXfpO/cXg+rKitm1lgkNoKxWjkLbx7NSw1nMuGDWE2KFlGwDah1Ob4aXKo 7QNg4IWrkpWWrsF9dZoG7uBIMGk5RbJXYHsngQJir/Mycfyf4lb1LvJvDsH1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk59xTe2znAPc5FOW6mHv3f3IS0UwHwYDVR0j BBgwFoAUPQkKG86UcXmO5tB57sBybsqaAYcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA4YjI5NTktMWMyNS00NmEwLTg5ZDEtZjc3ZDVjNDc0NjkxLzAvM0QwOTBBMUJD RTk0NzE3OThFRTZEMDc5RUVDMDcyNkVDQTlBMDE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRDA5MEExQkNFOTQ3MTc5OEVFNkQwNzlFRUMwNzI2RUNBOUEw MTg3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53TANBgkqhkiG 9w0BAQsFAAOCAQEAgtNddyC5t03ns2m69IdUW0XmDnss7GHR4ya45dzSwLkR9y+H HWpZniiZrfwjMzk3cHDFU1WTQ3pZTo9HQypgb47FzRHtlRcTq5oGknlZ07YyipvV WfdFPAH+lRGnVFJbr3vG+q4J4wNmEo8EV7pSA0JQXTOz54xWjGSQsMe5x2R8cEOk sG3Zr64lYrMdte0mZhQCy8lJH7EC0VwQKJ7hDGLmMmqmPROjA5f43PEz0/vW2MVH AVtiVsiWSjh0j8X952fvQs+FY51XavAvIKPpSP2V409rnpY4lwE7pls0s9UW1v0h nlhfcQ9hqJYIMcYL9iQu2fbTflM24MJe630yyg== -----END CERTIFICATE-----Generated at Wed May 13 14:03:28 2026 by rpki-client