$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa File: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (raw, json) Hash identifier: Dk+nSXFZDNacuokslAhQOKnR2rRHLun2ihG3BWOPCgU= Subject key identifier: 01:31:1C:55:A2:8B:FA:65:E0:AA:24:31:71:32:56:0F:9A:90:A3:77 Certificate issuer: /CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Certificate serial: 4293F1BB653D0C5B3E67B04AEE7B93575894A630 Authority key identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa Signing time: Sun 03 May 2026 03:10:53 +0000 ROA not before: Sun 03 May 2026 03:05:53 +0000 ROA not after: Sun 02 May 2027 03:10:53 +0000 asID: 152027 IP address blocks: 45.249.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:93:f1:bb:65:3d:0c:5b:3e:67:b0:4a:ee:7b:93:57:58:94:a6:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Validity Not Before: May 3 03:05:53 2026 GMT Not After : May 2 03:10:53 2027 GMT Subject: CN=01311C55A28BFA65E0AA24317132560F9A90A377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f8:8d:f9:9c:ad:6d:93:6e:ae:fc:65:f2:a7: 2f:b1:08:2b:47:04:39:aa:5e:a7:27:58:f9:4d:aa: 04:45:91:b7:ab:09:8a:dd:51:54:a2:03:c9:74:22: 73:59:df:d5:2c:be:86:05:5c:6f:37:a6:39:9a:5a: a2:4d:d9:e0:dd:bd:24:b1:17:dc:ca:04:2b:ab:33: 57:01:82:33:cc:de:a8:d4:46:80:bb:7c:d7:f4:bd: 53:1d:4c:38:a5:b9:83:eb:1d:fe:d1:40:7a:f8:09: 0f:cd:72:32:4d:3d:b8:1d:68:75:ff:37:12:82:09: eb:04:59:1a:e9:9f:d5:d6:bc:0f:32:f1:10:d6:8f: 9a:4d:75:2d:24:c5:18:ff:a5:90:7b:46:1a:3f:b8: 2a:fd:a2:cd:fc:06:0d:52:68:46:4a:85:b1:57:2d: f7:16:64:1e:4f:20:03:08:1e:be:56:3d:cd:93:e0: 24:92:70:63:41:0a:2c:47:e1:33:f8:c5:0a:52:5a: e6:52:6b:2f:ab:9a:38:da:0e:85:3d:fc:5b:0f:78: b2:87:14:be:09:b7:bf:2b:1e:57:97:cb:cb:bc:f5: 46:8d:8a:6f:b6:a7:64:f1:7c:c8:0e:58:c3:c3:1f: 55:32:b3:81:3c:88:43:75:80:43:9d:a0:9a:4c:e1: 75:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:31:1C:55:A2:8B:FA:65:E0:AA:24:31:71:32:56:0F:9A:90:A3:77 X509v3 Authority Key Identifier: keyid:22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:06:ce:ef:26:3f:9e:8a:f6:e4:f0:66:b6:c0:09:da:d6:17: d3:74:0d:89:0e:f5:76:ec:28:50:80:04:ea:2e:7b:cb:17:ae: 44:1f:f8:29:b2:69:bd:d3:db:cb:fd:90:bf:26:2a:29:fb:79: a1:5d:50:d0:07:69:16:0e:85:d3:79:df:ba:f4:18:16:4c:1f: 56:77:39:79:b6:f4:ce:a7:c0:50:eb:8d:5b:d5:d0:20:92:69: 17:6f:03:b6:e7:3f:97:b5:f4:e3:74:2f:d6:b5:76:43:c5:0d: ef:81:82:7b:a5:78:7f:be:c8:de:e3:ba:8a:47:15:3e:19:73: a3:58:71:63:28:8b:2c:df:53:de:14:96:cf:b4:b5:19:b3:bf: 84:38:c2:96:f4:4f:ee:83:7b:f0:38:24:bb:27:2b:07:18:3e: 4e:34:18:32:e4:86:88:d4:48:ba:9a:f5:40:d6:2f:df:b0:4f: 90:b5:7f:e1:0a:d2:1f:81:25:a1:0e:73:21:d9:82:ca:a8:97: e2:ad:8a:77:d4:ba:7b:d8:29:69:d3:f2:a9:34:77:2d:c0:2a: c1:83:d2:9b:fb:7e:cf:ec:60:6b:60:6c:b1:45:f5:f1:6e:aa: 06:54:49:b6:7a:6a:2b:26:41:60:3c:c2:d4:44:20:3a:c9:53: 4a:bb:8b:04 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQpPxu2U9DFs+Z7BK7nuTV1iUpjAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYx NzExMzZCNTAeFw0yNjA1MDMwMzA1NTNaFw0yNzA1MDIwMzEwNTNaMDMxMTAvBgNV BAMTKDAxMzExQzU1QTI4QkZBNjVFMEFBMjQzMTcxMzI1NjBGOUE5MEEzNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY+I35nK1tk26u/GXypy+xCCtH BDmqXqcnWPlNqgRFkberCYrdUVSiA8l0InNZ39UsvoYFXG83pjmaWqJN2eDdvSSx F9zKBCurM1cBgjPM3qjURoC7fNf0vVMdTDiluYPrHf7RQHr4CQ/NcjJNPbgdaHX/ NxKCCesEWRrpn9XWvA8y8RDWj5pNdS0kxRj/pZB7Rho/uCr9os38Bg1SaEZKhbFX LfcWZB5PIAMIHr5WPc2T4CSScGNBCixH4TP4xQpSWuZSay+rmjjaDoU9/FsPeLKH FL4Jt78rHleXy8u89UaNim+2p2TxfMgOWMPDH1Uys4E8iEN1gEOdoJpM4XVDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUATEcVaKL+mXgqiQxcTJWD5qQo3cwHwYDVR0j BBgwFoAUIo2Nk3u8WLGGFjzk3QMz7xcRNrUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDliODk5YWMtNDg3MC00ZTI4LThlNGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3 QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYxNzExMzZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMjhEOEQ5MzdCQkM1OEIxODYxNjNDRTRERDAzMzNFRjE3MTEz NkI1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALfngMA0GCSqG SIb3DQEBCwUAA4IBAQAdBs7vJj+eivbk8Ga2wAna1hfTdA2JDvV27ChQgATqLnvL F65EH/gpsmm909vL/ZC/Jiop+3mhXVDQB2kWDoXTed+69BgWTB9Wdzl5tvTOp8BQ 641b1dAgkmkXbwO25z+XtfTjdC/WtXZDxQ3vgYJ7pXh/vsje47qKRxU+GXOjWHFj KIss31PeFJbPtLUZs7+EOMKW9E/ug3vwOCS7JysHGD5ONBgy5IaI1Ei6mvVA1i/f sE+QtX/hCtIfgSWhDnMh2YLKqJfirYp31Lp72Clp0/KpNHctwCrBg9Kb+37P7GBr YGyxRfXxbqoGVEm2emorJkFgPMLURCA6yVNKu4sE -----END CERTIFICATE-----Generated at Wed May 13 00:34:15 2026 by rpki-client