$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa File: 34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa (raw, json) Hash identifier: MTpdy0CYG7SIZe6cOf6a6b9EOLMRkXO/tTUBIEJ2xwQ= Subject key identifier: DA:7C:F8:A0:4D:59:CA:33:D6:D5:1C:96:AB:35:89:62:CF:3C:60:F7 Certificate issuer: /CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Certificate serial: 2245C8E2500609055EB2C8C8CF55474AAAE52583 Authority key identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa Signing time: Sun 03 May 2026 03:10:53 +0000 ROA not before: Sun 03 May 2026 03:05:53 +0000 ROA not after: Sun 02 May 2027 03:10:53 +0000 asID: 152027 IP address blocks: 45.249.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:45:c8:e2:50:06:09:05:5e:b2:c8:c8:cf:55:47:4a:aa:e5:25:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Validity Not Before: May 3 03:05:53 2026 GMT Not After : May 2 03:10:53 2027 GMT Subject: CN=DA7CF8A04D59CA33D6D51C96AB358962CF3C60F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6b:e0:a1:08:eb:ea:20:c5:07:43:85:ba:15: 41:7f:7f:df:6c:d5:46:ad:4c:37:3f:66:87:b3:f3: 8e:9c:2f:90:9c:37:2f:9d:16:90:c5:3e:a3:1c:c8: 37:a9:01:e5:d5:56:aa:56:ae:5b:0d:73:89:fd:11: 16:08:c2:2e:a9:ad:46:32:59:ae:cb:df:58:66:c8: cb:9b:07:67:07:65:07:34:c5:8c:66:ee:d6:ec:09: 3e:7a:60:34:ee:91:c8:7d:23:d5:32:15:bb:6c:7a: 56:db:cd:1b:d2:28:d0:07:b2:3c:97:3c:89:e9:4c: 44:7b:31:d7:4a:74:a2:26:69:97:69:ed:d9:77:5d: ec:b3:23:9f:cc:a1:e1:af:b4:1e:17:9f:0e:18:84: 81:86:36:23:9d:05:e9:f4:be:e3:4c:1d:b6:93:22: de:1f:cc:ec:37:98:5f:ed:0c:55:a0:49:46:79:f7: f4:d0:cb:0b:1d:99:7b:46:79:39:4c:fd:1c:2e:a0: a9:dd:3a:14:5f:c1:f2:8a:bb:3a:95:6a:c2:4f:6e: 20:d3:6a:d0:1e:91:74:45:f4:27:9b:8e:ca:44:11: 9f:f1:6c:f5:e8:3b:4f:46:d7:5b:16:84:25:18:0d: 75:22:8a:36:47:37:21:36:08:a7:4c:07:c8:e4:c9: 13:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7C:F8:A0:4D:59:CA:33:D6:D5:1C:96:AB:35:89:62:CF:3C:60:F7 X509v3 Authority Key Identifier: keyid:22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.225.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:2c:05:7b:3d:dd:74:6d:39:db:88:a4:e2:e1:ad:87:bc:c8: 5f:4c:52:a4:71:94:48:cb:f1:5f:b1:be:07:0e:43:2c:4b:43: 41:6c:09:69:af:4d:52:4a:98:59:c9:2c:a7:9f:e6:62:b6:71: ce:22:91:3a:75:46:d2:cf:24:69:d2:61:78:ae:23:12:59:d1: 1e:35:fd:73:08:9d:b8:b4:37:86:99:2d:7a:1c:f2:a9:85:94: bf:3d:99:39:4c:91:15:03:c3:e0:1f:40:1e:de:7b:e4:fa:39: 53:e0:58:87:65:ad:d6:58:a1:a2:54:bf:8e:87:41:d0:15:7d: 2d:94:15:6f:df:14:7e:f2:6b:b9:6b:36:28:16:35:a8:52:a7: e9:df:94:fa:fb:32:38:81:c3:13:96:be:7c:79:46:7a:70:e0: a4:13:ea:e5:31:0f:5d:66:c2:16:6b:c2:f5:dc:93:da:64:e2: 23:4b:94:ba:37:85:9f:5b:0f:65:44:66:a9:14:24:fb:da:54: 0d:15:61:49:6f:c9:9b:12:de:e6:56:a3:a9:50:27:93:16:c7: 6f:1a:db:3d:96:0b:cc:f1:91:6c:2e:d8:cf:d0:88:d2:ef:8d: 95:a1:50:90:d0:0e:80:64:68:f7:ee:d3:cd:20:c0:27:57:96: 03:2f:dd:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIkXI4lAGCQVessjIz1VHSqrlJYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYx NzExMzZCNTAeFw0yNjA1MDMwMzA1NTNaFw0yNzA1MDIwMzEwNTNaMDMxMTAvBgNV BAMTKERBN0NGOEEwNEQ1OUNBMzNENkQ1MUM5NkFCMzU4OTYyQ0YzQzYwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCna+ChCOvqIMUHQ4W6FUF/f99s 1UatTDc/Zoez846cL5CcNy+dFpDFPqMcyDepAeXVVqpWrlsNc4n9ERYIwi6prUYy Wa7L31hmyMubB2cHZQc0xYxm7tbsCT56YDTukch9I9UyFbtselbbzRvSKNAHsjyX PInpTER7MddKdKImaZdp7dl3XeyzI5/MoeGvtB4Xnw4YhIGGNiOdBen0vuNMHbaT It4fzOw3mF/tDFWgSUZ59/TQywsdmXtGeTlM/RwuoKndOhRfwfKKuzqVasJPbiDT atAekXRF9CebjspEEZ/xbPXoO09G11sWhCUYDXUiijZHNyE2CKdMB8jkyRMDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2nz4oE1ZyjPW1RyWqzWJYs88YPcwHwYDVR0j BBgwFoAUIo2Nk3u8WLGGFjzk3QMz7xcRNrUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDliODk5YWMtNDg3MC00ZTI4LThlNGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3 QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYxNzExMzZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMjhEOEQ5MzdCQkM1OEIxODYxNjNDRTRERDAzMzNFRjE3MTEz NkI1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALfnhMA0GCSqG SIb3DQEBCwUAA4IBAQB6LAV7Pd10bTnbiKTi4a2HvMhfTFKkcZRIy/Ffsb4HDkMs S0NBbAlpr01SSphZySynn+ZitnHOIpE6dUbSzyRp0mF4riMSWdEeNf1zCJ24tDeG mS16HPKphZS/PZk5TJEVA8PgH0Ae3nvk+jlT4FiHZa3WWKGiVL+Oh0HQFX0tlBVv 3xR+8mu5azYoFjWoUqfp35T6+zI4gcMTlr58eUZ6cOCkE+rlMQ9dZsIWa8L13JPa ZOIjS5S6N4WfWw9lRGapFCT72lQNFWFJb8mbEt7mVqOpUCeTFsdvGts9lgvM8ZFs LtjP0IjS742VoVCQ0A6AZGj37tPNIMAnV5YDL90+ -----END CERTIFICATE-----Generated at Wed May 13 03:23:11 2026 by rpki-client