$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: PuAy14t8vExP38Vfd8vx014uHPPwfplCOy+kjuN4ekU= Subject key identifier: DF:F0:D6:C6:41:94:7C:A8:DB:80:64:E6:77:FC:12:E6:26:B4:55:03 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 6AA4723F84008573B0D38964DBE43586819BBDEE Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232352e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:23 +0000 ROA not before: Sun 03 May 2026 02:22:23 +0000 ROA not after: Sun 02 May 2027 02:27:23 +0000 asID: 63859 IP address blocks: 66.96.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:a4:72:3f:84:00:85:73:b0:d3:89:64:db:e4:35:86:81:9b:bd:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:23 2026 GMT Not After : May 2 02:27:23 2027 GMT Subject: CN=DFF0D6C641947CA8DB8064E677FC12E626B45503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4d:e6:c7:b8:bb:77:d7:12:cd:37:d4:b7:eb: 69:22:a1:d5:17:d4:7a:2b:31:dd:ad:11:d7:6b:91: 17:e8:20:ae:8c:fa:c1:c0:e5:89:9c:19:5d:4b:58: cb:8e:73:a7:8d:d0:2f:71:70:3b:8e:15:80:32:d9: 10:9d:8a:ad:f9:db:5c:7b:d4:f4:ac:5d:cb:3e:7f: 26:e5:d9:4d:33:8a:5b:25:73:b8:de:f3:98:c8:b9: e4:62:ae:88:32:54:a1:2f:72:82:89:49:66:b1:ce: df:bc:e5:9d:84:9d:07:74:0b:2b:da:82:6e:e1:4f: ec:d2:cb:96:bf:0a:f7:2b:8d:5f:9a:ba:4d:25:9c: 26:38:9f:61:98:56:ff:07:fb:f8:f9:76:eb:e0:2d: 6e:f6:67:b4:7d:c4:5f:bc:8d:76:6d:97:d5:14:8e: 19:40:64:39:b9:76:be:48:c2:e6:c1:5a:5e:fd:76: 08:45:d5:4f:81:bd:28:b2:3c:3a:47:56:50:62:cc: 1e:f5:e9:7e:23:1a:d1:05:78:67:05:7c:41:46:24: 93:36:34:29:dd:f8:f6:ce:a2:b0:1c:39:17:2d:f2: 90:95:2d:5d:e5:b4:0e:7b:f6:d9:ef:25:18:90:76: 0d:38:0c:af:58:42:eb:d9:86:52:6b:ce:2a:a5:70: a1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F0:D6:C6:41:94:7C:A8:DB:80:64:E6:77:FC:12:E6:26:B4:55:03 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/36362e39362e3232352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.225.0/24 Signature Algorithm: sha256WithRSAEncryption 02:88:89:79:17:fd:3a:13:22:5b:95:e7:79:ea:d2:48:e6:39: 2f:63:89:36:c3:98:5d:ac:d7:70:ba:99:30:c3:d9:79:ca:bd: c0:bf:e1:3a:7d:a5:28:25:98:31:47:bf:f0:bd:b3:03:13:c5: 10:93:59:17:a2:33:4e:81:01:22:f5:e1:2c:70:c0:be:32:a7: 06:05:b4:62:57:d3:db:32:c4:e7:69:cb:ea:ad:c4:f0:02:93: d2:1a:1f:bb:75:af:19:3e:7d:4e:99:b1:89:f6:d4:67:b2:5c: c2:6b:3d:c0:30:23:73:54:5c:b4:c1:a6:1e:75:ed:3d:ba:70: b8:13:09:14:06:8b:2c:5c:ae:b0:ec:a9:0b:02:9e:af:84:4e: d1:80:7d:28:fa:4e:bd:96:4b:4f:8a:2c:65:1f:c0:9d:6c:4d: d6:19:c4:7e:ca:d3:cd:14:97:43:c4:f2:28:61:37:40:fc:b9: 0a:16:78:00:f6:90:6e:ea:5f:28:6b:da:87:36:dc:77:d3:46: d5:74:24:77:14:fa:c1:38:a3:e3:2d:4a:62:7d:1c:36:f6:17: 9e:4a:ea:8d:68:be:ab:c3:9f:9e:7c:81:04:6b:98:32:b4:b9: ef:a1:eb:cf:df:e3:a1:28:df:9f:d8:15:25:1e:86:28:e0:4d: 68:78:e0:59 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaqRyP4QAhXOw04lk2+Q1hoGbve4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjNaFw0yNzA1MDIwMjI3MjNaMDMxMTAvBgNV BAMTKERGRjBENkM2NDE5NDdDQThEQjgwNjRFNjc3RkMxMkU2MjZCNDU1MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTebHuLt31xLNN9S362kiodUX 1HorMd2tEddrkRfoIK6M+sHA5YmcGV1LWMuOc6eN0C9xcDuOFYAy2RCdiq3521x7 1PSsXcs+fybl2U0zilslc7je85jIueRirogyVKEvcoKJSWaxzt+85Z2EnQd0Cyva gm7hT+zSy5a/CvcrjV+auk0lnCY4n2GYVv8H+/j5duvgLW72Z7R9xF+8jXZtl9UU jhlAZDm5dr5IwubBWl79dghF1U+BvSiyPDpHVlBizB716X4jGtEFeGcFfEFGJJM2 NCnd+PbOorAcORct8pCVLV3ltA579tnvJRiQdg04DK9YQuvZhlJrziqlcKHPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3/DWxkGUfKjbgGTmd/wS5ia0VQMwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzM2MzYyZTM5MzYyZTMyMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOEwDQYJKoZIhvcN AQELBQADggEBAAKIiXkX/ToTIluV53nq0kjmOS9jiTbDmF2s13C6mTDD2XnKvcC/ 4Tp9pSglmDFHv/C9swMTxRCTWReiM06BASL14SxwwL4ypwYFtGJX09syxOdpy+qt xPACk9IaH7t1rxk+fU6ZsYn21GeyXMJrPcAwI3NUXLTBph517T26cLgTCRQGiyxc rrDsqQsCnq+ETtGAfSj6Tr2WS0+KLGUfwJ1sTdYZxH7K080Ul0PE8ihhN0D8uQoW eAD2kG7qXyhr2oc23HfTRtV0JHcU+sE4o+MtSmJ9HDb2F55K6o1ovqvDn558gQRr mDK0ue+h68/f46Eo35/YFSUehijgTWh44Fk= -----END CERTIFICATE-----Generated at Wed May 13 23:07:14 2026 by rpki-client