$ rpki-client -vvf rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/35382e36352e3234302e302f32312d3234203d3e203234353335.roa File: 35382e36352e3234302e302f32312d3234203d3e203234353335.roa (raw, json) Hash identifier: AwkHb7HGSUt+TaaLZZEdADtv/v78j6fMphbiNKpRchs= Subject key identifier: 77:1E:03:C7:60:F4:61:CA:2D:7A:C5:90:37:E3:D4:A1:78:EB:66:8B Certificate issuer: /CN=5FF85953C6850E359467A581C3FE1AC78E529F2F Certificate serial: 70E3664521929173DF94845DD2E7B92458A13059 Authority key identifier: 5F:F8:59:53:C6:85:0E:35:94:67:A5:81:C3:FE:1A:C7:8E:52:9F:2F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FF85953C6850E359467A581C3FE1AC78E529F2F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/35382e36352e3234302e302f32312d3234203d3e203234353335.roa Signing time: Sun 03 May 2026 02:23:07 +0000 ROA not before: Sun 03 May 2026 02:18:07 +0000 ROA not after: Sun 02 May 2027 02:23:07 +0000 asID: 24535 IP address blocks: 58.65.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/5FF85953C6850E359467A581C3FE1AC78E529F2F.crl rsync://rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/5FF85953C6850E359467A581C3FE1AC78E529F2F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FF85953C6850E359467A581C3FE1AC78E529F2F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 05:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e3:66:45:21:92:91:73:df:94:84:5d:d2:e7:b9:24:58:a1:30:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FF85953C6850E359467A581C3FE1AC78E529F2F Validity Not Before: May 3 02:18:07 2026 GMT Not After : May 2 02:23:07 2027 GMT Subject: CN=771E03C760F461CA2D7AC59037E3D4A178EB668B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:26:fe:45:b6:ea:e9:42:23:80:f7:c4:14:e0: 51:12:0e:e5:bb:3b:42:56:e5:5d:b3:5c:f3:e1:45: 4c:3f:b8:79:0f:53:95:76:fa:eb:cd:84:a4:17:e8: dc:26:50:91:3c:06:85:9b:00:cd:94:6a:30:90:83: 1a:df:7c:00:19:ea:2b:06:a3:eb:96:92:8d:98:11: c8:a6:ba:43:04:ab:e6:7a:f7:18:1b:36:f0:4b:f4: d9:97:95:ec:5b:a9:31:79:f6:3f:90:8c:26:fa:ba: 63:79:ce:2e:e1:fa:99:28:03:f0:2f:f3:ef:e7:58: 68:c2:cc:b9:82:6e:d5:43:fc:71:b9:02:83:7b:63: 6b:c7:04:cd:c1:ae:69:bc:e6:72:1e:71:21:f6:f0: 41:00:8e:f5:c9:c7:b1:76:79:91:42:59:d4:c4:f2: 0b:2b:66:39:83:33:ac:11:98:11:2e:1b:8a:95:ba: b6:75:ed:bc:70:37:cd:6e:5c:21:d2:88:ac:98:c5: d9:e7:14:23:e2:2f:ec:15:fa:2f:11:76:2c:55:e7: 10:4f:d3:14:f3:de:7e:de:8f:d4:99:90:6e:45:43: 44:2f:30:47:82:cf:ed:d8:ca:7c:c8:15:69:38:ff: 52:bb:05:ef:74:0b:79:af:9e:25:a0:8a:18:31:d1: b0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1E:03:C7:60:F4:61:CA:2D:7A:C5:90:37:E3:D4:A1:78:EB:66:8B X509v3 Authority Key Identifier: keyid:5F:F8:59:53:C6:85:0E:35:94:67:A5:81:C3:FE:1A:C7:8E:52:9F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/5FF85953C6850E359467A581C3FE1AC78E529F2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5FF85953C6850E359467A581C3FE1AC78E529F2F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/35382e36352e3234302e302f32312d3234203d3e203234353335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.65.240.0/21 Signature Algorithm: sha256WithRSAEncryption ab:a6:9d:ec:97:c8:8c:bd:79:f0:38:df:0f:b8:12:8d:49:5b: 2b:da:4e:26:02:c6:a4:6f:0d:19:a1:70:88:23:2c:16:c3:e0: 3a:5c:2a:8d:0c:b6:67:23:98:71:13:66:38:aa:f8:fc:c3:2a: 71:84:17:22:49:3c:28:d5:19:14:70:b2:34:47:e8:05:29:42: 59:5e:d4:52:c1:90:a4:a5:f0:63:70:73:75:e8:46:6e:22:5f: 7a:d1:61:0c:04:e2:9b:d7:d8:a1:8b:c5:15:89:58:b2:34:d3: b7:1f:04:87:b4:7b:46:17:7a:7e:55:64:34:aa:1c:22:3e:9d: 1a:d7:ed:bd:cb:41:5f:5a:ac:6b:db:aa:a8:e1:c6:07:35:57: d7:65:5a:c0:be:98:6d:0b:3c:fb:1d:7c:8f:84:46:38:da:2f: ba:ec:5b:32:c4:7d:fc:5a:ea:fe:ad:9e:82:c9:82:f7:01:2d: 63:b7:81:b9:fc:fd:77:cf:14:df:43:19:96:23:85:b8:d6:a7: a8:08:9b:56:c8:43:d8:7f:e0:bc:8e:55:cd:d7:3f:f7:3d:ed: e7:62:9f:c3:fc:5b:68:9b:cf:49:09:49:db:14:99:6e:b0:d7: 02:cc:fd:7c:1c:2b:ab:ab:90:07:82:cc:f1:46:56:96:7e:5e: 69:9c:11:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcONmRSGSkXPflIRd0ue5JFihMFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZGODU5NTNDNjg1MEUzNTk0NjdBNTgxQzNGRTFBQzc4 RTUyOUYyRjAeFw0yNjA1MDMwMjE4MDdaFw0yNzA1MDIwMjIzMDdaMDMxMTAvBgNV BAMTKDc3MUUwM0M3NjBGNDYxQ0EyRDdBQzU5MDM3RTNENEExNzhFQjY2OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXJv5FturpQiOA98QU4FESDuW7 O0JW5V2zXPPhRUw/uHkPU5V2+uvNhKQX6NwmUJE8BoWbAM2UajCQgxrffAAZ6isG o+uWko2YEcimukMEq+Z69xgbNvBL9NmXlexbqTF59j+QjCb6umN5zi7h+pkoA/Av 8+/nWGjCzLmCbtVD/HG5AoN7Y2vHBM3Brmm85nIecSH28EEAjvXJx7F2eZFCWdTE 8gsrZjmDM6wRmBEuG4qVurZ17bxwN81uXCHSiKyYxdnnFCPiL+wV+i8RdixV5xBP 0xTz3n7ej9SZkG5FQ0QvMEeCz+3YynzIFWk4/1K7Be90C3mvniWgihgx0bAnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdx4Dx2D0YcotesWQN+PUoXjrZoswHwYDVR0j BBgwFoAUX/hZU8aFDjWUZ6WBw/4ax45Sny8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmRkNDdmNTYtZWM1My00MmViLTliOGItZmEwOGY4NzRkMzE5LzAvNUZGODU5NTND Njg1MEUzNTk0NjdBNTgxQzNGRTFBQzc4RTUyOUYyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RkY4NTk1M0M2ODUwRTM1OTQ2N0E1ODFDM0ZFMUFDNzhFNTI5 RjJGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkZDQ3ZjU2LWVjNTMtNDJlYi05 YjhiLWZhMDhmODc0ZDMxOS8wLzM1MzgyZTM2MzUyZTMyMzQzMDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMyMzQzNTMzMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM6QfAwDQYJKoZIhvcN AQELBQADggEBAKumneyXyIy9efA43w+4Eo1JWyvaTiYCxqRvDRmhcIgjLBbD4Dpc Ko0MtmcjmHETZjiq+PzDKnGEFyJJPCjVGRRwsjRH6AUpQlle1FLBkKSl8GNwc3Xo Rm4iX3rRYQwE4pvX2KGLxRWJWLI007cfBIe0e0YXen5VZDSqHCI+nRrX7b3LQV9a rGvbqqjhxgc1V9dlWsC+mG0LPPsdfI+ERjjaL7rsWzLEffxa6v6tnoLJgvcBLWO3 gbn8/XfPFN9DGZYjhbjWp6gIm1bIQ9h/4LyOVc3XP/c97edin8P8W2ibz0kJSdsU mW6w1wLM/XwcK6urkAeCzPFGVpZ+XmmcEaI= -----END CERTIFICATE-----Generated at Sun May 3 16:11:02 2026 by rpki-client