$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130352e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: zkjugBCGR1RTN3rv+4fVMMpCR+DjhaqSm22RICfrfmA= Subject key identifier: EE:84:FD:73:52:A2:3C:AB:14:AE:C2:AD:0A:6F:6D:9E:1C:1D:83:1E Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 12CE42DBF44B4D2E0EA7459457C77B9E748C473C Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa Signing time: Sun 03 May 2026 02:50:47 +0000 ROA not before: Sun 03 May 2026 02:45:47 +0000 ROA not after: Sun 02 May 2027 02:50:47 +0000 asID: 4821 IP address blocks: 223.25.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ce:42:db:f4:4b:4d:2e:0e:a7:45:94:57:c7:7b:9e:74:8c:47:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:47 2026 GMT Not After : May 2 02:50:47 2027 GMT Subject: CN=EE84FD7352A23CAB14AEC2AD0A6F6D9E1C1D831E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:45:76:77:97:71:ec:9a:25:71:f8:f6:81:0f: 44:ee:6d:d1:2e:39:ff:8d:60:98:7d:45:ab:29:73: 25:43:7d:3d:fa:bf:2b:fb:66:68:03:c7:53:fe:77: 3d:19:65:6e:a0:a6:aa:9c:70:16:48:69:1f:96:d5: 6c:39:c9:4c:1c:bc:93:5f:5a:75:4d:47:77:08:a4: 84:40:eb:09:cf:4b:c3:aa:a0:63:39:28:08:fb:6e: fd:ba:ad:ea:12:b6:f5:7d:f1:20:06:85:ee:7a:d2: dd:9d:45:72:88:89:98:19:1f:f9:49:1c:b8:83:3e: 08:ed:ad:13:6f:c3:24:e1:6b:fb:a0:3e:46:fe:1a: 80:1b:3c:13:82:42:f8:4b:10:b5:aa:31:3b:2d:57: 92:73:79:5e:95:f1:b6:8f:0a:78:5c:57:07:eb:ee: e4:64:87:85:67:95:03:d6:82:7a:4a:65:bf:0f:5f: 82:5e:09:c7:25:4b:f4:14:42:0c:17:7b:e6:ed:03: de:a2:2c:d1:8d:23:fd:f4:44:23:9a:9c:41:7f:68: 61:ca:74:f2:90:c2:e5:a2:7c:f6:a6:8e:cc:33:3b: ae:d9:b6:dc:54:62:43:e3:51:de:b1:ce:01:84:1d: 0b:22:81:f5:a3:82:a6:5a:09:bf:16:d3:81:7e:78: 20:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:84:FD:73:52:A2:3C:AB:14:AE:C2:AD:0A:6F:6D:9E:1C:1D:83:1E X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.105.0/24 Signature Algorithm: sha256WithRSAEncryption 09:72:f2:53:99:36:4b:d9:8d:b6:74:ce:78:fd:80:97:8d:31: 1f:4a:81:16:12:3c:bc:14:98:4d:ff:90:17:2e:48:26:40:75: 34:de:a9:cc:02:a8:91:29:83:9b:41:ca:93:dd:42:8d:4d:bf: fe:8f:46:6d:c6:07:a5:c6:40:2e:54:ed:2f:11:d8:65:f6:c7: fe:0e:6e:ad:a8:e2:58:78:0b:0a:7c:3b:38:1b:94:0c:f4:01: 26:68:3b:05:c3:1d:d3:7a:ec:6a:cf:12:41:0e:84:94:7a:bc: a7:9e:38:e9:75:bb:14:7f:6e:87:83:b4:66:ea:7f:34:4d:ef: 46:1b:e1:c4:17:47:06:5c:1f:2e:74:a8:ae:2b:9c:1b:5a:7a: cf:fc:1d:67:de:0f:ee:2b:e9:cd:5b:05:e4:17:17:ab:79:3e: 6a:10:43:9f:f4:4d:d4:78:b4:c6:01:16:f2:a3:3b:27:df:4c: c1:b3:dd:fd:32:6a:e0:dd:a1:0b:14:7c:2d:0f:b3:24:d9:9b: 66:b0:bf:c3:e4:5f:bc:5d:76:64:a8:71:a6:6d:07:3f:7d:2d: 7a:a2:63:19:5b:86:d1:70:4a:2a:7b:bf:c7:05:fd:7a:66:2d: f6:75:6f:13:ae:48:3e:67:d9:86:0d:2e:8a:0b:2e:96:ad:14: 35:ef:63:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEs5C2/RLTS4Op0WUV8d7nnSMRzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NDdaFw0yNzA1MDIwMjUwNDdaMDMxMTAvBgNV BAMTKEVFODRGRDczNTJBMjNDQUIxNEFFQzJBRDBBNkY2RDlFMUMxRDgzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrRXZ3l3HsmiVx+PaBD0TubdEu Of+NYJh9RaspcyVDfT36vyv7ZmgDx1P+dz0ZZW6gpqqccBZIaR+W1Ww5yUwcvJNf WnVNR3cIpIRA6wnPS8OqoGM5KAj7bv26reoStvV98SAGhe560t2dRXKIiZgZH/lJ HLiDPgjtrRNvwyTha/ugPkb+GoAbPBOCQvhLELWqMTstV5JzeV6V8baPCnhcVwfr 7uRkh4VnlQPWgnpKZb8PX4JeCcclS/QUQgwXe+btA96iLNGNI/30RCOanEF/aGHK dPKQwuWifPamjswzO67ZttxUYkPjUd6xzgGEHQsigfWjgqZaCb8W04F+eCAZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7oT9c1KiPKsUrsKtCm9tnhwdgx4wHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWkwDQYJKoZIhvcN AQELBQADggEBAAly8lOZNkvZjbZ0znj9gJeNMR9KgRYSPLwUmE3/kBcuSCZAdTTe qcwCqJEpg5tBypPdQo1Nv/6PRm3GB6XGQC5U7S8R2GX2x/4Obq2o4lh4Cwp8Ozgb lAz0ASZoOwXDHdN67GrPEkEOhJR6vKeeOOl1uxR/boeDtGbqfzRN70Yb4cQXRwZc Hy50qK4rnBtaes/8HWfeD+4r6c1bBeQXF6t5PmoQQ5/0TdR4tMYBFvKjOyffTMGz 3f0yauDdoQsUfC0PsyTZm2awv8PkX7xddmSocaZtBz99LXqiYxlbhtFwSip7v8cF /XpmLfZ1bxOuSD5n2YYNLooLLpatFDXvY1w= -----END CERTIFICATE-----Generated at Tue May 5 11:52:45 2026 by rpki-client