$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130362e302f32342d3234203d3e20313336383733.roa File: 3232332e32352e3130362e302f32342d3234203d3e20313336383733.roa (raw, json) Hash identifier: zZohFjEfg5KbgTKUDn03P4ViER6I84zu0tvUUBWCbms= Subject key identifier: 75:B8:6F:2E:CE:ED:62:7E:FD:67:08:02:21:29:9F:D3:33:24:A6:96 Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 4066530C7AB5DE8F1FB399292B8AF1FD11BA03BF Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130362e302f32342d3234203d3e20313336383733.roa Signing time: Sun 03 May 2026 02:50:48 +0000 ROA not before: Sun 03 May 2026 02:45:48 +0000 ROA not after: Sun 02 May 2027 02:50:48 +0000 asID: 136873 IP address blocks: 223.25.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:66:53:0c:7a:b5:de:8f:1f:b3:99:29:2b:8a:f1:fd:11:ba:03:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:48 2026 GMT Not After : May 2 02:50:48 2027 GMT Subject: CN=75B86F2ECEED627EFD67080221299FD33324A696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e2:fb:c4:cb:ed:ce:83:bc:c2:fb:1c:2b:df: 1b:07:b7:b3:c0:3a:77:6a:9a:98:e9:1c:9c:58:36: f4:21:c9:34:f7:af:30:67:3c:69:ec:68:f6:53:b4: 4e:32:26:4d:1b:39:c5:1f:2b:d8:0c:97:cc:3a:85: 85:e2:84:a2:6f:a1:c6:f2:71:7f:79:9c:28:87:30: 33:d1:f3:eb:88:b4:d1:2f:ce:33:e9:25:b7:d6:bb: 1e:b7:37:1d:f2:50:b5:6f:7a:ca:86:e5:17:90:f7: b5:b1:19:a5:6a:78:52:03:2e:46:10:2a:9a:f2:01: 64:ea:00:ea:ea:bb:b3:13:c3:8e:14:c9:2f:88:83: e9:f5:71:c4:ac:79:83:35:59:c2:bd:90:9c:02:c1: c0:fe:0a:bb:c1:cb:e9:82:db:50:8c:e7:84:49:94: 70:c7:af:13:29:99:d3:9e:3a:fb:72:19:c1:98:09: 2c:2b:55:ea:d4:d0:07:6f:05:c1:e5:cb:49:e5:3a: 0b:1b:df:60:ce:41:c8:42:5e:4e:70:8b:6a:66:79: 88:07:f6:25:1e:d6:c1:f9:86:ec:74:80:ee:8e:7e: d5:1e:0f:6e:84:62:dd:a0:47:82:68:c4:80:8f:c1: b2:ac:a0:e6:bd:d7:75:30:64:a8:07:65:60:bb:9d: 74:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B8:6F:2E:CE:ED:62:7E:FD:67:08:02:21:29:9F:D3:33:24:A6:96 X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130362e302f32342d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.106.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:f8:a8:1f:f2:3f:75:f9:58:f8:f8:02:62:a5:08:c3:08:e6: f7:14:32:46:1d:ba:62:aa:83:64:3d:b9:5e:b7:90:dc:ed:0a: 66:37:46:ba:59:d2:93:af:ad:cc:5e:65:29:eb:b6:03:36:97: 51:21:84:f0:dd:2d:6d:99:cf:59:f8:48:b0:cb:bc:02:f2:ac: 11:98:07:a0:dd:dd:b2:6b:8e:b5:3f:1e:60:11:26:68:34:3e: 3c:fd:66:e5:47:87:1d:52:70:97:d5:d3:2d:5c:49:39:1d:c0: ad:5a:0b:84:e9:f1:4b:01:8f:9a:71:89:a8:1c:c2:1d:d0:16: 7c:73:b6:a7:88:87:b6:0a:a5:bf:03:27:36:74:7f:48:a9:7a: 73:24:dc:f6:4c:01:d7:db:5a:ff:66:30:34:d8:7f:36:d9:cc: b3:27:67:a6:b6:a5:9d:85:c4:d9:5c:93:1a:74:13:92:41:42: 97:85:f7:3d:be:41:fe:20:0d:ef:1d:30:d4:77:f1:56:81:37: 3c:71:8b:88:d2:d8:18:6c:1a:19:e7:f8:8d:72:0e:01:e5:23: 88:1a:77:75:8e:f3:f5:61:b2:4e:ba:b8:a4:d8:b6:77:65:ad: ba:fb:a9:a2:9a:d0:db:28:cd:b5:c6:e2:5a:e6:9e:a1:1f:09: 2d:93:29:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQGZTDHq13o8fs5kpK4rx/RG6A78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NDhaFw0yNzA1MDIwMjUwNDhaMDMxMTAvBgNV BAMTKDc1Qjg2RjJFQ0VFRDYyN0VGRDY3MDgwMjIxMjk5RkQzMzMyNEE2OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ4vvEy+3Og7zC+xwr3xsHt7PA OndqmpjpHJxYNvQhyTT3rzBnPGnsaPZTtE4yJk0bOcUfK9gMl8w6hYXihKJvocby cX95nCiHMDPR8+uItNEvzjPpJbfWux63Nx3yULVvesqG5ReQ97WxGaVqeFIDLkYQ KpryAWTqAOrqu7MTw44UyS+Ig+n1ccSseYM1WcK9kJwCwcD+CrvBy+mC21CM54RJ lHDHrxMpmdOeOvtyGcGYCSwrVerU0AdvBcHly0nlOgsb32DOQchCXk5wi2pmeYgH 9iUe1sH5hux0gO6OftUeD26EYt2gR4JoxICPwbKsoOa913UwZKgHZWC7nXQbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdbhvLs7tYn79ZwgCISmf0zMkppYwHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xlqMA0GCSqG SIb3DQEBCwUAA4IBAQAc+Kgf8j91+Vj4+AJipQjDCOb3FDJGHbpiqoNkPblet5Dc 7QpmN0a6WdKTr63MXmUp67YDNpdRIYTw3S1tmc9Z+Eiwy7wC8qwRmAeg3d2ya461 Px5gESZoND48/WblR4cdUnCX1dMtXEk5HcCtWguE6fFLAY+acYmoHMId0BZ8c7an iIe2CqW/Ayc2dH9IqXpzJNz2TAHX21r/ZjA02H822cyzJ2emtqWdhcTZXJMadBOS QUKXhfc9vkH+IA3vHTDUd/FWgTc8cYuI0tgYbBoZ5/iNcg4B5SOIGnd1jvP1YbJO urik2LZ3Za26+6mimtDbKM21xuJa5p6hHwktkyn7 -----END CERTIFICATE-----Generated at Tue May 5 11:53:51 2026 by rpki-client