$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa File: 3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa (raw, json) Hash identifier: f+1xV3V7eIo4yjJqos+xUQVvX1GIUuOZUCoIKtF+llo= Subject key identifier: 79:B8:86:A0:88:BA:97:E8:1B:A8:E7:50:6E:D8:43:3E:2A:C4:73:07 Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 4B76D35D1C6263153B9267066C3F8B9A11CDDE94 Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa Signing time: Sun 03 May 2026 02:50:51 +0000 ROA not before: Sun 03 May 2026 02:45:51 +0000 ROA not after: Sun 02 May 2027 02:50:51 +0000 asID: 149718 IP address blocks: 223.25.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 18:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:76:d3:5d:1c:62:63:15:3b:92:67:06:6c:3f:8b:9a:11:cd:de:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:51 2026 GMT Not After : May 2 02:50:51 2027 GMT Subject: CN=79B886A088BA97E81BA8E7506ED8433E2AC47307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:42:38:de:ae:7d:b2:a3:12:2d:42:6a:73:65: f2:27:23:be:13:ee:db:e3:cd:1f:1c:ef:8f:9b:53: 99:4a:16:20:5b:f3:f8:9e:69:87:6c:bd:56:05:42: 48:1f:d8:60:8a:0c:e3:8f:e0:8d:fa:0a:1b:ec:eb: 52:1e:dd:7c:3a:e2:a4:be:d2:63:f2:3e:e4:20:bb: e2:cc:9c:c3:46:e0:2b:26:e5:63:65:91:f7:fd:b8: 60:81:d3:3e:ee:a9:ef:fe:46:b6:e3:84:55:da:a6: a1:1b:ba:fc:25:3f:84:a6:45:1a:4b:18:ca:38:1a: c2:cc:48:57:3f:ad:aa:28:8f:53:4b:ff:d4:09:39: a2:a9:b0:ca:0b:24:ee:d5:ee:55:8f:d8:0a:15:37: 47:b7:01:b2:c5:c5:db:36:65:09:e3:69:12:49:1b: 93:78:fe:d0:9b:92:fa:90:d5:a6:39:4b:58:1d:83: 01:ee:39:48:4d:e9:4e:f7:79:ed:5e:56:cf:b4:ac: f5:3f:7e:84:aa:98:70:e4:eb:23:94:8c:54:9f:ac: 13:cc:9c:1a:33:c8:3b:35:41:1e:5c:ba:d1:5f:f0: a2:c6:0b:a1:12:d9:41:15:cb:85:f7:05:68:ff:f4: 27:14:29:5a:95:9e:ff:3c:1c:3d:14:84:04:7e:a4: 89:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B8:86:A0:88:BA:97:E8:1B:A8:E7:50:6E:D8:43:3E:2A:C4:73:07 X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.107.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:b8:72:b5:e7:bf:82:73:6b:7a:ab:a2:c3:71:09:a3:5a:af: a2:f4:75:d2:94:cd:78:2e:48:77:5c:48:7d:bc:81:c1:c5:40: 5e:35:d0:18:84:7b:53:84:15:7e:8c:bf:e8:60:2c:6d:9f:5e: 66:d5:60:cb:ad:dd:d9:ac:11:ac:7a:23:8b:f9:81:4a:fa:fd: 41:74:53:00:3f:31:65:cf:b7:74:42:48:a2:c0:2d:8e:50:05: f3:a1:7c:30:08:3f:27:3a:9d:eb:d6:9e:e5:2a:b5:f5:41:7b: 4d:6c:df:00:7e:e9:f6:46:86:ba:a2:bb:0a:a9:80:00:3e:98: ea:7f:cb:18:37:6e:65:61:81:68:20:76:e7:e0:3c:d2:94:59: 62:32:84:52:e7:de:1b:46:46:4c:09:02:9a:08:b2:32:8d:ac: 62:6c:0f:0f:fe:ec:e0:7e:24:82:f3:06:35:3d:8e:b0:74:a0: 66:c4:34:4c:b1:41:65:75:94:d1:96:30:03:a1:9f:5f:ea:f7: 01:6e:6d:5b:3d:36:30:f5:5d:7c:fd:d2:29:fa:d8:71:a1:d1: 8e:b2:07:d3:d4:d8:7f:b8:63:a8:a7:6a:7d:59:b4:eb:e6:98: 57:e0:c1:2f:88:5b:c7:ac:98:75:e9:2b:2e:0a:8c:25:f5:39: 84:5e:9b:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS3bTXRxiYxU7kmcGbD+LmhHN3pQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NTFaFw0yNzA1MDIwMjUwNTFaMDMxMTAvBgNV BAMTKDc5Qjg4NkEwODhCQTk3RTgxQkE4RTc1MDZFRDg0MzNFMkFDNDczMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Qjjern2yoxItQmpzZfInI74T 7tvjzR8c74+bU5lKFiBb8/ieaYdsvVYFQkgf2GCKDOOP4I36Chvs61Ie3Xw64qS+ 0mPyPuQgu+LMnMNG4Csm5WNlkff9uGCB0z7uqe/+RrbjhFXapqEbuvwlP4SmRRpL GMo4GsLMSFc/raooj1NL/9QJOaKpsMoLJO7V7lWP2AoVN0e3AbLFxds2ZQnjaRJJ G5N4/tCbkvqQ1aY5S1gdgwHuOUhN6U73ee1eVs+0rPU/foSqmHDk6yOUjFSfrBPM nBozyDs1QR5cutFf8KLGC6ES2UEVy4X3BWj/9CcUKVqVnv88HD0UhAR+pInDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUebiGoIi6l+gbqOdQbthDPirEcwcwHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xlrMA0GCSqG SIb3DQEBCwUAA4IBAQBtuHK157+Cc2t6q6LDcQmjWq+i9HXSlM14Lkh3XEh9vIHB xUBeNdAYhHtThBV+jL/oYCxtn15m1WDLrd3ZrBGseiOL+YFK+v1BdFMAPzFlz7d0 QkiiwC2OUAXzoXwwCD8nOp3r1p7lKrX1QXtNbN8Afun2Roa6orsKqYAAPpjqf8sY N25lYYFoIHbn4DzSlFliMoRS594bRkZMCQKaCLIyjaxibA8P/uzgfiSC8wY1PY6w dKBmxDRMsUFldZTRljADoZ9f6vcBbm1bPTYw9V18/dIp+thxodGOsgfT1Nh/uGOo p2p9WbTr5phX4MEviFvHrJh16SsuCowl9TmEXpu6 -----END CERTIFICATE-----Generated at Tue May 5 11:54:39 2026 by rpki-client