$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa File: 3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa (raw, json) Hash identifier: D8gdQFYf8NnWhum3Srq97Jkm5hnXUuKFuTsge2OROqA= Subject key identifier: B0:C7:BA:2A:CD:0A:ED:FB:83:E3:DF:B5:20:6B:45:63:BB:23:19:FA Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 1D4931EA3095D10230950E825A292A8CFC37652E Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa Signing time: Sun 03 May 2026 02:50:51 +0000 ROA not before: Sun 03 May 2026 02:45:51 +0000 ROA not after: Sun 02 May 2027 02:50:51 +0000 asID: 149718 IP address blocks: 223.25.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 18:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:49:31:ea:30:95:d1:02:30:95:0e:82:5a:29:2a:8c:fc:37:65:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:51 2026 GMT Not After : May 2 02:50:51 2027 GMT Subject: CN=B0C7BA2ACD0AEDFB83E3DFB5206B4563BB2319FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8e:da:d0:3a:f1:d1:6c:7c:42:dc:8d:a6:fc: 57:d0:16:f7:a4:e2:83:e8:47:f6:82:43:60:0c:35: b4:cb:91:e5:e8:30:da:54:57:cd:07:e7:05:c7:b4: 46:f0:48:11:d9:fe:a3:5e:33:21:73:5e:68:97:92: 2a:2e:ab:08:44:a9:b0:2c:67:84:2d:e1:f5:65:0c: 77:94:60:c3:21:a2:fa:65:66:3b:33:99:2d:02:6f: 7f:01:7b:0f:b8:56:50:9e:a8:6d:cb:39:e8:19:f2: e5:b2:3b:8b:03:7a:31:6c:ee:bc:f1:73:80:96:f2: 65:31:b5:1b:c8:cc:c0:67:70:cd:c3:3e:0a:93:11: a7:23:8a:32:0d:3f:6d:3a:4d:cf:64:12:c5:c5:72: 8b:f4:02:69:97:d3:31:00:6e:54:8e:20:7b:6e:d3: f2:17:99:f0:ef:7e:73:66:38:b1:4d:5a:de:63:5a: 65:95:fd:1e:84:06:c0:fc:6e:30:d4:fd:56:51:b5: 7b:94:7d:0d:d2:bf:eb:ca:2c:74:a0:de:a2:57:b5: a2:13:d8:31:3b:e3:f2:3f:a7:83:6e:38:b8:00:d8: 9f:f1:a6:5d:b8:e1:65:ec:fc:c5:2d:18:63:a0:1c: 8d:af:b9:fa:2a:ef:b5:36:49:52:0a:31:3e:8c:4e: cb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C7:BA:2A:CD:0A:ED:FB:83:E3:DF:B5:20:6B:45:63:BB:23:19:FA X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.109.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:7f:9b:93:d4:48:e9:38:2b:85:d7:c0:ab:58:d8:aa:d1:e2: 00:90:dc:e3:1d:8f:28:23:4a:09:6b:6b:01:3d:ab:56:91:08: 99:a8:10:05:fb:94:d0:d6:db:2d:4d:85:73:a1:34:76:f3:5c: 73:cc:70:e6:f9:83:ff:ed:4a:0b:fc:75:b5:1f:7a:1f:67:ce: 65:eb:da:de:9a:02:d2:7a:25:fe:ae:bf:78:79:fc:a1:a9:16: b9:ac:5c:04:29:68:39:17:cf:62:55:5b:e2:55:1b:61:25:47: f1:04:18:32:01:5b:fc:e0:dd:07:28:c7:d2:b7:f2:f8:bf:93: 52:4f:41:5f:4c:96:c0:cd:2e:0b:2c:19:35:5d:66:f0:45:4f: fc:3c:24:21:9f:bb:72:7e:20:64:ff:34:51:4f:16:9a:31:8e: 0c:6a:0e:86:92:78:66:a6:e3:e6:2f:f7:e5:4e:dc:6a:c1:61: f8:ee:6e:d9:e6:34:fc:bb:65:99:2b:6c:a3:5c:7e:11:b9:6f: 62:99:b5:37:70:b9:97:6a:f6:eb:0f:15:5e:58:8a:a2:89:94: c7:c8:96:3f:1b:38:d9:ea:fe:9b:f0:81:12:c8:47:2d:4a:e3: 71:7e:3f:40:26:35:93:ac:61:a9:0f:17:4f:09:57:e6:df:46: b0:90:bc:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHUkx6jCV0QIwlQ6CWikqjPw3ZS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NTFaFw0yNzA1MDIwMjUwNTFaMDMxMTAvBgNV BAMTKEIwQzdCQTJBQ0QwQUVERkI4M0UzREZCNTIwNkI0NTYzQkIyMzE5RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDojtrQOvHRbHxC3I2m/FfQFvek 4oPoR/aCQ2AMNbTLkeXoMNpUV80H5wXHtEbwSBHZ/qNeMyFzXmiXkiouqwhEqbAs Z4Qt4fVlDHeUYMMhovplZjszmS0Cb38Bew+4VlCeqG3LOegZ8uWyO4sDejFs7rzx c4CW8mUxtRvIzMBncM3DPgqTEacjijINP206Tc9kEsXFcov0AmmX0zEAblSOIHtu 0/IXmfDvfnNmOLFNWt5jWmWV/R6EBsD8bjDU/VZRtXuUfQ3Sv+vKLHSg3qJXtaIT 2DE74/I/p4NuOLgA2J/xpl244WXs/MUtGGOgHI2vufoq77U2SVIKMT6MTsudAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsMe6Ks0K7fuD49+1IGtFY7sjGfowHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xltMA0GCSqG SIb3DQEBCwUAA4IBAQAcf5uT1EjpOCuF18CrWNiq0eIAkNzjHY8oI0oJa2sBPatW kQiZqBAF+5TQ1tstTYVzoTR281xzzHDm+YP/7UoL/HW1H3ofZ85l69remgLSeiX+ rr94efyhqRa5rFwEKWg5F89iVVviVRthJUfxBBgyAVv84N0HKMfSt/L4v5NST0Ff TJbAzS4LLBk1XWbwRU/8PCQhn7tyfiBk/zRRTxaaMY4Mag6GknhmpuPmL/flTtxq wWH47m7Z5jT8u2WZK2yjXH4RuW9imbU3cLmXavbrDxVeWIqiiZTHyJY/GzjZ6v6b 8IESyEctSuNxfj9AJjWTrGGpDxdPCVfm30awkLzd -----END CERTIFICATE-----Generated at Tue May 5 11:55:24 2026 by rpki-client