$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa File: 3232332e32352e39362e302f32312d3234203d3e2039333431.roa (raw, json) Hash identifier: 7Jy3y4ltltsmzNhSvINfLmQPgIpSxy3LDWGrSnNQ3Zk= Subject key identifier: 9F:56:4F:EE:15:65:A3:19:C3:9B:91:F0:9F:23:A5:A2:DF:F5:E4:4A Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 582DB94014661B60D72C9A945C0CD9DAFE80A245 Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:50:50 +0000 ROA not before: Sun 03 May 2026 02:45:50 +0000 ROA not after: Sun 02 May 2027 02:50:50 +0000 asID: 9341 IP address blocks: 223.25.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 18:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:2d:b9:40:14:66:1b:60:d7:2c:9a:94:5c:0c:d9:da:fe:80:a2:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:50 2026 GMT Not After : May 2 02:50:50 2027 GMT Subject: CN=9F564FEE1565A319C39B91F09F23A5A2DFF5E44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:15:0b:43:b9:41:1f:b2:5b:43:4c:93:00:d6: 00:1d:66:2e:7f:56:cb:ea:3c:87:83:d7:0a:fb:b1: 8f:f8:df:d7:2d:07:49:d3:95:83:18:b8:4f:ce:cd: 1c:80:fb:06:3b:cc:ff:42:0c:95:c7:7d:55:b6:50: 73:88:30:52:33:bd:0a:59:bc:97:39:32:65:5d:3d: da:68:e5:c0:ee:fb:d6:35:2e:bd:fb:bb:04:0e:15: 4d:6d:2b:29:64:ac:80:1c:3c:95:3b:6e:e1:af:56: 4c:0a:b8:f7:84:f2:a6:53:73:0d:ec:8b:be:c2:d7: 2e:94:87:8a:cf:b7:56:60:28:d6:ba:bb:50:ac:b7: 5c:6e:8c:c1:13:34:f7:0b:2b:35:bb:f3:f6:7f:7b: 2a:5a:11:66:ea:1a:4b:70:aa:62:8d:d2:fa:f1:1d: 59:9e:0b:a3:6a:f3:ba:ec:79:09:f6:0c:7d:42:bf: 47:96:fb:6b:cf:0c:78:5d:37:52:4d:72:34:80:e3: e9:83:d2:7c:77:89:7e:c8:86:7b:51:07:a3:40:f3: ae:57:f8:46:14:32:73:b4:40:bf:2b:64:81:e5:09: 39:84:0e:79:7d:92:47:46:9b:8b:40:3d:e1:22:84: b7:0a:c7:40:98:eb:70:fe:d0:8e:d9:5e:79:27:3e: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:56:4F:EE:15:65:A3:19:C3:9B:91:F0:9F:23:A5:A2:DF:F5:E4:4A X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.96.0/21 Signature Algorithm: sha256WithRSAEncryption 16:ad:d3:7f:d3:ae:50:63:fa:7c:80:d5:a3:8f:fb:8a:3d:fc: fa:ed:c4:1b:be:f9:88:8e:72:fe:74:7b:d2:22:b1:0d:f3:f5: 0b:75:41:88:b0:53:74:86:a7:f3:ee:ae:19:89:84:0a:a3:be: 9a:e8:aa:95:bf:1c:15:ac:07:ee:14:8d:ff:fc:d3:d3:ce:d1: 1c:42:39:b1:7b:32:0a:83:0a:8f:2b:27:e1:ed:a0:aa:6a:68: 60:63:27:68:73:47:5d:d0:a1:13:7f:ab:4a:62:c8:45:df:9c: b3:59:7c:a0:74:a8:2d:64:e1:e9:f0:a6:9b:3e:d1:bc:bf:fc: 61:da:30:be:25:61:48:ca:54:8b:c5:8e:75:98:be:fc:fb:19: 76:30:d3:ca:59:12:07:d9:a7:30:62:84:1e:3d:fc:85:1b:b4: 0b:33:ca:73:a2:9a:ad:5c:62:64:7a:30:77:c0:8b:a6:2c:0f: 83:51:49:c0:c4:40:6f:dc:d8:7f:a1:b6:28:44:c3:d5:5f:0c: 4f:a9:96:82:72:b6:1e:aa:64:81:d2:d8:7f:da:10:3e:cf:84: 43:a2:d7:47:70:b9:34:85:91:42:e4:39:fc:9a:81:ba:d3:4a: 5b:18:26:82:ca:19:2a:78:7d:69:70:26:1c:e7:5a:fc:a4:94: df:fc:63:ad -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWC25QBRmG2DXLJqUXAzZ2v6AokUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NTBaFw0yNzA1MDIwMjUwNTBaMDMxMTAvBgNV BAMTKDlGNTY0RkVFMTU2NUEzMTlDMzlCOTFGMDlGMjNBNUEyREZGNUU0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzFQtDuUEfsltDTJMA1gAdZi5/ VsvqPIeD1wr7sY/439ctB0nTlYMYuE/OzRyA+wY7zP9CDJXHfVW2UHOIMFIzvQpZ vJc5MmVdPdpo5cDu+9Y1Lr37uwQOFU1tKylkrIAcPJU7buGvVkwKuPeE8qZTcw3s i77C1y6Uh4rPt1ZgKNa6u1Cst1xujMETNPcLKzW78/Z/eypaEWbqGktwqmKN0vrx HVmeC6Nq87rseQn2DH1Cv0eW+2vPDHhdN1JNcjSA4+mD0nx3iX7IhntRB6NA865X +EYUMnO0QL8rZIHlCTmEDnl9kkdGm4tAPeEihLcKx0CY63D+0I7ZXnknPoKnAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUn1ZP7hVloxnDm5HwnyOlot/15EowHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzMjMzMmUzMjM1MmUzOTM2MmUzMDJmMzIzMTJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPfGWAwDQYJKoZIhvcNAQEL BQADggEBABat03/TrlBj+nyA1aOP+4o9/PrtxBu++YiOcv50e9IisQ3z9Qt1QYiw U3SGp/PurhmJhAqjvproqpW/HBWsB+4Ujf/809PO0RxCObF7MgqDCo8rJ+HtoKpq aGBjJ2hzR13QoRN/q0piyEXfnLNZfKB0qC1k4enwpps+0by//GHaML4lYUjKVIvF jnWYvvz7GXYw08pZEgfZpzBihB49/IUbtAszynOimq1cYmR6MHfAi6YsD4NRScDE QG/c2H+htihEw9VfDE+ploJyth6qZIHS2H/aED7PhEOi10dwuTSFkULkOfyagbrT SlsYJoLKGSp4fWlwJhznWvyklN/8Y60= -----END CERTIFICATE-----Generated at Tue May 5 11:53:11 2026 by rpki-client