$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/38352e3133372e32382e302f32332d3234203d3e20313439373334.roa File: 38352e3133372e32382e302f32332d3234203d3e20313439373334.roa (raw, json) Hash identifier: N0muEr2CHWOJEJspJ/kOuNqS04weyVGfm19MrpSJyWw= Subject key identifier: 24:F8:7C:F3:B1:88:9A:77:EA:AC:1F:4B:24:F1:95:DD:C0:E6:76:C3 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 2B0EC71C93061FF6F2E1157A851F0348BFB9DAF9 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/38352e3133372e32382e302f32332d3234203d3e20313439373334.roa Signing time: Fri 22 May 2026 07:18:50 +0000 ROA not before: Fri 22 May 2026 07:13:50 +0000 ROA not after: Fri 21 May 2027 07:18:50 +0000 asID: 149734 IP address blocks: 85.137.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 04:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0e:c7:1c:93:06:1f:f6:f2:e1:15:7a:85:1f:03:48:bf:b9:da:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 22 07:13:50 2026 GMT Not After : May 21 07:18:50 2027 GMT Subject: CN=24F87CF3B1889A77EAAC1F4B24F195DDC0E676C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fd:4d:b4:c1:9d:6b:49:fd:de:e9:91:9a:08: 54:2d:f1:68:d6:96:54:fb:b8:fe:99:15:fd:5e:25: 9c:a5:30:d2:f2:15:1b:ce:f3:61:93:8f:39:6e:75: 6f:0b:d7:01:bc:25:7a:15:f3:71:f9:b1:b8:6e:7f: 35:3b:65:db:09:0e:f0:01:64:a2:70:ff:b0:b4:54: d5:7b:ca:2a:d9:d2:65:02:73:8f:b9:e0:f4:53:9e: f1:71:f9:55:b1:b0:e6:ab:81:b8:75:66:78:c9:ca: ef:1f:b5:85:a0:9f:39:25:98:62:02:b2:5e:52:99: 27:06:48:9d:21:b5:88:3c:67:cc:0b:7f:c1:bf:39: 59:23:50:d4:db:3e:bd:1f:48:0b:27:a9:d7:c1:3a: 1a:01:fe:4a:5f:55:3d:76:cc:af:55:6c:2c:f8:91: a5:ab:44:f7:d5:c7:a9:ba:e2:e5:0a:2a:d1:e4:a2: ab:b5:67:59:8c:4c:ce:4b:50:4c:6f:5b:6f:4b:5e: ed:77:1f:bf:f6:9c:91:7e:e8:31:50:91:e2:c7:fc: 78:d5:dc:0c:36:9b:c7:d0:dd:83:1d:40:c5:48:4a: a7:2a:91:a1:c8:11:82:e9:33:09:02:1e:8e:fa:e7: 3a:6c:0c:ef:e2:c0:b1:a0:36:14:85:4f:61:f1:19: 03:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F8:7C:F3:B1:88:9A:77:EA:AC:1F:4B:24:F1:95:DD:C0:E6:76:C3 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/38352e3133372e32382e302f32332d3234203d3e20313439373334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.137.28.0/23 Signature Algorithm: sha256WithRSAEncryption b2:ed:d8:55:6a:f2:40:b5:a4:22:a1:b4:f6:e9:fa:5c:f2:47: 7d:2d:17:43:cb:f6:12:e3:dd:9c:f1:f6:b6:a1:23:52:ce:6e: b8:f2:96:53:2b:4d:28:03:97:37:b0:15:7d:c0:cd:b1:f8:43: 70:98:29:af:b8:34:7f:f6:49:c8:c2:93:20:2e:21:01:3d:11: eb:b5:e3:03:91:41:69:d1:ff:02:2f:f5:26:2d:da:fa:05:43: 7d:6c:20:66:ec:58:06:29:e2:b7:f5:7c:9d:9f:9c:09:a1:f6: c3:9a:cc:46:0b:72:ef:7c:d9:9f:96:6c:69:75:10:19:61:f3: 3e:08:a5:c2:00:cd:e2:c0:4c:d1:44:77:50:e6:a7:8a:81:42: 76:e6:21:82:f6:cb:18:9c:12:72:84:cc:aa:34:46:16:83:4f: 07:14:54:a4:6f:79:be:81:a1:3a:06:a3:3b:17:d6:9a:4e:c4: 11:1d:e5:76:6d:b4:44:9d:7c:54:89:1c:2c:20:ae:5a:73:3c: 4d:cd:58:cc:af:f1:61:c1:e1:b4:b4:19:4b:30:6a:1a:ca:b5: 2b:94:24:62:2f:71:c1:0a:a1:82:7e:57:d6:be:6e:28:82:f5: 6c:ac:4e:94:c0:cb:e4:e8:ce:c7:99:16:8b:cc:e2:f5:63:20: 95:33:87:90 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUKw7HHJMGH/by4RV6hR8DSL+52vkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUyMjA3MTM1MFoX DTI3MDUyMTA3MTg1MFowMzExMC8GA1UEAxMoMjRGODdDRjNCMTg4OUE3N0VBQUMx RjRCMjRGMTk1RERDMEU2NzZDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMn9TbTBnWtJ/d7pkZoIVC3xaNaWVPu4/pkV/V4lnKUw0vIVG87zYZOPOW51 bwvXAbwlehXzcfmxuG5/NTtl2wkO8AFkonD/sLRU1XvKKtnSZQJzj7ng9FOe8XH5 VbGw5quBuHVmeMnK7x+1haCfOSWYYgKyXlKZJwZInSG1iDxnzAt/wb85WSNQ1Ns+ vR9ICyep18E6GgH+Sl9VPXbMr1VsLPiRpatE99XHqbri5Qoq0eSiq7VnWYxMzktQ TG9bb0te7Xcfv/ackX7oMVCR4sf8eNXcDDabx9Ddgx1AxUhKpyqRocgRgukzCQIe jvrnOmwM7+LAsaA2FIVPYfEZAy8CAwEAAaOCAfswggH3MB0GA1UdDgQWBBQk+Hzz sYiad+qsH0sk8ZXdwOZ2wzAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjCBgAYIKwYBBQUHAQsEdDByMHAGCCsGAQUFBzALhmRyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMy8zODM1MmUzMTMzMzcy ZTMyMzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzQucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFViRwwDQYJKoZIhvcNAQELBQADggEBALLt2FVq8kC1pCKhtPbp+lzyR30t F0PL9hLj3Zzx9rahI1LObrjyllMrTSgDlzewFX3AzbH4Q3CYKa+4NH/2ScjCkyAu IQE9Eeu14wORQWnR/wIv9SYt2voFQ31sIGbsWAYp4rf1fJ2fnAmh9sOazEYLcu98 2Z+WbGl1EBlh8z4IpcIAzeLATNFEd1Dmp4qBQnbmIYL2yxicEnKEzKo0RhaDTwcU VKRveb6BoToGozsX1ppOxBEd5XZttESdfFSJHCwgrlpzPE3NWMyv8WHB4bS0GUsw ahrKtSuUJGIvccEKoYJ+V9a+biiC9WysTpTAy+TozseZFovM4vVjIJUzh5A= -----END CERTIFICATE-----Generated at Wed Jun 17 09:55:16 2026 by rpki-client