$ rpki-client -vvf rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa File: 3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa (raw, json) Hash identifier: Xi9t9c0T9HENzdyMpUtRfuzPjw3DaO7OJkvxFqdByyY= Subject key identifier: 5E:E3:49:91:11:15:AE:97:CA:EF:CE:E3:CF:55:4A:74:AB:04:F7:49 Certificate issuer: /CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Certificate serial: 415610A716CB5F530917F6E4544B155EDA0639D3 Authority key identifier: 29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa Signing time: Sun 03 May 2026 02:13:15 +0000 ROA not before: Sun 03 May 2026 02:08:15 +0000 ROA not after: Sun 02 May 2027 02:13:15 +0000 asID: 152770 IP address blocks: 157.66.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:56:10:a7:16:cb:5f:53:09:17:f6:e4:54:4b:15:5e:da:06:39:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Validity Not Before: May 3 02:08:15 2026 GMT Not After : May 2 02:13:15 2027 GMT Subject: CN=5EE349911115AE97CAEFCEE3CF554A74AB04F749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:ff:0a:5b:bf:6a:73:d3:b0:80:1c:a8:83: 18:36:aa:8f:b8:aa:1a:32:aa:2e:bc:38:77:67:7d: d1:e6:48:19:84:58:3c:19:ed:6a:a0:e0:07:bf:7b: 8c:f8:43:b8:f6:31:ac:47:17:1d:3f:d9:a6:eb:a2: 9e:bd:dc:f5:b8:56:c1:3b:f0:a9:22:a7:28:ca:76: fb:08:0f:4e:b6:bb:01:b0:ff:6f:8e:b8:3e:4c:a8: cb:3e:2a:b8:7c:04:7a:e6:38:2f:ba:f8:da:5b:55: c9:13:c3:3a:7b:3f:52:a3:c5:f4:8a:41:bb:5c:69: 15:32:fa:ae:bc:49:bb:ac:a2:86:76:eb:99:70:22: 04:f7:ff:bc:77:9a:0f:53:32:4b:86:3b:ac:c0:d8: 3d:66:4e:2a:e9:8b:7c:dc:a2:24:9c:bc:bd:cb:96: a3:9f:4f:13:5f:a8:77:3e:07:4d:ef:23:4f:68:24: c9:8f:1d:0f:e0:56:7e:23:df:fa:16:c0:d7:36:42: 3a:7c:6f:23:09:d5:d3:16:06:95:66:1d:4c:e5:50: 30:28:59:6c:f5:24:d6:be:39:30:39:4f:e3:fb:39: 7b:d7:a0:3d:b0:49:89:02:2c:f2:04:d2:09:dd:a6: 0a:67:b5:bc:7a:4a:f7:36:b1:05:77:bc:9f:05:be: 26:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E3:49:91:11:15:AE:97:CA:EF:CE:E3:CF:55:4A:74:AB:04:F7:49 X509v3 Authority Key Identifier: keyid:29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32332d3234203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:19:48:09:22:16:a7:1b:e3:26:09:08:9f:a5:77:2f:5c:d6: d4:5b:06:63:d8:24:e0:00:b5:6b:83:c5:9b:f0:0a:29:37:67: 46:82:a0:82:2b:ee:86:e5:b7:37:16:0b:30:05:11:5c:d3:76: b2:55:ec:28:ae:1e:1e:6a:e9:1a:45:aa:cf:66:90:83:a9:86: c2:be:91:4c:26:34:fe:c4:b4:c9:d5:a1:1c:3f:28:9f:26:a8: 22:5d:36:20:2f:7f:e6:ad:af:d4:b0:1c:af:7d:88:ec:22:ae: 05:66:c3:d7:d1:80:e2:72:2c:2d:d1:d0:b9:78:2c:a1:5c:c7: 19:3a:36:54:42:00:12:dc:31:37:58:6e:94:d9:90:7f:01:00: ce:12:a6:17:a9:ae:6f:38:df:53:69:9b:e2:ea:81:81:79:71: cb:2b:8e:a9:28:e9:a3:b5:7d:7b:5a:ed:d3:7b:ca:1a:e2:52: 11:aa:85:1c:84:7f:54:2f:b7:65:36:ce:54:1c:fa:4a:0b:df: e6:f7:d7:a2:cd:98:b0:3b:27:92:db:ad:f3:2a:11:4b:5a:29: 53:7c:c2:ca:d2:4e:cd:c1:9a:5e:2e:55:71:6e:d9:e2:63:ef: 18:42:f5:cf:3d:07:e1:32:ff:51:9a:a0:a6:c3:13:d0:8e:eb: 56:22:fa:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQVYQpxbLX1MJF/bkVEsVXtoGOdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1RkI3RUNCQTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2 NDRBMEY2MTAeFw0yNjA1MDMwMjA4MTVaFw0yNzA1MDIwMjEzMTVaMDMxMTAvBgNV BAMTKDVFRTM0OTkxMTExNUFFOTdDQUVGQ0VFM0NGNTU0QTc0QUIwNEY3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5z/8KW79qc9OwgByogxg2qo+4 qhoyqi68OHdnfdHmSBmEWDwZ7Wqg4Ae/e4z4Q7j2MaxHFx0/2abrop693PW4VsE7 8KkipyjKdvsID062uwGw/2+OuD5MqMs+Krh8BHrmOC+6+NpbVckTwzp7P1KjxfSK QbtcaRUy+q68SbusooZ265lwIgT3/7x3mg9TMkuGO6zA2D1mTirpi3zcoiScvL3L lqOfTxNfqHc+B03vI09oJMmPHQ/gVn4j3/oWwNc2Qjp8byMJ1dMWBpVmHUzlUDAo WWz1JNa+OTA5T+P7OXvXoD2wSYkCLPIE0gndpgpntbx6Svc2sQV3vJ8FviY1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXuNJkREVrpfK787jz1VKdKsE90kwHwYDVR0j BBgwFoAUKV+37LpiObZEWSvQQm8QHWRKD2EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGRlMmQwOTAtNDc2Ni00NzVjLTljZWYtN2JlYjU4NWNmMjQxLzAvMjk1RkI3RUNC QTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2NDRBMEY2MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yOTVGQjdFQ0JBNjIzOUI2NDQ1OTJCRDA0MjZGMTAxRDY0NEEw RjYxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8wLzMxMzUzNzJlMzYzNjJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnULAMA0GCSqG SIb3DQEBCwUAA4IBAQBsGUgJIhanG+MmCQifpXcvXNbUWwZj2CTgALVrg8Wb8Aop N2dGgqCCK+6G5bc3FgswBRFc03ayVeworh4eaukaRarPZpCDqYbCvpFMJjT+xLTJ 1aEcPyifJqgiXTYgL3/mra/UsByvfYjsIq4FZsPX0YDiciwt0dC5eCyhXMcZOjZU QgAS3DE3WG6U2ZB/AQDOEqYXqa5vON9TaZvi6oGBeXHLK46pKOmjtX17Wu3Te8oa 4lIRqoUchH9UL7dlNs5UHPpKC9/m99eizZiwOyeS263zKhFLWilTfMLK0k7NwZpe LlVxbtniY+8YQvXPPQfhMv9RmqCmwxPQjutWIvqe -----END CERTIFICATE-----Generated at Wed May 13 05:54:39 2026 by rpki-client