$ rpki-client -vvf rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32342d3234203d3e20313532373730.roa File: 3135372e36362e3139322e302f32342d3234203d3e20313532373730.roa (raw, json) Hash identifier: sL7ncgOu/bSnEPaPTAZmx8BjyCkpPb4ur9OMw0WuPnA= Subject key identifier: 3F:C2:C1:FC:B1:65:D9:A3:4A:66:CD:FC:7B:1A:9D:52:A6:71:CA:59 Certificate issuer: /CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Certificate serial: 2A232FC8D76E998E682F0FCC9D5AFBA20C503E23 Authority key identifier: 29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32342d3234203d3e20313532373730.roa Signing time: Sun 03 May 2026 02:13:15 +0000 ROA not before: Sun 03 May 2026 02:08:15 +0000 ROA not after: Sun 02 May 2027 02:13:15 +0000 asID: 152770 IP address blocks: 157.66.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:23:2f:c8:d7:6e:99:8e:68:2f:0f:cc:9d:5a:fb:a2:0c:50:3e:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Validity Not Before: May 3 02:08:15 2026 GMT Not After : May 2 02:13:15 2027 GMT Subject: CN=3FC2C1FCB165D9A34A66CDFC7B1A9D52A671CA59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1b:f7:37:8f:2b:42:2b:76:23:85:57:08:2a: 47:46:6e:8e:bb:f9:83:b5:82:91:47:db:76:7e:93: d5:c3:cb:68:07:8f:d5:55:be:3a:2b:84:38:35:0b: 0b:4a:8d:af:6a:42:55:fd:73:37:9c:c3:2b:0f:6b: 1b:5f:ba:d5:04:71:24:87:91:33:41:7c:e4:5f:75: 9e:43:75:52:4e:38:94:d9:f4:fd:86:ab:02:26:7e: bb:12:46:7e:77:16:2f:28:6a:ae:0d:56:6e:64:44: 68:19:ab:ec:6c:c0:c1:ab:cd:c3:ca:75:95:24:ce: 69:b7:cb:62:ec:c9:14:d1:86:0f:4b:60:b7:bc:d3: d5:d1:b6:a3:26:59:28:71:76:a0:45:76:9d:df:5d: 58:cb:fc:a3:21:9c:f6:6b:7c:d7:e4:4d:3a:30:86: dd:85:97:15:80:5d:9f:48:33:7d:33:48:fd:27:79: f0:80:d3:25:29:5b:a6:ad:26:68:ac:fc:6c:7b:71: 24:15:ba:7d:f2:1c:5b:3d:06:ee:55:c2:8f:63:ba: 7e:98:07:b3:b9:9f:46:9b:6a:f6:52:a7:8f:ce:e4: e2:f2:63:4c:4f:6d:28:90:20:d6:38:1c:fd:52:4f: d2:c4:6e:94:69:c8:a5:c3:6f:af:cd:40:55:38:6c: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C2:C1:FC:B1:65:D9:A3:4A:66:CD:FC:7B:1A:9D:52:A6:71:CA:59 X509v3 Authority Key Identifier: keyid:29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139322e302f32342d3234203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/24 Signature Algorithm: sha256WithRSAEncryption 98:d1:00:2a:c3:25:45:7a:41:bf:e6:6d:7d:64:5a:9d:29:e7: c5:38:39:be:23:13:bc:b9:ea:74:c9:a1:74:23:60:b8:85:33: 07:2d:72:47:95:9d:55:91:c1:36:25:81:6d:8d:16:0c:c7:d5: b9:fb:b1:b8:fa:5f:2f:84:1d:6f:ea:68:b7:dd:06:d5:b7:54: 75:48:76:d3:ec:48:91:bc:77:91:01:2e:9e:de:f4:38:35:79: cc:ac:8e:96:4e:23:74:4b:c3:32:5b:ee:ba:fc:e8:25:92:99: d1:8f:3d:47:67:66:b7:64:21:4b:35:a8:b7:3e:96:71:c9:9b: 24:14:94:bd:b3:0e:99:0e:bf:0a:31:31:ab:08:92:06:b7:10: f6:22:eb:30:8f:84:e7:c2:b0:e1:0b:26:e1:9e:05:ae:49:6c: 4c:c6:d8:61:e9:2a:74:97:08:3d:03:ac:42:7e:a7:1f:8d:25: bf:e2:fd:14:03:cc:7a:61:1f:06:25:69:2f:3c:7d:61:80:a8: 03:00:cc:de:42:d0:48:23:2f:59:d7:0d:a1:d7:05:11:86:04: 19:d2:03:35:8c:1d:f5:9c:7f:e3:22:52:9e:e9:54:91:65:cd: d5:ca:17:da:0f:d5:be:af:bb:5b:f3:78:14:00:41:5e:17:3e: ba:d3:00:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKiMvyNdumY5oLw/MnVr7ogxQPiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1RkI3RUNCQTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2 NDRBMEY2MTAeFw0yNjA1MDMwMjA4MTVaFw0yNzA1MDIwMjEzMTVaMDMxMTAvBgNV BAMTKDNGQzJDMUZDQjE2NUQ5QTM0QTY2Q0RGQzdCMUE5RDUyQTY3MUNBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkG/c3jytCK3YjhVcIKkdGbo67 +YO1gpFH23Z+k9XDy2gHj9VVvjorhDg1CwtKja9qQlX9czecwysPaxtfutUEcSSH kTNBfORfdZ5DdVJOOJTZ9P2GqwImfrsSRn53Fi8oaq4NVm5kRGgZq+xswMGrzcPK dZUkzmm3y2LsyRTRhg9LYLe809XRtqMmWShxdqBFdp3fXVjL/KMhnPZrfNfkTTow ht2FlxWAXZ9IM30zSP0nefCA0yUpW6atJmis/Gx7cSQVun3yHFs9Bu5Vwo9jun6Y B7O5n0abavZSp4/O5OLyY0xPbSiQINY4HP1ST9LEbpRpyKXDb6/NQFU4bJhzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP8LB/LFl2aNKZs38exqdUqZxylkwHwYDVR0j BBgwFoAUKV+37LpiObZEWSvQQm8QHWRKD2EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGRlMmQwOTAtNDc2Ni00NzVjLTljZWYtN2JlYjU4NWNmMjQxLzAvMjk1RkI3RUNC QTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2NDRBMEY2MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yOTVGQjdFQ0JBNjIzOUI2NDQ1OTJCRDA0MjZGMTAxRDY0NEEw RjYxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8wLzMxMzUzNzJlMzYzNjJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnULAMA0GCSqG SIb3DQEBCwUAA4IBAQCY0QAqwyVFekG/5m19ZFqdKefFODm+IxO8uep0yaF0I2C4 hTMHLXJHlZ1VkcE2JYFtjRYMx9W5+7G4+l8vhB1v6mi33QbVt1R1SHbT7EiRvHeR AS6e3vQ4NXnMrI6WTiN0S8MyW+66/OglkpnRjz1HZ2a3ZCFLNai3PpZxyZskFJS9 sw6ZDr8KMTGrCJIGtxD2Iuswj4TnwrDhCybhngWuSWxMxthh6Sp0lwg9A6xCfqcf jSW/4v0UA8x6YR8GJWkvPH1hgKgDAMzeQtBIIy9Z1w2h1wURhgQZ0gM1jB31nH/j IlKe6VSRZc3VyhfaD9W+r7tb83gUAEFeFz660wAS -----END CERTIFICATE-----Generated at Wed May 13 06:04:24 2026 by rpki-client