$ rpki-client -vvf rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139332e302f32342d3234203d3e20313532373730.roa File: 3135372e36362e3139332e302f32342d3234203d3e20313532373730.roa (raw, json) Hash identifier: 6VZQ++jLgt7SbEpV+414do5ReQLnOEeVOta5PPlvT9I= Subject key identifier: 9F:89:08:A7:F8:E1:1D:36:0A:98:68:80:25:1F:EC:B6:33:26:D2:01 Certificate issuer: /CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Certificate serial: 76D760A4EACD5A27F1987861BA77BAA5C3B6FD6C Authority key identifier: 29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139332e302f32342d3234203d3e20313532373730.roa Signing time: Sun 03 May 2026 02:13:15 +0000 ROA not before: Sun 03 May 2026 02:08:15 +0000 ROA not after: Sun 02 May 2027 02:13:15 +0000 asID: 152770 IP address blocks: 157.66.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:d7:60:a4:ea:cd:5a:27:f1:98:78:61:ba:77:ba:a5:c3:b6:fd:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295FB7ECBA6239B644592BD0426F101D644A0F61 Validity Not Before: May 3 02:08:15 2026 GMT Not After : May 2 02:13:15 2027 GMT Subject: CN=9F8908A7F8E11D360A986880251FECB63326D201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:03:0c:05:a5:f4:18:7f:0d:54:40:49:7c: 9d:06:5f:25:42:37:7a:ac:b8:f4:6f:45:02:a5:39: f8:ae:58:80:ab:29:73:4b:98:93:a2:98:db:d5:df: 42:76:77:41:a5:ab:7f:90:ef:48:2b:9c:a9:c9:bf: af:a9:e9:d2:2b:69:21:90:e8:5a:11:89:a6:b8:59: 7c:a3:47:b2:06:ce:e8:c2:5c:ba:73:4d:7a:d5:12: 35:be:34:df:de:c0:8c:d9:54:bd:6e:ba:01:40:22: cf:32:86:46:0d:d1:fb:16:21:73:3a:ce:b9:fa:59: b9:69:14:31:e4:8d:38:aa:7d:f9:cd:68:af:c9:49: a1:1b:a6:88:be:92:06:c7:87:5a:dd:55:df:61:97: a1:7e:e3:34:8b:07:8a:fc:99:f5:67:45:26:35:fb: 27:f6:c3:04:98:3d:57:19:11:c9:8c:68:f9:5e:7d: d7:2d:c2:12:f7:75:a5:8d:72:92:62:a2:0e:e0:d1: 30:c2:b5:bb:ad:7a:aa:30:31:97:88:99:9c:bb:32: 83:08:72:84:3d:2f:94:40:c0:ff:65:88:1a:3b:90: b2:d3:86:7c:99:8f:1c:34:40:43:b4:67:64:8b:df: c7:be:71:15:ae:b9:26:35:36:51:9d:56:92:23:a3: e5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:89:08:A7:F8:E1:1D:36:0A:98:68:80:25:1F:EC:B6:33:26:D2:01 X509v3 Authority Key Identifier: keyid:29:5F:B7:EC:BA:62:39:B6:44:59:2B:D0:42:6F:10:1D:64:4A:0F:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/295FB7ECBA6239B644592BD0426F101D644A0F61.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/295FB7ECBA6239B644592BD0426F101D644A0F61.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/3135372e36362e3139332e302f32342d3234203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.193.0/24 Signature Algorithm: sha256WithRSAEncryption 77:0b:10:76:0a:a5:8d:d8:0f:07:25:19:97:71:8c:1a:46:a4: ac:4b:48:bd:82:7d:5a:73:fd:37:27:50:ff:64:c3:7a:16:5b: f1:f7:00:e7:b5:11:84:86:de:87:20:d4:53:b6:e1:14:4f:76: b8:59:50:73:be:3d:ba:d7:21:19:87:d7:fd:05:f0:02:06:41: af:18:39:81:f3:43:c7:8d:10:91:d2:04:fe:4b:86:38:e5:5c: 66:32:0f:54:a9:8d:ae:76:74:02:ef:21:09:7f:6a:dd:84:c1: 8d:fc:5c:87:7f:2c:69:70:cd:67:b9:0c:61:de:de:59:f0:bb: 20:73:39:5b:0a:7b:38:72:26:b5:9c:1b:58:8d:12:5a:ce:ac: 78:65:b0:8e:07:37:51:55:04:29:11:81:14:e7:60:fe:7a:a6: 00:a2:4b:22:72:1e:4d:fd:31:9c:f8:50:3b:8e:86:94:5e:ea: 88:52:91:69:24:d4:e0:7f:ef:e2:9c:5c:7b:31:64:77:19:7c: dd:fa:c1:58:c1:21:83:fa:df:fc:da:66:c8:c3:48:22:91:84: 35:5e:44:44:88:81:ec:6a:3f:61:92:da:18:15:ea:ff:22:f1: 15:96:64:94:34:ec:35:07:f3:43:62:c5:29:d2:74:30:0b:6f: be:73:6f:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdtdgpOrNWifxmHhhune6pcO2/WwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1RkI3RUNCQTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2 NDRBMEY2MTAeFw0yNjA1MDMwMjA4MTVaFw0yNzA1MDIwMjEzMTVaMDMxMTAvBgNV BAMTKDlGODkwOEE3RjhFMTFEMzYwQTk4Njg4MDI1MUZFQ0I2MzMyNkQyMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3AwMMBaX0GH8NVEBJfJ0GXyVC N3qsuPRvRQKlOfiuWICrKXNLmJOimNvV30J2d0Glq3+Q70grnKnJv6+p6dIraSGQ 6FoRiaa4WXyjR7IGzujCXLpzTXrVEjW+NN/ewIzZVL1uugFAIs8yhkYN0fsWIXM6 zrn6WblpFDHkjTiqffnNaK/JSaEbpoi+kgbHh1rdVd9hl6F+4zSLB4r8mfVnRSY1 +yf2wwSYPVcZEcmMaPlefdctwhL3daWNcpJiog7g0TDCtbuteqowMZeImZy7MoMI coQ9L5RAwP9liBo7kLLThnyZjxw0QEO0Z2SL38e+cRWuuSY1NlGdVpIjo+UNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn4kIp/jhHTYKmGiAJR/stjMm0gEwHwYDVR0j BBgwFoAUKV+37LpiObZEWSvQQm8QHWRKD2EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGRlMmQwOTAtNDc2Ni00NzVjLTljZWYtN2JlYjU4NWNmMjQxLzAvMjk1RkI3RUNC QTYyMzlCNjQ0NTkyQkQwNDI2RjEwMUQ2NDRBMEY2MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yOTVGQjdFQ0JBNjIzOUI2NDQ1OTJCRDA0MjZGMTAxRDY0NEEw RjYxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8wLzMxMzUzNzJlMzYzNjJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnULBMA0GCSqG SIb3DQEBCwUAA4IBAQB3CxB2CqWN2A8HJRmXcYwaRqSsS0i9gn1ac/03J1D/ZMN6 Flvx9wDntRGEht6HINRTtuEUT3a4WVBzvj261yEZh9f9BfACBkGvGDmB80PHjRCR 0gT+S4Y45VxmMg9UqY2udnQC7yEJf2rdhMGN/FyHfyxpcM1nuQxh3t5Z8Lsgczlb Cns4cia1nBtYjRJazqx4ZbCOBzdRVQQpEYEU52D+eqYAoksich5N/TGc+FA7joaU XuqIUpFpJNTgf+/inFx7MWR3GXzd+sFYwSGD+t/82mbIw0gikYQ1XkREiIHsaj9h ktoYFer/IvEVlmSUNOw1B/NDYsUp0nQwC2++c28w -----END CERTIFICATE-----Generated at Wed May 13 07:15:05 2026 by rpki-client