$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa File: 3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa (raw, json) Hash identifier: 9QZ4zyqSjuEvfgjJyJcGuDYRra6HiDhsRoStARqfwRU= Subject key identifier: D1:11:91:49:63:5B:B9:F6:F9:44:4A:36:F1:49:FC:00:50:72:9C:88 Certificate issuer: /CN=A3ECF91698ACD25C4EFB56C39B77F8F514511335 Certificate serial: 7F7B5B268FE618AED164D9653E0D4521455FFF09 Authority key identifier: A3:EC:F9:16:98:AC:D2:5C:4E:FB:56:C3:9B:77:F8:F5:14:51:13:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:13:25 +0000 ROA not before: Sun 03 May 2026 02:08:25 +0000 ROA not after: Sun 02 May 2027 02:13:25 +0000 asID: 138089 IP address blocks: 157.20.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.crl rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7b:5b:26:8f:e6:18:ae:d1:64:d9:65:3e:0d:45:21:45:5f:ff:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3ECF91698ACD25C4EFB56C39B77F8F514511335 Validity Not Before: May 3 02:08:25 2026 GMT Not After : May 2 02:13:25 2027 GMT Subject: CN=D1119149635BB9F6F9444A36F149FC0050729C88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3b:84:4c:23:d1:cf:22:4a:88:aa:30:ba:23: cf:4f:4f:0e:80:a7:9d:20:86:12:f4:5a:9d:c1:53: da:c6:2a:b1:65:16:69:cb:d0:12:14:5e:1b:3f:6e: fd:79:d6:21:4c:77:c5:c8:5c:b2:dc:19:a2:2a:3b: 90:1a:fd:ff:19:ff:71:40:56:e4:b7:5e:45:d7:27: 17:4c:ca:41:f8:3e:c2:17:5e:ab:55:6d:8c:68:cb: 74:3b:3a:70:01:ef:9c:fc:71:1f:65:24:24:d2:26: d3:07:85:9f:b1:12:ce:11:3e:0d:f0:2c:20:34:d7: 26:9b:40:90:b2:a0:d1:f1:7e:e6:5c:48:1d:e0:d3: 1c:d0:f1:0a:a4:aa:dc:77:08:2c:6a:50:33:3a:ca: 92:08:c0:38:10:a6:38:75:ca:73:ba:d9:5d:20:3d: 97:56:67:72:9c:ea:3b:65:6d:ba:d1:79:3a:c9:fc: 50:80:89:31:f1:bb:16:97:24:a1:3e:6c:37:b7:ff: 65:76:80:f6:99:e2:f9:a8:22:b7:74:7b:d8:15:e1: 9c:2f:a7:85:6b:5f:a5:46:c5:ef:1a:19:22:d7:39: 3f:6c:f8:c7:ed:f0:dd:e9:d1:1f:23:09:f8:e9:91: c4:e1:f9:a2:53:7b:47:c3:36:83:c8:18:b6:ca:04: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:11:91:49:63:5B:B9:F6:F9:44:4A:36:F1:49:FC:00:50:72:9C:88 X509v3 Authority Key Identifier: keyid:A3:EC:F9:16:98:AC:D2:5C:4E:FB:56:C3:9B:77:F8:F5:14:51:13:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32332d3233203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.252.0/23 Signature Algorithm: sha256WithRSAEncryption 96:e1:f7:bc:c9:84:bd:9b:3f:2c:3d:9e:9c:03:6b:66:de:58: e2:1b:12:bd:b9:f0:e2:0f:63:a6:75:17:fb:31:8b:a2:55:cb: bc:14:3f:18:b2:6c:f6:ad:70:12:0a:5e:a5:b6:5e:17:77:01: 4c:de:b9:1a:9b:74:1e:aa:5b:71:9a:e0:35:ee:55:ee:91:2a: 2d:ce:b8:65:c6:d9:f9:fe:61:0a:43:10:30:a9:4e:c6:8d:56: 98:cc:5c:5d:ff:99:b9:11:2b:ae:2b:59:06:e3:5f:5a:92:7e: 11:a6:af:ed:42:dc:61:66:00:0a:e4:75:03:0d:3c:ce:49:d4: 43:15:4b:97:72:9d:d7:03:f2:c2:f2:48:4e:6f:42:53:43:c3: 5b:91:17:76:0f:6f:25:ce:8b:00:3e:1e:20:92:cb:ae:f9:33: 4b:5a:69:d4:7d:b0:26:8c:41:ef:e7:9a:ee:fa:2e:ce:d2:5a: b1:33:d4:11:9c:c4:1c:ed:3a:f9:a3:cb:dd:aa:18:87:32:e6: 43:a7:54:16:ec:e4:48:f5:ea:e3:f4:46:6a:39:c7:89:ef:ed: 8b:0e:6b:3e:4f:ae:26:09:10:84:b1:dc:62:07:e5:7e:2e:3b: 9d:3c:dc:9f:b6:bd:26:dd:9e:06:3c:fa:d4:53:5b:77:c9:c9: 3b:86:a5:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf3tbJo/mGK7RZNllPg1FIUVf/wkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTNFQ0Y5MTY5OEFDRDI1QzRFRkI1NkMzOUI3N0Y4RjUx NDUxMTMzNTAeFw0yNjA1MDMwMjA4MjVaFw0yNzA1MDIwMjEzMjVaMDMxMTAvBgNV BAMTKEQxMTE5MTQ5NjM1QkI5RjZGOTQ0NEEzNkYxNDlGQzAwNTA3MjlDODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBO4RMI9HPIkqIqjC6I89PTw6A p50ghhL0Wp3BU9rGKrFlFmnL0BIUXhs/bv151iFMd8XIXLLcGaIqO5Aa/f8Z/3FA VuS3XkXXJxdMykH4PsIXXqtVbYxoy3Q7OnAB75z8cR9lJCTSJtMHhZ+xEs4RPg3w LCA01yabQJCyoNHxfuZcSB3g0xzQ8Qqkqtx3CCxqUDM6ypIIwDgQpjh1ynO62V0g PZdWZ3Kc6jtlbbrReTrJ/FCAiTHxuxaXJKE+bDe3/2V2gPaZ4vmoIrd0e9gV4Zwv p4VrX6VGxe8aGSLXOT9s+Mft8N3p0R8jCfjpkcTh+aJTe0fDNoPIGLbKBD8zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0RGRSWNbufb5REo28Un8AFBynIgwHwYDVR0j BBgwFoAUo+z5Fpis0lxO+1bDm3f49RRREzUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU4ZDU4YTgtZTE5Ny00MTc5LWI3M2MtNjA4ZTA0N2QwOWEzLzAvQTNFQ0Y5MTY5 OEFDRDI1QzRFRkI1NkMzOUI3N0Y4RjUxNDUxMTMzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BM0VDRjkxNjk4QUNEMjVDNEVGQjU2QzM5Qjc3RjhGNTE0NTEx MzM1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRT8MA0GCSqG SIb3DQEBCwUAA4IBAQCW4fe8yYS9mz8sPZ6cA2tm3ljiGxK9ufDiD2OmdRf7MYui Vcu8FD8Ysmz2rXASCl6ltl4XdwFM3rkam3QeqltxmuA17lXukSotzrhlxtn5/mEK QxAwqU7GjVaYzFxd/5m5ESuuK1kG419akn4Rpq/tQtxhZgAK5HUDDTzOSdRDFUuX cp3XA/LC8khOb0JTQ8NbkRd2D28lzosAPh4gksuu+TNLWmnUfbAmjEHv55ru+i7O 0lqxM9QRnMQc7Tr5o8vdqhiHMuZDp1QW7ORI9erj9EZqOceJ7+2LDms+T64mCRCE sdxiB+V+LjudPNyftr0m3Z4GPPrUU1t3yck7hqVQ -----END CERTIFICATE-----Generated at Wed May 13 01:45:14 2026 by rpki-client