$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa File: 3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: t5qlWMCg2l2O2xAA9OrAnjww8OOdg9aeZk/sDXkOKPY= Subject key identifier: EF:B9:57:6F:A2:1D:66:74:6D:AF:B5:48:C4:6E:8A:D2:D9:11:32:3D Certificate issuer: /CN=A3ECF91698ACD25C4EFB56C39B77F8F514511335 Certificate serial: 0B49F2B43B648D8B4459D8E0429E45867EBD728A Authority key identifier: A3:EC:F9:16:98:AC:D2:5C:4E:FB:56:C3:9B:77:F8:F5:14:51:13:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:13:25 +0000 ROA not before: Sun 03 May 2026 02:08:25 +0000 ROA not after: Sun 02 May 2027 02:13:25 +0000 asID: 138089 IP address blocks: 157.20.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.crl rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:49:f2:b4:3b:64:8d:8b:44:59:d8:e0:42:9e:45:86:7e:bd:72:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3ECF91698ACD25C4EFB56C39B77F8F514511335 Validity Not Before: May 3 02:08:25 2026 GMT Not After : May 2 02:13:25 2027 GMT Subject: CN=EFB9576FA21D66746DAFB548C46E8AD2D911323D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:84:09:64:ea:52:e4:ba:d8:11:20:3d:2e: ed:74:7f:f8:2c:fa:40:ff:e2:e6:46:43:f9:1e:73: 11:be:74:d1:7d:97:47:cc:d6:a1:f4:43:7d:18:f9: 2f:e1:24:63:d7:c5:df:e9:36:37:7e:6f:b9:3c:0b: 35:b6:4a:d6:17:97:5f:bc:b9:67:40:2a:ee:f2:6a: 80:a7:0c:fb:ea:e3:d0:fc:c0:d5:a9:1a:70:e8:e3: 9a:3c:e2:1e:62:50:de:e5:61:99:fd:c6:05:1a:0f: 8f:90:c0:1c:3b:ca:01:90:d6:d0:60:4e:12:f2:ec: d2:97:1f:4a:89:43:4e:d4:e3:67:02:d7:cf:ef:3a: a9:b0:89:33:ac:32:6f:34:80:45:78:f7:6f:a0:4b: 2c:7b:95:3e:88:c0:3e:89:b0:b0:b4:d4:6f:7b:16: de:2a:c0:36:be:5b:e5:50:1e:84:14:1a:24:5d:1d: 3c:00:08:90:5b:d9:f0:d3:38:04:ec:e7:a3:73:ae: 2e:20:ca:70:b1:ae:c9:db:a4:90:1d:ce:6a:fc:7b: dd:1f:3a:45:c9:c7:9e:7d:a8:b9:c4:c1:bb:02:8d: aa:c7:c6:9f:1d:95:1e:e4:b4:cf:c4:cd:b9:17:3e: 68:bc:60:0f:2a:df:f6:5d:0f:a7:ed:26:a6:00:f6: 41:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B9:57:6F:A2:1D:66:74:6D:AF:B5:48:C4:6E:8A:D2:D9:11:32:3D X509v3 Authority Key Identifier: keyid:A3:EC:F9:16:98:AC:D2:5C:4E:FB:56:C3:9B:77:F8:F5:14:51:13:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A3ECF91698ACD25C4EFB56C39B77F8F514511335.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235332e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.253.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:12:44:74:cc:9f:74:a3:6b:37:2f:d3:21:30:55:0d:63:5e: 96:5a:d5:d2:f2:bb:67:99:03:97:1c:03:a5:01:d5:2b:28:81: e9:d8:ac:2f:6e:33:b8:e4:66:1a:e4:56:63:ae:1c:d0:87:07: e0:81:6f:5f:50:3b:8c:95:4d:01:cc:97:45:49:e9:8e:ef:15: 2a:48:7e:de:51:c9:6c:b1:6f:5d:9f:fd:e5:3e:76:d5:80:26: 9f:34:83:e8:ee:72:cb:13:eb:1b:2d:d2:b4:ec:df:a1:a8:47: f5:2b:cc:fc:d5:c8:41:36:0b:83:86:7f:81:09:61:df:da:3c: e7:11:72:01:27:0b:55:d2:23:0b:9b:aa:05:0b:9b:7f:cc:d8: 8d:fc:44:02:67:6f:ce:e5:dd:03:22:ac:a5:3c:f9:be:ca:17: d8:7e:11:80:a0:c1:b1:c2:04:4b:97:23:67:ea:2b:f0:22:8a: 52:48:d2:f3:cd:e3:b6:9b:40:74:5a:22:69:3c:0b:1f:ed:1d: 7c:55:b4:78:a0:a5:5b:c7:48:fc:78:e6:05:65:a6:20:53:ab: 2b:56:57:2c:6b:5c:a7:1b:3d:37:5d:b7:8b:ae:ed:c3:5d:f9: 39:e0:9a:0d:c9:24:6b:8c:36:c4:e8:1e:a3:7e:9d:26:c5:89: 01:6c:87:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC0nytDtkjYtEWdjgQp5Fhn69coowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTNFQ0Y5MTY5OEFDRDI1QzRFRkI1NkMzOUI3N0Y4RjUx NDUxMTMzNTAeFw0yNjA1MDMwMjA4MjVaFw0yNzA1MDIwMjEzMjVaMDMxMTAvBgNV BAMTKEVGQjk1NzZGQTIxRDY2NzQ2REFGQjU0OEM0NkU4QUQyRDkxMTMyM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEA4QJZOpS5LrYESA9Lu10f/gs +kD/4uZGQ/kecxG+dNF9l0fM1qH0Q30Y+S/hJGPXxd/pNjd+b7k8CzW2StYXl1+8 uWdAKu7yaoCnDPvq49D8wNWpGnDo45o84h5iUN7lYZn9xgUaD4+QwBw7ygGQ1tBg ThLy7NKXH0qJQ07U42cC18/vOqmwiTOsMm80gEV492+gSyx7lT6IwD6JsLC01G97 Ft4qwDa+W+VQHoQUGiRdHTwACJBb2fDTOATs56Nzri4gynCxrsnbpJAdzmr8e90f OkXJx559qLnEwbsCjarHxp8dlR7ktM/EzbkXPmi8YA8q3/ZdD6ftJqYA9kEdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU77lXb6IdZnRtr7VIxG6K0tkRMj0wHwYDVR0j BBgwFoAUo+z5Fpis0lxO+1bDm3f49RRREzUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU4ZDU4YTgtZTE5Ny00MTc5LWI3M2MtNjA4ZTA0N2QwOWEzLzAvQTNFQ0Y5MTY5 OEFDRDI1QzRFRkI1NkMzOUI3N0Y4RjUxNDUxMTMzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BM0VDRjkxNjk4QUNEMjVDNEVGQjU2QzM5Qjc3RjhGNTE0NTEx MzM1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlOGQ1OGE4LWUxOTctNDE3OS1i NzNjLTYwOGUwNDdkMDlhMy8wLzMxMzUzNzJlMzIzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT9MA0GCSqG SIb3DQEBCwUAA4IBAQBLEkR0zJ90o2s3L9MhMFUNY16WWtXS8rtnmQOXHAOlAdUr KIHp2KwvbjO45GYa5FZjrhzQhwfggW9fUDuMlU0BzJdFSemO7xUqSH7eUclssW9d n/3lPnbVgCafNIPo7nLLE+sbLdK07N+hqEf1K8z81chBNguDhn+BCWHf2jznEXIB JwtV0iMLm6oFC5t/zNiN/EQCZ2/O5d0DIqylPPm+yhfYfhGAoMGxwgRLlyNn6ivw IopSSNLzzeO2m0B0WiJpPAsf7R18VbR4oKVbx0j8eOYFZaYgU6srVlcsa1ynGz03 XbeLru3DXfk54JoNySRrjDbE6B6jfp0mxYkBbIcy -----END CERTIFICATE-----Generated at Wed May 13 02:49:19 2026 by rpki-client