$ rpki-client -vvf rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32342d3234203d3e20313532343236.roa File: 3135372e32302e3232302e302f32342d3234203d3e20313532343236.roa (raw, json) Hash identifier: XXmEikeW7+xMma0RK8ROxLTllOgfRUh6Qpdpx7HKJyc= Subject key identifier: 36:55:8D:0A:DA:D6:62:9F:D4:29:ED:2E:3B:E7:2B:9D:E0:35:BE:31 Certificate issuer: /CN=6B995520DD42E2AA6306A898618C472D1D5E4417 Certificate serial: 3D3D78DA64BC689D2F78DDC962664C9DB9A0DE6A Authority key identifier: 6B:99:55:20:DD:42:E2:AA:63:06:A8:98:61:8C:47:2D:1D:5E:44:17 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32342d3234203d3e20313532343236.roa Signing time: Sun 03 May 2026 02:13:40 +0000 ROA not before: Sun 03 May 2026 02:08:40 +0000 ROA not after: Sun 02 May 2027 02:13:40 +0000 asID: 152426 IP address blocks: 157.20.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.crl rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3d:78:da:64:bc:68:9d:2f:78:dd:c9:62:66:4c:9d:b9:a0:de:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B995520DD42E2AA6306A898618C472D1D5E4417 Validity Not Before: May 3 02:08:40 2026 GMT Not After : May 2 02:13:40 2027 GMT Subject: CN=36558D0ADAD6629FD429ED2E3BE72B9DE035BE31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:eb:d2:9f:ec:a9:3e:0b:c0:00:63:42:ed:0f: 7d:de:26:36:0f:03:78:5d:ca:75:24:dd:3c:65:aa: 76:a2:21:48:30:4b:ac:d2:38:12:90:ee:58:b5:40: 06:4d:ec:58:d3:35:63:a1:96:7f:6b:25:ed:6c:3a: 8a:a9:5a:cc:5e:b4:c5:29:c2:2c:fd:9d:35:ab:b7: d4:51:8a:f1:3c:ef:a3:34:e8:4b:43:e8:6d:0e:a5: f3:b2:05:f7:aa:58:9d:4e:e3:78:8a:6a:66:1b:58: f3:e7:8e:b6:6d:32:b7:6d:e1:44:63:f7:23:50:f6: 37:4d:d4:06:c4:69:9c:75:da:51:ce:cf:10:8f:dd: 91:1b:99:ff:91:03:8f:33:0a:6c:4e:c4:e7:ee:c2: 05:23:58:49:d6:25:dd:5e:58:75:57:e7:17:15:53: 2c:4a:c3:3b:5a:83:47:95:c1:3b:49:d9:3c:a6:60: 5e:06:38:88:1c:46:aa:8f:f5:06:db:c0:e4:0f:12: 3e:3d:1d:e5:f5:8e:96:cc:43:9f:ea:21:11:fb:00: de:27:4d:70:68:68:6e:63:67:13:fa:a7:e9:a1:cf: 52:37:da:12:c9:0e:f4:54:ef:74:b2:4c:ba:44:36: 1f:27:fc:a5:0e:f0:7f:b1:37:0f:7d:56:74:3a:98: da:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:55:8D:0A:DA:D6:62:9F:D4:29:ED:2E:3B:E7:2B:9D:E0:35:BE:31 X509v3 Authority Key Identifier: keyid:6B:99:55:20:DD:42:E2:AA:63:06:A8:98:61:8C:47:2D:1D:5E:44:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232302e302f32342d3234203d3e20313532343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.220.0/24 Signature Algorithm: sha256WithRSAEncryption b2:f8:38:07:bd:3d:ae:56:8c:37:a2:2f:1b:e6:9f:5f:bd:84: 7d:95:35:10:5f:3a:0d:e7:50:a4:ff:06:1a:28:e7:13:8a:22: 23:eb:5b:eb:2b:a9:4d:1d:d0:3d:7e:4b:8c:f9:f8:1e:1a:70: ae:e9:13:88:68:36:e3:c7:2e:a0:74:fa:d3:97:b6:b7:ab:64: 5e:f9:4d:4e:63:be:d2:88:4a:4e:b2:d2:1e:9b:1b:fd:9e:1d: d2:63:61:67:f9:29:58:24:85:65:b4:25:e8:c0:83:0a:ac:ae: 86:a3:7f:6a:be:79:a9:5c:b7:49:c8:37:b3:d2:8a:d2:2e:52: 94:e3:68:54:f1:1a:23:46:c3:1e:52:5f:52:c3:7e:cc:1c:75: 76:89:1d:dc:f6:91:65:5c:0a:16:55:ed:f5:34:77:9f:ff:cb: 4e:23:57:eb:bf:ae:1b:d9:4c:49:da:78:88:a6:75:87:db:47: 0c:e4:60:92:6a:85:18:d8:bd:2f:c7:85:31:1f:3b:0d:da:99: 86:cd:12:86:2b:be:8d:f2:25:70:5a:ae:8b:2b:4e:ec:d4:01: a8:4b:1a:51:80:20:a2:42:71:41:35:cf:0c:ec:f6:19:4d:3d: ef:46:9b:3f:ec:78:c7:f4:55:65:bf:0e:e5:0e:38:e6:38:5b: a7:80:54:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPT142mS8aJ0veN3JYmZMnbmg3mowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI5OTU1MjBERDQyRTJBQTYzMDZBODk4NjE4QzQ3MkQx RDVFNDQxNzAeFw0yNjA1MDMwMjA4NDBaFw0yNzA1MDIwMjEzNDBaMDMxMTAvBgNV BAMTKDM2NTU4RDBBREFENjYyOUZENDI5RUQyRTNCRTcyQjlERTAzNUJFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL69Kf7Kk+C8AAY0LtD33eJjYP A3hdynUk3TxlqnaiIUgwS6zSOBKQ7li1QAZN7FjTNWOhln9rJe1sOoqpWsxetMUp wiz9nTWrt9RRivE876M06EtD6G0OpfOyBfeqWJ1O43iKamYbWPPnjrZtMrdt4URj 9yNQ9jdN1AbEaZx12lHOzxCP3ZEbmf+RA48zCmxOxOfuwgUjWEnWJd1eWHVX5xcV UyxKwztag0eVwTtJ2TymYF4GOIgcRqqP9QbbwOQPEj49HeX1jpbMQ5/qIRH7AN4n TXBoaG5jZxP6p+mhz1I32hLJDvRU73SyTLpENh8n/KUO8H+xNw99VnQ6mNr5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNlWNCtrWYp/UKe0uO+crneA1vjEwHwYDVR0j BBgwFoAUa5lVIN1C4qpjBqiYYYxHLR1eRBcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGVkZDRjY2ItNDJlMy00YjcyLTkxOTMtZTkxOGU3YjMwNjdkLzAvNkI5OTU1MjBE RDQyRTJBQTYzMDZBODk4NjE4QzQ3MkQxRDVFNDQxNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Qjk5NTUyMERENDJFMkFBNjMwNkE4OTg2MThDNDcyRDFENUU0 NDE3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlZGQ0Y2NiLTQyZTMtNGI3Mi05 MTkzLWU5MThlN2IzMDY3ZC8wLzMxMzUzNzJlMzIzMDJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTcMA0GCSqG SIb3DQEBCwUAA4IBAQCy+DgHvT2uVow3oi8b5p9fvYR9lTUQXzoN51Ck/wYaKOcT iiIj61vrK6lNHdA9fkuM+fgeGnCu6ROIaDbjxy6gdPrTl7a3q2Re+U1OY77SiEpO stIemxv9nh3SY2Fn+SlYJIVltCXowIMKrK6Go39qvnmpXLdJyDez0orSLlKU42hU 8RojRsMeUl9Sw37MHHV2iR3c9pFlXAoWVe31NHef/8tOI1frv64b2UxJ2niIpnWH 20cM5GCSaoUY2L0vx4UxHzsN2pmGzRKGK76N8iVwWq6LK07s1AGoSxpRgCCiQnFB Nc8M7PYZTT3vRps/7HjH9FVlvw7lDjjmOFungFSc -----END CERTIFICATE-----Generated at Wed May 13 00:31:06 2026 by rpki-client