$ rpki-client -vvf rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa File: 3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa (raw, json) Hash identifier: RIdJ/cXYXoiLhfv+EGFjwti65Zd3wn1vdkd4IsQmrxo= Subject key identifier: 41:6E:81:D8:EB:BE:18:34:B0:64:3C:50:83:D1:3E:E9:79:5C:34:62 Certificate issuer: /CN=6B995520DD42E2AA6306A898618C472D1D5E4417 Certificate serial: 1D955A86338DE21D2682745879453DA33352B720 Authority key identifier: 6B:99:55:20:DD:42:E2:AA:63:06:A8:98:61:8C:47:2D:1D:5E:44:17 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa Signing time: Sun 03 May 2026 02:13:38 +0000 ROA not before: Sun 03 May 2026 02:08:38 +0000 ROA not after: Sun 02 May 2027 02:13:38 +0000 asID: 152426 IP address blocks: 157.20.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.crl rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:95:5a:86:33:8d:e2:1d:26:82:74:58:79:45:3d:a3:33:52:b7:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B995520DD42E2AA6306A898618C472D1D5E4417 Validity Not Before: May 3 02:08:38 2026 GMT Not After : May 2 02:13:38 2027 GMT Subject: CN=416E81D8EBBE1834B0643C5083D13EE9795C3462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:dc:f7:c3:6d:a8:6d:39:87:fc:38:d4:72: 3b:d8:a1:75:e2:b5:08:13:01:9e:55:d7:6b:fe:81: 09:0d:61:66:64:1a:f6:ac:bd:9b:55:a4:dd:8c:47: 1c:05:0b:e8:36:54:1e:10:98:d9:83:45:d5:4f:85: 74:a7:39:15:7c:f1:2c:3f:75:d5:2f:be:7f:09:18: cb:45:7b:08:42:66:19:33:f3:51:cc:a2:d4:51:4b: b2:58:75:df:c7:8b:06:a8:ee:ca:57:c3:5f:0f:41: 79:81:fa:3f:ea:57:a2:a6:d1:af:0d:03:d5:6b:f4: 9a:21:6c:74:ad:8e:6c:c6:dc:01:27:df:46:cf:9e: 94:3b:0e:f1:8f:55:0b:37:10:cf:49:16:04:cf:91: 18:96:48:f7:c6:e9:2a:cf:b9:ca:a9:e8:98:58:0a: a1:2c:4c:33:26:2d:6c:ac:70:1b:a0:12:ac:6c:a2: d9:3e:47:40:fb:9d:4c:07:6a:6e:25:cc:ff:f7:90: d9:b3:c1:17:52:89:4a:ec:e5:9c:a3:8f:8c:2c:ed: 26:e6:a0:a5:a0:e3:a3:65:d5:63:8f:a3:f5:d8:ef: b6:d6:34:22:17:76:7e:63:84:12:ae:55:3c:44:b2: a6:d9:88:a2:0d:6d:07:e5:a7:d0:8e:a3:2b:2d:de: c8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6E:81:D8:EB:BE:18:34:B0:64:3C:50:83:D1:3E:E9:79:5C:34:62 X509v3 Authority Key Identifier: keyid:6B:99:55:20:DD:42:E2:AA:63:06:A8:98:61:8C:47:2D:1D:5E:44:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/6B995520DD42E2AA6306A898618C472D1D5E4417.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6B995520DD42E2AA6306A898618C472D1D5E4417.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0edd4ccb-42e3-4b72-9193-e918e7b3067d/0/3135372e32302e3232312e302f32342d3234203d3e20313532343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.221.0/24 Signature Algorithm: sha256WithRSAEncryption 89:b2:d0:0b:72:76:32:e5:5d:78:a7:7a:9d:a4:60:12:17:24: fa:10:35:64:d1:b1:97:22:6e:9c:16:8b:3d:30:4f:b2:bd:3e: 16:d2:22:29:41:6f:5a:cf:2a:1e:b1:cc:5b:81:5d:d4:64:59: 2a:fe:49:08:ee:6f:c7:f7:3f:0b:fd:00:bb:4e:3d:b5:4d:cc: d5:43:22:61:59:76:6b:13:8f:8c:ec:a7:1c:87:40:72:88:bd: e9:82:06:4b:26:a0:1d:cf:62:e4:79:13:e9:48:50:82:43:b1: 49:d1:13:5a:e3:73:72:64:71:bf:64:26:51:f7:70:ae:cc:b5: 20:95:96:3b:16:ab:dd:62:d4:16:34:c3:7f:00:52:5f:5f:c4: 8e:94:d0:08:84:28:db:36:90:d9:c6:16:9c:30:34:3e:9f:eb: ce:51:74:07:ea:32:3c:f6:c9:00:e1:0d:9b:44:d7:78:54:37: 4a:25:21:86:2d:26:6a:01:68:f7:46:79:b9:52:92:d7:64:2c: 86:83:85:86:1c:78:3c:37:b0:cf:5e:bd:37:d7:0e:51:73:09: b5:8f:a3:7c:73:8a:a9:a8:1e:2c:a3:d2:18:f1:ba:7f:cf:5f: 42:44:ac:16:2e:24:01:b6:b2:50:06:00:50:3c:ea:ff:ed:fb: 12:a6:dc:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHZVahjON4h0mgnRYeUU9ozNStyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI5OTU1MjBERDQyRTJBQTYzMDZBODk4NjE4QzQ3MkQx RDVFNDQxNzAeFw0yNjA1MDMwMjA4MzhaFw0yNzA1MDIwMjEzMzhaMDMxMTAvBgNV BAMTKDQxNkU4MUQ4RUJCRTE4MzRCMDY0M0M1MDgzRDEzRUU5Nzk1QzM0NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqRdz3w22obTmH/DjUcjvYoXXi tQgTAZ5V12v+gQkNYWZkGvasvZtVpN2MRxwFC+g2VB4QmNmDRdVPhXSnORV88Sw/ ddUvvn8JGMtFewhCZhkz81HMotRRS7JYdd/Hiwao7spXw18PQXmB+j/qV6Km0a8N A9Vr9JohbHStjmzG3AEn30bPnpQ7DvGPVQs3EM9JFgTPkRiWSPfG6SrPucqp6JhY CqEsTDMmLWyscBugEqxsotk+R0D7nUwHam4lzP/3kNmzwRdSiUrs5Zyjj4ws7Sbm oKWg46Nl1WOPo/XY77bWNCIXdn5jhBKuVTxEsqbZiKINbQflp9COoyst3sjBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQW6B2Ou+GDSwZDxQg9E+6XlcNGIwHwYDVR0j BBgwFoAUa5lVIN1C4qpjBqiYYYxHLR1eRBcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGVkZDRjY2ItNDJlMy00YjcyLTkxOTMtZTkxOGU3YjMwNjdkLzAvNkI5OTU1MjBE RDQyRTJBQTYzMDZBODk4NjE4QzQ3MkQxRDVFNDQxNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Qjk5NTUyMERENDJFMkFBNjMwNkE4OTg2MThDNDcyRDFENUU0 NDE3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlZGQ0Y2NiLTQyZTMtNGI3Mi05 MTkzLWU5MThlN2IzMDY3ZC8wLzMxMzUzNzJlMzIzMDJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTdMA0GCSqG SIb3DQEBCwUAA4IBAQCJstALcnYy5V14p3qdpGASFyT6EDVk0bGXIm6cFos9ME+y vT4W0iIpQW9azyoescxbgV3UZFkq/kkI7m/H9z8L/QC7Tj21TczVQyJhWXZrE4+M 7Kcch0ByiL3pggZLJqAdz2LkeRPpSFCCQ7FJ0RNa43NyZHG/ZCZR93CuzLUglZY7 FqvdYtQWNMN/AFJfX8SOlNAIhCjbNpDZxhacMDQ+n+vOUXQH6jI89skA4Q2bRNd4 VDdKJSGGLSZqAWj3Rnm5UpLXZCyGg4WGHHg8N7DPXr031w5Rcwm1j6N8c4qpqB4s o9IY8bp/z19CRKwWLiQBtrJQBgBQPOr/7fsSptwc -----END CERTIFICATE-----Generated at Wed May 13 01:14:42 2026 by rpki-client