$ rpki-client -vvf rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa File: 3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa (raw, json) Hash identifier: cmFTYv98kn/mEZWP5EcJYaksJif2GXeXwCVgddmTNmI= Subject key identifier: 1B:7C:68:3B:B8:90:D9:75:A9:4F:76:31:D9:D5:03:D5:93:EF:42:72 Certificate issuer: /CN=46F8F0A6E74A5056E63C041AECC551723DE9FC1F Certificate serial: 0F1DE30647D486A5BA5974B6D20084DFE57A293E Authority key identifier: 46:F8:F0:A6:E7:4A:50:56:E6:3C:04:1A:EC:C5:51:72:3D:E9:FC:1F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa Signing time: Sun 03 May 2026 02:13:49 +0000 ROA not before: Sun 03 May 2026 02:08:49 +0000 ROA not after: Sun 02 May 2027 02:13:49 +0000 asID: 139937 IP address blocks: 157.66.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.crl rsync://rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1d:e3:06:47:d4:86:a5:ba:59:74:b6:d2:00:84:df:e5:7a:29:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46F8F0A6E74A5056E63C041AECC551723DE9FC1F Validity Not Before: May 3 02:08:49 2026 GMT Not After : May 2 02:13:49 2027 GMT Subject: CN=1B7C683BB890D975A94F7631D9D503D593EF4272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c8:6f:5e:5c:30:90:0c:2e:01:bd:71:07:c8: c9:32:16:ff:fd:49:bd:7a:80:2f:be:22:ea:57:d5: f7:27:32:e0:93:b3:14:6d:00:e9:f5:2a:13:11:5d: b7:1b:9c:a6:7e:8f:c5:91:95:6e:71:d9:89:20:a6: 74:d4:f9:3a:a3:2c:3a:6a:89:bf:01:9e:38:8f:5a: d7:db:31:c7:02:8c:a9:50:2d:28:ea:6b:5b:a9:bd: 80:66:d3:c9:25:2d:c8:94:49:dc:50:9d:04:bd:7e: 99:30:88:8e:77:ad:39:77:03:49:23:35:e7:55:3d: 09:f1:d6:f8:68:8f:e8:89:54:09:87:d0:51:8e:f9: 96:1d:9e:53:ae:3c:36:dc:91:50:1f:0e:0a:9f:66: 31:19:0c:f4:01:f2:17:b7:a0:72:0b:3b:69:fe:e3: ff:1f:14:59:ac:8b:8a:a0:83:8e:27:56:5f:77:de: 8d:e4:42:3f:c9:7a:eb:f8:aa:a2:1a:f9:88:67:91: f5:d9:ac:9d:d4:2a:e7:50:b0:59:7c:0a:69:24:13: cc:a9:49:10:55:cd:62:2d:c6:7d:a6:b7:19:4c:b5: 7e:bf:e0:30:0c:0d:9b:3d:5a:3a:a7:28:1f:e4:7a: 83:63:e2:ef:f3:a0:72:9b:ae:d9:4f:c5:8b:2d:53: d4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7C:68:3B:B8:90:D9:75:A9:4F:76:31:D9:D5:03:D5:93:EF:42:72 X509v3 Authority Key Identifier: keyid:46:F8:F0:A6:E7:4A:50:56:E6:3C:04:1A:EC:C5:51:72:3D:E9:FC:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/46F8F0A6E74A5056E63C041AECC551723DE9FC1F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0f8d824d-d6a1-4543-9cf0-d9926832f29f/0/3135372e36362e3133312e302f32342d3234203d3e20313339393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.131.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:d9:87:d0:30:9e:56:5d:c1:c4:52:51:5a:8d:c4:d9:ba:e3: 91:2d:6a:f3:e3:bb:b1:90:6e:35:42:c4:cc:f3:09:d4:c3:8c: e9:da:2a:d1:66:c1:82:42:3e:e8:ee:53:ca:bf:85:00:04:bd: fc:da:c1:e7:43:7c:50:db:3f:38:6e:82:a3:5f:9f:81:2c:81: 8a:c0:97:3c:df:46:34:da:18:d4:ac:e3:c8:1a:52:60:c6:e1: 0f:a3:40:43:79:d4:f5:04:e4:56:f0:32:88:64:a2:6d:84:ef: 0f:c4:bd:34:d5:29:9f:7e:6a:4c:34:78:91:fb:03:7e:56:e6: 25:d9:ca:b4:b9:a0:0d:d3:3d:61:f4:26:04:60:e5:6a:42:e6: 33:c0:4e:f3:12:fa:3c:e7:36:e1:4f:d0:1d:2e:70:59:64:ac: c7:aa:d9:3b:1f:c8:18:84:8e:e9:8a:d8:03:b4:62:58:06:ce: d1:b6:28:49:d8:75:0a:f9:d0:41:ed:96:dc:eb:de:ba:cd:10: 97:7e:89:83:34:ba:1a:9c:66:c5:12:23:ed:7c:b3:2b:72:86: ba:36:d3:e0:1d:eb:fd:05:0f:b0:db:f8:8d:3e:f1:0c:05:60: 50:0b:90:8f:b8:f2:eb:7c:f5:8c:89:39:70:56:7b:f9:72:d1: 2a:41:b3:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDx3jBkfUhqW6WXS20gCE3+V6KT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZGOEYwQTZFNzRBNTA1NkU2M0MwNDFBRUNDNTUxNzIz REU5RkMxRjAeFw0yNjA1MDMwMjA4NDlaFw0yNzA1MDIwMjEzNDlaMDMxMTAvBgNV BAMTKDFCN0M2ODNCQjg5MEQ5NzVBOTRGNzYzMUQ5RDUwM0Q1OTNFRjQyNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkyG9eXDCQDC4BvXEHyMkyFv/9 Sb16gC++IupX1fcnMuCTsxRtAOn1KhMRXbcbnKZ+j8WRlW5x2YkgpnTU+TqjLDpq ib8BnjiPWtfbMccCjKlQLSjqa1upvYBm08klLciUSdxQnQS9fpkwiI53rTl3A0kj NedVPQnx1vhoj+iJVAmH0FGO+ZYdnlOuPDbckVAfDgqfZjEZDPQB8he3oHILO2n+ 4/8fFFmsi4qgg44nVl933o3kQj/Jeuv4qqIa+YhnkfXZrJ3UKudQsFl8CmkkE8yp SRBVzWItxn2mtxlMtX6/4DAMDZs9WjqnKB/keoNj4u/zoHKbrtlPxYstU9S7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG3xoO7iQ2XWpT3Yx2dUD1ZPvQnIwHwYDVR0j BBgwFoAURvjwpudKUFbmPAQa7MVRcj3p/B8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGY4ZDgyNGQtZDZhMS00NTQzLTljZjAtZDk5MjY4MzJmMjlmLzAvNDZGOEYwQTZF NzRBNTA1NkU2M0MwNDFBRUNDNTUxNzIzREU5RkMxRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80NkY4RjBBNkU3NEE1MDU2RTYzQzA0MUFFQ0M1NTE3MjNERTlG QzFGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBmOGQ4MjRkLWQ2YTEtNDU0My05 Y2YwLWQ5OTI2ODMyZjI5Zi8wLzMxMzUzNzJlMzYzNjJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKDMA0GCSqG SIb3DQEBCwUAA4IBAQBM2YfQMJ5WXcHEUlFajcTZuuORLWrz47uxkG41QsTM8wnU w4zp2irRZsGCQj7o7lPKv4UABL382sHnQ3xQ2z84boKjX5+BLIGKwJc830Y02hjU rOPIGlJgxuEPo0BDedT1BORW8DKIZKJthO8PxL001SmffmpMNHiR+wN+VuYl2cq0 uaAN0z1h9CYEYOVqQuYzwE7zEvo85zbhT9AdLnBZZKzHqtk7H8gYhI7pitgDtGJY Bs7RtihJ2HUK+dBB7Zbc6966zRCXfomDNLoanGbFEiPtfLMrcoa6NtPgHev9BQ+w 2/iNPvEMBWBQC5CPuPLrfPWMiTlwVnv5ctEqQbMn -----END CERTIFICATE-----Generated at Wed May 13 03:59:08 2026 by rpki-client