$ rpki-client -vvf rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa File: 3135372e36362e31362e302f32332d3234203d3e20313336303839.roa (raw, json) Hash identifier: BN3gUNmY/gIPczSbkoQC3h95M1LdI0wqauqg4a27Pao= Subject key identifier: 15:4F:10:B7:5F:F1:99:C0:7D:12:B8:76:A9:13:66:07:1D:39:1A:82 Certificate issuer: /CN=67BF67CCD74BA06FEECE0BED6457876D494BC2F9 Certificate serial: 7565F58CA84332EEB7A1268943702C664D9E328A Authority key identifier: 67:BF:67:CC:D7:4B:A0:6F:EE:CE:0B:ED:64:57:87:6D:49:4B:C2:F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa Signing time: Sun 03 May 2026 02:14:51 +0000 ROA not before: Sun 03 May 2026 02:09:51 +0000 ROA not after: Sun 02 May 2027 02:14:51 +0000 asID: 136089 IP address blocks: 157.66.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.crl rsync://rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:65:f5:8c:a8:43:32:ee:b7:a1:26:89:43:70:2c:66:4d:9e:32:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67BF67CCD74BA06FEECE0BED6457876D494BC2F9 Validity Not Before: May 3 02:09:51 2026 GMT Not After : May 2 02:14:51 2027 GMT Subject: CN=154F10B75FF199C07D12B876A91366071D391A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:3f:58:8c:47:b5:85:09:e2:f9:da:2f:5e: 67:7b:7c:4a:ba:86:95:9a:a3:eb:54:c8:d4:ca:b9: 04:12:68:19:dc:59:65:40:ba:e0:8f:28:69:8a:08: 18:d0:43:60:4a:3a:81:ac:6c:c3:9b:6c:a1:d0:90: 32:e5:df:13:01:64:fb:53:43:d8:67:7c:82:bf:64: 12:00:33:49:07:ea:33:ca:a6:b6:1d:9b:10:11:dc: f8:a2:52:d7:ea:59:cf:ca:72:72:1d:24:81:68:12: 82:9e:97:7e:46:b3:8a:29:a9:9f:7e:8b:71:f6:10: 6a:8d:3d:44:11:60:f7:a0:7c:73:ff:1d:e5:d5:a6: 60:0b:17:c7:93:62:c7:0e:98:9a:11:54:a9:a2:de: 06:6e:49:27:13:7e:c6:fa:7b:a2:66:0c:e5:af:70: 75:a4:8d:6b:c9:fd:7d:9d:eb:6f:56:3b:40:ce:37: 23:ec:94:9f:85:f3:81:53:bd:b4:6b:36:a8:57:62: 43:c5:05:23:1e:ca:40:35:26:f6:90:c9:de:72:3f: 6d:69:a3:c7:0e:7f:aa:83:ff:37:12:4c:8a:71:de: bf:a4:cf:ef:e7:11:db:e3:a6:72:9f:20:24:24:db: e9:59:1c:c2:b9:66:e7:f4:bb:17:bf:db:45:18:7f: d0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4F:10:B7:5F:F1:99:C0:7D:12:B8:76:A9:13:66:07:1D:39:1A:82 X509v3 Authority Key Identifier: keyid:67:BF:67:CC:D7:4B:A0:6F:EE:CE:0B:ED:64:57:87:6D:49:4B:C2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/67BF67CCD74BA06FEECE0BED6457876D494BC2F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/14ed8d6c-f0fa-47cc-aeaa-b4e3ee116882/0/3135372e36362e31362e302f32332d3234203d3e20313336303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.16.0/23 Signature Algorithm: sha256WithRSAEncryption 47:0d:ad:f3:77:2d:ed:f1:9e:7e:36:f3:8c:1c:f8:7d:04:7e: 5e:9c:b7:6d:3c:43:3f:63:e5:02:d7:1b:4f:d1:50:38:99:51: f4:e5:69:6c:0d:aa:3b:cd:5f:cd:98:8f:e8:60:60:9c:c3:fa: dc:3c:c7:a9:88:cf:96:c4:10:af:08:47:bd:53:98:24:b1:6d: a0:3b:f5:05:9f:e5:7c:55:ac:35:17:e6:ef:6b:2e:08:6e:5d: ac:6b:ad:f8:28:81:e8:aa:79:15:c8:c3:af:7c:67:11:d2:26: be:86:0e:2b:3c:43:74:1d:3c:24:10:e2:29:d0:51:41:c7:9d: 89:af:f8:c2:4e:d3:95:90:ec:9f:4c:20:d1:45:95:c4:93:21: f1:c8:52:2d:e6:7f:19:9c:71:85:42:3b:83:19:d0:d0:08:1b: ee:f1:b2:f0:91:9b:69:ca:cf:a9:70:fa:da:22:3d:4e:08:00: 37:25:aa:22:c7:01:88:bb:bc:98:41:8f:98:d2:9f:10:9e:be: b4:94:bb:6c:83:64:2a:43:88:72:3b:ca:04:63:b5:d4:d6:7d: 31:38:1e:52:9a:0f:5c:0a:f6:ad:51:5e:e8:4d:35:f0:b1:e3: df:4b:82:32:d4:92:1e:60:48:96:4e:63:14:12:cb:af:e1:26: cd:66:58:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdWX1jKhDMu63oSaJQ3AsZk2eMoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdCRjY3Q0NENzRCQTA2RkVFQ0UwQkVENjQ1Nzg3NkQ0 OTRCQzJGOTAeFw0yNjA1MDMwMjA5NTFaFw0yNzA1MDIwMjE0NTFaMDMxMTAvBgNV BAMTKDE1NEYxMEI3NUZGMTk5QzA3RDEyQjg3NkE5MTM2NjA3MUQzOTFBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpKz9YjEe1hQni+dovXmd7fEq6 hpWao+tUyNTKuQQSaBncWWVAuuCPKGmKCBjQQ2BKOoGsbMObbKHQkDLl3xMBZPtT Q9hnfIK/ZBIAM0kH6jPKprYdmxAR3PiiUtfqWc/KcnIdJIFoEoKel35Gs4opqZ9+ i3H2EGqNPUQRYPegfHP/HeXVpmALF8eTYscOmJoRVKmi3gZuSScTfsb6e6JmDOWv cHWkjWvJ/X2d629WO0DONyPslJ+F84FTvbRrNqhXYkPFBSMeykA1JvaQyd5yP21p o8cOf6qD/zcSTIpx3r+kz+/nEdvjpnKfICQk2+lZHMK5Zuf0uxe/20UYf9CRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFU8Qt1/xmcB9Erh2qRNmBx05GoIwHwYDVR0j BBgwFoAUZ79nzNdLoG/uzgvtZFeHbUlLwvkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTRlZDhkNmMtZjBmYS00N2NjLWFlYWEtYjRlM2VlMTE2ODgyLzAvNjdCRjY3Q0NE NzRCQTA2RkVFQ0UwQkVENjQ1Nzg3NkQ0OTRCQzJGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82N0JGNjdDQ0Q3NEJBMDZGRUVDRTBCRUQ2NDU3ODc2RDQ5NEJD MkY5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0ZWQ4ZDZjLWYwZmEtNDdjYy1h ZWFhLWI0ZTNlZTExNjg4Mi8wLzMxMzUzNzJlMzYzNjJlMzEzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ1CEDANBgkqhkiG 9w0BAQsFAAOCAQEARw2t83ct7fGefjbzjBz4fQR+Xpy3bTxDP2PlAtcbT9FQOJlR 9OVpbA2qO81fzZiP6GBgnMP63DzHqYjPlsQQrwhHvVOYJLFtoDv1BZ/lfFWsNRfm 72suCG5drGut+CiB6Kp5FcjDr3xnEdImvoYOKzxDdB08JBDiKdBRQcedia/4wk7T lZDsn0wg0UWVxJMh8chSLeZ/GZxxhUI7gxnQ0Agb7vGy8JGbacrPqXD62iI9TggA NyWqIscBiLu8mEGPmNKfEJ6+tJS7bINkKkOIcjvKBGO11NZ9MTgeUpoPXAr2rVFe 6E018LHj30uCMtSSHmBIlk5jFBLLr+EmzWZYJQ== -----END CERTIFICATE-----Generated at Wed May 13 02:26:24 2026 by rpki-client