$ rpki-client -vvf rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa File: 3135372e32302e32342e302f32342d3234203d3e203633353036.roa (raw, json) Hash identifier: 4Cc4QPAN4qbF7Ai91llZsgvFRMCExHlGGbgV9qW0tuM= Subject key identifier: 17:3C:BE:09:C5:29:64:2B:E7:7E:0B:E1:F9:10:C3:27:0C:4C:94:67 Certificate issuer: /CN=677938123D24C0A27D10E007C474D99FC455C86B Certificate serial: 7CFF2AF7ECBE1F6ADB5B40581412B846973B6A4A Authority key identifier: 67:79:38:12:3D:24:C0:A2:7D:10:E0:07:C4:74:D9:9F:C4:55:C8:6B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/677938123D24C0A27D10E007C474D99FC455C86B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa Signing time: Sun 03 May 2026 02:15:07 +0000 ROA not before: Sun 03 May 2026 02:10:07 +0000 ROA not after: Sun 02 May 2027 02:15:07 +0000 asID: 63506 IP address blocks: 157.20.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/677938123D24C0A27D10E007C474D99FC455C86B.crl rsync://rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/677938123D24C0A27D10E007C474D99FC455C86B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/677938123D24C0A27D10E007C474D99FC455C86B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ff:2a:f7:ec:be:1f:6a:db:5b:40:58:14:12:b8:46:97:3b:6a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677938123D24C0A27D10E007C474D99FC455C86B Validity Not Before: May 3 02:10:07 2026 GMT Not After : May 2 02:15:07 2027 GMT Subject: CN=173CBE09C529642BE77E0BE1F910C3270C4C9467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:03:23:88:d2:53:91:2e:d5:59:ba:98:e0:e5: 2b:81:49:c0:cb:f4:3e:d1:69:14:0f:ce:ef:57:8e: 97:2e:63:3a:ed:15:4c:b6:6e:11:52:21:45:16:72: 19:08:c8:46:fc:2b:64:a9:c1:24:83:4c:66:a9:a5: d6:84:e2:07:3c:1b:a7:a0:b6:2f:e2:7b:69:91:25: 73:ce:bf:ce:dd:0a:07:b0:78:b5:0e:68:05:f1:28: d6:64:36:7e:59:6e:82:c2:9d:90:59:34:11:e3:79: 84:ee:fe:20:31:8a:68:ed:44:b6:13:d6:ac:66:e6: ea:0f:80:74:f5:44:69:3e:b7:3e:78:bf:9b:6d:97: b5:2d:51:b8:c6:e5:19:b6:57:4e:ab:59:bc:cb:84: 9a:8d:16:a3:b6:a9:48:e9:d8:dc:64:02:72:3d:8c: 43:d6:22:11:b1:6c:66:d3:f5:51:60:67:67:7b:e6: 60:65:6c:3c:d1:aa:aa:5f:0b:13:00:d0:42:a4:17: 9b:75:30:bf:40:f2:38:83:0e:01:7b:f3:de:54:00: bd:4e:bd:46:af:d8:51:89:0e:08:0b:71:05:14:a1: f5:53:e2:28:db:1b:3b:d7:90:95:4b:e8:17:d3:54: 57:4b:88:56:c5:5e:0b:5e:99:ab:ad:96:0d:54:63: fb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3C:BE:09:C5:29:64:2B:E7:7E:0B:E1:F9:10:C3:27:0C:4C:94:67 X509v3 Authority Key Identifier: keyid:67:79:38:12:3D:24:C0:A2:7D:10:E0:07:C4:74:D9:9F:C4:55:C8:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/677938123D24C0A27D10E007C474D99FC455C86B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/677938123D24C0A27D10E007C474D99FC455C86B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/3135372e32302e32342e302f32342d3234203d3e203633353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.24.0/24 Signature Algorithm: sha256WithRSAEncryption 47:ea:13:10:88:01:b3:19:fd:37:9e:01:29:34:74:35:73:bd: ed:e2:e9:9a:24:d7:65:65:79:e4:74:d8:d9:f5:95:64:f0:db: 43:81:fa:7d:d7:21:64:ee:27:22:03:d2:73:25:b0:38:82:c0: 99:95:a5:7f:0e:b3:d6:c2:b8:e9:4a:1a:55:ba:e6:71:9e:82: 0c:7f:7a:b5:0d:d6:44:0d:8f:8c:3d:ea:80:d9:84:98:75:37: 89:4a:54:a1:23:17:87:99:b6:72:a3:fb:fb:8b:24:c2:cf:0a: a2:9c:3e:e0:fd:00:97:44:d9:ae:92:30:21:63:7a:0f:14:2c: d5:98:aa:ac:b5:68:b0:b5:ee:c1:41:a4:0f:7b:38:73:eb:b9: 82:bf:43:d8:6f:dd:6e:0d:71:5f:59:01:ca:72:0c:a8:1f:9e: 8b:24:7d:5d:08:d4:29:4c:44:e6:6f:06:1a:3c:87:fc:7c:e6: 35:49:2d:3c:89:17:80:58:ef:43:ce:ab:52:ee:1b:ed:c6:d0: 85:59:22:68:71:a0:f9:e9:bb:eb:88:64:8b:ed:3f:a7:e7:3d: af:cb:c5:c6:67:e6:12:3d:db:06:0f:f2:03:5e:1f:86:91:97: e6:9e:dc:87:91:42:89:1e:87:4b:95:fc:d9:34:a2:d9:04:8e: b8:3f:aa:c0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfP8q9+y+H2rbW0BYFBK4Rpc7akowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc3OTM4MTIzRDI0QzBBMjdEMTBFMDA3QzQ3NEQ5OUZD NDU1Qzg2QjAeFw0yNjA1MDMwMjEwMDdaFw0yNzA1MDIwMjE1MDdaMDMxMTAvBgNV BAMTKDE3M0NCRTA5QzUyOTY0MkJFNzdFMEJFMUY5MTBDMzI3MEM0Qzk0NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZAyOI0lORLtVZupjg5SuBScDL 9D7RaRQPzu9XjpcuYzrtFUy2bhFSIUUWchkIyEb8K2SpwSSDTGappdaE4gc8G6eg ti/ie2mRJXPOv87dCgeweLUOaAXxKNZkNn5ZboLCnZBZNBHjeYTu/iAximjtRLYT 1qxm5uoPgHT1RGk+tz54v5ttl7UtUbjG5Rm2V06rWbzLhJqNFqO2qUjp2NxkAnI9 jEPWIhGxbGbT9VFgZ2d75mBlbDzRqqpfCxMA0EKkF5t1ML9A8jiDDgF7895UAL1O vUav2FGJDggLcQUUofVT4ijbGzvXkJVL6BfTVFdLiFbFXgtemautlg1UY/uDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUFzy+CcUpZCvnfgvh+RDDJwxMlGcwHwYDVR0j BBgwFoAUZ3k4Ej0kwKJ9EOAHxHTZn8RVyGswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTViYWUzMGMtYjM2My00MDdiLWEwYWItMzE1NGViMzA5YWU5LzAvNjc3OTM4MTIz RDI0QzBBMjdEMTBFMDA3QzQ3NEQ5OUZDNDU1Qzg2Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Nzc5MzgxMjNEMjRDMEEyN0QxMEUwMDdDNDc0RDk5RkM0NTVD ODZCLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE1YmFlMzBjLWIzNjMtNDA3Yi1h MGFiLTMxNTRlYjMwOWFlOS8wLzMxMzUzNzJlMzIzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzNTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdFBgwDQYJKoZIhvcN AQELBQADggEBAEfqExCIAbMZ/TeeASk0dDVzve3i6Zok12VleeR02Nn1lWTw20OB +n3XIWTuJyID0nMlsDiCwJmVpX8Os9bCuOlKGlW65nGeggx/erUN1kQNj4w96oDZ hJh1N4lKVKEjF4eZtnKj+/uLJMLPCqKcPuD9AJdE2a6SMCFjeg8ULNWYqqy1aLC1 7sFBpA97OHPruYK/Q9hv3W4NcV9ZAcpyDKgfnoskfV0I1ClMROZvBho8h/x85jVJ LTyJF4BY70POq1LuG+3G0IVZImhxoPnpu+uIZIvtP6fnPa/LxcZn5hI92wYP8gNe H4aRl+ae3IeRQokeh0uV/Nk0otkEjrg/qsA= -----END CERTIFICATE-----Generated at Wed May 13 03:17:14 2026 by rpki-client