$ rpki-client -vvf rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa File: 3133372e35392e3136312e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: 9h4BjIyizuthkQUuXWWv2bNzQm5B95LJDNd0MLV8X24= Subject key identifier: 60:44:FA:02:AE:CF:22:43:CB:41:94:7D:42:2F:D5:FC:1F:CA:10:55 Certificate issuer: /CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Certificate serial: 39539CD29C69381A02547AF1712CB627CEB71727 Authority key identifier: C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa Signing time: Sun 03 May 2026 02:15:49 +0000 ROA not before: Sun 03 May 2026 02:10:49 +0000 ROA not after: Sun 02 May 2027 02:15:49 +0000 asID: 56242 IP address blocks: 137.59.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:53:9c:d2:9c:69:38:1a:02:54:7a:f1:71:2c:b6:27:ce:b7:17:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9 Validity Not Before: May 3 02:10:49 2026 GMT Not After : May 2 02:15:49 2027 GMT Subject: CN=6044FA02AECF2243CB41947D422FD5FC1FCA1055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:45:8a:42:50:f9:09:31:2c:54:08:5c:82:87: 9c:cf:79:f4:03:ad:e6:84:3e:94:7c:ad:34:bf:dd: 03:90:f2:d4:ce:b5:ff:fa:2b:be:3b:e7:4d:7a:93: 52:3b:4a:ec:cf:67:62:05:af:5f:77:29:12:00:a6: ed:32:1a:e1:72:25:0c:41:bd:99:f4:85:07:6f:68: fb:ab:f6:a7:07:55:9c:30:18:8c:76:fd:84:7e:94: e0:64:78:c9:ed:b0:77:27:15:70:0e:54:c3:6b:f2: 78:52:87:64:ad:d4:cc:10:0e:d9:31:57:2b:1d:7e: 33:41:2c:f7:20:25:b1:64:18:9b:e1:73:36:80:eb: 5c:78:00:0a:d8:01:44:df:51:73:bd:d2:aa:27:3e: 30:ab:aa:38:2b:37:af:f5:e6:d7:01:69:92:1e:f3: 33:41:4a:d9:13:94:57:71:1b:4e:16:3d:d9:0e:b6: aa:05:fe:70:06:e4:14:7c:bf:47:91:d2:cb:b9:83: 8c:98:f3:16:f9:99:a2:7a:50:91:be:0b:72:38:b9: 8b:d5:6a:c8:60:14:52:9c:65:71:68:ae:06:8f:03: 4e:00:a7:7c:6d:47:17:97:d3:d4:c3:b0:48:32:dd: 79:95:33:f3:65:9d:97:a8:f3:9e:dd:c0:28:ca:f8: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:44:FA:02:AE:CF:22:43:CB:41:94:7D:42:2F:D5:FC:1F:CA:10:55 X509v3 Authority Key Identifier: keyid:C7:6F:AE:70:E7:14:64:49:6E:F4:FA:8E:EE:F0:DF:5C:93:12:C7:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C76FAE70E71464496EF4FA8EEEF0DF5C9312C7C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136312e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.161.0/24 Signature Algorithm: sha256WithRSAEncryption 62:55:93:2c:5a:9b:2b:42:23:93:07:aa:a3:32:6d:ad:b1:ba: dd:d9:69:c8:3b:c4:d7:bd:51:de:9b:a3:1d:dd:1c:4f:32:e7: bc:23:a6:c0:7b:3b:48:e9:0c:69:82:24:82:ab:ff:ec:58:eb: 1d:e3:93:5f:67:a9:fc:6b:f7:10:a0:06:f3:e9:6a:9c:70:8a: 17:58:43:04:eb:9c:01:9b:d8:13:c7:c4:7b:31:2b:6e:da:06: cf:e2:d9:c8:06:8a:12:b2:5a:be:d6:56:08:5c:7c:18:0d:dc: 6c:70:44:27:0f:c0:76:28:ec:91:42:93:18:19:d0:7a:c5:9b: d1:d6:f6:6b:85:49:34:8a:ca:11:a0:80:94:cc:1d:c2:b0:e0: 1f:11:59:a0:90:a0:22:8a:ce:62:90:b1:ae:55:66:f1:15:da: 09:85:99:63:f0:e4:75:5f:fe:4b:8c:9d:8f:83:05:b4:9d:b6: 9a:7e:10:c7:83:ea:04:c7:8f:c7:26:7f:70:47:e7:cd:b4:31: f4:40:23:dd:8d:2d:6b:46:7e:8e:87:9f:16:d9:b6:e2:63:87: a9:60:41:e2:43:e3:0b:8a:63:e9:52:df:3d:d0:25:da:af:f3: 45:f9:da:a7:55:c5:70:1b:23:37:30:44:d9:b3:5b:e7:95:44: 06:66:5b:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOVOc0pxpOBoCVHrxcSy2J863FycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc2RkFFNzBFNzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5 MzEyQzdDOTAeFw0yNjA1MDMwMjEwNDlaFw0yNzA1MDIwMjE1NDlaMDMxMTAvBgNV BAMTKDYwNDRGQTAyQUVDRjIyNDNDQjQxOTQ3RDQyMkZENUZDMUZDQTEwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjRYpCUPkJMSxUCFyCh5zPefQD reaEPpR8rTS/3QOQ8tTOtf/6K7475016k1I7SuzPZ2IFr193KRIApu0yGuFyJQxB vZn0hQdvaPur9qcHVZwwGIx2/YR+lOBkeMntsHcnFXAOVMNr8nhSh2St1MwQDtkx VysdfjNBLPcgJbFkGJvhczaA61x4AArYAUTfUXO90qonPjCrqjgrN6/15tcBaZIe 8zNBStkTlFdxG04WPdkOtqoF/nAG5BR8v0eR0su5g4yY8xb5maJ6UJG+C3I4uYvV ashgFFKcZXForgaPA04Ap3xtRxeX09TDsEgy3XmVM/NlnZeo857dwCjK+Fz1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYET6Aq7PIkPLQZR9Qi/V/B/KEFUwHwYDVR0j BBgwFoAUx2+ucOcUZElu9PqO7vDfXJMSx8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdhMmQyNWItY2IxOC00NWJlLTlmYTEtMTU0Y2ExNTc5MjIzLzAvQzc2RkFFNzBF NzE0NjQ0OTZFRjRGQThFRUVGMERGNUM5MzEyQzdDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNzZGQUU3MEU3MTQ2NDQ5NkVGNEZBOEVFRUYwREY1QzkzMTJD N0M5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIk7oTANBgkqhkiG 9w0BAQsFAAOCAQEAYlWTLFqbK0IjkweqozJtrbG63dlpyDvE171R3pujHd0cTzLn vCOmwHs7SOkMaYIkgqv/7FjrHeOTX2ep/Gv3EKAG8+lqnHCKF1hDBOucAZvYE8fE ezErbtoGz+LZyAaKErJavtZWCFx8GA3cbHBEJw/AdijskUKTGBnQesWb0db2a4VJ NIrKEaCAlMwdwrDgHxFZoJCgIorOYpCxrlVm8RXaCYWZY/DkdV/+S4ydj4MFtJ22 mn4Qx4PqBMePxyZ/cEfnzbQx9EAj3Y0ta0Z+joefFtm24mOHqWBB4kPjC4pj6VLf PdAl2q/zRfnap1XFcBsjNzBE2bNb55VEBmZbeg== -----END CERTIFICATE-----Generated at Wed May 13 06:12:05 2026 by rpki-client