$ rpki-client -vvf rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa File: 3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa (raw, json) Hash identifier: j3/lM2rV4nx+Cn6dsqDo2ERknLnpkGf86BWvcy+vYVs= Subject key identifier: FA:D7:51:63:F7:92:C3:9F:B4:DC:39:6F:2E:4B:53:50:D9:AF:1D:32 Certificate issuer: /CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Certificate serial: 67DB9D426444241C4D6AC4153907D92154B44C0E Authority key identifier: 5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa Signing time: Sun 03 May 2026 02:16:30 +0000 ROA not before: Sun 03 May 2026 02:11:30 +0000 ROA not after: Sun 02 May 2027 02:16:30 +0000 asID: 152429 IP address blocks: 157.20.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:db:9d:42:64:44:24:1c:4d:6a:c4:15:39:07:d9:21:54:b4:4c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Validity Not Before: May 3 02:11:30 2026 GMT Not After : May 2 02:16:30 2027 GMT Subject: CN=FAD75163F792C39FB4DC396F2E4B5350D9AF1D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6c:75:ca:32:40:84:69:9b:01:44:e7:96:f8: b0:38:53:f5:b8:00:93:0e:8a:8e:f0:f8:20:f2:30: a4:98:fe:82:fd:81:e7:3b:51:99:c5:45:e2:3c:40: 18:89:c0:dc:2c:c4:56:d2:2b:0c:7d:61:98:1e:16: 7c:41:9d:46:a5:72:f4:4e:f2:49:18:a8:17:3d:f5: cf:47:50:c9:7e:28:46:04:06:2d:f8:93:f5:0a:b3: 71:d5:43:85:d3:19:04:e6:91:8a:7d:4e:7c:91:e5: 94:03:dd:11:65:bb:b6:92:05:71:8c:66:76:dd:21: 1a:d3:79:62:08:1e:fb:56:8c:69:9d:67:5c:91:35: ae:7b:df:b1:e4:11:85:a2:58:54:95:84:6c:f6:e6: 1e:9f:42:71:45:a4:f4:87:0d:62:60:96:40:fd:f1: c3:56:02:03:7d:77:ae:8b:8e:4e:4f:27:f3:53:ed: 10:25:3d:33:31:f0:ac:7b:26:4a:55:2b:f2:d7:37: 54:d9:14:ac:5d:2c:8d:ac:7f:44:09:ab:cd:c0:7f: b0:a0:7c:5f:9a:d0:9d:44:16:78:eb:1a:a6:88:a4: 7b:54:d4:1a:d8:17:cb:63:51:e2:7d:be:65:a5:35: 92:a5:4f:47:dd:de:5b:f2:88:c4:17:0b:e0:37:76: da:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D7:51:63:F7:92:C3:9F:B4:DC:39:6F:2E:4B:53:50:D9:AF:1D:32 X509v3 Authority Key Identifier: keyid:5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.238.0/23 Signature Algorithm: sha256WithRSAEncryption 55:25:69:58:e8:6c:19:43:20:5a:89:ee:12:b6:72:f3:13:f2: de:d8:e0:3d:55:28:e7:ea:05:a9:22:d9:5d:f7:d5:c1:c2:e3: 49:27:88:ee:98:a2:9c:1a:0b:f4:3f:aa:9e:de:63:84:b8:f9: 9b:f7:a3:37:e3:65:ad:ed:a7:20:1d:7a:bf:7c:a2:1c:35:ec: cb:f0:68:40:1d:73:d1:9d:2b:30:bb:82:c1:8d:5e:a5:6d:19: 38:5f:be:43:24:af:4a:f7:09:95:dd:97:d4:cd:55:13:f3:4b: 42:3d:10:7d:f7:2e:ae:b4:9d:a2:39:f6:77:4c:f3:e0:28:0c: c6:ae:7e:b0:7e:e0:46:6d:96:f3:87:5b:00:88:c1:08:93:67: 8f:85:1e:c2:1b:c7:b0:8d:1d:cf:0f:9f:6b:86:2a:19:27:3a: 76:64:91:fc:9a:a1:d6:81:e6:24:29:a5:4a:d8:3f:b2:75:47: 13:64:d1:d2:60:e5:e4:30:b2:29:b3:52:b9:f4:9c:1e:4d:a1: bc:6d:28:1a:74:e9:6d:73:0c:df:1f:f6:9c:27:a1:af:c9:d2: 64:a4:86:c8:61:12:4d:fd:04:2f:8a:4d:94:2b:75:e9:28:20: c0:ea:9a:c0:99:db:7e:1d:fa:b6:91:23:16:5f:0f:a7:7c:eb: 21:83:12:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ9udQmREJBxNasQVOQfZIVS0TA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5 QzBFRUVBMjAeFw0yNjA1MDMwMjExMzBaFw0yNzA1MDIwMjE2MzBaMDMxMTAvBgNV BAMTKEZBRDc1MTYzRjc5MkMzOUZCNERDMzk2RjJFNEI1MzUwRDlBRjFEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZbHXKMkCEaZsBROeW+LA4U/W4 AJMOio7w+CDyMKSY/oL9gec7UZnFReI8QBiJwNwsxFbSKwx9YZgeFnxBnUalcvRO 8kkYqBc99c9HUMl+KEYEBi34k/UKs3HVQ4XTGQTmkYp9TnyR5ZQD3RFlu7aSBXGM ZnbdIRrTeWIIHvtWjGmdZ1yRNa5737HkEYWiWFSVhGz25h6fQnFFpPSHDWJglkD9 8cNWAgN9d66Ljk5PJ/NT7RAlPTMx8Kx7JkpVK/LXN1TZFKxdLI2sf0QJq83Af7Cg fF+a0J1EFnjrGqaIpHtU1BrYF8tjUeJ9vmWlNZKlT0fd3lvyiMQXC+A3dtpzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+tdRY/eSw5+03DlvLktTUNmvHTIwHwYDVR0j BBgwFoAUWv4k0j42JUhNfZs+ugAlqpwO7qIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MThkMWM0NDktOTc4Yy00ODQ1LWI4MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIz RTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5QzBFRUVBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81QUZFMjREMjNFMzYyNTQ4NEQ3RDlCM0VCQTAwMjVBQTlDMEVF RUEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTuMA0GCSqG SIb3DQEBCwUAA4IBAQBVJWlY6GwZQyBaie4StnLzE/Le2OA9VSjn6gWpItld99XB wuNJJ4jumKKcGgv0P6qe3mOEuPmb96M342Wt7acgHXq/fKIcNezL8GhAHXPRnSsw u4LBjV6lbRk4X75DJK9K9wmV3ZfUzVUT80tCPRB99y6utJ2iOfZ3TPPgKAzGrn6w fuBGbZbzh1sAiMEIk2ePhR7CG8ewjR3PD59rhioZJzp2ZJH8mqHWgeYkKaVK2D+y dUcTZNHSYOXkMLIps1K59JweTaG8bSgadOltcwzfH/acJ6GvydJkpIbIYRJN/QQv ik2UK3XpKCDA6prAmdt+Hfq2kSMWXw+nfOshgxJO -----END CERTIFICATE-----Generated at Wed May 13 10:40:08 2026 by rpki-client