$ rpki-client -vvf rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa File: 3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa (raw, json) Hash identifier: Fy9HvcnOOuartl2MyrCM5SQFmtu1CV6p6EtA15KIkk0= Subject key identifier: 08:EF:F0:20:A1:26:A7:F5:A8:FE:90:B6:1B:7C:BB:3B:DF:EA:47:4D Certificate issuer: /CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Certificate serial: 0C6223C799DECC1F697C2CC0B4AAB8C6F23BF0A0 Authority key identifier: 5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa Signing time: Sun 03 May 2026 02:16:31 +0000 ROA not before: Sun 03 May 2026 02:11:31 +0000 ROA not after: Sun 02 May 2027 02:16:31 +0000 asID: 152429 IP address blocks: 157.20.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:62:23:c7:99:de:cc:1f:69:7c:2c:c0:b4:aa:b8:c6:f2:3b:f0:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Validity Not Before: May 3 02:11:31 2026 GMT Not After : May 2 02:16:31 2027 GMT Subject: CN=08EFF020A126A7F5A8FE90B61B7CBB3BDFEA474D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:57:b7:f2:11:5f:21:ee:df:c1:74:d5:dd:5d: 2b:3c:f2:22:98:9d:ca:e2:d5:ff:01:e3:22:44:8b: 96:15:91:38:54:3b:17:66:98:4d:25:77:f9:7d:2e: 42:d8:55:7c:92:9f:46:74:db:12:58:df:ef:21:d9: d1:c3:48:fe:d2:a5:2d:af:47:61:9b:86:3f:20:87: 2c:5b:ec:64:b3:45:8c:13:b6:c9:89:94:c6:61:9b: bf:a4:5a:cd:09:1b:c2:55:48:f7:36:59:d9:6d:e9: 1e:d4:29:1c:04:48:5a:14:68:21:1e:ba:be:69:f0: b0:91:19:11:9a:8e:98:dd:43:e9:08:03:b2:2a:d4: c3:c3:07:0b:f8:bf:b2:5e:a9:5d:35:10:b9:81:72: e2:58:3e:99:40:b0:c5:3f:ce:8b:c3:24:ea:f3:f8: 33:ea:6c:7d:10:52:e1:f0:f4:59:7f:62:fd:80:fb: da:b5:04:24:6b:d3:da:f6:dc:a0:93:ce:8b:91:d0: 99:a4:37:8d:4c:8d:22:1e:e7:a9:43:99:5f:c0:17: bf:4d:5b:1d:ac:cc:a4:45:20:06:3f:c3:81:ac:67: 30:0a:c1:3f:68:83:f2:ab:05:a2:e6:35:31:6b:7a: 35:7d:45:5f:34:49:19:5f:47:17:1e:b7:b6:3c:ac: ee:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EF:F0:20:A1:26:A7:F5:A8:FE:90:B6:1B:7C:BB:3B:DF:EA:47:4D X509v3 Authority Key Identifier: keyid:5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.238.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:d1:0f:1f:f9:78:af:77:cc:b3:8b:10:12:b6:10:8d:66:d3: fe:e0:a1:7f:66:8d:3e:68:a1:c9:61:79:a0:d8:2e:c5:17:50: 34:f2:16:8a:ea:b5:81:ec:2f:47:30:2e:b9:e5:bc:bc:0f:5e: ec:af:1c:b9:dc:fa:ba:10:3c:06:d1:88:50:3c:a2:54:cc:a3: 9c:75:16:bb:4c:26:7e:ec:0b:3d:a6:4a:a6:6a:de:86:ab:ed: d5:0c:74:bc:44:c9:79:b1:ef:4c:f3:31:ba:c0:09:8e:8f:71: c9:60:ed:1c:d3:74:90:a4:83:94:c2:59:2d:aa:5b:cc:66:75: 03:b2:10:c5:6f:56:e1:73:c5:61:b4:bd:74:71:1c:8d:3e:77: 3b:ab:e5:8b:1d:e2:0a:36:af:89:cb:26:85:ed:f1:52:c1:d7: 75:c9:e3:e5:2d:61:24:ae:00:36:b5:aa:90:ad:5a:b9:d3:38: 14:21:34:44:a9:2b:8b:f9:c2:1d:86:e9:ff:4c:4f:ad:5d:f2: 56:0c:15:ca:4f:52:da:e5:6d:b9:a3:a0:19:51:da:87:74:8c: ac:f9:c7:c8:d2:31:7f:49:27:42:57:c7:6b:40:93:b8:ee:81: e8:12:f6:bc:2e:7a:76:eb:cf:2d:24:f1:ea:d1:d0:01:c9:26: 0d:a6:22:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDGIjx5nezB9pfCzAtKq4xvI78KAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5 QzBFRUVBMjAeFw0yNjA1MDMwMjExMzFaFw0yNzA1MDIwMjE2MzFaMDMxMTAvBgNV BAMTKDA4RUZGMDIwQTEyNkE3RjVBOEZFOTBCNjFCN0NCQjNCREZFQTQ3NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClV7fyEV8h7t/BdNXdXSs88iKY ncri1f8B4yJEi5YVkThUOxdmmE0ld/l9LkLYVXySn0Z02xJY3+8h2dHDSP7SpS2v R2Gbhj8ghyxb7GSzRYwTtsmJlMZhm7+kWs0JG8JVSPc2Wdlt6R7UKRwESFoUaCEe ur5p8LCRGRGajpjdQ+kIA7Iq1MPDBwv4v7JeqV01ELmBcuJYPplAsMU/zovDJOrz +DPqbH0QUuHw9Fl/Yv2A+9q1BCRr09r23KCTzouR0JmkN41MjSIe56lDmV/AF79N Wx2szKRFIAY/w4GsZzAKwT9og/KrBaLmNTFrejV9RV80SRlfRxcet7Y8rO6hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCO/wIKEmp/Wo/pC2G3y7O9/qR00wHwYDVR0j BBgwFoAUWv4k0j42JUhNfZs+ugAlqpwO7qIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MThkMWM0NDktOTc4Yy00ODQ1LWI4MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIz RTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5QzBFRUVBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81QUZFMjREMjNFMzYyNTQ4NEQ3RDlCM0VCQTAwMjVBQTlDMEVF RUEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTuMA0GCSqG SIb3DQEBCwUAA4IBAQB80Q8f+Xivd8yzixASthCNZtP+4KF/Zo0+aKHJYXmg2C7F F1A08haK6rWB7C9HMC655by8D17srxy53Pq6EDwG0YhQPKJUzKOcdRa7TCZ+7As9 pkqmat6Gq+3VDHS8RMl5se9M8zG6wAmOj3HJYO0c03SQpIOUwlktqlvMZnUDshDF b1bhc8VhtL10cRyNPnc7q+WLHeIKNq+JyyaF7fFSwdd1yePlLWEkrgA2taqQrVq5 0zgUITREqSuL+cIdhun/TE+tXfJWDBXKT1La5W25o6AZUdqHdIys+cfI0jF/SSdC V8drQJO47oHoEva8Lnp2688tJPHq0dABySYNpiI5 -----END CERTIFICATE-----Generated at Wed May 13 11:55:27 2026 by rpki-client