$ rpki-client -vvf rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa File: 3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa (raw, json) Hash identifier: lTUq2TXc5o2FAnT0cBjbniSYESMJX3Ig96J0JouvM0I= Subject key identifier: 7B:C4:44:81:EB:22:2A:E6:FC:D0:7F:53:91:F1:65:DA:DB:A3:E4:04 Certificate issuer: /CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Certificate serial: 702CC25E1DB4F4D3D97E5CA05ECDDE48DDA1BD7E Authority key identifier: 5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa Signing time: Sun 03 May 2026 02:16:31 +0000 ROA not before: Sun 03 May 2026 02:11:31 +0000 ROA not after: Sun 02 May 2027 02:16:31 +0000 asID: 152429 IP address blocks: 157.20.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:2c:c2:5e:1d:b4:f4:d3:d9:7e:5c:a0:5e:cd:de:48:dd:a1:bd:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Validity Not Before: May 3 02:11:31 2026 GMT Not After : May 2 02:16:31 2027 GMT Subject: CN=7BC44481EB222AE6FCD07F5391F165DADBA3E404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7b:11:84:19:b5:91:61:d9:df:2c:b6:a8:e6: 3f:f9:4d:5e:48:5b:e5:93:48:3d:90:74:9d:37:15: 7d:7f:ea:96:1a:10:d8:3c:df:65:c0:8b:1b:d9:a1: c9:0e:bd:01:18:82:e1:e4:af:95:41:fe:55:f6:54: 8e:7a:9d:54:f0:28:4f:6a:e7:b2:68:8c:be:2e:d4: 8c:ea:58:f7:db:2e:5f:1f:06:eb:b7:6c:24:c8:a8: 71:1a:75:52:4a:91:05:b7:0e:df:28:e0:25:54:97: af:b6:78:01:dd:f1:ec:73:4d:a9:e4:03:f7:11:f9: 90:20:7f:e6:b2:37:74:05:1a:b1:ca:6c:17:4b:25: 2d:1a:c8:cc:8e:9d:2c:96:7c:e6:cb:ed:58:11:bb: 7e:0f:cb:01:e2:fc:60:0f:77:85:4a:ca:75:6b:66: 1a:3e:32:ab:27:6f:e2:c0:ee:f5:41:54:df:22:75: 5c:36:d8:c2:87:d3:e5:dd:60:d7:28:5b:3a:8b:45: 90:0f:a6:37:4d:a6:8e:f4:f6:7d:bb:49:56:32:d1: 9d:af:75:03:2b:3f:e3:f4:4f:ca:b4:af:9f:9a:06: 85:83:ac:df:57:4e:a8:2b:f3:b3:91:e7:94:c8:3b: 62:18:cd:76:8f:85:b7:ee:c7:50:8c:db:26:74:84: 3b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C4:44:81:EB:22:2A:E6:FC:D0:7F:53:91:F1:65:DA:DB:A3:E4:04 X509v3 Authority Key Identifier: keyid:5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.239.0/24 Signature Algorithm: sha256WithRSAEncryption 85:d7:ac:d3:fc:10:f9:4f:c4:23:f8:11:ed:de:19:f8:06:f7: 98:d3:35:f5:e5:f6:b3:de:74:8d:4a:6d:e8:63:aa:f4:a4:d7: 05:dd:e1:63:97:bd:51:c8:d2:17:24:a7:62:d0:cc:fd:3a:65: 9e:e7:a8:ed:3e:10:d3:53:1e:64:2d:77:df:8f:cf:e5:90:88: a1:b9:78:6c:b5:e6:59:84:d6:b4:2b:8c:2e:f8:98:e0:c5:18: cf:17:c8:ad:15:df:90:d9:69:8d:f9:c4:3c:bb:f8:bb:20:92: ff:e0:cf:88:c0:3f:22:5a:ce:fd:ad:53:ae:bb:eb:07:60:de: 5f:75:56:68:90:d8:a5:93:d3:7c:3c:c1:21:b7:7b:66:bd:0d: 09:2e:39:02:48:48:f8:e8:c5:4c:8a:f7:59:c8:c4:98:5e:55: e4:79:3d:38:ff:83:e9:15:b9:05:f5:51:62:cd:61:05:d5:6d: 52:75:6d:65:67:02:1f:c3:ad:e2:ec:64:0c:a5:48:09:73:21: d5:38:09:d5:80:21:35:a1:94:8f:90:0a:c6:21:6e:f6:8a:f9: a3:0c:35:53:db:fb:bc:43:7d:13:7e:88:91:70:df:88:cf:56: 4e:51:ec:06:26:af:15:e0:b0:94:7d:96:2e:b0:25:a8:04:a4: 5d:56:e6:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcCzCXh209NPZflygXs3eSN2hvX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5 QzBFRUVBMjAeFw0yNjA1MDMwMjExMzFaFw0yNzA1MDIwMjE2MzFaMDMxMTAvBgNV BAMTKDdCQzQ0NDgxRUIyMjJBRTZGQ0QwN0Y1MzkxRjE2NURBREJBM0U0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPexGEGbWRYdnfLLao5j/5TV5I W+WTSD2QdJ03FX1/6pYaENg832XAixvZockOvQEYguHkr5VB/lX2VI56nVTwKE9q 57JojL4u1IzqWPfbLl8fBuu3bCTIqHEadVJKkQW3Dt8o4CVUl6+2eAHd8exzTank A/cR+ZAgf+ayN3QFGrHKbBdLJS0ayMyOnSyWfObL7VgRu34PywHi/GAPd4VKynVr Zho+Mqsnb+LA7vVBVN8idVw22MKH0+XdYNcoWzqLRZAPpjdNpo709n27SVYy0Z2v dQMrP+P0T8q0r5+aBoWDrN9XTqgr87OR55TIO2IYzXaPhbfux1CM2yZ0hDtVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe8REgesiKub80H9TkfFl2tuj5AQwHwYDVR0j BBgwFoAUWv4k0j42JUhNfZs+ugAlqpwO7qIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MThkMWM0NDktOTc4Yy00ODQ1LWI4MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIz RTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5QzBFRUVBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81QUZFMjREMjNFMzYyNTQ4NEQ3RDlCM0VCQTAwMjVBQTlDMEVF RUEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4ZDFjNDQ5LTk3OGMtNDg0NS1i ODIzLWI1OTI1YTkwNTQyNy8wLzMxMzUzNzJlMzIzMDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTvMA0GCSqG SIb3DQEBCwUAA4IBAQCF16zT/BD5T8Qj+BHt3hn4BveY0zX15faz3nSNSm3oY6r0 pNcF3eFjl71RyNIXJKdi0Mz9OmWe56jtPhDTUx5kLXffj8/lkIihuXhsteZZhNa0 K4wu+JjgxRjPF8itFd+Q2WmN+cQ8u/i7IJL/4M+IwD8iWs79rVOuu+sHYN5fdVZo kNilk9N8PMEht3tmvQ0JLjkCSEj46MVMivdZyMSYXlXkeT04/4PpFbkF9VFizWEF 1W1SdW1lZwIfw63i7GQMpUgJcyHVOAnVgCE1oZSPkArGIW72ivmjDDVT2/u8Q30T foiRcN+Iz1ZOUewGJq8V4LCUfZYusCWoBKRdVuZ7 -----END CERTIFICATE-----Generated at Wed May 13 11:49:39 2026 by rpki-client