$ rpki-client -vvf rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa File: 3135372e31302e39372e302f32342d3234203d3e203538383231.roa (raw, json) Hash identifier: oShpqamIlxg4kQTK/q8+//W/2I271Sb0pfvq3P0rPtA= Subject key identifier: 90:30:71:B0:BB:16:14:C3:CE:20:12:66:99:AE:58:7F:FE:80:C0:41 Certificate issuer: /CN=FC870A2769B88F10107817EDAA3B4237B14B0EA9 Certificate serial: 233819ADBCCE39B460ED89DFD0F1C30BC457D011 Authority key identifier: FC:87:0A:27:69:B8:8F:10:10:78:17:ED:AA:3B:42:37:B1:4B:0E:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa Signing time: Sun 03 May 2026 02:18:27 +0000 ROA not before: Sun 03 May 2026 02:13:27 +0000 ROA not after: Sun 02 May 2027 02:18:27 +0000 asID: 58821 IP address blocks: 157.10.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.crl rsync://rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:38:19:ad:bc:ce:39:b4:60:ed:89:df:d0:f1:c3:0b:c4:57:d0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC870A2769B88F10107817EDAA3B4237B14B0EA9 Validity Not Before: May 3 02:13:27 2026 GMT Not After : May 2 02:18:27 2027 GMT Subject: CN=903071B0BB1614C3CE20126699AE587FFE80C041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5e:1f:7b:48:1d:5f:ac:bf:e2:03:ca:ac:36: 7f:81:e6:82:bc:7f:57:7d:63:55:50:bb:da:97:d8: a6:f1:ee:84:4b:2c:c1:1d:c2:3b:51:d2:d2:26:1f: ff:b7:2a:1a:fd:12:6f:ab:42:71:32:dc:bb:af:53: b8:14:04:f5:d1:10:45:e1:da:57:02:f9:cd:47:28: 03:9c:51:9a:04:27:3d:a0:dd:7f:93:8c:ad:16:75: 79:b5:13:8d:c0:5f:c9:56:20:04:d6:ea:3d:c4:ce: 16:c2:03:5e:ed:3d:6b:18:7a:75:83:bc:06:f2:e2: cc:bc:74:c9:6d:f9:0e:dd:b3:33:ec:05:9d:a6:12: 42:8a:a3:55:51:4a:ee:87:9b:a5:41:c6:13:f6:de: fa:4a:59:d5:4b:42:a0:03:a2:92:8c:45:06:06:ff: 6e:85:2a:df:7d:bf:15:7e:58:e1:ce:f3:b2:5d:07: a2:ca:f0:d1:7b:84:0f:ed:bd:ce:f4:8b:b0:b7:e3: c1:92:c7:a3:40:7c:97:26:62:2f:97:1e:26:de:07: 76:8d:93:cc:fb:0b:60:66:ff:13:47:c9:21:13:7f: f5:ff:c5:57:38:69:6b:d8:6d:0a:b6:0b:a9:56:35: 65:ad:56:2a:fb:d6:08:30:25:2c:46:cc:e1:13:44: ee:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:30:71:B0:BB:16:14:C3:CE:20:12:66:99:AE:58:7F:FE:80:C0:41 X509v3 Authority Key Identifier: keyid:FC:87:0A:27:69:B8:8F:10:10:78:17:ED:AA:3B:42:37:B1:4B:0E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FC870A2769B88F10107817EDAA3B4237B14B0EA9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1f2f64ca-fa54-499e-bc33-4862dca794f7/0/3135372e31302e39372e302f32342d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.97.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:e5:a6:b7:f1:8f:15:2c:d7:08:b5:f9:ec:53:73:70:14:04: c5:7f:db:a7:db:1d:4e:aa:c3:c8:98:f5:39:cf:49:5e:38:ca: 21:ea:43:93:0c:e4:44:1e:4a:58:b1:69:87:0d:18:9f:25:0f: ed:76:7f:59:c6:2a:2b:56:44:cb:fd:cd:45:f4:73:b5:07:e8: 49:f8:02:70:16:47:f7:f1:79:d5:5b:c4:c1:f4:26:d9:59:79: fa:7d:81:ab:04:ab:14:e9:9f:18:d4:a8:08:94:a5:03:20:ec: 6a:3a:d0:f6:d6:23:e3:65:a5:83:33:95:79:08:2a:a6:c9:22: 80:ef:50:72:c0:e5:50:2c:c7:53:15:16:63:90:3c:40:f7:b8: 93:06:0b:10:b4:b8:cd:81:b2:80:66:79:5e:7c:f2:14:f8:52: 03:88:70:96:59:c5:d4:82:f1:68:06:11:3e:b9:77:17:29:70: 21:fa:3f:b2:3b:ac:bd:db:2d:d2:aa:b6:71:d0:b3:64:1c:24: ee:06:34:74:eb:ba:38:fd:58:95:1b:e8:65:a3:a1:88:2f:0a: d0:89:bd:a7:c1:19:2f:26:b6:1c:f8:98:73:f9:ca:33:c2:21: 99:b9:76:04:4b:74:cb:77:17:a2:07:5c:69:98:43:01:9a:15: 39:3a:17:10 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIzgZrbzOObRg7Ynf0PHDC8RX0BEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM4NzBBMjc2OUI4OEYxMDEwNzgxN0VEQUEzQjQyMzdC MTRCMEVBOTAeFw0yNjA1MDMwMjEzMjdaFw0yNzA1MDIwMjE4MjdaMDMxMTAvBgNV BAMTKDkwMzA3MUIwQkIxNjE0QzNDRTIwMTI2Njk5QUU1ODdGRkU4MEMwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzXh97SB1frL/iA8qsNn+B5oK8 f1d9Y1VQu9qX2Kbx7oRLLMEdwjtR0tImH/+3Khr9Em+rQnEy3LuvU7gUBPXREEXh 2lcC+c1HKAOcUZoEJz2g3X+TjK0WdXm1E43AX8lWIATW6j3EzhbCA17tPWsYenWD vAby4sy8dMlt+Q7dszPsBZ2mEkKKo1VRSu6Hm6VBxhP23vpKWdVLQqADopKMRQYG /26FKt99vxV+WOHO87JdB6LK8NF7hA/tvc70i7C348GSx6NAfJcmYi+XHibeB3aN k8z7C2Bm/xNHySETf/X/xVc4aWvYbQq2C6lWNWWtVir71ggwJSxGzOETRO4tAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkDBxsLsWFMPOIBJmma5Yf/6AwEEwHwYDVR0j BBgwFoAU/IcKJ2m4jxAQeBftqjtCN7FLDqkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWYyZjY0Y2EtZmE1NC00OTllLWJjMzMtNDg2MmRjYTc5NGY3LzAvRkM4NzBBMjc2 OUI4OEYxMDEwNzgxN0VEQUEzQjQyMzdCMTRCMEVBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GQzg3MEEyNzY5Qjg4RjEwMTA3ODE3RURBQTNCNDIzN0IxNEIw RUE5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFmMmY2NGNhLWZhNTQtNDk5ZS1i YzMzLTQ4NjJkY2E3OTRmNy8wLzMxMzUzNzJlMzEzMDJlMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCmEwDQYJKoZIhvcN AQELBQADggEBAJzlprfxjxUs1wi1+exTc3AUBMV/26fbHU6qw8iY9TnPSV44yiHq Q5MM5EQeSlixaYcNGJ8lD+12f1nGKitWRMv9zUX0c7UH6En4AnAWR/fxedVbxMH0 JtlZefp9gasEqxTpnxjUqAiUpQMg7Go60PbWI+NlpYMzlXkIKqbJIoDvUHLA5VAs x1MVFmOQPED3uJMGCxC0uM2BsoBmeV588hT4UgOIcJZZxdSC8WgGET65dxcpcCH6 P7I7rL3bLdKqtnHQs2QcJO4GNHTrujj9WJUb6GWjoYgvCtCJvafBGS8mthz4mHP5 yjPCIZm5dgRLdMt3F6IHXGmYQwGaFTk6FxA= -----END CERTIFICATE-----Generated at Wed May 13 01:10:47 2026 by rpki-client