$ rpki-client -vvf rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133382e302f32332d3234203d3e20313338383431.roa File: 3135302e3130372e3133382e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: zglbkc+RWLCoK6k55ufB/4S5J4Y1k7U3FBOc9re+gzE= Subject key identifier: A1:71:DF:8D:63:02:79:AA:DF:6C:FA:4D:CD:D0:85:CF:50:27:B2:7D Certificate issuer: /CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Certificate serial: 5E83DF782E8FF8AFBC0ABE81396F81A572BAC5E6 Authority key identifier: D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133382e302f32332d3234203d3e20313338383431.roa Signing time: Sun 03 May 2026 02:18:45 +0000 ROA not before: Sun 03 May 2026 02:13:45 +0000 ROA not after: Sun 02 May 2027 02:18:45 +0000 asID: 138841 IP address blocks: 150.107.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:83:df:78:2e:8f:f8:af:bc:0a:be:81:39:6f:81:a5:72:ba:c5:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D09EA95FF10C0166C2954C997A8A4989BD890A87 Validity Not Before: May 3 02:13:45 2026 GMT Not After : May 2 02:18:45 2027 GMT Subject: CN=A171DF8D630279AADF6CFA4DCDD085CF5027B27D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:79:07:12:9e:f6:ab:52:6b:66:cb:38:2d:3c: 78:aa:b3:a7:0a:62:87:59:f5:03:dc:64:cf:54:aa: b2:2b:49:16:f4:c2:73:9c:98:e9:ac:af:13:6a:fc: 34:0e:13:31:62:15:b5:db:4f:de:e4:53:59:07:ea: 47:ba:fe:59:17:64:a0:b6:b2:25:8e:25:6e:c3:2a: 17:c4:f1:1c:aa:ee:99:43:8e:55:b7:ea:35:5f:8a: 06:38:d6:3c:a8:1e:e9:4d:cd:4d:43:9e:c5:6c:a6: cc:5b:0c:85:f6:16:bc:7c:79:ed:b0:c1:07:68:34: 77:f2:70:68:89:23:8a:42:9b:4b:95:c4:ae:f8:43: 88:e4:6e:50:9e:28:f2:f6:5b:42:7c:c4:92:f9:99: db:8e:3e:92:c0:8c:bc:79:a2:af:9a:c0:92:24:58: 81:13:cd:bd:91:c3:22:c8:28:7d:bf:9e:2f:c8:6e: ec:ad:ae:3a:91:0b:96:fc:88:00:bb:cb:4d:f8:54: cf:16:86:03:ab:5b:84:2a:59:3f:a5:ea:48:ed:80: 2a:2e:20:0a:48:11:a8:d6:7a:28:83:29:35:ef:4a: 8a:a9:7c:b0:2b:4b:a9:92:40:54:8b:d9:27:14:3d: a7:9d:b9:c4:23:dd:7a:81:a2:69:67:c6:c4:ae:91: 2c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:71:DF:8D:63:02:79:AA:DF:6C:FA:4D:CD:D0:85:CF:50:27:B2:7D X509v3 Authority Key Identifier: keyid:D0:9E:A9:5F:F1:0C:01:66:C2:95:4C:99:7A:8A:49:89:BD:89:0A:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/D09EA95FF10C0166C2954C997A8A4989BD890A87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D09EA95FF10C0166C2954C997A8A4989BD890A87.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3135302e3130372e3133382e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.138.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:2e:41:40:ee:51:ba:7a:7a:f6:d2:65:d3:9d:03:71:fc:fe: 92:14:b1:61:84:ba:a0:94:53:16:f0:f9:20:90:7a:1b:7e:d6: e9:bb:87:c1:e3:42:87:12:2e:46:10:a8:93:a4:70:6c:2d:50: 5d:50:d3:80:c9:00:aa:1d:a0:66:2a:ee:9e:90:bc:0f:78:3a: 74:d3:e2:ca:fb:9f:34:76:d0:24:ca:f4:e6:10:39:f0:d4:3b: 55:0c:e3:df:f8:84:6b:02:cf:e5:b1:9e:8f:7c:16:2c:b1:72: 8b:58:12:f9:89:23:02:cf:ae:6b:d8:e1:da:1b:e8:c9:0d:07: bd:5a:94:99:cd:48:b8:2f:d4:2b:c2:af:bf:36:7a:d1:c0:e7: 77:71:4a:16:92:4d:a8:72:35:51:a4:48:fa:b2:75:de:b7:2a: ee:ee:1f:53:b5:16:63:2d:84:e3:cd:9b:d7:26:60:8e:00:cd: fa:a1:97:5b:bd:ce:82:65:2f:a8:44:99:0c:6f:92:12:68:db: bc:1a:0c:e7:e8:56:57:14:69:a8:e0:68:32:c0:07:26:ef:e3: 32:a6:eb:38:59:ec:5f:75:8d:3a:c3:f3:63:ca:0a:91:47:de: a1:b5:b3:49:ca:ea:b7:19:ab:51:26:38:e2:7b:fc:4d:9a:e6: 54:c0:c1:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXoPfeC6P+K+8Cr6BOW+BpXK6xeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA5RUE5NUZGMTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlC RDg5MEE4NzAeFw0yNjA1MDMwMjEzNDVaFw0yNzA1MDIwMjE4NDVaMDMxMTAvBgNV BAMTKEExNzFERjhENjMwMjc5QUFERjZDRkE0RENERDA4NUNGNTAyN0IyN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoeQcSnvarUmtmyzgtPHiqs6cK YodZ9QPcZM9UqrIrSRb0wnOcmOmsrxNq/DQOEzFiFbXbT97kU1kH6ke6/lkXZKC2 siWOJW7DKhfE8Ryq7plDjlW36jVfigY41jyoHulNzU1DnsVspsxbDIX2Frx8ee2w wQdoNHfycGiJI4pCm0uVxK74Q4jkblCeKPL2W0J8xJL5mduOPpLAjLx5oq+awJIk WIETzb2RwyLIKH2/ni/IbuytrjqRC5b8iAC7y034VM8WhgOrW4QqWT+l6kjtgCou IApIEajWeiiDKTXvSoqpfLArS6mSQFSL2ScUPaeducQj3XqBomlnxsSukSwFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoXHfjWMCearfbPpNzdCFz1Ansn0wHwYDVR0j BBgwFoAU0J6pX/EMAWbClUyZeopJib2JCocwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAxNDMyY2MtM2JjOS00ODU4LWI1MDYtMjE4YWFiMGIwODljLzAvRDA5RUE5NUZG MTBDMDE2NkMyOTU0Qzk5N0E4QTQ5ODlCRDg5MEE4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMDlFQTk1RkYxMEMwMTY2QzI5NTRDOTk3QThBNDk4OUJEODkw QTg3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzUzMDJlMzEzMDM3MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGWa4owDQYJ KoZIhvcNAQELBQADggEBAI0uQUDuUbp6evbSZdOdA3H8/pIUsWGEuqCUUxbw+SCQ eht+1um7h8HjQocSLkYQqJOkcGwtUF1Q04DJAKodoGYq7p6QvA94OnTT4sr7nzR2 0CTK9OYQOfDUO1UM49/4hGsCz+Wxno98FiyxcotYEvmJIwLPrmvY4dob6MkNB71a lJnNSLgv1CvCr782etHA53dxShaSTahyNVGkSPqydd63Ku7uH1O1FmMthOPNm9cm YI4Azfqhl1u9zoJlL6hEmQxvkhJo27waDOfoVlcUaajgaDLABybv4zKm6zhZ7F91 jTrD82PKCpFH3qG1s0nK6rcZq1EmOOJ7/E2a5lTAwZo= -----END CERTIFICATE-----Generated at Wed May 13 07:14:16 2026 by rpki-client