$ rpki-client -vvf rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa File: 3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa (raw, json) Hash identifier: Nx3fcumdsqRiUqwqQ3R1jk6NstvkzNg1p4gYbPnIgK4= Subject key identifier: FE:19:C4:E1:9A:E8:7F:D7:A9:58:E0:CB:B6:1E:3F:EA:49:66:B2:57 Certificate issuer: /CN=70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E Certificate serial: 3A173BCB0317A46818AEF94179408A741E5FA21E Authority key identifier: 70:F6:EC:1E:72:3D:6D:ED:42:4B:93:45:CC:3D:F6:CE:BC:99:DB:8E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa Signing time: Sun 03 May 2026 02:25:33 +0000 ROA not before: Sun 03 May 2026 02:20:33 +0000 ROA not after: Sun 02 May 2027 02:25:33 +0000 asID: 152397 IP address blocks: 157.15.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.crl rsync://rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:17:3b:cb:03:17:a4:68:18:ae:f9:41:79:40:8a:74:1e:5f:a2:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E Validity Not Before: May 3 02:20:33 2026 GMT Not After : May 2 02:25:33 2027 GMT Subject: CN=FE19C4E19AE87FD7A958E0CBB61E3FEA4966B257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:46:e9:23:86:f9:7f:b9:cc:48:84:45:4a: a7:ab:92:fd:a6:a3:25:5b:5c:86:40:a0:79:3a:ad: 4e:f9:bd:b0:18:11:e1:a2:96:84:84:ef:a7:db:4c: 83:c5:f9:f0:12:cb:66:0f:fd:d6:60:55:a4:3a:cd: 34:5e:17:92:b5:be:e3:6c:c7:4e:68:5d:02:3b:1b: 5f:c1:91:c7:e5:3c:d2:6f:23:ae:39:fb:d9:45:7a: 74:63:15:a5:e8:f0:88:8b:d8:64:d9:37:18:f8:13: fc:d5:39:b6:69:71:16:a1:f0:f6:fa:2c:f7:07:6d: 3f:2c:78:e1:f7:27:c9:14:2a:08:9e:dd:74:83:47: 59:25:71:4c:4a:de:d7:9a:a1:42:f8:27:fa:c7:47: 98:fc:0f:b5:d2:6c:66:c4:06:eb:a2:30:16:16:b2: 4d:1f:83:0d:e4:74:45:b4:89:a3:e3:36:99:e4:0e: 4d:9f:e4:aa:99:fe:68:dd:58:b6:78:53:e7:85:c5: 29:da:e7:a1:ea:04:f9:8d:a3:ed:62:04:83:f6:45: 91:fc:94:c8:67:56:65:b4:21:50:31:fd:fa:10:16: 64:28:f5:fa:f2:d5:b9:fc:fe:c2:0f:e5:8a:01:5b: 70:16:52:5f:11:7c:23:c6:c8:7a:22:fe:2e:8f:34: e1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:19:C4:E1:9A:E8:7F:D7:A9:58:E0:CB:B6:1E:3F:EA:49:66:B2:57 X509v3 Authority Key Identifier: keyid:70:F6:EC:1E:72:3D:6D:ED:42:4B:93:45:CC:3D:F6:CE:BC:99:DB:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F6EC1E723D6DED424B9345CC3DF6CEBC99DB8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/36dd15e3-9ee5-4d52-9eee-712bb3b7bffb/0/3135372e31352e3132322e302f32342d3234203d3e20313532333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.122.0/24 Signature Algorithm: sha256WithRSAEncryption a8:18:64:5a:1c:5a:04:b5:76:03:38:03:e2:1d:f9:31:54:d6: 57:e6:40:fe:e9:68:ce:78:11:23:e6:0b:eb:3e:16:0e:44:f0: 27:61:b1:2a:7d:e3:14:b0:93:97:0a:11:f8:b2:f7:3a:41:07: c0:0b:11:8d:29:ae:a1:b5:55:3e:2f:a6:91:66:27:fd:09:5b: fd:cc:9f:ac:56:16:3a:94:e3:8d:04:70:e2:fa:5a:c5:24:a2: 8f:c2:55:b4:6d:c0:0d:66:8b:ec:60:34:40:3c:88:9c:19:8a: 65:4a:ef:7f:93:09:52:5d:8f:d0:5c:d7:de:82:3a:49:f0:35: 8d:7e:8e:e6:98:37:61:64:42:21:5f:ec:55:7b:37:48:3d:a1: 43:3a:74:2f:43:5d:c5:96:ef:3f:b2:39:81:91:a8:f8:ac:63: c1:59:fd:9c:0d:c6:81:37:40:bd:19:24:98:47:a8:1e:3f:dd: 34:e8:09:a3:a7:87:4e:5f:ef:74:c4:9f:29:e9:2d:2d:f0:a8: e8:7a:b9:1f:85:d5:41:35:7a:e0:d2:47:1b:d6:30:58:7c:14: eb:5d:f9:21:87:89:c9:d7:89:f0:cb:0f:d5:bb:6d:9c:e7:87: f0:8e:a0:93:b8:03:0b:ce:84:a4:a4:76:cb:92:98:27:97:c2: 7d:90:f8:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOhc7ywMXpGgYrvlBeUCKdB5foh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGNkVDMUU3MjNENkRFRDQyNEI5MzQ1Q0MzREY2Q0VC Qzk5REI4RTAeFw0yNjA1MDMwMjIwMzNaFw0yNzA1MDIwMjI1MzNaMDMxMTAvBgNV BAMTKEZFMTlDNEUxOUFFODdGRDdBOTU4RTBDQkI2MUUzRkVBNDk2NkIyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC160bpI4b5f7nMSIRFSqerkv2m oyVbXIZAoHk6rU75vbAYEeGiloSE76fbTIPF+fASy2YP/dZgVaQ6zTReF5K1vuNs x05oXQI7G1/BkcflPNJvI645+9lFenRjFaXo8IiL2GTZNxj4E/zVObZpcRah8Pb6 LPcHbT8seOH3J8kUKgie3XSDR1klcUxK3teaoUL4J/rHR5j8D7XSbGbEBuuiMBYW sk0fgw3kdEW0iaPjNpnkDk2f5KqZ/mjdWLZ4U+eFxSna56HqBPmNo+1iBIP2RZH8 lMhnVmW0IVAx/foQFmQo9fry1bn8/sIP5YoBW3AWUl8RfCPGyHoi/i6PNOH1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/hnE4Zrof9epWODLth4/6klmslcwHwYDVR0j BBgwFoAUcPbsHnI9be1CS5NFzD32zryZ244wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzZkZDE1ZTMtOWVlNS00ZDUyLTllZWUtNzEyYmIzYjdiZmZiLzAvNzBGNkVDMUU3 MjNENkRFRDQyNEI5MzQ1Q0MzREY2Q0VCQzk5REI4RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83MEY2RUMxRTcyM0Q2REVENDI0QjkzNDVDQzNERjZDRUJDOTlE QjhFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM2ZGQxNWUzLTllZTUtNGQ1Mi05 ZWVlLTcxMmJiM2I3YmZmYi8wLzMxMzUzNzJlMzEzNTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ96MA0GCSqG SIb3DQEBCwUAA4IBAQCoGGRaHFoEtXYDOAPiHfkxVNZX5kD+6WjOeBEj5gvrPhYO RPAnYbEqfeMUsJOXChH4svc6QQfACxGNKa6htVU+L6aRZif9CVv9zJ+sVhY6lOON BHDi+lrFJKKPwlW0bcANZovsYDRAPIicGYplSu9/kwlSXY/QXNfegjpJ8DWNfo7m mDdhZEIhX+xVezdIPaFDOnQvQ13Flu8/sjmBkaj4rGPBWf2cDcaBN0C9GSSYR6ge P9006Amjp4dOX+90xJ8p6S0t8KjoerkfhdVBNXrg0kcb1jBYfBTrXfkhh4nJ14nw yw/Vu22c54fwjqCTuAMLzoSkpHbLkpgnl8J9kPiu -----END CERTIFICATE-----Generated at Wed May 13 05:25:11 2026 by rpki-client