$ rpki-client -vvf rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa File: 3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa (raw, json) Hash identifier: d8hlpMGwM7inThd2/Asl74/yVlwwKBLZArB/QX8GfGM= Subject key identifier: DC:AD:DB:A0:84:C2:F2:81:AD:55:C1:4D:BA:BA:81:68:66:E7:D9:F7 Certificate issuer: /CN=74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA Certificate serial: 3A1C87F237A1A7544D69516E45B06EB848D86E98 Authority key identifier: 74:E4:2D:E0:D1:AA:6F:A8:D0:54:D5:3E:F8:87:F8:4F:F5:1D:7F:EA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa Signing time: Sun 03 May 2026 02:30:00 +0000 ROA not before: Sun 03 May 2026 02:25:00 +0000 ROA not after: Sun 02 May 2027 02:30:00 +0000 asID: 152382 IP address blocks: 157.15.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.crl rsync://rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:1c:87:f2:37:a1:a7:54:4d:69:51:6e:45:b0:6e:b8:48:d8:6e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA Validity Not Before: May 3 02:25:00 2026 GMT Not After : May 2 02:30:00 2027 GMT Subject: CN=DCADDBA084C2F281AD55C14DBABA816866E7D9F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:ad:5c:b9:51:d0:49:44:93:6b:0e:c3:c7: c0:09:87:ad:1b:41:fc:23:ed:e4:4b:d7:d6:26:2b: 33:bf:37:2f:fe:7e:b9:19:63:4d:d3:ea:13:4a:0c: 0b:0c:45:48:f6:5a:e7:af:83:a3:f6:5c:2f:39:76: a3:0a:8c:9e:eb:1f:0b:06:e3:3f:c8:27:8d:ca:62: 1e:81:a0:a9:c6:69:8d:15:97:e1:91:b3:69:b5:56: b2:aa:74:2a:06:75:14:f1:28:78:b1:ed:13:43:df: 00:db:5a:8d:36:37:d8:e3:62:49:5c:78:ee:29:4f: 8f:2f:f3:83:46:02:db:fd:2a:8a:85:09:11:ce:7a: b8:7a:b6:86:e3:8a:04:bf:a4:34:d5:e2:ec:7c:5d: d8:a6:a5:ea:d8:b9:3a:4f:7c:2e:77:fa:f8:d8:2e: a8:90:e3:68:e3:67:e6:98:8f:1e:2e:cf:c0:8e:b1: 7b:f8:af:7f:30:bf:96:cd:86:d1:2a:4d:65:f0:61: c2:8b:be:af:de:45:16:23:67:b2:13:32:f2:24:96: 05:59:dd:fa:ae:63:f5:40:2b:90:28:61:65:7b:5f: 0a:77:e8:fd:61:87:aa:85:ab:9e:5c:ff:e2:d6:1e: bb:ed:ab:96:e9:09:f2:f6:a1:ac:88:62:80:ed:b2: 3c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AD:DB:A0:84:C2:F2:81:AD:55:C1:4D:BA:BA:81:68:66:E7:D9:F7 X509v3 Authority Key Identifier: keyid:74:E4:2D:E0:D1:AA:6F:A8:D0:54:D5:3E:F8:87:F8:4F:F5:1D:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/74E42DE0D1AA6FA8D054D53EF887F84FF51D7FEA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/453ac667-4d9e-48d7-afd6-82e98fa76c1e/0/3135372e31352e3136362e302f32342d3234203d3e20313532333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.166.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f2:f9:07:07:6e:ec:55:84:e9:7c:7c:62:fc:e3:bd:c0:bd: 09:a0:e2:ff:58:30:29:2e:42:f4:7c:e9:df:ee:a0:e2:57:f7: 48:c2:e9:0c:32:7c:05:7f:a3:20:1d:68:b3:09:a8:5d:ec:93: 26:d2:b9:79:a3:67:c2:5d:19:ec:6e:f5:17:5f:e7:eb:f4:3d: df:69:07:5f:76:35:90:0d:82:1e:95:bb:dd:a7:96:cb:b3:1d: 9c:a4:16:66:f9:9b:87:c0:fc:0b:29:c5:87:fb:1e:32:57:7c: 7d:4f:73:d7:cf:81:2d:81:aa:08:61:f5:4c:d3:cf:81:55:aa: 81:9c:51:28:e8:0b:da:ab:f8:07:84:53:ea:1d:6d:42:25:c2: e8:04:26:fe:fe:00:80:12:07:72:40:27:eb:9c:1b:d3:4c:dc: 04:85:5d:2c:89:55:3a:71:fb:7d:89:7d:88:70:4a:9d:07:d2: 28:79:20:0f:81:e5:12:88:9d:ff:21:6a:0f:6d:3d:70:a7:da: 3e:51:9f:75:48:35:df:f9:b2:eb:cf:90:93:10:c5:c3:8e:54: 62:08:9e:c3:45:a8:f5:ea:ae:7e:7c:b4:fa:f9:66:c8:39:b5: e9:0d:93:1c:26:5a:68:5e:1d:3f:ac:93:1c:01:94:72:db:10: 4a:28:f2:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOhyH8jehp1RNaVFuRbBuuEjYbpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzRFNDJERTBEMUFBNkZBOEQwNTRENTNFRjg4N0Y4NEZG NTFEN0ZFQTAeFw0yNjA1MDMwMjI1MDBaFw0yNzA1MDIwMjMwMDBaMDMxMTAvBgNV BAMTKERDQUREQkEwODRDMkYyODFBRDU1QzE0REJBQkE4MTY4NjZFN0Q5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGVK1cuVHQSUSTaw7Dx8AJh60b Qfwj7eRL19YmKzO/Ny/+frkZY03T6hNKDAsMRUj2Wuevg6P2XC85dqMKjJ7rHwsG 4z/IJ43KYh6BoKnGaY0Vl+GRs2m1VrKqdCoGdRTxKHix7RND3wDbWo02N9jjYklc eO4pT48v84NGAtv9KoqFCRHOerh6tobjigS/pDTV4ux8XdimperYuTpPfC53+vjY LqiQ42jjZ+aYjx4uz8COsXv4r38wv5bNhtEqTWXwYcKLvq/eRRYjZ7ITMvIklgVZ 3fquY/VAK5AoYWV7Xwp36P1hh6qFq55c/+LWHrvtq5bpCfL2oayIYoDtsjyDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3K3boITC8oGtVcFNurqBaGbn2fcwHwYDVR0j BBgwFoAUdOQt4NGqb6jQVNU++If4T/Udf+owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDUzYWM2NjctNGQ5ZS00OGQ3LWFmZDYtODJlOThmYTc2YzFlLzAvNzRFNDJERTBE MUFBNkZBOEQwNTRENTNFRjg4N0Y4NEZGNTFEN0ZFQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83NEU0MkRFMEQxQUE2RkE4RDA1NEQ1M0VGODg3Rjg0RkY1MUQ3 RkVBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ1M2FjNjY3LTRkOWUtNDhkNy1h ZmQ2LTgyZTk4ZmE3NmMxZS8wLzMxMzUzNzJlMzEzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+mMA0GCSqG SIb3DQEBCwUAA4IBAQAq8vkHB27sVYTpfHxi/OO9wL0JoOL/WDApLkL0fOnf7qDi V/dIwukMMnwFf6MgHWizCahd7JMm0rl5o2fCXRnsbvUXX+fr9D3faQdfdjWQDYIe lbvdp5bLsx2cpBZm+ZuHwPwLKcWH+x4yV3x9T3PXz4EtgaoIYfVM08+BVaqBnFEo 6Avaq/gHhFPqHW1CJcLoBCb+/gCAEgdyQCfrnBvTTNwEhV0siVU6cft9iX2IcEqd B9IoeSAPgeUSiJ3/IWoPbT1wp9o+UZ91SDXf+bLrz5CTEMXDjlRiCJ7DRaj16q5+ fLT6+WbIObXpDZMcJlpoXh0/rJMcAZRy2xBKKPJ8 -----END CERTIFICATE-----Generated at Wed May 13 05:24:42 2026 by rpki-client