$ rpki-client -vvf rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa File: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (raw, json) Hash identifier: HOcPS4qdpb2ompwF0Iuz3Hp7HISNtqZpLKOOQ+UHNFc= Subject key identifier: 78:0C:5C:5B:51:30:EB:80:CF:56:9A:EE:46:26:EB:99:81:8F:7B:EF Certificate issuer: /CN=02421F1D8F0911482A3B964167D5292F7B46D2A0 Certificate serial: 216A0CC54D60EEC599BB4709A8A11B84E1B1B69A Authority key identifier: 02:42:1F:1D:8F:09:11:48:2A:3B:96:41:67:D5:29:2F:7B:46:D2:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa Signing time: Sun 03 May 2026 02:30:15 +0000 ROA not before: Sun 03 May 2026 02:25:15 +0000 ROA not after: Sun 02 May 2027 02:30:15 +0000 asID: 152413 IP address blocks: 157.20.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.crl rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6a:0c:c5:4d:60:ee:c5:99:bb:47:09:a8:a1:1b:84:e1:b1:b6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02421F1D8F0911482A3B964167D5292F7B46D2A0 Validity Not Before: May 3 02:25:15 2026 GMT Not After : May 2 02:30:15 2027 GMT Subject: CN=780C5C5B5130EB80CF569AEE4626EB99818F7BEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1b:79:a5:de:94:22:39:49:30:f7:40:c5:a4: 04:14:45:61:0f:7d:98:30:69:5a:3f:62:39:c2:25: 7b:ce:ec:78:ca:99:e6:5f:1f:8e:83:b2:90:aa:b1: 18:02:da:e3:2b:a0:1d:89:cd:06:da:eb:68:59:08: 81:60:7c:61:45:d6:18:e0:3b:d2:d0:2f:37:b5:06: ca:7b:d9:f2:ac:35:3a:b2:43:87:b4:ae:74:cd:99: b3:b5:98:16:0b:7e:1e:5a:b0:14:1d:28:ef:42:6e: 96:f9:df:62:27:0a:81:7f:e3:00:81:93:c4:63:b0: fc:8a:85:74:d2:46:54:c8:9d:cd:ff:40:7a:a0:79: c1:c8:5d:7f:5a:5e:a3:80:61:e9:eb:5b:e7:10:89: 2f:0d:37:0a:0a:41:90:57:eb:45:fa:53:29:03:57: 95:13:c9:76:18:83:ad:27:ac:7b:60:e8:31:fd:34: fb:ea:69:49:45:7c:8c:fa:2d:69:e3:0e:0c:55:3a: 2c:65:d0:e2:ca:5f:ab:a6:79:d6:f7:3d:d8:fb:01: 89:8c:3b:71:5c:35:48:8f:0c:88:8e:f4:b5:cb:4b: 48:18:5d:f4:aa:6b:cd:85:b4:a6:f9:eb:cf:75:a2: e0:b9:1f:fd:90:58:63:07:44:83:f8:83:fa:47:28: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0C:5C:5B:51:30:EB:80:CF:56:9A:EE:46:26:EB:99:81:8F:7B:EF X509v3 Authority Key Identifier: keyid:02:42:1F:1D:8F:09:11:48:2A:3B:96:41:67:D5:29:2F:7B:46:D2:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.120.0/24 Signature Algorithm: sha256WithRSAEncryption 89:16:f2:d0:af:38:70:fd:6c:46:31:df:b3:ef:97:dc:a3:be: 2b:96:64:bc:54:7c:41:8b:0b:0a:08:98:63:9b:28:77:57:d3: 19:7e:bd:82:1d:54:23:22:2b:71:a1:c8:ef:cf:c5:40:c3:76: 26:70:98:10:a4:35:74:22:53:27:4d:ae:12:69:65:46:e0:b9: 41:57:49:5c:85:64:23:73:76:13:f7:df:2c:8a:0f:a2:88:ce: 68:12:2b:32:cc:c2:52:40:0a:e8:78:9b:5f:3c:9e:0d:99:30: 9d:b2:ce:e2:43:72:2c:f7:76:15:a0:8a:ab:67:8e:39:c1:fd: 1f:00:5f:60:84:56:f4:27:43:42:67:a0:b5:d6:48:5c:9d:02: e0:4d:68:e4:f2:73:01:a8:18:29:99:5c:6b:ac:99:70:d7:62: 62:31:28:26:44:4d:c1:8b:c3:f5:be:80:6f:55:78:88:66:13: 01:a2:65:d9:4b:28:05:3d:78:a6:ff:d9:dd:55:f1:c0:5a:ae: 52:b7:3c:01:a7:8d:1f:4a:2f:63:e4:34:1b:c3:92:61:18:01: 6d:e8:4a:d0:7a:ec:15:18:fd:f4:41:a3:08:11:26:7d:65:36: a3:02:d4:d4:90:91:8f:96:20:a7:52:24:41:ce:0a:01:3b:20: 32:50:e5:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIWoMxU1g7sWZu0cJqKEbhOGxtpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0MjFGMUQ4RjA5MTE0ODJBM0I5NjQxNjdENTI5MkY3 QjQ2RDJBMDAeFw0yNjA1MDMwMjI1MTVaFw0yNzA1MDIwMjMwMTVaMDMxMTAvBgNV BAMTKDc4MEM1QzVCNTEzMEVCODBDRjU2OUFFRTQ2MjZFQjk5ODE4RjdCRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbG3ml3pQiOUkw90DFpAQURWEP fZgwaVo/YjnCJXvO7HjKmeZfH46DspCqsRgC2uMroB2JzQba62hZCIFgfGFF1hjg O9LQLze1Bsp72fKsNTqyQ4e0rnTNmbO1mBYLfh5asBQdKO9Cbpb532InCoF/4wCB k8RjsPyKhXTSRlTInc3/QHqgecHIXX9aXqOAYenrW+cQiS8NNwoKQZBX60X6UykD V5UTyXYYg60nrHtg6DH9NPvqaUlFfIz6LWnjDgxVOixl0OLKX6umedb3Pdj7AYmM O3FcNUiPDIiO9LXLS0gYXfSqa82FtKb56891ouC5H/2QWGMHRIP4g/pHKCEhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeAxcW1Ew64DPVpruRibrmYGPe+8wHwYDVR0j BBgwFoAUAkIfHY8JEUgqO5ZBZ9UpL3tG0qAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDY0NDI2M2EtOGVlMi00ZWVjLWE4MTAtNTczM2NjYWY1MWUzLzAvMDI0MjFGMUQ4 RjA5MTE0ODJBM0I5NjQxNjdENTI5MkY3QjQ2RDJBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wMjQyMUYxRDhGMDkxMTQ4MkEzQjk2NDE2N0Q1MjkyRjdCNDZE MkEwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ2NDQyNjNhLThlZTItNGVlYy1h ODEwLTU3MzNjY2FmNTFlMy8wLzMxMzUzNzJlMzIzMDJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRR4MA0GCSqG SIb3DQEBCwUAA4IBAQCJFvLQrzhw/WxGMd+z75fco74rlmS8VHxBiwsKCJhjmyh3 V9MZfr2CHVQjIitxocjvz8VAw3YmcJgQpDV0IlMnTa4SaWVG4LlBV0lchWQjc3YT 998sig+iiM5oEisyzMJSQAroeJtfPJ4NmTCdss7iQ3Is93YVoIqrZ445wf0fAF9g hFb0J0NCZ6C11khcnQLgTWjk8nMBqBgpmVxrrJlw12JiMSgmRE3Bi8P1voBvVXiI ZhMBomXZSygFPXim/9ndVfHAWq5StzwBp40fSi9j5DQbw5JhGAFt6ErQeuwVGP30 QaMIESZ9ZTajAtTUkJGPliCnUiRBzgoBOyAyUOVz -----END CERTIFICATE-----Generated at Wed May 13 03:48:31 2026 by rpki-client