$ rpki-client -vvf rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa File: 3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: SL9aBMi2vvV2NPAf/otqFcnRvZaq49Vl9gxg4icgFKg= Subject key identifier: 4A:F7:41:D5:0C:B5:90:4A:11:75:49:72:AE:5C:86:59:1C:5E:C2:C6 Certificate issuer: /CN=02421F1D8F0911482A3B964167D5292F7B46D2A0 Certificate serial: 3D89C32CA48C8EF542A412FE8CF96959462B5B46 Authority key identifier: 02:42:1F:1D:8F:09:11:48:2A:3B:96:41:67:D5:29:2F:7B:46:D2:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa Signing time: Sun 03 May 2026 02:30:14 +0000 ROA not before: Sun 03 May 2026 02:25:14 +0000 ROA not after: Sun 02 May 2027 02:30:14 +0000 asID: 149409 IP address blocks: 157.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.crl rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:89:c3:2c:a4:8c:8e:f5:42:a4:12:fe:8c:f9:69:59:46:2b:5b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02421F1D8F0911482A3B964167D5292F7B46D2A0 Validity Not Before: May 3 02:25:14 2026 GMT Not After : May 2 02:30:14 2027 GMT Subject: CN=4AF741D50CB5904A11754972AE5C86591C5EC2C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4e:c9:98:db:68:ff:a8:d4:97:70:6f:a4:0c: a4:10:f8:bc:12:a3:36:b6:06:52:fa:f2:27:ad:a1: b6:b5:a9:4d:8e:30:5a:30:83:f4:f6:5e:35:d4:e8: e7:3b:b3:1d:d5:80:7f:4c:63:db:2d:85:aa:0c:e9: 18:05:1a:6c:29:c4:56:c9:8e:78:49:18:c6:cc:d5: 83:07:4a:82:08:5b:98:6f:92:dd:f9:5e:81:88:f3: e1:24:f5:20:00:23:cb:cd:a6:4b:41:51:2a:b6:d4: 47:6d:7a:59:84:4d:b7:b6:df:6f:64:14:0b:7b:a6: 98:d6:14:a6:7a:36:d6:c3:6c:9d:16:18:c0:7b:b3: 03:2f:34:53:45:b3:bf:c6:51:50:4e:7e:13:7f:d8: 90:0b:d5:69:73:b6:46:40:61:cd:32:d7:04:35:bc: 7d:3c:67:1b:9a:52:a8:72:ef:f6:59:cd:e8:78:15: bb:57:4f:f9:66:b8:ca:c7:24:b6:a7:03:e3:be:0a: 3f:55:2a:6a:64:49:6d:2c:c8:11:14:81:02:0d:89: 51:52:e6:d6:66:2a:58:ab:26:8a:22:88:f6:69:cb: d0:e8:e7:09:6c:f3:2d:d2:3f:c3:cd:71:51:cf:33: c3:f2:4e:98:7d:a2:cc:52:88:21:7f:91:90:c8:8f: 24:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F7:41:D5:0C:B5:90:4A:11:75:49:72:AE:5C:86:59:1C:5E:C2:C6 X509v3 Authority Key Identifier: keyid:02:42:1F:1D:8F:09:11:48:2A:3B:96:41:67:D5:29:2F:7B:46:D2:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/02421F1D8F0911482A3B964167D5292F7B46D2A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 64:12:1e:82:73:6c:85:b0:65:2c:b2:98:6d:68:99:88:14:75: 2b:08:8d:aa:9f:cf:b0:bc:60:0e:61:4f:1a:be:10:5b:94:c2: e9:1f:7c:86:17:6f:e9:53:78:f5:cb:5a:42:c4:5a:31:b4:ed: 82:f9:cb:19:a8:c9:0b:77:35:a3:5c:d4:07:2f:25:d1:79:ca: 19:f4:cd:8d:9c:a1:26:5e:b4:ab:31:d5:45:51:31:84:20:8f: 1f:08:ce:33:4f:ce:89:6e:fb:ce:71:1e:68:94:10:b9:fb:26: 23:8e:36:a3:3b:9b:58:3a:0d:fb:d9:c0:14:ba:19:e9:0a:69: a3:bb:f1:4b:36:3a:36:5b:b6:68:88:86:a1:82:f2:10:2d:c9: 15:5e:e2:8a:1f:fc:37:d2:31:ce:65:c9:b3:b7:a6:b1:a4:4a: 24:f5:78:a8:08:8c:f7:d3:42:82:ff:b7:02:84:27:bd:93:ac: f0:8f:db:a3:e1:39:a7:aa:1f:6e:b6:83:de:d3:e1:ae:ca:76: e9:5e:14:98:af:31:de:cb:fa:3d:30:c8:2f:64:6f:71:ca:59: 6f:af:02:a0:60:b2:72:3c:fe:d5:bb:ea:7e:91:be:57:f8:db: c7:ea:16:ed:f6:1f:d5:70:41:cf:29:55:6f:e1:ef:ec:d1:19: 9d:38:da:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPYnDLKSMjvVCpBL+jPlpWUYrW0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0MjFGMUQ4RjA5MTE0ODJBM0I5NjQxNjdENTI5MkY3 QjQ2RDJBMDAeFw0yNjA1MDMwMjI1MTRaFw0yNzA1MDIwMjMwMTRaMDMxMTAvBgNV BAMTKDRBRjc0MUQ1MENCNTkwNEExMTc1NDk3MkFFNUM4NjU5MUM1RUMyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbTsmY22j/qNSXcG+kDKQQ+LwS oza2BlL68ietoba1qU2OMFowg/T2XjXU6Oc7sx3VgH9MY9sthaoM6RgFGmwpxFbJ jnhJGMbM1YMHSoIIW5hvkt35XoGI8+Ek9SAAI8vNpktBUSq21EdtelmETbe2329k FAt7ppjWFKZ6NtbDbJ0WGMB7swMvNFNFs7/GUVBOfhN/2JAL1WlztkZAYc0y1wQ1 vH08ZxuaUqhy7/ZZzeh4FbtXT/lmuMrHJLanA+O+Cj9VKmpkSW0syBEUgQINiVFS 5tZmKlirJooiiPZpy9Do5wls8y3SP8PNcVHPM8PyTph9osxSiCF/kZDIjySTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSvdB1Qy1kEoRdUlyrlyGWRxewsYwHwYDVR0j BBgwFoAUAkIfHY8JEUgqO5ZBZ9UpL3tG0qAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDY0NDI2M2EtOGVlMi00ZWVjLWE4MTAtNTczM2NjYWY1MWUzLzAvMDI0MjFGMUQ4 RjA5MTE0ODJBM0I5NjQxNjdENTI5MkY3QjQ2RDJBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wMjQyMUYxRDhGMDkxMTQ4MkEzQjk2NDE2N0Q1MjkyRjdCNDZE MkEwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ2NDQyNjNhLThlZTItNGVlYy1h ODEwLTU3MzNjY2FmNTFlMy8wLzMxMzUzNzJlMzIzMDJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRR5MA0GCSqG SIb3DQEBCwUAA4IBAQBkEh6Cc2yFsGUssphtaJmIFHUrCI2qn8+wvGAOYU8avhBb lMLpH3yGF2/pU3j1y1pCxFoxtO2C+csZqMkLdzWjXNQHLyXRecoZ9M2NnKEmXrSr MdVFUTGEII8fCM4zT86JbvvOcR5olBC5+yYjjjajO5tYOg372cAUuhnpCmmju/FL Njo2W7ZoiIahgvIQLckVXuKKH/w30jHOZcmzt6axpEok9XioCIz300KC/7cChCe9 k6zwj9uj4Tmnqh9utoPe0+GuynbpXhSYrzHey/o9MMgvZG9xyllvrwKgYLJyPP7V u+p+kb5X+NvH6hbt9h/VcEHPKVVv4e/s0RmdONoV -----END CERTIFICATE-----Generated at Wed May 13 02:59:34 2026 by rpki-client