$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa File: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (raw, json) Hash identifier: EwbiWmhldgu2k+5LdUuHuGepn6bmBxTKHuu9s+kl8SY= Subject key identifier: F5:9C:EE:31:C3:38:2C:10:87:F3:D5:AB:74:70:36:78:E0:6A:A7:A6 Certificate issuer: /CN=E594107BADC6C8DBED3F533855138968247BB6AF Certificate serial: 1E7D4E6F438FFB70332A2438686CC7024B25C290 Authority key identifier: E5:94:10:7B:AD:C6:C8:DB:ED:3F:53:38:55:13:89:68:24:7B:B6:AF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E594107BADC6C8DBED3F533855138968247BB6AF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa Signing time: Sun 03 May 2026 02:36:44 +0000 ROA not before: Sun 03 May 2026 02:31:44 +0000 ROA not after: Sun 02 May 2027 02:36:44 +0000 asID: 152411 IP address blocks: 157.20.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/E594107BADC6C8DBED3F533855138968247BB6AF.crl rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/E594107BADC6C8DBED3F533855138968247BB6AF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E594107BADC6C8DBED3F533855138968247BB6AF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:7d:4e:6f:43:8f:fb:70:33:2a:24:38:68:6c:c7:02:4b:25:c2:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E594107BADC6C8DBED3F533855138968247BB6AF Validity Not Before: May 3 02:31:44 2026 GMT Not After : May 2 02:36:44 2027 GMT Subject: CN=F59CEE31C3382C1087F3D5AB74703678E06AA7A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a3:44:aa:92:9a:53:4c:de:e8:79:07:6a:81: a6:03:17:e1:5c:7e:69:e2:13:8a:7e:50:76:53:6e: 45:2f:9a:d9:38:e2:f3:95:c7:14:c1:50:1d:a6:6c: 60:8e:d9:78:d9:a6:d9:a9:df:c1:3f:17:6e:d9:f9: d3:45:af:b7:48:c0:5c:84:18:46:49:f9:75:34:70: 5e:5c:a5:93:bb:32:81:39:e6:6e:30:58:6a:c0:b0: 24:db:65:1f:ce:f1:b2:4d:64:65:08:fd:be:4e:c7: b5:d5:03:06:d0:03:7a:bd:56:35:8c:d9:45:f9:1f: 6f:1d:4d:4a:55:f9:53:aa:c5:76:ee:30:9c:06:a4: 07:9f:c9:fd:0a:7b:a4:d1:48:1b:de:dd:d2:16:48: 7b:9c:b1:5d:32:70:a0:56:26:f3:89:00:ab:1f:c9: 11:70:72:7e:d4:b2:1b:b6:ce:93:e1:2d:4d:2c:ea: 9b:4c:4f:e5:c8:dd:8f:60:b0:22:14:12:0f:e4:d7: 72:d6:1e:b2:d1:8e:41:55:af:1c:ed:e3:45:58:46: 96:c4:e8:08:22:05:3a:60:c6:91:df:37:a7:1e:e6: 3b:23:82:e6:6a:16:b3:41:96:f8:cb:0f:be:d9:29: 7f:28:bf:0a:59:7a:23:ff:a6:75:db:a9:34:f4:69: e6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9C:EE:31:C3:38:2C:10:87:F3:D5:AB:74:70:36:78:E0:6A:A7:A6 X509v3 Authority Key Identifier: keyid:E5:94:10:7B:AD:C6:C8:DB:ED:3F:53:38:55:13:89:68:24:7B:B6:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/E594107BADC6C8DBED3F533855138968247BB6AF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E594107BADC6C8DBED3F533855138968247BB6AF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.156.0/23 Signature Algorithm: sha256WithRSAEncryption be:46:1f:7e:17:c9:cd:69:39:02:8b:5a:f2:17:78:e2:df:74: 18:75:2d:24:b1:92:13:e8:b6:74:31:1f:98:df:58:44:54:dc: 5d:c7:13:dd:9a:cc:f6:a7:64:73:6e:02:3b:a6:85:8b:30:a5: 24:7f:94:b2:41:32:1e:69:1e:bf:59:19:63:9d:b7:fc:fc:4e: 40:17:4c:7a:e9:e9:14:ee:33:42:cd:f8:39:c0:c6:e3:a8:2d: 26:63:58:3a:4b:81:85:0b:8d:bf:bb:34:b4:07:82:4f:96:ed: ea:3d:58:00:90:c7:2f:82:06:bd:a6:90:2e:2c:d6:ce:41:42: 6a:de:ab:a6:a3:99:ce:05:ef:b9:48:92:19:39:75:00:49:a9: 34:10:c1:af:41:05:52:36:39:89:1d:9c:c2:de:d9:42:5f:76: 52:9f:a5:c0:f7:90:a5:64:da:8b:3c:f2:df:69:f0:07:ad:21: 80:0f:64:6c:27:b7:46:ca:2c:21:6c:50:0b:f8:00:0f:78:f3: ae:d3:53:68:39:3e:15:98:71:09:49:9e:3b:a6:ad:dd:e3:f6: a7:ed:38:b3:9e:f8:f3:2a:36:2c:2a:0b:5c:20:b4:72:f5:02: 4f:cc:90:fc:1f:ba:76:3f:fe:07:64:a4:33:22:d4:1a:9e:f8: a2:3b:02:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHn1Ob0OP+3AzKiQ4aGzHAkslwpAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTU5NDEwN0JBREM2QzhEQkVEM0Y1MzM4NTUxMzg5Njgy NDdCQjZBRjAeFw0yNjA1MDMwMjMxNDRaFw0yNzA1MDIwMjM2NDRaMDMxMTAvBgNV BAMTKEY1OUNFRTMxQzMzODJDMTA4N0YzRDVBQjc0NzAzNjc4RTA2QUE3QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3o0SqkppTTN7oeQdqgaYDF+Fc fmniE4p+UHZTbkUvmtk44vOVxxTBUB2mbGCO2XjZptmp38E/F27Z+dNFr7dIwFyE GEZJ+XU0cF5cpZO7MoE55m4wWGrAsCTbZR/O8bJNZGUI/b5Ox7XVAwbQA3q9VjWM 2UX5H28dTUpV+VOqxXbuMJwGpAefyf0Ke6TRSBve3dIWSHucsV0ycKBWJvOJAKsf yRFwcn7Ushu2zpPhLU0s6ptMT+XI3Y9gsCIUEg/k13LWHrLRjkFVrxzt40VYRpbE 6AgiBTpgxpHfN6ce5jsjguZqFrNBlvjLD77ZKX8ovwpZeiP/pnXbqTT0aeatAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9ZzuMcM4LBCH89WrdHA2eOBqp6YwHwYDVR0j BBgwFoAU5ZQQe63GyNvtP1M4VROJaCR7tq8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQ1OWI4MjItNWMwOC00NmYxLWIyNWUtNzU4ZGMxOGU5OTA1LzAvRTU5NDEwN0JB REM2QzhEQkVEM0Y1MzM4NTUxMzg5NjgyNDdCQjZBRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FNTk0MTA3QkFEQzZDOERCRUQzRjUzMzg1NTEzODk2ODI0N0JC NkFGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkNTliODIyLTVjMDgtNDZmMS1i MjVlLTc1OGRjMThlOTkwNS8wLzMxMzUzNzJlMzIzMDJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRScMA0GCSqG SIb3DQEBCwUAA4IBAQC+Rh9+F8nNaTkCi1ryF3ji33QYdS0ksZIT6LZ0MR+Y31hE VNxdxxPdmsz2p2RzbgI7poWLMKUkf5SyQTIeaR6/WRljnbf8/E5AF0x66ekU7jNC zfg5wMbjqC0mY1g6S4GFC42/uzS0B4JPlu3qPVgAkMcvgga9ppAuLNbOQUJq3qum o5nOBe+5SJIZOXUASak0EMGvQQVSNjmJHZzC3tlCX3ZSn6XA95ClZNqLPPLfafAH rSGAD2RsJ7dGyiwhbFAL+AAPePOu01NoOT4VmHEJSZ47pq3d4/an7TiznvjzKjYs KgtcILRy9QJPzJD8H7p2P/4HZKQzItQanviiOwK2 -----END CERTIFICATE-----Generated at Wed May 13 07:35:59 2026 by rpki-client