$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3234203d3e20313532343139.roa File: 3135372e32302e3230342e302f32332d3234203d3e20313532343139.roa (raw, json) Hash identifier: Ncv7w2hXW8e/iglgpSl3KIA/3oBjq+9ZdH/1lNnm5C8= Subject key identifier: C6:DA:53:0C:BA:CC:FB:42:4A:FE:D1:29:4D:7E:29:7D:0A:56:F2:74 Certificate issuer: /CN=D441988C2049D77F9D98652623A88108BD7A9AE0 Certificate serial: 19CDEC60F6CCDB6C8796362049FD3779B044DEBE Authority key identifier: D4:41:98:8C:20:49:D7:7F:9D:98:65:26:23:A8:81:08:BD:7A:9A:E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D441988C2049D77F9D98652623A88108BD7A9AE0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3234203d3e20313532343139.roa Signing time: Sun 03 May 2026 02:36:50 +0000 ROA not before: Sun 03 May 2026 02:31:50 +0000 ROA not after: Sun 02 May 2027 02:36:50 +0000 asID: 152419 IP address blocks: 157.20.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/D441988C2049D77F9D98652623A88108BD7A9AE0.crl rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/D441988C2049D77F9D98652623A88108BD7A9AE0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D441988C2049D77F9D98652623A88108BD7A9AE0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:cd:ec:60:f6:cc:db:6c:87:96:36:20:49:fd:37:79:b0:44:de:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D441988C2049D77F9D98652623A88108BD7A9AE0 Validity Not Before: May 3 02:31:50 2026 GMT Not After : May 2 02:36:50 2027 GMT Subject: CN=C6DA530CBACCFB424AFED1294D7E297D0A56F274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:76:fe:a6:0c:e1:28:de:f6:89:ce:66:5a:95: 6f:8e:99:30:6e:60:c6:07:95:bc:63:46:cf:30:ff: 5c:95:a2:84:18:3c:61:d9:8e:85:6e:7a:84:cd:04: fa:a6:de:13:4e:a5:2c:d0:23:73:43:e3:1b:f2:95: 94:fd:9d:ac:9a:12:99:4c:57:82:db:b1:59:bf:34: 98:3e:a4:cc:be:68:f9:8f:2f:5e:6d:37:e8:8f:04: 62:5d:a1:23:f6:fe:36:8a:b8:b8:5a:ff:f6:5e:49: 96:8f:1d:a3:7b:32:36:db:09:d6:92:8d:04:9c:3a: 88:dc:fa:c6:96:f9:ee:01:75:84:d7:6e:f9:75:f7: ea:6c:94:4e:8d:b4:8e:e8:9e:17:ad:c2:d4:ed:b0: f2:cc:5c:55:77:9f:6d:47:ae:7b:fe:f0:e9:fa:a6: 95:21:e8:66:82:31:3e:96:5f:79:37:a2:5a:cd:59: c5:74:8a:7c:77:77:47:03:dd:ed:77:0d:2d:b4:83: e2:f9:e4:74:4c:57:6d:83:62:ed:b6:72:63:3b:fe: fd:76:f1:57:ff:c2:53:1c:e4:8d:89:2d:f9:a7:13: 48:2b:2f:a7:52:b4:8e:37:15:e7:b8:34:82:d5:d8: 59:3c:f5:77:83:7c:f2:75:2f:1b:1b:d5:68:9c:4b: cd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DA:53:0C:BA:CC:FB:42:4A:FE:D1:29:4D:7E:29:7D:0A:56:F2:74 X509v3 Authority Key Identifier: keyid:D4:41:98:8C:20:49:D7:7F:9D:98:65:26:23:A8:81:08:BD:7A:9A:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/D441988C2049D77F9D98652623A88108BD7A9AE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D441988C2049D77F9D98652623A88108BD7A9AE0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/0/3135372e32302e3230342e302f32332d3234203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.204.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:2a:6f:a4:ee:bc:d0:e5:e9:1b:8c:a9:fd:5b:4f:8f:51:99: 15:6e:25:a1:39:56:03:5c:73:00:c2:b4:89:4e:47:e3:73:54: 6e:c1:75:c1:bd:83:7f:23:d8:40:d5:48:f4:ed:8a:cb:71:e5: 20:a7:f4:58:23:4e:b3:bb:a2:04:6b:70:41:db:ff:b8:3b:89: 09:53:17:c5:90:f3:eb:d0:0d:f0:11:2a:3e:10:61:f4:9f:05: 4f:47:b6:73:58:41:71:3d:18:c5:f7:a1:4e:c8:59:95:cb:e5: 0e:e0:76:b8:3e:d6:5a:22:92:cf:49:36:4f:f5:7d:1e:99:e7: f5:ff:db:7a:6e:1e:ea:27:65:a9:3d:5a:45:5c:a7:59:6b:08: 9c:47:64:f0:18:17:9d:64:e1:58:e8:57:d6:f7:7e:9f:e7:de: c1:77:c3:47:0b:24:4c:60:94:76:30:0e:7b:d7:20:56:af:66: 5c:11:13:03:2a:b3:b6:4e:a4:aa:24:83:77:85:12:a4:34:07: 53:cb:50:90:d8:fe:49:72:81:8f:9a:43:17:69:df:d7:72:6f: 2b:c7:d2:1c:c0:dd:75:07:89:6e:c3:d8:3e:64:df:6a:15:d8: 43:9d:06:b0:a3:e5:79:89:b3:e6:78:32:b4:a6:73:54:7f:c8: cf:02:1b:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGc3sYPbM22yHljYgSf03ebBE3r4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ0MTk4OEMyMDQ5RDc3RjlEOTg2NTI2MjNBODgxMDhC RDdBOUFFMDAeFw0yNjA1MDMwMjMxNTBaFw0yNzA1MDIwMjM2NTBaMDMxMTAvBgNV BAMTKEM2REE1MzBDQkFDQ0ZCNDI0QUZFRDEyOTREN0UyOTdEMEE1NkYyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYdv6mDOEo3vaJzmZalW+OmTBu YMYHlbxjRs8w/1yVooQYPGHZjoVueoTNBPqm3hNOpSzQI3ND4xvylZT9nayaEplM V4LbsVm/NJg+pMy+aPmPL15tN+iPBGJdoSP2/jaKuLha//ZeSZaPHaN7MjbbCdaS jQScOojc+saW+e4BdYTXbvl19+pslE6NtI7onhetwtTtsPLMXFV3n21Hrnv+8On6 ppUh6GaCMT6WX3k3olrNWcV0inx3d0cD3e13DS20g+L55HRMV22DYu22cmM7/v12 8Vf/wlMc5I2JLfmnE0grL6dStI43Fee4NILV2Fk89XeDfPJ1Lxsb1WicS81TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxtpTDLrM+0JK/tEpTX4pfQpW8nQwHwYDVR0j BBgwFoAU1EGYjCBJ13+dmGUmI6iBCL16muAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQ4MjNiYjMtNWEwMS00NjU4LWE3ODMtZjhlODlmYWRjZjQ1LzAvRDQ0MTk4OEMy MDQ5RDc3RjlEOTg2NTI2MjNBODgxMDhCRDdBOUFFMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENDQxOTg4QzIwNDlENzdGOUQ5ODY1MjYyM0E4ODEwOEJEN0E5 QUUwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTMMA0GCSqG SIb3DQEBCwUAA4IBAQB8Km+k7rzQ5ekbjKn9W0+PUZkVbiWhOVYDXHMAwrSJTkfj c1RuwXXBvYN/I9hA1Uj07YrLceUgp/RYI06zu6IEa3BB2/+4O4kJUxfFkPPr0A3w ESo+EGH0nwVPR7ZzWEFxPRjF96FOyFmVy+UO4Ha4PtZaIpLPSTZP9X0emef1/9t6 bh7qJ2WpPVpFXKdZawicR2TwGBedZOFY6FfW936f597Bd8NHCyRMYJR2MA571yBW r2ZcERMDKrO2TqSqJIN3hRKkNAdTy1CQ2P5JcoGPmkMXad/Xcm8rx9IcwN11B4lu w9g+ZN9qFdhDnQawo+V5ibPmeDK0pnNUf8jPAhtC -----END CERTIFICATE-----Generated at Wed May 13 09:21:12 2026 by rpki-client