$ rpki-client -vvf rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa File: 3135372e36362e322e302f32332d3234203d3e20313532343430.roa (raw, json) Hash identifier: p7JO88fvmBW+Y+ZP8rFGldK5BvqAlDmHyGZVg3MhVAY= Subject key identifier: F2:78:CC:58:8A:FD:B4:CB:65:EF:08:A3:39:7B:55:4A:B2:A6:9C:21 Certificate issuer: /CN=4202428F6F3C953C642F298719C5C35E169724A2 Certificate serial: 71187D9E2DEC639C59F189F8894C3D2DFA4FA46A Authority key identifier: 42:02:42:8F:6F:3C:95:3C:64:2F:29:87:19:C5:C3:5E:16:97:24:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4202428F6F3C953C642F298719C5C35E169724A2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa Signing time: Sun 03 May 2026 02:37:20 +0000 ROA not before: Sun 03 May 2026 02:32:20 +0000 ROA not after: Sun 02 May 2027 02:37:20 +0000 asID: 152440 IP address blocks: 157.66.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/4202428F6F3C953C642F298719C5C35E169724A2.crl rsync://rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/4202428F6F3C953C642F298719C5C35E169724A2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4202428F6F3C953C642F298719C5C35E169724A2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:18:7d:9e:2d:ec:63:9c:59:f1:89:f8:89:4c:3d:2d:fa:4f:a4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4202428F6F3C953C642F298719C5C35E169724A2 Validity Not Before: May 3 02:32:20 2026 GMT Not After : May 2 02:37:20 2027 GMT Subject: CN=F278CC588AFDB4CB65EF08A3397B554AB2A69C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:67:56:f1:64:31:60:1d:9e:7d:d7:34:f6:55: 32:b8:2f:68:9f:40:2e:b8:0e:f4:6d:65:a1:08:13: 74:4c:da:8c:a7:9e:4f:bf:07:ef:46:2d:56:14:90: c9:2e:2e:12:0f:28:48:e8:28:14:a0:cf:ae:36:d1: f4:ae:7f:0d:24:6e:5d:1d:8f:0b:ff:b2:cf:36:02: c3:38:97:d4:4f:59:5e:89:74:9b:60:43:85:f0:13: 0a:64:55:e3:d5:8a:31:70:16:dd:61:12:93:46:a1: 94:65:06:4e:7e:a3:32:f8:62:c4:7c:18:cf:03:a7: 84:a8:23:f2:51:5a:5b:6f:07:f7:8f:3d:e7:23:f2: 35:e3:90:6d:13:31:7c:93:5b:93:b1:a5:cf:50:7a: 0b:ff:8f:f7:d6:25:99:2d:99:6e:e3:04:c5:88:ce: bf:36:2f:4e:ff:fc:04:b0:b1:4c:81:2b:97:6c:89: 37:b8:99:f7:a7:ed:d6:4d:0a:38:87:6e:b5:39:af: a8:ad:5d:14:a7:53:26:cf:1a:17:78:b5:4c:9c:74: ac:ee:ba:62:8c:29:46:03:ec:d9:5b:87:dd:f4:9d: 4f:51:ac:be:68:c0:97:35:16:16:d0:a0:ce:a1:f2: 56:8f:7d:c0:7b:2f:8a:3e:a8:30:dd:e1:57:e6:0c: 24:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:78:CC:58:8A:FD:B4:CB:65:EF:08:A3:39:7B:55:4A:B2:A6:9C:21 X509v3 Authority Key Identifier: keyid:42:02:42:8F:6F:3C:95:3C:64:2F:29:87:19:C5:C3:5E:16:97:24:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/4202428F6F3C953C642F298719C5C35E169724A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4202428F6F3C953C642F298719C5C35E169724A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/0/3135372e36362e322e302f32332d3234203d3e20313532343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.2.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:e0:97:9b:00:40:75:73:d7:93:89:bd:43:2a:8c:e9:97:0d: eb:d3:f6:2c:00:f4:47:b5:61:a8:4a:67:41:a3:5b:04:df:39: 61:29:60:56:1d:b5:4b:aa:6b:4e:e1:ab:e0:1c:15:ea:84:ba: c1:5d:29:d8:28:0a:83:db:03:8a:2d:d7:b8:fb:0f:6f:d3:99: 64:f8:be:52:74:f5:79:96:b2:5b:a0:41:fa:47:fb:51:c2:18: 91:26:61:d7:d4:4d:f6:99:4e:b1:c1:26:cd:1e:ef:2e:a6:68: e3:c2:0b:7b:04:76:93:8d:fd:02:7d:c8:30:2b:24:98:ee:24: cd:c2:8a:af:2d:9e:de:bb:34:97:44:ab:80:2d:a3:53:80:bc: a6:d8:6c:c4:d8:70:4f:86:29:66:89:77:f2:44:78:5f:d3:2d: 92:c8:d2:d3:0e:88:38:d8:0c:d3:06:17:a8:e7:21:c8:a2:69: cc:34:27:e2:f9:52:ef:27:f7:88:ff:dd:01:e5:ab:51:59:76: ce:19:1d:0f:66:52:e3:88:3d:95:4a:70:f4:ce:f5:71:66:3d: 9c:53:d6:26:11:f9:10:23:11:8c:70:69:eb:58:12:d0:c0:49: 48:42:60:ab:7a:83:15:1f:bd:83:26:ea:9a:57:3c:be:86:ee: 03:6a:d5:01 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcRh9ni3sY5xZ8Yn4iUw9LfpPpGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwMjQyOEY2RjNDOTUzQzY0MkYyOTg3MTlDNUMzNUUx Njk3MjRBMjAeFw0yNjA1MDMwMjMyMjBaFw0yNzA1MDIwMjM3MjBaMDMxMTAvBgNV BAMTKEYyNzhDQzU4OEFGREI0Q0I2NUVGMDhBMzM5N0I1NTRBQjJBNjlDMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcZ1bxZDFgHZ591zT2VTK4L2if QC64DvRtZaEIE3RM2oynnk+/B+9GLVYUkMkuLhIPKEjoKBSgz6420fSufw0kbl0d jwv/ss82AsM4l9RPWV6JdJtgQ4XwEwpkVePVijFwFt1hEpNGoZRlBk5+ozL4YsR8 GM8Dp4SoI/JRWltvB/ePPecj8jXjkG0TMXyTW5Oxpc9Qegv/j/fWJZktmW7jBMWI zr82L07//ASwsUyBK5dsiTe4mfen7dZNCjiHbrU5r6itXRSnUybPGhd4tUycdKzu umKMKUYD7Nlbh930nU9RrL5owJc1FhbQoM6h8laPfcB7L4o+qDDd4VfmDCRHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8njMWIr9tMtl7wijOXtVSrKmnCEwHwYDVR0j BBgwFoAUQgJCj288lTxkLymHGcXDXhaXJKIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWZiODA4ZWItYzk4ZS00MDM2LWJlOWEtMTkzYmJjYzY0ODkyLzAvNDIwMjQyOEY2 RjNDOTUzQzY0MkYyOTg3MTlDNUMzNUUxNjk3MjRBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80MjAyNDI4RjZGM0M5NTNDNjQyRjI5ODcxOUM1QzM1RTE2OTcy NEEyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVmYjgwOGViLWM5OGUtNDAzNi1i ZTlhLTE5M2JiY2M2NDg5Mi8wLzMxMzUzNzJlMzYzNjJlMzIyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzIzNDM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgIwDQYJKoZIhvcN AQELBQADggEBAGzgl5sAQHVz15OJvUMqjOmXDevT9iwA9Ee1YahKZ0GjWwTfOWEp YFYdtUuqa07hq+AcFeqEusFdKdgoCoPbA4ot17j7D2/TmWT4vlJ09XmWslugQfpH +1HCGJEmYdfUTfaZTrHBJs0e7y6maOPCC3sEdpON/QJ9yDArJJjuJM3Ciq8tnt67 NJdEq4Ato1OAvKbYbMTYcE+GKWaJd/JEeF/TLZLI0tMOiDjYDNMGF6jnIciiacw0 J+L5Uu8n94j/3QHlq1FZds4ZHQ9mUuOIPZVKcPTO9XFmPZxT1iYR+RAjEYxwaetY EtDASUhCYKt6gxUfvYMm6ppXPL6G7gNq1QE= -----END CERTIFICATE-----Generated at Wed May 13 02:47:13 2026 by rpki-client