$ rpki-client -vvf rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa File: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (raw, json) Hash identifier: JeBWxU2nKUoJd4mmQd29lF3qX2yOUpENL2Ej8COjW7k= Subject key identifier: B4:90:84:06:94:18:05:1A:3C:55:63:BC:AA:6F:E8:DA:85:A2:A7:73 Certificate issuer: /CN=3B610B6D52EFC83BEC0E681395E172E5584CB922 Certificate serial: 427D8228E428584DCA18E18009982AFDBC44D814 Authority key identifier: 3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa Signing time: Sun 03 May 2026 02:40:47 +0000 ROA not before: Sun 03 May 2026 02:35:47 +0000 ROA not after: Sun 02 May 2027 02:40:47 +0000 asID: 152407 IP address blocks: 157.20.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.crl rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7d:82:28:e4:28:58:4d:ca:18:e1:80:09:98:2a:fd:bc:44:d8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B610B6D52EFC83BEC0E681395E172E5584CB922 Validity Not Before: May 3 02:35:47 2026 GMT Not After : May 2 02:40:47 2027 GMT Subject: CN=B49084069418051A3C5563BCAA6FE8DA85A2A773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b2:07:6a:e6:04:ff:b1:a8:27:26:a7:ec:31: 5e:df:89:c5:e4:ac:aa:43:e2:cf:49:5a:3d:47:2c: 9b:e0:65:f4:2c:0c:25:9d:ff:ba:6c:fe:15:1d:58: 46:fa:7c:95:54:d0:8c:e5:f9:47:a0:45:81:7d:b9: fc:69:00:62:37:ee:97:eb:47:27:4f:ce:f9:50:40: 35:80:96:12:4c:88:b7:77:19:85:52:a9:4b:17:38: 87:17:bc:d2:f0:44:d0:8c:9a:2a:0b:ab:17:b8:f0: a5:cf:aa:06:1e:9e:e5:6b:c8:e5:a1:ff:30:2f:3b: bd:e9:72:af:b8:e9:11:a5:b9:f0:ca:c7:9b:d0:e7: d1:36:05:39:51:b3:f1:3e:63:d1:e8:45:c8:34:af: c7:60:39:7f:a3:50:1f:6a:54:76:17:03:2e:42:6a: 4d:e2:3b:4c:b6:6e:dd:d3:38:07:c6:05:16:36:70: 0d:dc:3b:5c:0f:f6:0b:29:f9:86:70:e8:d0:1a:6d: b9:85:45:62:e5:3e:68:11:f9:c5:93:0e:35:0e:9e: e3:9b:8e:6d:e4:f5:23:7a:36:47:be:2a:4e:9f:af: a1:c5:4b:69:69:3c:f4:34:90:a0:89:f5:4a:5f:a3: ea:f3:79:00:e6:77:7e:72:e9:63:22:20:d2:c1:7b: d4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:90:84:06:94:18:05:1A:3C:55:63:BC:AA:6F:E8:DA:85:A2:A7:73 X509v3 Authority Key Identifier: keyid:3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32332d3233203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:d0:3b:8d:05:fa:0b:5f:bf:42:b6:ea:ba:6f:45:f6:4d:74: 4a:d6:9e:6c:da:76:8e:b6:6d:9d:01:bc:f0:9a:fb:ee:91:c0: af:00:28:19:31:54:60:bb:e4:11:46:a7:17:08:cb:d8:1d:4e: c5:57:bc:da:51:61:88:0f:db:72:55:d6:38:94:ba:2d:b9:a7: 60:f8:bd:3e:6b:72:1e:dd:9f:ab:78:60:30:c1:c0:03:59:fb: 85:3e:1e:8f:81:ec:61:b1:46:cf:04:2e:1f:0f:42:8c:92:0c: 29:7d:c7:f8:a2:c6:c0:f6:96:7c:84:00:2f:c7:a6:7e:2e:67: 10:ea:20:a1:7c:a2:fd:37:23:83:75:1b:aa:8f:2d:d5:03:14: 8b:11:ad:83:b0:f9:c9:21:d8:fa:1f:5a:12:9d:06:ab:55:de: 46:21:01:85:3c:b5:78:c1:5a:4c:41:8f:8b:a9:c7:0c:d5:e3: f3:75:54:53:1f:08:1b:f8:1b:fc:70:29:c9:d4:62:9e:8b:48: 8a:ff:9c:47:49:af:2f:6e:e2:79:88:a1:a7:a2:0d:1e:4f:33: da:2a:59:d3:ca:de:11:3b:51:d1:3e:8c:be:6d:7d:96:5b:0f: 77:3c:2a:e8:64:03:de:1a:8c:bd:46:81:40:e7:fd:e4:2d:40: 2f:b0:8e:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQn2CKOQoWE3KGOGACZgq/bxE2BQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I2MTBCNkQ1MkVGQzgzQkVDMEU2ODEzOTVFMTcyRTU1 ODRDQjkyMjAeFw0yNjA1MDMwMjM1NDdaFw0yNzA1MDIwMjQwNDdaMDMxMTAvBgNV BAMTKEI0OTA4NDA2OTQxODA1MUEzQzU1NjNCQ0FBNkZFOERBODVBMkE3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCisgdq5gT/sagnJqfsMV7ficXk rKpD4s9JWj1HLJvgZfQsDCWd/7ps/hUdWEb6fJVU0Izl+UegRYF9ufxpAGI37pfr RydPzvlQQDWAlhJMiLd3GYVSqUsXOIcXvNLwRNCMmioLqxe48KXPqgYenuVryOWh /zAvO73pcq+46RGlufDKx5vQ59E2BTlRs/E+Y9HoRcg0r8dgOX+jUB9qVHYXAy5C ak3iO0y2bt3TOAfGBRY2cA3cO1wP9gsp+YZw6NAabbmFRWLlPmgR+cWTDjUOnuOb jm3k9SN6Nke+Kk6fr6HFS2lpPPQ0kKCJ9Upfo+rzeQDmd35y6WMiINLBe9SfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtJCEBpQYBRo8VWO8qm/o2oWip3MwHwYDVR0j BBgwFoAUO2ELbVLvyDvsDmgTleFy5VhMuSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmE4OTZmZGMtNTYzOC00MWQyLThhOTktNjhjZTgxNmJkM2NmLzAvM0I2MTBCNkQ1 MkVGQzgzQkVDMEU2ODEzOTVFMTcyRTU1ODRDQjkyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQjYxMEI2RDUyRUZDODNCRUMwRTY4MTM5NUUxNzJFNTU4NENC OTIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEAmtA7jQX6C1+/Qrbqum9F9k10StaebNp2jrZtnQG88Jr77pHA rwAoGTFUYLvkEUanFwjL2B1OxVe82lFhiA/bclXWOJS6LbmnYPi9PmtyHt2fq3hg MMHAA1n7hT4ej4HsYbFGzwQuHw9CjJIMKX3H+KLGwPaWfIQAL8emfi5nEOogoXyi /Tcjg3Ubqo8t1QMUixGtg7D5ySHY+h9aEp0Gq1XeRiEBhTy1eMFaTEGPi6nHDNXj 83VUUx8IG/gb/HApydRinotIiv+cR0mvL27ieYihp6INHk8z2ipZ08reETtR0T6M vm19llsPdzwq6GQD3hqMvUaBQOf95C1AL7COZw== -----END CERTIFICATE-----Generated at Wed May 13 02:40:34 2026 by rpki-client