$ rpki-client -vvf rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa File: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (raw, json) Hash identifier: +4k5B1hiZNKTDNmRtO1UucDd1K3kJOf9PkAdB1Yr6bU= Subject key identifier: 87:6B:41:32:13:E8:28:83:8E:30:35:F9:A1:3B:74:1A:2D:C8:EA:D0 Certificate issuer: /CN=3B610B6D52EFC83BEC0E681395E172E5584CB922 Certificate serial: 7854C13BB1F60A64579ECAD9EE80DD157F557D0D Authority key identifier: 3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa Signing time: Sun 03 May 2026 02:40:47 +0000 ROA not before: Sun 03 May 2026 02:35:47 +0000 ROA not after: Sun 02 May 2027 02:40:47 +0000 asID: 152407 IP address blocks: 157.20.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.crl rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:54:c1:3b:b1:f6:0a:64:57:9e:ca:d9:ee:80:dd:15:7f:55:7d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B610B6D52EFC83BEC0E681395E172E5584CB922 Validity Not Before: May 3 02:35:47 2026 GMT Not After : May 2 02:40:47 2027 GMT Subject: CN=876B413213E828838E3035F9A13B741A2DC8EAD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:0c:bd:1e:81:58:7a:dd:3f:ca:72:42:23: a1:ab:8a:17:8f:3f:8a:81:40:87:10:02:7c:98:48: 4c:d6:43:71:c3:83:d3:1e:71:b2:11:25:7c:88:60: 4e:f5:6d:26:ef:cb:86:bb:2f:0d:db:f5:de:53:98: 87:4c:f6:34:00:8a:ca:fc:39:cc:9e:45:5f:d1:28: f6:f2:20:09:40:bc:45:a4:68:b0:27:ad:1d:88:a5: 35:35:be:f4:45:92:91:01:72:91:d8:62:67:c9:e3: 46:c5:60:96:b0:6a:37:e4:68:43:65:7e:2e:1d:27: 77:29:27:38:3b:a1:fc:06:10:3f:88:44:e9:31:00: 7b:23:92:68:0f:80:0c:9d:09:f0:e3:85:63:6c:e6: 5b:54:1a:eb:7a:e0:6d:c2:c9:8d:7d:0c:88:76:3c: 82:46:1e:39:89:7c:58:57:90:da:61:24:56:3b:82: 9a:96:f2:f2:06:e2:8c:bd:2b:43:9c:d6:ec:27:1a: 71:50:8a:06:88:9b:fc:91:ab:23:b1:35:0f:45:93: 06:2f:ca:48:8a:7f:86:fb:b3:c8:2b:b4:dc:ed:9d: b5:c1:cb:a8:43:59:47:bf:a1:f6:33:67:13:d5:a4: 5c:0a:d6:58:e7:29:e9:c9:62:7d:09:23:20:59:65: 9f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6B:41:32:13:E8:28:83:8E:30:35:F9:A1:3B:74:1A:2D:C8:EA:D0 X509v3 Authority Key Identifier: keyid:3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3135372e32302e39322e302f32342d3234203d3e20313532343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/24 Signature Algorithm: sha256WithRSAEncryption 79:41:37:9e:70:cc:40:e2:42:64:82:7f:84:a3:87:97:aa:d7: 8e:a2:ce:63:7e:55:39:ca:f9:20:e0:ad:8e:47:bd:90:a1:6d: b3:fc:75:58:d3:fb:05:71:30:3e:6b:fb:04:aa:d4:98:f3:dd: b1:f5:d0:0b:b8:43:a4:79:aa:e5:49:17:2e:8d:64:d2:3c:fc: 49:62:97:61:70:56:d5:71:7b:27:11:be:04:57:98:b0:0a:3a: e3:97:9c:4a:0f:34:87:f3:91:80:6d:2f:5c:37:9e:34:4a:47: cd:46:97:f8:a9:67:83:00:7a:94:5b:aa:b2:8c:85:54:22:4b: 4e:9b:a0:33:d1:b4:4d:46:74:a2:8b:d0:05:37:10:3b:d8:5d: 02:d8:c6:33:60:9d:f2:46:d6:50:7a:25:81:d4:68:a4:7f:95: be:c9:27:d1:52:c8:a9:d0:6a:66:03:81:db:3c:6b:bc:a7:1e: e2:7e:1c:02:b5:24:c6:ce:65:47:88:6b:00:0a:6f:a3:ba:77: 65:49:53:c8:2a:b5:17:1c:5e:5f:bb:dd:1c:f3:be:e3:31:c2: f9:ca:85:ae:52:64:2b:43:c7:58:58:b6:4c:9b:58:71:c8:c5: 0e:56:82:ed:e9:e4:cb:7f:7c:4f:0a:c7:4b:45:a3:3f:05:09: a9:ff:43:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeFTBO7H2CmRXnsrZ7oDdFX9VfQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I2MTBCNkQ1MkVGQzgzQkVDMEU2ODEzOTVFMTcyRTU1 ODRDQjkyMjAeFw0yNjA1MDMwMjM1NDdaFw0yNzA1MDIwMjQwNDdaMDMxMTAvBgNV BAMTKDg3NkI0MTMyMTNFODI4ODM4RTMwMzVGOUExM0I3NDFBMkRDOEVBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qQy9HoFYet0/ynJCI6GriheP P4qBQIcQAnyYSEzWQ3HDg9MecbIRJXyIYE71bSbvy4a7Lw3b9d5TmIdM9jQAisr8 OcyeRV/RKPbyIAlAvEWkaLAnrR2IpTU1vvRFkpEBcpHYYmfJ40bFYJawajfkaENl fi4dJ3cpJzg7ofwGED+IROkxAHsjkmgPgAydCfDjhWNs5ltUGut64G3CyY19DIh2 PIJGHjmJfFhXkNphJFY7gpqW8vIG4oy9K0Oc1uwnGnFQigaIm/yRqyOxNQ9FkwYv ykiKf4b7s8grtNztnbXBy6hDWUe/ofYzZxPVpFwK1ljnKenJYn0JIyBZZZ+NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh2tBMhPoKIOOMDX5oTt0Gi3I6tAwHwYDVR0j BBgwFoAUO2ELbVLvyDvsDmgTleFy5VhMuSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmE4OTZmZGMtNTYzOC00MWQyLThhOTktNjhjZTgxNmJkM2NmLzAvM0I2MTBCNkQ1 MkVGQzgzQkVDMEU2ODEzOTVFMTcyRTU1ODRDQjkyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQjYxMEI2RDUyRUZDODNCRUMwRTY4MTM5NUUxNzJFNTU4NENC OTIyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZhODk2ZmRjLTU2MzgtNDFkMi04 YTk5LTY4Y2U4MTZiZDNjZi8wLzMxMzUzNzJlMzIzMDJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UXDANBgkqhkiG 9w0BAQsFAAOCAQEAeUE3nnDMQOJCZIJ/hKOHl6rXjqLOY35VOcr5IOCtjke9kKFt s/x1WNP7BXEwPmv7BKrUmPPdsfXQC7hDpHmq5UkXLo1k0jz8SWKXYXBW1XF7JxG+ BFeYsAo645ecSg80h/ORgG0vXDeeNEpHzUaX+KlngwB6lFuqsoyFVCJLTpugM9G0 TUZ0oovQBTcQO9hdAtjGM2Cd8kbWUHolgdRopH+Vvskn0VLIqdBqZgOB2zxrvKce 4n4cArUkxs5lR4hrAApvo7p3ZUlTyCq1FxxeX7vdHPO+4zHC+cqFrlJkK0PHWFi2 TJtYccjFDlaC7enky398TwrHS0WjPwUJqf9DUw== -----END CERTIFICATE-----Generated at Wed May 13 02:26:43 2026 by rpki-client