$ rpki-client -vvf rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa File: 3135372e31302e38382e302f32332d3233203d3e20313532303832.roa (raw, json) Hash identifier: CTdtRt0QWOxvthXzk1fDi0/fuxno5z52+6EZfo7nHWY= Subject key identifier: FD:36:8D:77:CF:66:D5:4A:9D:B7:DE:3C:AD:E4:02:EE:48:34:98:A8 Certificate issuer: /CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Certificate serial: 14006BE4C2E71BF6E8967401172D506EF41BD250 Authority key identifier: B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa Signing time: Sun 03 May 2026 02:42:52 +0000 ROA not before: Sun 03 May 2026 02:37:52 +0000 ROA not after: Sun 02 May 2027 02:42:52 +0000 asID: 152082 IP address blocks: 157.10.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:00:6b:e4:c2:e7:1b:f6:e8:96:74:01:17:2d:50:6e:f4:1b:d2:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Validity Not Before: May 3 02:37:52 2026 GMT Not After : May 2 02:42:52 2027 GMT Subject: CN=FD368D77CF66D54A9DB7DE3CADE402EE483498A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:c1:76:fa:76:07:b3:5c:45:5b:94:2f:f0: c0:c1:8a:d6:fe:cd:fc:26:20:71:45:89:7c:34:fb: 5c:00:3f:2c:07:a0:f8:a5:53:17:7e:0f:85:ac:7c: f7:57:28:5d:5c:2c:7b:6d:c0:d0:ce:29:00:0e:3e: 65:57:d1:88:89:34:48:76:ce:99:be:a3:29:03:9c: b8:34:5e:09:ae:f7:ef:ea:aa:c3:cf:4b:c6:18:f8: c7:0b:04:fb:84:ed:67:3a:6d:f1:29:df:ba:d1:27: f6:f8:a5:b4:41:e3:bb:6f:76:20:f9:5a:d8:ab:be: 14:20:e6:69:66:61:42:5a:a9:00:43:01:55:65:98: ea:26:14:a3:bc:3e:d9:d9:eb:77:78:8a:64:b1:c3: f1:1d:35:80:8f:6c:fd:82:a8:ca:f8:25:13:9f:53: 42:55:fd:26:38:f9:20:db:22:dc:c1:71:42:17:18: 1c:f1:65:35:87:7f:d2:a6:f5:e0:4d:0e:a4:c9:b4: 13:f2:2c:16:c7:f9:29:a6:3a:84:3e:88:9a:e9:b5: 3a:2d:93:19:2b:18:84:37:f7:cd:dd:7b:19:87:e8: f0:ea:1f:1e:1c:54:af:b8:e3:10:17:85:b8:4b:99: 61:85:cd:b8:d6:a6:b0:d9:92:8c:90:c8:43:9b:06: 84:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:36:8D:77:CF:66:D5:4A:9D:B7:DE:3C:AD:E4:02:EE:48:34:98:A8 X509v3 Authority Key Identifier: keyid:B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 12:3e:eb:c8:c4:92:59:a5:64:95:ec:14:8c:cc:8a:cb:59:70: 7d:55:6a:bc:88:e2:f5:53:2e:82:f9:ec:c2:04:06:32:4c:f1: db:67:3b:d2:fd:d9:fa:91:6b:d4:1f:04:9f:76:d6:e9:b3:1d: 24:1f:6c:92:10:ec:c7:6c:8a:cd:65:7c:57:2b:ff:09:4f:03: ad:0f:04:8c:3b:eb:ec:f3:54:39:39:a0:6e:6c:f3:ac:87:e5: 0e:15:b8:09:31:da:18:d9:d2:85:4f:e6:13:b4:ec:e0:67:77: d9:a6:5b:ec:c1:64:b7:1f:e4:29:c3:e6:52:b7:51:60:1e:ad: bd:1a:66:d9:87:ae:ef:69:b7:20:6b:db:3d:3b:7d:6a:cb:46: 08:cc:81:7f:a1:3a:42:a7:94:7e:b5:f8:02:b1:9a:fd:b3:4c: f3:38:31:9f:b3:94:60:10:a5:57:b6:a8:2e:3b:e4:16:31:c8: 6b:0a:7e:97:41:ae:ca:93:2a:f4:07:d6:1a:0f:af:8c:94:8b: 2c:c1:8c:b6:65:fd:32:e7:22:7c:f6:9e:6e:3a:bd:37:ef:c2: 94:93:36:a1:5d:f1:0a:fe:f8:0c:5a:39:53:24:82:e0:12:99: e5:a4:42:5a:13:20:b7:c8:e2:ec:f5:f8:e6:90:26:b1:75:a8: a0:17:c6:da -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFABr5MLnG/bolnQBFy1QbvQb0lAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM5QjE5QzkwODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3 NkY2NjM3MjAeFw0yNjA1MDMwMjM3NTJaFw0yNzA1MDIwMjQyNTJaMDMxMTAvBgNV BAMTKEZEMzY4RDc3Q0Y2NkQ1NEE5REI3REUzQ0FERTQwMkVFNDgzNDk4QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzrcF2+nYHs1xFW5Qv8MDBitb+ zfwmIHFFiXw0+1wAPywHoPilUxd+D4WsfPdXKF1cLHttwNDOKQAOPmVX0YiJNEh2 zpm+oykDnLg0Xgmu9+/qqsPPS8YY+McLBPuE7Wc6bfEp37rRJ/b4pbRB47tvdiD5 WtirvhQg5mlmYUJaqQBDAVVlmOomFKO8PtnZ63d4imSxw/EdNYCPbP2CqMr4JROf U0JV/SY4+SDbItzBcUIXGBzxZTWHf9Km9eBNDqTJtBPyLBbH+SmmOoQ+iJrptTot kxkrGIQ3983dexmH6PDqHx4cVK+44xAXhbhLmWGFzbjWprDZkoyQyEObBoQDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/TaNd89m1Uqdt948reQC7kg0mKgwHwYDVR0j BBgwFoAUs5sZyQhAhPf8s/r/N2No2Hb2Y3IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzMyZTRmODYtNDhlNy00OGM3LWJhOTEtZTI1OTY4Mzc4ZTk1LzAvQjM5QjE5Qzkw ODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3NkY2NjM3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CMzlCMTlDOTA4NDA4NEY3RkNCM0ZBRkYzNzYzNjhEODc2RjY2 MzcyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAEj7ryMSSWaVklewUjMyKy1lwfVVqvIji9VMugvnswgQGMkzx 22c70v3Z+pFr1B8En3bW6bMdJB9skhDsx2yKzWV8Vyv/CU8DrQ8EjDvr7PNUOTmg bmzzrIflDhW4CTHaGNnShU/mE7Ts4Gd32aZb7MFktx/kKcPmUrdRYB6tvRpm2Yeu 72m3IGvbPTt9astGCMyBf6E6QqeUfrX4ArGa/bNM8zgxn7OUYBClV7aoLjvkFjHI awp+l0GuypMq9AfWGg+vjJSLLMGMtmX9MucifPaebjq9N+/ClJM2oV3xCv74DFo5 UySC4BKZ5aRCWhMgt8ji7PX45pAmsXWooBfG2g== -----END CERTIFICATE-----Generated at Wed May 13 01:41:00 2026 by rpki-client