$ rpki-client -vvf rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: NLnNrRvgdk9PwIX+K62kuAcQASU2Wm+4Xg+4O2CIdkc= Subject key identifier: 4E:D9:F7:6A:0A:32:2A:4E:02:DD:3B:D5:8D:10:A6:DE:18:AD:6E:D8 Certificate issuer: /CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Certificate serial: 075C0384B692F48F206D0447C0039A5DD8CDE1C3 Authority key identifier: B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Sun 03 May 2026 02:42:54 +0000 ROA not before: Sun 03 May 2026 02:37:54 +0000 ROA not after: Sun 02 May 2027 02:42:54 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:5c:03:84:b6:92:f4:8f:20:6d:04:47:c0:03:9a:5d:d8:cd:e1:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Validity Not Before: May 3 02:37:54 2026 GMT Not After : May 2 02:42:54 2027 GMT Subject: CN=4ED9F76A0A322A4E02DD3BD58D10A6DE18AD6ED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ad:64:21:71:e9:c0:0b:65:4d:a0:5c:30:88: b4:45:4f:fd:a2:67:d1:2a:58:2c:b7:99:09:81:57: e4:65:8d:32:fd:9c:68:c5:f0:7c:b8:73:42:c3:c3: 95:fc:7e:d6:c0:16:18:a3:9d:a1:c3:56:82:52:91: 52:62:64:a9:50:42:ff:ef:73:18:92:99:d5:ab:80: 5b:90:29:4f:9d:6c:72:16:bf:0f:2d:d2:21:00:11: 61:75:9e:5f:65:5e:bb:9d:cb:33:a5:32:3a:95:9d: f0:9f:5e:2f:17:c3:6f:e4:4c:9d:3f:c1:14:30:a6: d5:b6:50:3b:7c:ea:a9:87:37:e5:4a:0c:e6:0d:91: ff:a8:bd:13:c5:03:0c:4f:b3:5f:ec:d9:45:33:42: e4:2d:0c:13:d5:18:3b:d6:98:da:93:38:c1:96:ea: 07:96:a3:d1:de:51:6b:b9:f5:03:ef:53:2f:38:74: 5d:92:2b:19:b7:9b:d4:e5:38:b6:7f:22:fb:d8:d2: bf:7d:0c:c8:0c:4d:48:40:34:c8:10:8f:9e:b7:2c: 60:a3:c1:61:a9:9b:72:76:95:2e:02:54:da:d3:c6: 36:70:e8:59:ab:02:a2:a4:b3:a1:74:02:1f:9c:10: d5:7d:24:be:b3:b4:ba:4e:c5:fe:4c:e1:80:bd:a6: 48:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D9:F7:6A:0A:32:2A:4E:02:DD:3B:D5:8D:10:A6:DE:18:AD:6E:D8 X509v3 Authority Key Identifier: keyid:B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption 72:11:aa:aa:3c:6c:6d:8c:f1:33:3e:10:5f:2c:51:11:0c:de: 60:5a:52:8d:dd:7b:4d:4e:8e:bb:a1:1c:4d:91:7c:b6:c6:ef: 07:3b:fe:e9:db:8b:19:be:a7:18:57:f8:a6:57:d0:c6:d7:6d: 19:d2:40:ed:3d:1c:06:dd:0e:85:81:d3:8a:0d:81:11:c9:23: cf:26:54:54:5a:22:58:74:f7:f6:be:7f:97:03:bc:55:08:cc: 34:bc:df:19:4f:59:fb:60:32:81:ec:66:25:f4:d2:33:e5:92: 21:48:1b:62:10:3d:2a:12:d0:73:33:6c:57:04:0b:5f:87:dc: 45:53:4b:f2:28:56:a6:1e:1b:22:76:0e:e4:60:80:0a:46:ee: 25:5a:40:b4:70:3c:9c:ba:1b:c7:d6:fb:4e:ad:bc:76:50:d2: 37:df:3c:da:67:5e:28:d2:6b:ff:23:50:bd:97:66:37:c9:84: 83:d5:84:be:3e:19:a5:9b:67:8b:cd:8a:d1:3a:02:40:80:b2: 59:df:b0:cc:93:c0:c6:f3:21:fe:40:1a:f3:1d:84:a6:29:c7: 67:7f:a9:24:52:ed:45:99:94:27:4c:d1:13:c7:d3:a6:c2:a4: cd:e7:f3:62:69:d0:d3:cd:77:a1:d7:30:9d:ab:e5:4c:aa:6c: bc:4e:b2:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB1wDhLaS9I8gbQRHwAOaXdjN4cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM5QjE5QzkwODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3 NkY2NjM3MjAeFw0yNjA1MDMwMjM3NTRaFw0yNzA1MDIwMjQyNTRaMDMxMTAvBgNV BAMTKDRFRDlGNzZBMEEzMjJBNEUwMkREM0JENThEMTBBNkRFMThBRDZFRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDarWQhcenAC2VNoFwwiLRFT/2i Z9EqWCy3mQmBV+RljTL9nGjF8Hy4c0LDw5X8ftbAFhijnaHDVoJSkVJiZKlQQv/v cxiSmdWrgFuQKU+dbHIWvw8t0iEAEWF1nl9lXrudyzOlMjqVnfCfXi8Xw2/kTJ0/ wRQwptW2UDt86qmHN+VKDOYNkf+ovRPFAwxPs1/s2UUzQuQtDBPVGDvWmNqTOMGW 6geWo9HeUWu59QPvUy84dF2SKxm3m9TlOLZ/IvvY0r99DMgMTUhANMgQj563LGCj wWGpm3J2lS4CVNrTxjZw6FmrAqKks6F0Ah+cENV9JL6ztLpOxf5M4YC9pkhTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTtn3agoyKk4C3TvVjRCm3hitbtgwHwYDVR0j BBgwFoAUs5sZyQhAhPf8s/r/N2No2Hb2Y3IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzMyZTRmODYtNDhlNy00OGM3LWJhOTEtZTI1OTY4Mzc4ZTk1LzAvQjM5QjE5Qzkw ODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3NkY2NjM3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CMzlCMTlDOTA4NDA4NEY3RkNCM0ZBRkYzNzYzNjhEODc2RjY2 MzcyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAchGqqjxsbYzxMz4QXyxREQzeYFpSjd17TU6Ou6EcTZF8tsbv Bzv+6duLGb6nGFf4plfQxtdtGdJA7T0cBt0OhYHTig2BEckjzyZUVFoiWHT39r5/ lwO8VQjMNLzfGU9Z+2AygexmJfTSM+WSIUgbYhA9KhLQczNsVwQLX4fcRVNL8ihW ph4bInYO5GCACkbuJVpAtHA8nLobx9b7Tq28dlDSN9882mdeKNJr/yNQvZdmN8mE g9WEvj4ZpZtni82K0ToCQICyWd+wzJPAxvMh/kAa8x2EpinHZ3+pJFLtRZmUJ0zR E8fTpsKkzefzYmnQ0813odcwnavlTKpsvE6ycA== -----END CERTIFICATE-----Generated at Wed May 13 02:12:12 2026 by rpki-client