$ rpki-client -vvf rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38392e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: 5twMEBpUGZCFXRPaiYDXrww+UAg0G4R4iDCrbaZ4+Ho= Subject key identifier: D2:E6:1F:F8:07:CF:56:9E:2E:A8:AE:6A:31:F0:07:17:4B:B1:DD:48 Certificate issuer: /CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Certificate serial: 26F5D7F985DADCF0B3DA153CD079E644FD72A39C Authority key identifier: B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa Signing time: Sun 03 May 2026 02:42:54 +0000 ROA not before: Sun 03 May 2026 02:37:54 +0000 ROA not after: Sun 02 May 2027 02:42:54 +0000 asID: 152082 IP address blocks: 157.10.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f5:d7:f9:85:da:dc:f0:b3:da:15:3c:d0:79:e6:44:fd:72:a3:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B39B19C9084084F7FCB3FAFF376368D876F66372 Validity Not Before: May 3 02:37:54 2026 GMT Not After : May 2 02:42:54 2027 GMT Subject: CN=D2E61FF807CF569E2EA8AE6A31F007174BB1DD48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ef:55:ce:0c:d9:18:36:78:de:74:55:68:30: 9a:3b:1c:b5:ae:9f:70:5d:df:c8:3f:ae:31:9c:12: 32:91:bb:fc:c9:a1:fd:82:c9:ae:05:3e:9b:e1:a9: 9f:c3:80:ff:91:6f:4e:cc:8f:66:f9:a1:ef:c3:07: 74:cf:82:a4:59:ab:9d:4b:c0:cf:24:b5:8e:2a:b9: 1c:98:06:a8:f4:d2:d7:21:b2:fc:a6:7f:be:35:a9: 67:fe:ae:38:fe:af:4d:37:76:8f:c1:85:f5:17:90: 27:e0:84:00:c6:b7:2f:a6:23:8d:9c:74:f1:b8:ee: f5:09:47:00:c8:03:d9:86:39:ea:fc:2c:0d:a8:3c: e5:91:64:4f:97:3b:79:13:02:4c:e7:45:6f:09:5d: 07:a6:97:e3:0d:04:c9:32:49:10:f7:82:1e:fa:98: 10:99:02:08:c2:e0:9d:82:33:00:9a:20:8b:ca:07: f6:9a:3f:5e:09:2e:55:e1:b6:94:fc:47:2a:e8:26: 66:48:fd:ad:db:05:02:43:bd:bc:7c:3f:f1:f2:52: d9:ea:43:91:9d:c8:68:3f:33:0c:2c:4a:a5:1d:cb: 6f:15:f4:75:39:84:d6:c3:4e:73:ac:68:1f:0a:b8: 52:ac:1d:33:38:82:2c:b2:18:d9:2c:15:a8:48:77: 6e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E6:1F:F8:07:CF:56:9E:2E:A8:AE:6A:31:F0:07:17:4B:B1:DD:48 X509v3 Authority Key Identifier: keyid:B3:9B:19:C9:08:40:84:F7:FC:B3:FA:FF:37:63:68:D8:76:F6:63:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/B39B19C9084084F7FCB3FAFF376368D876F66372.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B39B19C9084084F7FCB3FAFF376368D876F66372.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.89.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:5e:26:0a:2c:a5:0d:67:9b:77:ce:ab:e0:9c:6f:d2:c3:4f: 7f:0a:65:a3:c0:6e:5d:f6:06:99:e3:0e:2b:35:a9:65:cb:81: 47:e8:1c:1a:ce:12:c1:55:e5:e4:d0:c7:a6:85:af:69:3e:7c: bd:86:a3:d1:92:68:bd:ec:bc:34:7a:c1:fd:0c:d4:d1:96:01: 05:3f:58:e3:cf:9e:b2:ea:83:67:93:85:a9:e0:51:9b:7a:7c: 72:41:18:d0:bc:b0:0b:e4:e2:72:34:ea:68:eb:40:d3:c5:e3: 54:ac:a2:dd:0e:1b:91:33:f4:ff:9d:ca:78:1a:65:44:f8:21: 17:cc:40:b3:5b:6c:ca:0a:66:12:36:3a:84:d9:5b:a5:bf:a3: 78:61:97:7c:32:e1:51:02:90:7d:55:fb:54:ee:90:a7:86:9f: 5b:73:78:ff:27:95:38:ad:e4:e9:12:07:c4:ca:94:5d:43:d1: 20:f3:94:06:c1:0b:35:28:8f:88:e0:ab:f7:89:a7:60:a0:96: fc:54:60:bd:5a:f0:0d:65:17:1f:56:5d:dd:f9:db:fd:c6:33: 5b:a6:31:69:f1:0c:e8:21:bf:46:5c:86:ad:b3:23:1f:87:c8: fc:eb:42:2e:9f:65:53:f9:e3:1d:4e:8f:ed:f3:e4:75:9b:f1: fa:aa:3c:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJvXX+YXa3PCz2hU80HnmRP1yo5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM5QjE5QzkwODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3 NkY2NjM3MjAeFw0yNjA1MDMwMjM3NTRaFw0yNzA1MDIwMjQyNTRaMDMxMTAvBgNV BAMTKEQyRTYxRkY4MDdDRjU2OUUyRUE4QUU2QTMxRjAwNzE3NEJCMURENDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS71XODNkYNnjedFVoMJo7HLWu n3Bd38g/rjGcEjKRu/zJof2Cya4FPpvhqZ/DgP+Rb07Mj2b5oe/DB3TPgqRZq51L wM8ktY4quRyYBqj00tchsvymf741qWf+rjj+r003do/BhfUXkCfghADGty+mI42c dPG47vUJRwDIA9mGOer8LA2oPOWRZE+XO3kTAkznRW8JXQeml+MNBMkySRD3gh76 mBCZAgjC4J2CMwCaIIvKB/aaP14JLlXhtpT8RyroJmZI/a3bBQJDvbx8P/HyUtnq Q5GdyGg/MwwsSqUdy28V9HU5hNbDTnOsaB8KuFKsHTM4giyyGNksFahId255AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0uYf+AfPVp4uqK5qMfAHF0ux3UgwHwYDVR0j BBgwFoAUs5sZyQhAhPf8s/r/N2No2Hb2Y3IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzMyZTRmODYtNDhlNy00OGM3LWJhOTEtZTI1OTY4Mzc4ZTk1LzAvQjM5QjE5Qzkw ODQwODRGN0ZDQjNGQUZGMzc2MzY4RDg3NkY2NjM3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CMzlCMTlDOTA4NDA4NEY3RkNCM0ZBRkYzNzYzNjhEODc2RjY2 MzcyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWTANBgkqhkiG 9w0BAQsFAAOCAQEAO14mCiylDWebd86r4Jxv0sNPfwplo8BuXfYGmeMOKzWpZcuB R+gcGs4SwVXl5NDHpoWvaT58vYaj0ZJovey8NHrB/QzU0ZYBBT9Y48+esuqDZ5OF qeBRm3p8ckEY0LywC+TicjTqaOtA08XjVKyi3Q4bkTP0/53KeBplRPghF8xAs1ts ygpmEjY6hNlbpb+jeGGXfDLhUQKQfVX7VO6Qp4afW3N4/yeVOK3k6RIHxMqUXUPR IPOUBsELNSiPiOCr94mnYKCW/FRgvVrwDWUXH1Zd3fnb/cYzW6YxafEM6CG/RlyG rbMjH4fI/OtCLp9lU/njHU6P7fPkdZvx+qo8XQ== -----END CERTIFICATE-----Generated at Wed May 13 02:37:23 2026 by rpki-client