$ rpki-client -vvf rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa File: 3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa (raw, json) Hash identifier: 52gK1ZVXU5lx2N9LIOHuf1720HHZgYLR2YWvzcpZMqA= Subject key identifier: 64:7C:B7:0B:47:2B:F3:9E:39:7D:2E:CE:5E:CA:AF:B6:12:0F:F1:34 Certificate issuer: /CN=EB1DCD321031C0290E00088B308F6E37F658F0F0 Certificate serial: 2BF10F605226B84E979045C44B2EDEE6A5C69774 Authority key identifier: EB:1D:CD:32:10:31:C0:29:0E:00:08:8B:30:8F:6E:37:F6:58:F0:F0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa Signing time: Sun 03 May 2026 02:45:29 +0000 ROA not before: Sun 03 May 2026 02:40:29 +0000 ROA not after: Sun 02 May 2027 02:45:29 +0000 asID: 152772 IP address blocks: 157.66.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.crl rsync://rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f1:0f:60:52:26:b8:4e:97:90:45:c4:4b:2e:de:e6:a5:c6:97:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB1DCD321031C0290E00088B308F6E37F658F0F0 Validity Not Before: May 3 02:40:29 2026 GMT Not After : May 2 02:45:29 2027 GMT Subject: CN=647CB70B472BF39E397D2ECE5ECAAFB6120FF134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:c0:76:32:b7:50:15:9b:00:91:34:89:2e: 3f:18:d0:09:3e:9e:01:5f:8d:d7:fd:c8:c8:10:6e: 48:0d:90:62:05:e9:a5:79:40:9c:f1:de:2b:8e:01: a3:53:ef:ff:0b:fc:49:a9:dd:65:70:9f:42:dc:41: 23:91:d2:5c:cf:15:e7:b1:c8:f7:38:e7:63:93:2a: 53:d4:d3:00:7b:16:61:45:55:c6:98:63:c5:04:1f: 92:2f:62:46:42:41:67:7e:f3:3c:9a:6c:b0:b3:80: 03:6a:50:49:84:00:6e:6a:69:86:38:4f:3c:e1:3a: c9:57:e9:71:41:eb:d6:99:ea:7d:5a:e9:e8:0d:ec: 04:19:2f:4f:70:26:35:35:dc:66:c7:b3:a5:90:57: 71:83:be:64:3c:ef:35:d7:18:88:e8:09:24:d0:70: b8:f3:fa:b6:fb:88:20:dd:2b:c1:ba:75:51:98:37: 53:3d:a1:78:94:27:b0:7e:9b:34:0c:e6:dd:3a:69: 2e:25:23:06:71:f1:d9:45:e2:6a:b3:3f:c1:3b:0b: 6e:11:b6:a0:2e:a0:f2:80:7c:7d:ba:4e:93:5b:35: dc:c5:30:79:5e:f6:19:f2:9d:56:5b:5c:94:24:85: a5:cd:3f:51:95:db:25:9b:b8:d9:bf:cd:5e:e3:12: 4b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7C:B7:0B:47:2B:F3:9E:39:7D:2E:CE:5E:CA:AF:B6:12:0F:F1:34 X509v3 Authority Key Identifier: keyid:EB:1D:CD:32:10:31:C0:29:0E:00:08:8B:30:8F:6E:37:F6:58:F0:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EB1DCD321031C0290E00088B308F6E37F658F0F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/0/3135372e36362e3132352e302f32342d3234203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.125.0/24 Signature Algorithm: sha256WithRSAEncryption 59:b3:55:38:7f:78:77:b6:30:6e:88:9a:9d:61:ed:14:ee:ba: d8:ed:06:d8:5e:a3:f2:74:3d:63:a0:60:33:38:98:1c:c1:c6: 59:6e:d5:11:0c:7c:0a:93:f2:ad:58:a4:bd:04:61:72:72:a2: 5a:2b:01:b9:29:33:78:a3:4c:db:10:e4:07:15:b3:fd:55:43: 86:39:ae:bb:3d:2d:73:6d:9b:39:17:f0:69:38:52:ac:c2:75: 9d:9b:1d:6f:a5:ff:5d:c6:1e:8c:18:de:ac:39:1e:3a:83:4e: d3:9c:f4:e4:04:ee:21:14:c7:29:94:75:f4:cd:4a:26:0e:8e: 4c:ec:80:37:18:4d:30:07:b5:81:6a:7a:38:f5:91:f1:ad:b5: 37:77:b2:82:e9:2c:23:ee:6e:2e:68:12:b1:85:63:cf:5c:60: e8:d6:01:02:85:65:33:51:50:d0:75:d7:4d:ff:19:21:87:de: 71:84:5f:91:d5:d3:30:56:67:c6:ba:30:b3:bf:c2:af:f1:31: 6f:97:76:36:5f:f3:9d:98:a4:8a:34:ee:f7:76:9f:30:83:e3: 3b:bc:2a:a3:7c:61:34:ae:4d:99:4b:9a:a4:c7:bc:fb:a8:bc: 7e:a0:4c:20:19:94:b2:5e:61:f8:b3:71:56:e4:24:cc:7c:5e: 10:3f:a7:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK/EPYFImuE6XkEXESy7e5qXGl3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIxRENEMzIxMDMxQzAyOTBFMDAwODhCMzA4RjZFMzdG NjU4RjBGMDAeFw0yNjA1MDMwMjQwMjlaFw0yNzA1MDIwMjQ1MjlaMDMxMTAvBgNV BAMTKDY0N0NCNzBCNDcyQkYzOUUzOTdEMkVDRTVFQ0FBRkI2MTIwRkYxMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI1sB2MrdQFZsAkTSJLj8Y0Ak+ ngFfjdf9yMgQbkgNkGIF6aV5QJzx3iuOAaNT7/8L/Emp3WVwn0LcQSOR0lzPFeex yPc452OTKlPU0wB7FmFFVcaYY8UEH5IvYkZCQWd+8zyabLCzgANqUEmEAG5qaYY4 TzzhOslX6XFB69aZ6n1a6egN7AQZL09wJjU13GbHs6WQV3GDvmQ87zXXGIjoCSTQ cLjz+rb7iCDdK8G6dVGYN1M9oXiUJ7B+mzQM5t06aS4lIwZx8dlF4mqzP8E7C24R tqAuoPKAfH26TpNbNdzFMHle9hnynVZbXJQkhaXNP1GV2yWbuNm/zV7jEktFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZHy3C0cr8545fS7OXsqvthIP8TQwHwYDVR0j BBgwFoAU6x3NMhAxwCkOAAiLMI9uN/ZY8PAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2NmMDFlYzYtOGU4OS00MDJhLTkwYzctNTBjNmYxNGNkMjQyLzAvRUIxRENEMzIx MDMxQzAyOTBFMDAwODhCMzA4RjZFMzdGNjU4RjBGMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FQjFEQ0QzMjEwMzFDMDI5MEUwMDA4OEIzMDhGNkUzN0Y2NThG MEYwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8wLzMxMzUzNzJlMzYzNjJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUJ9MA0GCSqG SIb3DQEBCwUAA4IBAQBZs1U4f3h3tjBuiJqdYe0U7rrY7QbYXqPydD1joGAzOJgc wcZZbtURDHwKk/KtWKS9BGFycqJaKwG5KTN4o0zbEOQHFbP9VUOGOa67PS1zbZs5 F/BpOFKswnWdmx1vpf9dxh6MGN6sOR46g07TnPTkBO4hFMcplHX0zUomDo5M7IA3 GE0wB7WBano49ZHxrbU3d7KC6Swj7m4uaBKxhWPPXGDo1gEChWUzUVDQdddN/xkh h95xhF+R1dMwVmfGujCzv8Kv8TFvl3Y2X/OdmKSKNO73dp8wg+M7vCqjfGE0rk2Z S5qkx7z7qLx+oEwgGZSyXmH4s3FW5CTMfF4QP6fV -----END CERTIFICATE-----Generated at Wed May 13 04:16:27 2026 by rpki-client