$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa File: 3135372e36362e36322e302f32342d3234203d3e20313431363039.roa (raw, json) Hash identifier: NHw4QH7kx6gwhf24chR9MVQWVvSl6RuQvk3rMGt5qyQ= Subject key identifier: 82:E0:13:AD:9B:7B:E4:4E:0A:5C:AD:90:1E:3A:AD:F4:48:67:C8:AC Certificate issuer: /CN=5297FC0B52CD4FC7F06C165310D113C81A16F8DF Certificate serial: 4454571A4548C7BCD2DFAA66DA7A5C4B93343912 Authority key identifier: 52:97:FC:0B:52:CD:4F:C7:F0:6C:16:53:10:D1:13:C8:1A:16:F8:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa Signing time: Sun 03 May 2026 02:45:53 +0000 ROA not before: Sun 03 May 2026 02:40:53 +0000 ROA not after: Sun 02 May 2027 02:45:53 +0000 asID: 141609 IP address blocks: 157.66.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.crl rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:54:57:1a:45:48:c7:bc:d2:df:aa:66:da:7a:5c:4b:93:34:39:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5297FC0B52CD4FC7F06C165310D113C81A16F8DF Validity Not Before: May 3 02:40:53 2026 GMT Not After : May 2 02:45:53 2027 GMT Subject: CN=82E013AD9B7BE44E0A5CAD901E3AADF44867C8AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:e1:1a:46:79:01:7c:97:e3:68:1e:1e:da:99: 2d:fd:ea:08:ea:2b:80:1d:4a:62:7c:c7:cc:fa:8e: d3:07:0f:28:4a:81:bf:ed:92:42:b2:7e:c9:b4:ca: 63:a5:01:45:f5:7c:5a:56:30:0c:f2:a6:10:e3:0c: cd:64:07:66:f2:14:dd:5c:b3:8e:fa:56:b1:6b:01: c7:34:f8:a8:b8:24:cf:20:1b:9d:2e:6e:f2:e6:c3: 9a:25:01:b3:58:77:39:50:0d:19:fc:b1:e5:5a:32: 7f:50:ea:60:11:89:a2:d8:8e:c1:eb:4b:40:f0:c5: b0:66:3a:32:aa:b2:88:26:66:4e:97:7c:fa:00:ea: cb:53:ac:03:de:14:d8:cc:f5:7a:73:43:48:3e:62: 80:6d:7b:27:34:87:c8:ed:e0:20:6c:42:19:98:c7: 89:7f:c5:29:de:f0:f2:4d:99:b8:32:bf:a8:22:4a: d6:7e:4d:37:ae:42:0d:3a:0b:2f:8a:67:b8:68:6f: 6d:b0:02:0f:27:2b:cc:20:0e:a8:92:8e:9b:3a:ff: 53:ba:2e:87:81:a3:95:0d:5a:64:20:77:c4:6a:f8: aa:84:58:c8:08:f9:bc:5f:5a:9f:6b:63:b5:10:de: 06:50:aa:1f:e4:b5:09:6b:00:13:cf:77:25:83:0f: e1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E0:13:AD:9B:7B:E4:4E:0A:5C:AD:90:1E:3A:AD:F4:48:67:C8:AC X509v3 Authority Key Identifier: keyid:52:97:FC:0B:52:CD:4F:C7:F0:6C:16:53:10:D1:13:C8:1A:16:F8:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36322e302f32342d3234203d3e20313431363039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.62.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:5b:c3:0b:86:2d:39:85:f5:dd:0c:ea:62:95:ee:c9:7e:47: 9f:51:07:1e:37:f5:2c:41:36:69:19:5d:df:db:35:be:03:48: 93:a0:db:bf:c5:05:d6:21:e5:c4:89:38:a7:59:b1:bc:ab:68: d0:0d:21:80:12:bb:af:08:3a:95:50:34:fa:55:e9:29:a2:61: f3:bb:d6:9a:87:b9:97:c7:fe:b0:9c:10:32:08:e2:24:9e:62: 8c:86:f8:02:f7:46:c3:0a:f6:03:a3:5d:aa:2d:df:87:eb:92: 36:e0:2d:ae:3f:77:0d:93:90:21:98:3f:97:43:ee:d5:c3:79: 66:1b:02:ed:cb:69:6c:51:aa:3b:ae:89:28:a8:e2:66:5b:71: 4d:67:6e:63:15:61:c3:3c:de:1d:9a:bd:51:c0:6f:9a:03:61: 72:12:6e:3f:36:f8:66:d7:cf:8c:12:fb:5d:18:46:05:9e:e1: 32:b0:ce:d6:c4:65:6b:88:b7:a6:68:7e:a4:ae:f3:5e:97:c8: 32:4a:d2:9d:3f:9c:4a:75:ff:3a:50:99:e2:2c:d4:84:a0:21: 79:67:9b:be:ef:f3:9d:3b:5d:c5:ad:48:d7:b0:2c:9e:c9:8d: 68:45:a7:e5:c8:1e:78:13:00:7f:37:ba:c1:f1:c2:90:88:08: 75:4d:8d:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURFRXGkVIx7zS36pm2npcS5M0ORIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5N0ZDMEI1MkNENEZDN0YwNkMxNjUzMTBEMTEzQzgx QTE2RjhERjAeFw0yNjA1MDMwMjQwNTNaFw0yNzA1MDIwMjQ1NTNaMDMxMTAvBgNV BAMTKDgyRTAxM0FEOUI3QkU0NEUwQTVDQUQ5MDFFM0FBREY0NDg2N0M4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCI4RpGeQF8l+NoHh7amS396gjq K4AdSmJ8x8z6jtMHDyhKgb/tkkKyfsm0ymOlAUX1fFpWMAzyphDjDM1kB2byFN1c s476VrFrAcc0+Ki4JM8gG50ubvLmw5olAbNYdzlQDRn8seVaMn9Q6mARiaLYjsHr S0DwxbBmOjKqsogmZk6XfPoA6stTrAPeFNjM9XpzQ0g+YoBteyc0h8jt4CBsQhmY x4l/xSne8PJNmbgyv6giStZ+TTeuQg06Cy+KZ7hob22wAg8nK8wgDqiSjps6/1O6 LoeBo5UNWmQgd8Rq+KqEWMgI+bxfWp9rY7UQ3gZQqh/ktQlrABPPdyWDD+HpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUguATrZt75E4KXK2QHjqt9EhnyKwwHwYDVR0j BBgwFoAUUpf8C1LNT8fwbBZTENETyBoW+N8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2RkYmI3OWMtOWVhMi00N2YwLWI0NWYtMTgxNjY1MGJhMjNmLzAvNTI5N0ZDMEI1 MkNENEZDN0YwNkMxNjUzMTBEMTEzQzgxQTE2RjhERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81Mjk3RkMwQjUyQ0Q0RkM3RjA2QzE2NTMxMEQxMTNDODFBMTZG OERGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdkZGJiNzljLTllYTItNDdmMC1i NDVmLTE4MTY2NTBiYTIzZi8wLzMxMzUzNzJlMzYzNjJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CPjANBgkqhkiG 9w0BAQsFAAOCAQEAilvDC4YtOYX13QzqYpXuyX5Hn1EHHjf1LEE2aRld39s1vgNI k6Dbv8UF1iHlxIk4p1mxvKto0A0hgBK7rwg6lVA0+lXpKaJh87vWmoe5l8f+sJwQ MgjiJJ5ijIb4AvdGwwr2A6Ndqi3fh+uSNuAtrj93DZOQIZg/l0Pu1cN5ZhsC7ctp bFGqO66JKKjiZltxTWduYxVhwzzeHZq9UcBvmgNhchJuPzb4ZtfPjBL7XRhGBZ7h MrDO1sRla4i3pmh+pK7zXpfIMkrSnT+cSnX/OlCZ4izUhKAheWebvu/znTtdxa1I 17AsnsmNaEWn5cgeeBMAfze6wfHCkIgIdU2NdA== -----END CERTIFICATE-----Generated at Wed May 13 04:16:36 2026 by rpki-client