$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36332e302f32342d3234203d3e20313431363039.roa File: 3135372e36362e36332e302f32342d3234203d3e20313431363039.roa (raw, json) Hash identifier: Xm5n/XLcKtlX7vaWLbK2D/7cXu3TQ6c3pSXsVlfA9/0= Subject key identifier: 34:B9:6E:E8:E3:2C:87:EF:AB:76:3C:41:1A:3C:DA:35:FE:F4:59:F3 Certificate issuer: /CN=5297FC0B52CD4FC7F06C165310D113C81A16F8DF Certificate serial: 6F14FFFFF37BECD13AEC7DC1DC14362F3DF9FE58 Authority key identifier: 52:97:FC:0B:52:CD:4F:C7:F0:6C:16:53:10:D1:13:C8:1A:16:F8:DF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36332e302f32342d3234203d3e20313431363039.roa Signing time: Sun 03 May 2026 02:45:52 +0000 ROA not before: Sun 03 May 2026 02:40:52 +0000 ROA not after: Sun 02 May 2027 02:45:52 +0000 asID: 141609 IP address blocks: 157.66.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.crl rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:14:ff:ff:f3:7b:ec:d1:3a:ec:7d:c1:dc:14:36:2f:3d:f9:fe:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5297FC0B52CD4FC7F06C165310D113C81A16F8DF Validity Not Before: May 3 02:40:52 2026 GMT Not After : May 2 02:45:52 2027 GMT Subject: CN=34B96EE8E32C87EFAB763C411A3CDA35FEF459F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:06:3f:aa:bc:7d:43:7e:12:70:f6:68:d0:fe: 73:9f:6c:da:a3:7e:e1:d1:9a:ba:79:6e:73:f2:be: f1:07:87:01:2b:d8:6d:6f:d8:63:15:30:67:45:59: b5:ad:04:bf:aa:b2:e6:ba:ce:f2:e0:1b:56:dd:6d: 25:a5:ef:0f:2b:cd:b7:3a:43:d7:fb:1d:7a:99:44: 32:8c:37:88:77:6b:0f:90:47:e6:92:de:11:16:b8: c4:cd:1f:bd:aa:f4:33:d0:97:81:63:4b:01:d1:7d: 80:5f:39:04:f2:4a:c2:39:26:ed:f6:ef:fe:c7:b1: 82:6b:02:c9:d3:36:96:8d:5a:6d:1c:da:41:0c:a0: 23:39:97:2f:93:1e:18:1f:4d:e1:00:37:92:aa:25: a7:58:7b:f6:23:66:6e:0f:d4:87:57:cc:de:1e:87: 44:c7:66:e3:9f:57:99:d3:80:6e:fc:4c:34:4f:a8: 44:81:b4:20:fd:d1:ec:d4:d9:99:8e:a0:f9:b0:93: c8:61:cb:72:54:5b:94:6d:dc:3b:70:21:cb:11:97: 7c:09:d4:5d:1a:1f:a6:c6:11:79:ce:b7:fd:4e:ad: 3f:58:3c:b4:ba:e8:c2:65:ba:77:b8:1a:b7:5f:97: 61:ff:a8:60:50:37:4b:36:44:57:a9:57:f2:36:e2: 5b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B9:6E:E8:E3:2C:87:EF:AB:76:3C:41:1A:3C:DA:35:FE:F4:59:F3 X509v3 Authority Key Identifier: keyid:52:97:FC:0B:52:CD:4F:C7:F0:6C:16:53:10:D1:13:C8:1A:16:F8:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5297FC0B52CD4FC7F06C165310D113C81A16F8DF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ddbb79c-9ea2-47f0-b45f-1816650ba23f/0/3135372e36362e36332e302f32342d3234203d3e20313431363039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.63.0/24 Signature Algorithm: sha256WithRSAEncryption 34:5f:42:3b:69:70:64:91:dc:d7:64:58:cc:8e:7f:cd:8f:53: a9:d3:07:0f:9e:d4:99:fa:8a:ed:31:14:34:da:2c:c2:45:6b: 35:bc:a0:75:a1:4d:62:2b:ec:7f:4d:5e:d1:d8:a6:b1:64:35: 9a:fc:64:92:94:0a:34:83:4d:e8:14:a1:bd:c9:c3:91:27:af: e3:53:1f:60:8a:bc:1a:1e:ea:04:81:22:b9:fc:d3:29:41:57: 56:c0:df:3e:25:3c:be:08:a6:43:88:75:e4:fb:3f:10:f1:18: 89:92:68:bb:2a:f2:f7:d4:9d:ce:eb:ba:2c:e8:7d:d1:57:6d: af:72:96:22:5a:6f:01:25:7f:8d:26:ed:ed:b4:79:01:8d:1a: cb:1a:e8:e6:30:07:9b:3c:ee:33:e7:af:26:25:50:e6:87:92: 30:86:a3:08:07:27:b1:b7:04:e4:c1:57:6f:86:3a:06:a9:58: cf:3d:df:b7:22:43:d4:cf:0f:a2:84:a2:ab:ab:f0:7a:8d:b2: c2:94:19:c4:dc:ba:d5:8d:27:5d:c1:49:6c:3e:8f:39:7a:13: 36:38:23:13:67:3a:94:a8:dc:6a:43:8d:1f:e5:fb:3b:f4:8e: 84:b3:02:17:9e:f7:d6:8c:90:30:f7:90:8c:e8:f0:26:8c:dd: 7b:9e:42:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbxT///N77NE67H3B3BQ2Lz35/lgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5N0ZDMEI1MkNENEZDN0YwNkMxNjUzMTBEMTEzQzgx QTE2RjhERjAeFw0yNjA1MDMwMjQwNTJaFw0yNzA1MDIwMjQ1NTJaMDMxMTAvBgNV BAMTKDM0Qjk2RUU4RTMyQzg3RUZBQjc2M0M0MTFBM0NEQTM1RkVGNDU5RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKBj+qvH1DfhJw9mjQ/nOfbNqj fuHRmrp5bnPyvvEHhwEr2G1v2GMVMGdFWbWtBL+qsua6zvLgG1bdbSWl7w8rzbc6 Q9f7HXqZRDKMN4h3aw+QR+aS3hEWuMTNH72q9DPQl4FjSwHRfYBfOQTySsI5Ju32 7/7HsYJrAsnTNpaNWm0c2kEMoCM5ly+THhgfTeEAN5KqJadYe/YjZm4P1IdXzN4e h0THZuOfV5nTgG78TDRPqESBtCD90ezU2ZmOoPmwk8hhy3JUW5Rt3DtwIcsRl3wJ 1F0aH6bGEXnOt/1OrT9YPLS66MJlune4Grdfl2H/qGBQN0s2RFepV/I24lspAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNLlu6OMsh++rdjxBGjzaNf70WfMwHwYDVR0j BBgwFoAUUpf8C1LNT8fwbBZTENETyBoW+N8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2RkYmI3OWMtOWVhMi00N2YwLWI0NWYtMTgxNjY1MGJhMjNmLzAvNTI5N0ZDMEI1 MkNENEZDN0YwNkMxNjUzMTBEMTEzQzgxQTE2RjhERi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81Mjk3RkMwQjUyQ0Q0RkM3RjA2QzE2NTMxMEQxMTNDODFBMTZG OERGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdkZGJiNzljLTllYTItNDdmMC1i NDVmLTE4MTY2NTBiYTIzZi8wLzMxMzUzNzJlMzYzNjJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CPzANBgkqhkiG 9w0BAQsFAAOCAQEANF9CO2lwZJHc12RYzI5/zY9TqdMHD57UmfqK7TEUNNoswkVr NbygdaFNYivsf01e0dimsWQ1mvxkkpQKNINN6BShvcnDkSev41MfYIq8Gh7qBIEi ufzTKUFXVsDfPiU8vgimQ4h15Ps/EPEYiZJouyry99Sdzuu6LOh90Vdtr3KWIlpv ASV/jSbt7bR5AY0ayxro5jAHmzzuM+evJiVQ5oeSMIajCAcnsbcE5MFXb4Y6BqlY zz3ftyJD1M8PooSiq6vweo2ywpQZxNy61Y0nXcFJbD6POXoTNjgjE2c6lKjcakON H+X7O/SOhLMCF5731oyQMPeQjOjwJozde55CDw== -----END CERTIFICATE-----Generated at Wed May 13 04:54:22 2026 by rpki-client