$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa File: 3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: oU0JE13izs3AAVH3QHb02tsIObTYm/RQpyEK7pKdYyk= Subject key identifier: C1:3B:C8:42:FE:F2:5C:04:80:95:52:86:C0:27:96:06:0B:BC:BC:CE Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 3726FDF2F17EB1426CA44E9630BBC5A8E0B64647 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa Signing time: Sun 03 May 2026 02:48:03 +0000 ROA not before: Sun 03 May 2026 02:43:03 +0000 ROA not after: Sun 02 May 2027 02:48:03 +0000 asID: 55685 IP address blocks: 150.107.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:26:fd:f2:f1:7e:b1:42:6c:a4:4e:96:30:bb:c5:a8:e0:b6:46:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:03 2026 GMT Not After : May 2 02:48:03 2027 GMT Subject: CN=C13BC842FEF25C0480955286C02796060BBCBCCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:7f:75:f5:56:af:a7:37:9e:1a:f9:77:78: ee:75:42:4c:e3:72:65:e1:75:93:1b:1e:ff:e7:98: de:2a:73:8a:3d:e1:be:10:0c:ae:db:ee:e9:85:d6: 08:a1:9a:e9:3a:64:71:37:a5:d9:11:a1:76:04:af: e0:66:d6:a6:e1:64:3c:e2:32:5d:d2:7f:b5:92:26: 74:16:9d:f4:4e:48:16:5a:81:37:6a:9f:d2:6f:97: 82:cb:eb:f1:52:75:48:bf:5f:d7:c2:9a:7d:dc:a2: 76:f7:b0:3a:c0:e9:bb:da:5f:4d:70:f0:a3:be:d1: 52:33:7a:1a:fb:f7:81:2c:b0:c5:7d:f2:d3:5e:c9: 5b:f5:b8:b6:0f:dd:f0:72:a7:ce:00:e4:8e:ac:ac: f0:5d:66:39:99:0c:3d:70:54:e9:ec:45:ee:cc:17: 2b:6f:a7:0f:5a:04:2f:11:18:93:20:b6:73:20:ac: a7:b7:77:4f:af:36:45:52:af:69:5e:b7:28:95:ae: 9e:4f:0b:07:ff:43:98:05:b5:2b:57:3a:f5:8f:6d: f2:fa:03:05:46:e0:be:57:49:03:27:12:16:ce:91: 75:7d:51:68:33:85:14:d5:2a:9a:31:37:cf:70:70: 06:3b:d4:aa:5d:23:db:97:fe:cc:2c:22:61:47:7a: 41:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:3B:C8:42:FE:F2:5C:04:80:95:52:86:C0:27:96:06:0B:BC:BC:CE X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.141.0/24 Signature Algorithm: sha256WithRSAEncryption 55:c3:b7:6a:74:0b:37:e1:5f:9e:ab:5a:0f:07:bc:c6:1c:34: d6:43:22:ad:d3:91:d7:d9:ce:fa:82:42:13:09:a3:f8:e9:9d: d1:a3:a1:bb:84:54:53:95:84:70:fd:f5:69:c0:92:54:11:31: d7:a1:91:98:69:c3:79:02:5d:4d:33:d1:7f:51:18:79:a3:2a: a2:15:56:b2:fc:bf:3e:e9:0d:5d:ce:51:15:91:aa:6c:c8:70: bc:43:e6:39:8c:34:79:ad:db:81:9b:74:2e:77:b7:27:85:5e: bb:99:87:56:13:06:d4:59:de:75:d9:3c:5c:61:e2:49:19:d4: b7:6c:8b:b0:23:53:bd:65:27:7b:f0:d6:2b:b8:ab:c7:79:b5: a6:22:de:64:66:c2:57:29:07:15:c8:30:1d:64:c9:29:ff:b6: 18:43:7e:ca:82:71:33:79:6d:b0:85:d5:dc:e7:4b:6c:73:8c: 81:2b:20:9e:77:bb:99:1f:77:e1:d2:2a:8d:32:fa:9d:04:2b: 89:7c:18:7f:87:52:d3:52:b5:f9:60:69:6c:e6:94:a8:c6:2e: 92:6a:02:9c:58:e1:51:3e:2d:89:10:1f:49:7d:02:99:90:97: ca:17:51:72:a6:0f:e6:92:a1:99:72:f8:68:68:8a:7e:a7:f6: 08:6a:96:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNyb98vF+sUJspE6WMLvFqOC2RkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDNaFw0yNzA1MDIwMjQ4MDNaMDMxMTAvBgNV BAMTKEMxM0JDODQyRkVGMjVDMDQ4MDk1NTI4NkMwMjc5NjA2MEJCQ0JDQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Vn919VavpzeeGvl3eO51Qkzj cmXhdZMbHv/nmN4qc4o94b4QDK7b7umF1gihmuk6ZHE3pdkRoXYEr+Bm1qbhZDzi Ml3Sf7WSJnQWnfROSBZagTdqn9Jvl4LL6/FSdUi/X9fCmn3conb3sDrA6bvaX01w 8KO+0VIzehr794EssMV98tNeyVv1uLYP3fByp84A5I6srPBdZjmZDD1wVOnsRe7M Fytvpw9aBC8RGJMgtnMgrKe3d0+vNkVSr2letyiVrp5PCwf/Q5gFtStXOvWPbfL6 AwVG4L5XSQMnEhbOkXV9UWgzhRTVKpoxN89wcAY71KpdI9uX/swsImFHekEBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwTvIQv7yXASAlVKGwCeWBgu8vM4wHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuNMA0GCSqG SIb3DQEBCwUAA4IBAQBVw7dqdAs34V+eq1oPB7zGHDTWQyKt05HX2c76gkITCaP4 6Z3Ro6G7hFRTlYRw/fVpwJJUETHXoZGYacN5Al1NM9F/URh5oyqiFVay/L8+6Q1d zlEVkapsyHC8Q+Y5jDR5rduBm3Qud7cnhV67mYdWEwbUWd512TxcYeJJGdS3bIuw I1O9ZSd78NYruKvHebWmIt5kZsJXKQcVyDAdZMkp/7YYQ37KgnEzeW2whdXc50ts c4yBKyCed7uZH3fh0iqNMvqdBCuJfBh/h1LTUrX5YGls5pSoxi6SagKcWOFRPi2J EB9JfQKZkJfKF1Fypg/mkqGZcvhoaIp+p/YIapYV -----END CERTIFICATE-----Generated at Wed May 13 01:36:23 2026 by rpki-client