$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa File: 3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa (raw, json) Hash identifier: nSL4B/G0XcHxGPJp9F9kqB6nsnTe5eKmLy08tlSHYSo= Subject key identifier: DC:46:2D:AB:B1:C3:42:31:E8:6E:63:2F:B6:AA:4E:DA:C0:6E:31:B2 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 484BDB3E99A902469701EEB8B02C38ACB6FE3F46 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa Signing time: Sun 03 May 2026 02:47:57 +0000 ROA not before: Sun 03 May 2026 02:42:57 +0000 ROA not after: Sun 02 May 2027 02:47:57 +0000 asID: 58488 IP address blocks: 150.107.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:4b:db:3e:99:a9:02:46:97:01:ee:b8:b0:2c:38:ac:b6:fe:3f:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:57 2026 GMT Not After : May 2 02:47:57 2027 GMT Subject: CN=DC462DABB1C34231E86E632FB6AA4EDAC06E31B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d4:01:29:e1:d7:db:5d:b9:69:43:13:a9:b6: 18:48:38:e7:23:ce:18:7d:99:42:2f:a0:5f:3f:3c: 37:7d:56:75:50:f2:1b:43:de:56:48:0c:0e:d9:74: f6:cc:59:02:e0:47:44:e1:d1:7b:35:d8:d1:54:32: 1e:2b:3c:8e:0f:0b:9b:fe:5a:66:fa:bf:f8:72:a7: 5b:c7:00:07:7c:9c:1d:7d:b6:24:41:63:da:cc:37: 10:ba:d5:07:28:b4:02:21:5c:50:83:d4:97:c7:fd: f8:20:d3:10:15:a1:d9:96:57:15:f9:61:bc:c9:41: 36:24:09:54:e1:65:47:ef:a7:42:0a:cf:a2:a7:96: 3e:99:53:93:a4:de:a1:79:4d:cb:73:5c:6b:8e:74: 5a:55:da:4d:a4:10:f7:02:33:0a:ad:7e:ef:cf:40: d3:5e:68:93:8d:1f:52:26:df:b2:2a:e7:25:ac:9a: 48:3d:db:8d:f3:38:c8:4d:fc:79:53:b7:7b:56:0f: 85:36:27:03:e0:01:86:28:de:2c:14:8d:a7:a3:bf: 5f:ce:9e:6d:24:f2:b1:d2:6e:f8:29:5a:7f:37:78: ac:2c:c1:38:0e:35:c5:e8:e0:aa:14:5c:c9:b6:35: 02:74:3a:70:8a:a6:83:4c:11:55:46:16:84:cb:b9: 7e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:46:2D:AB:B1:C3:42:31:E8:6E:63:2F:B6:AA:4E:DA:C0:6E:31:B2 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3135302e3130372e3134332e302f32342d3234203d3e203538343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.143.0/24 Signature Algorithm: sha256WithRSAEncryption 27:82:54:19:3e:4e:2f:09:e1:ca:26:f0:35:a5:ad:ee:f9:ac: 4a:20:73:1a:b7:c4:82:da:97:a7:ef:ac:8e:31:ed:98:d9:e6: 6f:2f:77:7b:b2:12:91:38:8b:bf:96:5c:be:11:d8:f8:95:8e: 91:b4:50:9e:3a:ef:a1:51:8f:e3:0d:df:ee:9a:e7:e8:0d:36: 12:f7:a0:dc:2d:1d:74:d5:34:c7:dc:80:c4:76:eb:32:06:6b: 7a:9b:34:1e:53:54:93:10:44:d4:df:01:f4:f2:c5:70:81:c8: 95:3c:b9:80:18:5c:ab:d8:9f:1b:fc:af:3e:9f:ee:db:4c:7f: 27:13:28:b6:78:2a:f3:49:a0:e3:ef:83:34:c9:a5:60:2b:49: 63:fc:35:37:b1:9c:c1:ee:7d:b3:f3:b4:18:58:fa:1b:de:e7: c4:3d:57:72:92:94:31:41:4d:ba:7a:c9:5d:9d:a7:fb:03:1e: 43:59:32:fe:21:40:ae:06:f1:a9:21:d6:a3:ed:10:2e:6f:48: 20:08:64:c5:43:19:23:0e:ee:af:b3:56:06:24:07:5d:f9:42: ea:2c:a4:e3:67:31:0c:58:47:ea:7b:59:b3:5d:f9:09:47:fa: b2:32:00:3c:cc:54:85:0e:c6:20:72:6e:54:44:1f:40:7c:65: 8c:6a:f9:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSEvbPpmpAkaXAe64sCw4rLb+P0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTdaFw0yNzA1MDIwMjQ3NTdaMDMxMTAvBgNV BAMTKERDNDYyREFCQjFDMzQyMzFFODZFNjMyRkI2QUE0RURBQzA2RTMxQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP1AEp4dfbXblpQxOpthhIOOcj zhh9mUIvoF8/PDd9VnVQ8htD3lZIDA7ZdPbMWQLgR0Th0Xs12NFUMh4rPI4PC5v+ Wmb6v/hyp1vHAAd8nB19tiRBY9rMNxC61QcotAIhXFCD1JfH/fgg0xAVodmWVxX5 YbzJQTYkCVThZUfvp0IKz6Knlj6ZU5Ok3qF5TctzXGuOdFpV2k2kEPcCMwqtfu/P QNNeaJONH1Im37Iq5yWsmkg9243zOMhN/HlTt3tWD4U2JwPgAYYo3iwUjaejv1/O nm0k8rHSbvgpWn83eKwswTgONcXo4KoUXMm2NQJ0OnCKpoNMEVVGFoTLuX6JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3EYtq7HDQjHobmMvtqpO2sBuMbIwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzUzMDJlMzEzMDM3MmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmuPMA0GCSqG SIb3DQEBCwUAA4IBAQAnglQZPk4vCeHKJvA1pa3u+axKIHMat8SC2pen76yOMe2Y 2eZvL3d7shKROIu/lly+Edj4lY6RtFCeOu+hUY/jDd/umufoDTYS96DcLR101TTH 3IDEdusyBmt6mzQeU1STEETU3wH08sVwgciVPLmAGFyr2J8b/K8+n+7bTH8nEyi2 eCrzSaDj74M0yaVgK0lj/DU3sZzB7n2z87QYWPob3ufEPVdykpQxQU26esldnaf7 Ax5DWTL+IUCuBvGpIdaj7RAub0ggCGTFQxkjDu6vs1YGJAdd+ULqLKTjZzEMWEfq e1mzXfkJR/qyMgA8zFSFDsYgcm5URB9AfGWMavlP -----END CERTIFICATE-----Generated at Wed May 13 02:59:52 2026 by rpki-client