$ rpki-client -vvf rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa File: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (raw, json) Hash identifier: OX/hSObmRCzkD1qVckzfWkKuBPC5Pdod9YDgySPz4C8= Subject key identifier: CB:6D:41:D6:04:F8:47:CC:B3:2D:6E:EF:4F:6C:E9:97:17:F0:9C:AC Certificate issuer: /CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Certificate serial: 3B9A8C386E817AB67EDA7C8DEACE3E51611AF3A9 Authority key identifier: 2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa Signing time: Sun 03 May 2026 02:52:02 +0000 ROA not before: Sun 03 May 2026 02:47:02 +0000 ROA not after: Sun 02 May 2027 02:52:02 +0000 asID: 152344 IP address blocks: 157.10.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:9a:8c:38:6e:81:7a:b6:7e:da:7c:8d:ea:ce:3e:51:61:1a:f3:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Validity Not Before: May 3 02:47:02 2026 GMT Not After : May 2 02:52:02 2027 GMT Subject: CN=CB6D41D604F847CCB32D6EEF4F6CE99717F09CAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:da:42:6d:b6:b9:86:cd:84:5c:0c:19:a4:76: 52:07:15:3a:1f:51:92:1a:b7:93:f2:d2:83:ca:67: 3b:83:bc:9b:90:4c:2c:a1:82:b6:40:e5:eb:5b:a2: f1:12:85:06:34:9a:77:a5:0f:e9:60:ac:5b:e6:91: de:1a:2c:f1:14:b4:11:c7:ea:e8:84:d6:91:76:4f: 19:74:29:35:b4:3b:ea:b1:34:f8:ea:6b:56:a9:86: 62:59:12:1a:4e:3c:9c:df:b6:e9:df:8b:6f:1b:10: 2f:69:14:a1:66:b7:55:cd:66:56:38:f7:21:b7:af: cd:79:73:d4:58:90:a9:2e:30:fe:b4:b3:f3:92:e8: 7f:9c:36:4b:f5:e6:f7:0d:fa:41:a2:5f:47:d8:1d: 8f:29:6c:e4:57:4b:c2:6e:ac:16:9d:69:b5:07:77: 2a:f7:ee:71:62:9e:97:e1:30:bd:7b:de:15:18:82: 52:e6:90:b0:3a:05:be:05:05:31:71:9b:01:0f:02: 4e:5b:d2:19:66:6f:18:db:f4:bf:70:f6:97:39:94: 7d:28:4f:42:be:dc:22:c3:a0:a1:d8:40:8e:fb:32: 99:dd:7d:08:fb:0a:64:11:c4:83:aa:55:6d:e8:a7: 04:82:f9:52:fb:30:00:d1:d9:f5:de:d1:1f:11:8f: a6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6D:41:D6:04:F8:47:CC:B3:2D:6E:EF:4F:6C:E9:97:17:F0:9C:AC X509v3 Authority Key Identifier: keyid:2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 24:b0:9a:99:65:d4:fe:a7:80:e2:a2:47:52:f3:5c:bb:b3:18: c4:6c:be:d3:db:74:61:ac:41:47:dc:a7:98:fc:9f:28:98:40: 8a:f2:eb:42:b3:1d:d4:02:f9:ea:8e:67:9f:db:4d:b4:71:9b: da:fe:af:eb:cd:5e:29:dc:5c:c0:4d:fb:0c:ad:0f:3a:01:f2: 27:e3:5e:dd:b2:3e:ea:cb:f3:11:99:c0:91:11:4c:c1:7c:4a: 17:0f:ae:57:a8:46:9e:f0:17:92:c5:bb:43:82:e6:4b:f9:0f: c0:78:d2:a1:33:3b:fb:e3:cc:e7:f8:34:4e:2a:50:90:1c:55: 08:de:f5:ee:20:fa:35:88:0b:d0:01:9b:5a:5f:2e:d3:d9:a7: 9e:25:ae:74:0b:8f:28:ee:9e:ec:32:71:aa:3a:86:66:2e:5d: 19:1f:76:f2:45:cc:c3:9f:8a:c1:d0:85:7f:f0:43:20:29:cc: 7c:96:e4:b5:65:15:0c:2c:5a:1d:cf:0f:9f:c3:75:8f:b1:85: a9:9a:11:69:64:4f:38:b4:f9:d5:0a:22:5b:4c:43:66:ae:23: 5c:77:1d:ed:34:ec:58:15:e6:cf:6e:d7:c3:93:7e:4c:49:51: e3:a6:f0:f7:6c:c4:cd:b8:60:8b:f0:23:1f:fe:d4:e7:8c:4c: f9:f8:e9:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO5qMOG6BerZ+2nyN6s4+UWEa86kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ4MTQ3QUIzMkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFD QkQ5NkFFMjAeFw0yNjA1MDMwMjQ3MDJaFw0yNzA1MDIwMjUyMDJaMDMxMTAvBgNV BAMTKENCNkQ0MUQ2MDRGODQ3Q0NCMzJENkVFRjRGNkNFOTk3MTdGMDlDQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk2kJttrmGzYRcDBmkdlIHFTof UZIat5Py0oPKZzuDvJuQTCyhgrZA5etbovEShQY0mnelD+lgrFvmkd4aLPEUtBHH 6uiE1pF2Txl0KTW0O+qxNPjqa1aphmJZEhpOPJzftunfi28bEC9pFKFmt1XNZlY4 9yG3r815c9RYkKkuMP60s/OS6H+cNkv15vcN+kGiX0fYHY8pbORXS8JurBadabUH dyr37nFinpfhML173hUYglLmkLA6Bb4FBTFxmwEPAk5b0hlmbxjb9L9w9pc5lH0o T0K+3CLDoKHYQI77MpndfQj7CmQRxIOqVW3opwSC+VL7MADR2fXe0R8Rj6a3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy21B1gT4R8yzLW7vT2zplxfwnKwwHwYDVR0j BBgwFoAULYFHqzKuNP4FmTAcOZukMcvZauIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFkYTIzZTktODRiZS00YTU0LWJjYTAtZTlhMGNhZmQxNmZlLzAvMkQ4MTQ3QUIz MkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFDQkQ5NkFFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yRDgxNDdBQjMyQUUzNEZFMDU5OTMwMUMzOTlCQTQzMUNCRDk2 QUUyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQq2MA0GCSqG SIb3DQEBCwUAA4IBAQAksJqZZdT+p4DiokdS81y7sxjEbL7T23RhrEFH3KeY/J8o mECK8utCsx3UAvnqjmef2020cZva/q/rzV4p3FzATfsMrQ86AfIn417dsj7qy/MR mcCREUzBfEoXD65XqEae8BeSxbtDguZL+Q/AeNKhMzv748zn+DROKlCQHFUI3vXu IPo1iAvQAZtaXy7T2aeeJa50C48o7p7sMnGqOoZmLl0ZH3byRczDn4rB0IV/8EMg Kcx8luS1ZRUMLFodzw+fw3WPsYWpmhFpZE84tPnVCiJbTENmriNcdx3tNOxYFebP btfDk35MSVHjpvD3bMTNuGCL8CMf/tTnjEz5+On3 -----END CERTIFICATE-----Generated at Wed May 13 00:54:00 2026 by rpki-client