$ rpki-client -vvf rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa File: 3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa (raw, json) Hash identifier: RnobRsvxkM1MTdlV59E6oBUzJE/tUaI5t4eU9X2Ihxg= Subject key identifier: 48:45:9B:D9:F0:FB:D8:8F:9D:26:67:3D:62:2E:CD:CB:2F:98:F4:6F Certificate issuer: /CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Certificate serial: 4DF4FFFEC34BA147405E0C54247A0EED81CFE4DC Authority key identifier: 2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa Signing time: Sun 03 May 2026 02:52:03 +0000 ROA not before: Sun 03 May 2026 02:47:03 +0000 ROA not after: Sun 02 May 2027 02:52:03 +0000 asID: 152344 IP address blocks: 157.10.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f4:ff:fe:c3:4b:a1:47:40:5e:0c:54:24:7a:0e:ed:81:cf:e4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Validity Not Before: May 3 02:47:03 2026 GMT Not After : May 2 02:52:03 2027 GMT Subject: CN=48459BD9F0FBD88F9D26673D622ECDCB2F98F46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:50:0a:e8:b6:0d:32:ff:3c:a5:7a:37:b7:02: 3f:6e:a4:90:b9:e6:83:b6:c8:19:bd:dd:fe:31:90: 2a:98:ed:a0:25:82:01:93:81:b8:54:df:da:eb:b7: 6e:31:5c:46:b4:ed:3b:58:a7:bc:cd:3b:b0:17:f3: b6:a4:e8:bd:eb:ea:c4:4b:92:2a:e8:fa:0e:36:b6: 43:18:7a:68:a4:f5:b6:7c:72:e1:c5:f7:1a:19:a7: cc:3b:da:b0:4e:50:5b:25:68:54:e6:d0:ea:c3:6a: b1:20:10:31:b8:71:92:6d:7f:df:06:09:d1:d3:e9: 25:31:c0:0d:66:52:f7:30:be:b3:48:16:83:55:c0: a2:ae:76:6c:13:f4:06:f7:f2:bc:1b:a8:6d:ff:89: 24:c0:66:b2:e1:e2:79:7f:cf:16:8d:5e:21:7a:59: d9:53:fd:20:e1:e3:28:f7:2f:ed:8e:f5:22:d0:65: 9d:fa:28:39:99:b2:74:a1:f0:1a:46:91:07:46:5e: 43:77:08:30:60:d5:18:57:3b:52:c5:c0:35:08:9c: 20:24:34:95:1e:a8:43:d2:8a:ff:57:15:7c:17:ac: d1:67:43:0c:6a:a5:11:f4:7c:ea:68:86:f8:15:78: d7:70:5a:ef:15:48:b9:ac:39:0e:3a:fa:ba:80:52: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:45:9B:D9:F0:FB:D8:8F:9D:26:67:3D:62:2E:CD:CB:2F:98:F4:6F X509v3 Authority Key Identifier: keyid:2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.183.0/24 Signature Algorithm: sha256WithRSAEncryption 17:da:ff:43:a6:97:f8:7b:38:69:30:6e:7e:be:35:f6:ef:ff: bc:ac:89:9b:3d:92:92:1b:81:fd:a7:5b:cf:66:0d:33:b5:97: 3b:4b:9a:24:c5:82:18:30:77:a8:c0:bd:3a:a2:2e:90:ac:73: ec:66:c5:8f:5b:23:40:8d:4a:b2:ae:c7:0f:14:43:95:2a:75: 54:04:f9:7c:ac:0d:d5:84:3b:31:fb:ed:d5:7e:98:a2:ab:b7: 07:3a:75:71:21:7d:a9:65:e4:65:e2:3a:21:9d:89:18:e3:34: f3:cd:56:22:52:13:95:ab:04:c3:85:9c:6f:b0:d6:ff:ca:bc: 9f:86:45:c4:88:36:e1:da:38:bb:0b:2c:6a:16:14:4b:2c:e1: 53:e2:e9:5f:18:59:7d:2f:88:be:de:7b:0e:4c:ce:af:9f:d4: d8:85:5f:0a:a1:c3:e6:f0:55:e3:ad:76:36:0d:2f:18:ad:28: 66:c0:22:da:41:f3:be:c5:bf:ee:ba:df:b8:c4:5e:2b:82:b6: 7c:dd:22:29:85:2e:c7:ea:2e:ed:8f:93:aa:68:38:fd:a9:89: 04:b1:96:6c:dd:5a:5c:67:a4:a8:95:66:bf:29:16:d6:c5:3e: b3:6a:d1:04:a1:6e:73:db:d6:d1:56:2f:3c:50:3a:73:8f:2f: f4:d7:f6:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTfT//sNLoUdAXgxUJHoO7YHP5NwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ4MTQ3QUIzMkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFD QkQ5NkFFMjAeFw0yNjA1MDMwMjQ3MDNaFw0yNzA1MDIwMjUyMDNaMDMxMTAvBgNV BAMTKDQ4NDU5QkQ5RjBGQkQ4OEY5RDI2NjczRDYyMkVDRENCMkY5OEY0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpUArotg0y/zyleje3Aj9upJC5 5oO2yBm93f4xkCqY7aAlggGTgbhU39rrt24xXEa07TtYp7zNO7AX87ak6L3r6sRL kiro+g42tkMYemik9bZ8cuHF9xoZp8w72rBOUFslaFTm0OrDarEgEDG4cZJtf98G CdHT6SUxwA1mUvcwvrNIFoNVwKKudmwT9Ab38rwbqG3/iSTAZrLh4nl/zxaNXiF6 WdlT/SDh4yj3L+2O9SLQZZ36KDmZsnSh8BpGkQdGXkN3CDBg1RhXO1LFwDUInCAk NJUeqEPSiv9XFXwXrNFnQwxqpRH0fOpohvgVeNdwWu8VSLmsOQ46+rqAUnZLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSEWb2fD72I+dJmc9Yi7Nyy+Y9G8wHwYDVR0j BBgwFoAULYFHqzKuNP4FmTAcOZukMcvZauIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFkYTIzZTktODRiZS00YTU0LWJjYTAtZTlhMGNhZmQxNmZlLzAvMkQ4MTQ3QUIz MkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFDQkQ5NkFFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yRDgxNDdBQjMyQUUzNEZFMDU5OTMwMUMzOTlCQTQzMUNCRDk2 QUUyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5LTg0YmUtNGE1NC1i Y2EwLWU5YTBjYWZkMTZmZS8wLzMxMzUzNzJlMzEzMDJlMzEzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq3MA0GCSqG SIb3DQEBCwUAA4IBAQAX2v9Dppf4ezhpMG5+vjX27/+8rImbPZKSG4H9p1vPZg0z tZc7S5okxYIYMHeowL06oi6QrHPsZsWPWyNAjUqyrscPFEOVKnVUBPl8rA3VhDsx ++3Vfpiiq7cHOnVxIX2pZeRl4johnYkY4zTzzVYiUhOVqwTDhZxvsNb/yryfhkXE iDbh2ji7CyxqFhRLLOFT4ulfGFl9L4i+3nsOTM6vn9TYhV8KocPm8FXjrXY2DS8Y rShmwCLaQfO+xb/uut+4xF4rgrZ83SIphS7H6i7tj5OqaDj9qYkEsZZs3VpcZ6So lWa/KRbWxT6zatEEoW5z29bRVi88UDpzjy/01/Yv -----END CERTIFICATE-----Generated at Wed May 13 02:37:33 2026 by rpki-client