$ rpki-client -vvf rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa File: 3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa (raw, json) Hash identifier: LRimm2UIR4zO6mAhZpLczcEvPytU2fthmY2JYekRDZs= Subject key identifier: 31:60:95:B1:01:99:0E:8F:EE:0C:43:3B:8F:A8:84:2F:0A:36:72:3E Certificate issuer: /CN=B7926E7A4D53D7DF9BD1F1891336892629B6E570 Certificate serial: 70AA62A669C19082CA59D28EBC8773A468ED566C Authority key identifier: B7:92:6E:7A:4D:53:D7:DF:9B:D1:F1:89:13:36:89:26:29:B6:E5:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa Signing time: Sun 03 May 2026 02:53:19 +0000 ROA not before: Sun 03 May 2026 02:48:19 +0000 ROA not after: Sun 02 May 2027 02:53:19 +0000 asID: 152753 IP address blocks: 157.66.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.crl rsync://rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:aa:62:a6:69:c1:90:82:ca:59:d2:8e:bc:87:73:a4:68:ed:56:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7926E7A4D53D7DF9BD1F1891336892629B6E570 Validity Not Before: May 3 02:48:19 2026 GMT Not After : May 2 02:53:19 2027 GMT Subject: CN=316095B101990E8FEE0C433B8FA8842F0A36723E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:74:04:4e:b1:62:9c:91:29:e0:42:a8:56:a8: c3:cf:d7:dc:58:f3:f5:07:f0:d0:a8:ce:a3:6a:5d: 5c:ba:12:5b:0c:d0:07:2c:8a:34:f5:cd:23:dc:be: 53:f5:35:96:d8:b1:f3:08:f1:26:4e:94:54:d1:44: 63:ed:d7:31:56:08:59:cd:22:23:24:bb:60:cf:6a: 19:d6:04:ba:54:f5:52:96:a2:41:e6:43:3e:a2:c8: 9f:d4:c3:1e:a6:62:b4:78:7e:ad:f2:6a:ef:09:4f: af:39:5c:93:47:96:49:66:ed:80:f1:69:ed:79:e6: 9e:9c:1d:95:6a:18:6c:ec:54:f9:e5:44:6a:13:16: 1a:1f:31:27:c2:cd:e5:b1:46:ba:67:a5:e2:1a:66: c3:0f:24:e0:51:e9:0b:9a:45:64:b8:cc:44:62:22: 9a:ce:e2:7b:f3:fe:a4:4c:bb:0c:06:a4:90:10:7a: fd:75:d9:c0:80:cc:7b:21:b6:60:2f:04:ac:a8:9d: 7c:81:df:01:b4:05:3c:91:2c:4f:6b:d8:da:bf:b6: 4e:8e:6a:0f:6e:eb:24:82:58:e6:58:67:03:c4:09: 0f:81:aa:1d:6f:71:b0:1d:15:87:2a:29:42:1c:51: 82:82:f9:0a:ae:e2:61:f1:45:cd:86:54:1e:35:40: 16:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:60:95:B1:01:99:0E:8F:EE:0C:43:3B:8F:A8:84:2F:0A:36:72:3E X509v3 Authority Key Identifier: keyid:B7:92:6E:7A:4D:53:D7:DF:9B:D1:F1:89:13:36:89:26:29:B6:E5:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B7926E7A4D53D7DF9BD1F1891336892629B6E570.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/3135372e36362e3139302e302f32342d3234203d3e20313532373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.190.0/24 Signature Algorithm: sha256WithRSAEncryption 43:6b:43:d5:2d:04:66:19:40:5c:1b:bd:54:8d:3f:79:e4:e8: 44:da:68:a9:dc:56:4e:06:4a:b1:47:12:ce:ba:2a:70:1a:81: dc:09:43:69:78:a6:0b:e6:57:30:05:28:2b:68:28:8d:38:b2: f1:e4:31:76:bb:fd:4f:35:ba:c3:ae:de:4a:24:90:8c:8c:3a: 7a:86:c6:7d:5f:82:ba:32:72:80:c7:cc:d3:57:b6:74:67:b6: 76:34:2a:04:55:15:8d:f3:02:ed:9f:2e:cd:d9:b5:71:06:96: cd:8d:2f:b7:24:1c:06:6e:67:63:6a:e8:06:8b:d0:52:08:77: d3:51:7d:78:3a:58:31:7c:74:0c:05:3c:61:a2:d1:79:d2:ad: cb:c4:e3:2e:f3:ad:d3:95:d4:34:4c:b5:d7:a1:f6:d0:20:5b: 5f:9a:7d:bb:19:4f:bf:3e:87:ba:8f:8e:52:9b:d2:35:a2:19: ae:59:4e:a1:cc:9b:12:5c:91:aa:d5:c3:73:7c:84:e1:f5:6e: 33:63:57:c9:74:da:eb:8b:c0:e5:00:3b:9e:01:60:b8:7e:c9: 1d:61:af:5a:4f:64:cf:52:1b:6f:ec:2d:ac:10:68:cd:67:47: ea:25:13:cd:8d:f5:06:67:94:0c:50:c3:8a:dc:79:ab:a3:5c: b9:cb:50:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcKpipmnBkILKWdKOvIdzpGjtVmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5MjZFN0E0RDUzRDdERjlCRDFGMTg5MTMzNjg5MjYy OUI2RTU3MDAeFw0yNjA1MDMwMjQ4MTlaFw0yNzA1MDIwMjUzMTlaMDMxMTAvBgNV BAMTKDMxNjA5NUIxMDE5OTBFOEZFRTBDNDMzQjhGQTg4NDJGMEEzNjcyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqdAROsWKckSngQqhWqMPP19xY 8/UH8NCozqNqXVy6ElsM0AcsijT1zSPcvlP1NZbYsfMI8SZOlFTRRGPt1zFWCFnN IiMku2DPahnWBLpU9VKWokHmQz6iyJ/Uwx6mYrR4fq3yau8JT685XJNHlklm7YDx ae155p6cHZVqGGzsVPnlRGoTFhofMSfCzeWxRrpnpeIaZsMPJOBR6QuaRWS4zERi IprO4nvz/qRMuwwGpJAQev112cCAzHshtmAvBKyonXyB3wG0BTyRLE9r2Nq/tk6O ag9u6ySCWOZYZwPECQ+Bqh1vcbAdFYcqKUIcUYKC+Qqu4mHxRc2GVB41QBaFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMWCVsQGZDo/uDEM7j6iELwo2cj4wHwYDVR0j BBgwFoAUt5Juek1T19+b0fGJEzaJJim25XAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTcxMzRmMTgtMTFlMS00MWFlLWJiMDUtOWZiZjQ4MjEyYjdkLzAvQjc5MjZFN0E0 RDUzRDdERjlCRDFGMTg5MTMzNjg5MjYyOUI2RTU3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CNzkyNkU3QTRENTNEN0RGOUJEMUYxODkxMzM2ODkyNjI5QjZF NTcwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk3MTM0ZjE4LTExZTEtNDFhZS1i YjA1LTlmYmY0ODIxMmI3ZC8wLzMxMzUzNzJlMzYzNjJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUK+MA0GCSqG SIb3DQEBCwUAA4IBAQBDa0PVLQRmGUBcG71UjT955OhE2mip3FZOBkqxRxLOuipw GoHcCUNpeKYL5lcwBSgraCiNOLLx5DF2u/1PNbrDrt5KJJCMjDp6hsZ9X4K6MnKA x8zTV7Z0Z7Z2NCoEVRWN8wLtny7N2bVxBpbNjS+3JBwGbmdjaugGi9BSCHfTUX14 OlgxfHQMBTxhotF50q3LxOMu863TldQ0TLXXofbQIFtfmn27GU+/Poe6j45Sm9I1 ohmuWU6hzJsSXJGq1cNzfITh9W4zY1fJdNrri8DlADueAWC4fskdYa9aT2TPUhtv 7C2sEGjNZ0fqJRPNjfUGZ5QMUMOK3Hmro1y5y1Dl -----END CERTIFICATE-----Generated at Wed May 13 08:10:12 2026 by rpki-client