$ rpki-client -vvf rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/3135372e38352e3231382e302f32342d3234203d3e20313339393934.roa File: 3135372e38352e3231382e302f32342d3234203d3e20313339393934.roa (raw, json) Hash identifier: 6WnVDRhIU/pqOm+/jQ7sZce4+WndTCqkhqNpZ1Lu2Vc= Subject key identifier: 5B:3E:61:D4:C9:88:65:0E:27:4B:EF:1D:8D:7A:5A:79:43:3E:43:D8 Certificate issuer: /CN=E51553190D79639AC8B731759BCAF93A9BA75390 Certificate serial: 6F4BFA5CD0C4C4B40BE018F0F2652565F9E443F5 Authority key identifier: E5:15:53:19:0D:79:63:9A:C8:B7:31:75:9B:CA:F9:3A:9B:A7:53:90 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E51553190D79639AC8B731759BCAF93A9BA75390.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/3135372e38352e3231382e302f32342d3234203d3e20313339393934.roa Signing time: Sun 03 May 2026 02:53:32 +0000 ROA not before: Sun 03 May 2026 02:48:32 +0000 ROA not after: Sun 02 May 2027 02:53:32 +0000 asID: 139994 IP address blocks: 157.85.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/E51553190D79639AC8B731759BCAF93A9BA75390.crl rsync://rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/E51553190D79639AC8B731759BCAF93A9BA75390.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E51553190D79639AC8B731759BCAF93A9BA75390.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:4b:fa:5c:d0:c4:c4:b4:0b:e0:18:f0:f2:65:25:65:f9:e4:43:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E51553190D79639AC8B731759BCAF93A9BA75390 Validity Not Before: May 3 02:48:32 2026 GMT Not After : May 2 02:53:32 2027 GMT Subject: CN=5B3E61D4C988650E274BEF1D8D7A5A79433E43D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ce:f9:9c:be:42:92:47:f5:52:d9:39:a2:4e: b3:53:e0:7d:06:ea:ac:43:65:b9:d7:6a:6a:64:36: a7:d2:2c:c8:89:90:0d:ff:ef:ea:11:47:fb:e5:77: 36:1e:b2:e2:9c:50:c0:35:a8:db:72:b2:f7:37:d9: e3:3a:0c:32:78:c6:1f:e8:7b:52:10:0d:61:ff:b9: cb:66:0b:5c:d4:8d:88:df:fe:e4:93:74:a0:7d:1b: 9e:c1:77:31:dc:13:69:e6:b5:67:fb:38:cb:89:10: d1:0a:24:fe:2a:60:86:9a:1c:41:52:74:0f:37:a3: fa:14:85:ea:10:76:23:72:d4:e4:d8:00:bc:cf:87: 77:1d:0e:00:14:bb:7b:ec:92:fb:8f:27:f9:6b:72: bd:1c:08:2d:ac:b4:61:4c:da:06:a4:6a:b8:7a:94: 85:27:41:3a:6c:ed:0b:79:9a:4c:46:8a:93:21:57: 52:6c:ff:13:94:40:a0:c8:31:7c:55:34:f0:ee:e9: 19:53:0c:4a:b9:a9:84:26:5e:17:92:29:47:2f:03: 57:40:d8:fe:9e:ee:c4:08:0b:a1:0e:f0:0d:74:66: 3b:69:78:2b:a6:ae:17:f4:7b:6d:ad:d7:89:c1:71: a4:e4:11:7d:dc:96:32:e5:2f:c4:b9:93:3c:1d:b8: e2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3E:61:D4:C9:88:65:0E:27:4B:EF:1D:8D:7A:5A:79:43:3E:43:D8 X509v3 Authority Key Identifier: keyid:E5:15:53:19:0D:79:63:9A:C8:B7:31:75:9B:CA:F9:3A:9B:A7:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/E51553190D79639AC8B731759BCAF93A9BA75390.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E51553190D79639AC8B731759BCAF93A9BA75390.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/98e4610a-a794-4059-97d9-f2c69da54c8b/0/3135372e38352e3231382e302f32342d3234203d3e20313339393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.85.218.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:8f:17:ca:5e:cc:2f:de:c8:4f:51:66:2e:de:60:31:a7:19: 23:b9:cd:35:24:08:39:5c:bf:17:d9:85:b0:0d:e5:c4:eb:28: d4:84:1d:46:5d:f9:b1:fe:b1:91:7e:b0:fd:3f:cf:67:b0:f8: 42:b9:d4:2d:c8:55:47:13:0d:25:d8:9e:b6:ce:ec:54:da:21: 04:3e:3b:d5:82:d0:4a:2e:f5:b7:36:a2:37:ab:01:cd:96:2e: a2:59:31:9e:d4:b3:6a:d7:83:79:82:c0:a6:32:71:44:dc:7b: 90:ae:f4:32:a0:af:58:96:40:18:f1:38:01:81:07:62:e3:b0: 61:ea:35:fa:60:7f:93:2a:6a:83:39:b6:13:49:ae:2b:90:f5: 2a:c0:c3:d1:69:00:5d:05:0c:89:eb:26:36:4f:2e:fa:7a:87: e9:ae:8d:10:d8:bf:fe:70:40:21:83:cf:66:b7:b6:b2:a5:09: ca:61:24:c1:c8:17:8e:58:ea:a5:52:46:cd:91:6b:20:d6:bf: e6:6e:75:04:22:f9:78:6c:a4:62:f2:93:73:ed:d8:a4:02:2b: 3a:da:ea:75:8e:c4:47:fa:5c:18:8c:93:18:aa:e7:eb:47:9a: da:ba:e5:ba:54:70:00:08:cf:cf:98:de:32:6d:8c:8f:2b:bc: ae:39:43:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb0v6XNDExLQL4Bjw8mUlZfnkQ/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTUxNTUzMTkwRDc5NjM5QUM4QjczMTc1OUJDQUY5M0E5 QkE3NTM5MDAeFw0yNjA1MDMwMjQ4MzJaFw0yNzA1MDIwMjUzMzJaMDMxMTAvBgNV BAMTKDVCM0U2MUQ0Qzk4ODY1MEUyNzRCRUYxRDhEN0E1QTc5NDMzRTQzRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNzvmcvkKSR/VS2TmiTrNT4H0G 6qxDZbnXampkNqfSLMiJkA3/7+oRR/vldzYesuKcUMA1qNtysvc32eM6DDJ4xh/o e1IQDWH/uctmC1zUjYjf/uSTdKB9G57BdzHcE2nmtWf7OMuJENEKJP4qYIaaHEFS dA83o/oUheoQdiNy1OTYALzPh3cdDgAUu3vskvuPJ/lrcr0cCC2stGFM2gakarh6 lIUnQTps7Qt5mkxGipMhV1Js/xOUQKDIMXxVNPDu6RlTDEq5qYQmXheSKUcvA1dA 2P6e7sQIC6EO8A10ZjtpeCumrhf0e22t14nBcaTkEX3cljLlL8S5kzwduOJnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWz5h1MmIZQ4nS+8djXpaeUM+Q9gwHwYDVR0j BBgwFoAU5RVTGQ15Y5rItzF1m8r5OpunU5AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OThlNDYxMGEtYTc5NC00MDU5LTk3ZDktZjJjNjlkYTU0YzhiLzAvRTUxNTUzMTkw RDc5NjM5QUM4QjczMTc1OUJDQUY5M0E5QkE3NTM5MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FNTE1NTMxOTBENzk2MzlBQzhCNzMxNzU5QkNBRjkzQTlCQTc1 MzkwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk4ZTQ2MTBhLWE3OTQtNDA1OS05 N2Q5LWYyYzY5ZGE1NGM4Yi8wLzMxMzUzNzJlMzgzNTJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnVXaMA0GCSqG SIb3DQEBCwUAA4IBAQCajxfKXswv3shPUWYu3mAxpxkjuc01JAg5XL8X2YWwDeXE 6yjUhB1GXfmx/rGRfrD9P89nsPhCudQtyFVHEw0l2J62zuxU2iEEPjvVgtBKLvW3 NqI3qwHNli6iWTGe1LNq14N5gsCmMnFE3HuQrvQyoK9YlkAY8TgBgQdi47Bh6jX6 YH+TKmqDObYTSa4rkPUqwMPRaQBdBQyJ6yY2Ty76eofpro0Q2L/+cEAhg89mt7ay pQnKYSTByBeOWOqlUkbNkWsg1r/mbnUEIvl4bKRi8pNz7dikAis62up1jsRH+lwY jJMYqufrR5rauuW6VHAACM/PmN4ybYyPK7yuOUNN -----END CERTIFICATE-----Generated at Wed May 13 10:23:41 2026 by rpki-client