$ rpki-client -vvf rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e302e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: bOwhqsRdU2z4t+zScIcD9uS9UewO9FSu5iy5ahd23Rg= Subject key identifier: 98:63:68:60:C1:3B:96:A8:91:9D:50:E6:B8:DF:25:C0:CA:F7:CF:ED Certificate issuer: /CN=219A09E5E307286A0EACA587C1B82AD67AAA76E3 Certificate serial: 0B3CF91FF7DC62754C7AC2F74746C6B8EBC788FE Authority key identifier: 21:9A:09:E5:E3:07:28:6A:0E:AC:A5:87:C1:B8:2A:D6:7A:AA:76:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa Signing time: Sun 03 May 2026 02:53:46 +0000 ROA not before: Sun 03 May 2026 02:48:46 +0000 ROA not after: Sun 02 May 2027 02:53:46 +0000 asID: 152079 IP address blocks: 157.10.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.crl rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3c:f9:1f:f7:dc:62:75:4c:7a:c2:f7:47:46:c6:b8:eb:c7:88:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=219A09E5E307286A0EACA587C1B82AD67AAA76E3 Validity Not Before: May 3 02:48:46 2026 GMT Not After : May 2 02:53:46 2027 GMT Subject: CN=98636860C13B96A8919D50E6B8DF25C0CAF7CFED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2b:a8:74:c5:02:53:55:9e:41:ef:ef:87:eb: 5b:8e:92:aa:78:26:40:3e:be:96:ea:03:8e:7f:0e: 20:3b:f5:44:1c:03:f0:3a:e8:e2:08:9e:69:66:31: 71:05:5b:a8:92:e0:ac:06:91:0a:c3:12:82:8c:66: 8b:27:47:ec:29:6e:e4:ae:dd:d0:f5:56:3e:8f:5d: 26:cb:c7:4f:68:fa:ea:51:5e:fc:06:d9:28:23:60: 94:07:e8:c7:d8:3b:cd:6a:7b:1f:f9:37:5b:ab:c8: 40:44:24:d9:e0:4f:8b:08:33:e1:77:ac:db:fa:c3: a3:e7:fb:04:96:43:65:48:44:bb:a3:1f:87:b9:42: 26:4e:17:d8:fe:1a:fe:1c:42:8e:83:05:6f:6e:b7: 33:70:ed:48:bf:7a:6b:6a:7b:0e:98:36:51:53:4e: a9:77:40:7b:8c:29:e1:a8:c7:86:61:eb:ae:50:1f: b8:8d:6d:1b:10:95:75:7d:08:62:71:4f:13:f1:be: 0c:f5:ec:e2:cb:46:30:35:50:30:b6:93:3d:e5:85: 6f:12:05:00:b4:e9:ff:48:a9:fa:ed:60:14:30:1d: d5:a2:b0:bb:50:2c:c6:b7:7d:df:16:f8:9d:00:16: de:19:cf:bf:ea:13:7f:a8:30:7b:41:2e:ee:af:19: cc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:63:68:60:C1:3B:96:A8:91:9D:50:E6:B8:DF:25:C0:CA:F7:CF:ED X509v3 Authority Key Identifier: keyid:21:9A:09:E5:E3:07:28:6A:0E:AC:A5:87:C1:B8:2A:D6:7A:AA:76:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e302e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:51:89:5b:3a:f4:af:ec:49:35:4e:93:79:73:f4:d7:ae:50: 6b:1e:6f:c0:d7:fe:4c:19:d8:68:f1:e5:49:4e:fe:de:fd:83: 8f:a5:24:4e:bb:12:cd:bd:08:be:a3:e1:86:7f:18:a4:62:4b: 37:3c:fd:cc:77:f7:cb:61:17:e6:25:b3:d0:f2:2e:e0:81:8b: c1:10:0c:82:bc:76:05:b2:4f:67:23:66:bc:6a:a8:6f:8f:2d: b6:a8:49:d8:7a:ac:b3:a6:74:cd:d2:89:5c:09:d9:bd:32:f9: 21:68:18:41:1e:1f:1b:13:13:41:13:db:81:3d:ab:ff:72:c1: 1e:09:54:ff:13:08:7c:58:f0:97:a1:75:fe:b2:c1:1e:80:9b: 65:ba:18:92:a6:08:91:ca:04:95:73:6a:aa:2e:7c:5f:03:02: 68:c9:26:e6:63:40:bb:9e:6e:41:02:02:45:0b:44:e0:18:15: 91:b2:82:88:2f:bc:3b:83:02:ed:b3:76:ff:e7:56:be:05:0b: 39:17:cc:4a:36:6a:9d:7e:29:ba:90:f6:1d:82:d1:78:b9:9a: 2e:22:b3:d7:19:bd:b6:f8:92:f0:e5:30:ea:aa:3c:8a:cd:ce: e1:88:c9:ee:23:4b:45:d8:2c:43:2d:d2:cb:f3:a0:f7:8d:4d: 18:63:93:f6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCzz5H/fcYnVMesL3R0bGuOvHiP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE5QTA5RTVFMzA3Mjg2QTBFQUNBNTg3QzFCODJBRDY3 QUFBNzZFMzAeFw0yNjA1MDMwMjQ4NDZaFw0yNzA1MDIwMjUzNDZaMDMxMTAvBgNV BAMTKDk4NjM2ODYwQzEzQjk2QTg5MTlENTBFNkI4REYyNUMwQ0FGN0NGRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFK6h0xQJTVZ5B7++H61uOkqp4 JkA+vpbqA45/DiA79UQcA/A66OIInmlmMXEFW6iS4KwGkQrDEoKMZosnR+wpbuSu 3dD1Vj6PXSbLx09o+upRXvwG2SgjYJQH6MfYO81qex/5N1uryEBEJNngT4sIM+F3 rNv6w6Pn+wSWQ2VIRLujH4e5QiZOF9j+Gv4cQo6DBW9utzNw7Ui/emtqew6YNlFT Tql3QHuMKeGox4Zh665QH7iNbRsQlXV9CGJxTxPxvgz17OLLRjA1UDC2kz3lhW8S BQC06f9IqfrtYBQwHdWisLtQLMa3fd8W+J0AFt4Zz7/qE3+oMHtBLu6vGcwhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUmGNoYME7lqiRnVDmuN8lwMr3z+0wHwYDVR0j BBgwFoAUIZoJ5eMHKGoOrKWHwbgq1nqqduMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTk0ZDFmNjItODQ4OC00MDg2LThkNGMtZjJkZTVjNzZkYTNkLzAvMjE5QTA5RTVF MzA3Mjg2QTBFQUNBNTg3QzFCODJBRDY3QUFBNzZFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yMTlBMDlFNUUzMDcyODZBMEVBQ0E1ODdDMUI4MkFENjdBQUE3 NkUzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgAwDQYJKoZIhvcN AQELBQADggEBAD9RiVs69K/sSTVOk3lz9NeuUGseb8DX/kwZ2Gjx5UlO/t79g4+l JE67Es29CL6j4YZ/GKRiSzc8/cx398thF+Yls9DyLuCBi8EQDIK8dgWyT2cjZrxq qG+PLbaoSdh6rLOmdM3SiVwJ2b0y+SFoGEEeHxsTE0ET24E9q/9ywR4JVP8TCHxY 8Jehdf6ywR6Am2W6GJKmCJHKBJVzaqoufF8DAmjJJuZjQLuebkECAkULROAYFZGy gogvvDuDAu2zdv/nVr4FCzkXzEo2ap1+KbqQ9h2C0Xi5mi4is9cZvbb4kvDlMOqq PIrNzuGIye4jS0XYLEMt0svzoPeNTRhjk/Y= -----END CERTIFICATE-----Generated at Wed May 13 06:58:43 2026 by rpki-client