$ rpki-client -vvf rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa File: 3135372e31302e312e302f32342d3234203d3e20313532303739.roa (raw, json) Hash identifier: Kz5hnZVq/K186z6qssglPHGkqEQOWNb/p+k3bONz3g8= Subject key identifier: F9:7B:EE:26:A1:84:89:43:AE:4E:4B:D6:31:18:BF:62:2E:23:15:1D Certificate issuer: /CN=219A09E5E307286A0EACA587C1B82AD67AAA76E3 Certificate serial: 49814DC5B277A74F90337889CF1A5343E5290567 Authority key identifier: 21:9A:09:E5:E3:07:28:6A:0E:AC:A5:87:C1:B8:2A:D6:7A:AA:76:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa Signing time: Sun 03 May 2026 02:53:46 +0000 ROA not before: Sun 03 May 2026 02:48:46 +0000 ROA not after: Sun 02 May 2027 02:53:46 +0000 asID: 152079 IP address blocks: 157.10.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.crl rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:81:4d:c5:b2:77:a7:4f:90:33:78:89:cf:1a:53:43:e5:29:05:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=219A09E5E307286A0EACA587C1B82AD67AAA76E3 Validity Not Before: May 3 02:48:46 2026 GMT Not After : May 2 02:53:46 2027 GMT Subject: CN=F97BEE26A1848943AE4E4BD63118BF622E23151D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:92:ba:5c:07:4c:52:a6:aa:ba:09:10:a1:79: b5:fe:9d:e4:0e:da:63:48:0b:66:9f:ba:6a:f1:ba: 3d:49:7d:29:a5:3e:57:63:a4:31:db:1e:b9:fa:7a: e8:2f:6e:a5:6a:cd:e3:ff:49:26:70:67:d1:72:1c: 29:1a:21:0d:e3:4f:4c:c8:db:66:cb:f4:52:f8:cd: 3a:14:9b:c9:21:f3:34:74:8c:e4:ad:e0:03:b8:40: c9:0b:94:40:ef:d3:44:a8:62:5b:d4:14:40:05:87: a8:ca:7b:5e:93:ac:98:53:98:68:d2:78:a4:60:49: 15:2c:3e:dc:fe:92:68:5a:5e:9b:6b:49:53:b8:bc: 8f:f2:48:fa:1a:9a:fd:91:e4:ab:5f:75:5e:01:c1: d0:8e:3a:8d:fd:22:3b:3d:d5:71:dd:bc:ae:1a:48: 77:b7:38:2e:09:dd:ae:62:8f:2b:15:be:dc:2d:12: 51:d8:0c:10:b2:53:d9:e8:bb:14:75:aa:82:f3:c8: 1c:1e:11:93:e6:58:db:60:a1:f0:e9:73:d6:86:5d: 69:0f:52:6f:33:7d:44:2e:57:26:a9:92:64:3e:70: 58:91:0e:74:10:42:f9:e2:ed:3b:9f:37:1d:01:bd: 05:c4:52:9e:2b:14:6d:f1:d3:e9:4d:16:14:a7:c3: a8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7B:EE:26:A1:84:89:43:AE:4E:4B:D6:31:18:BF:62:2E:23:15:1D X509v3 Authority Key Identifier: keyid:21:9A:09:E5:E3:07:28:6A:0E:AC:A5:87:C1:B8:2A:D6:7A:AA:76:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/219A09E5E307286A0EACA587C1B82AD67AAA76E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/994d1f62-8488-4086-8d4c-f2de5c76da3d/0/3135372e31302e312e302f32342d3234203d3e20313532303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.1.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:33:e7:0b:e4:4d:29:59:0b:00:a4:46:32:a3:a2:0e:5b:fd: 11:fd:cd:a0:1c:26:90:fe:15:d5:2d:f7:48:9b:74:ac:d9:ad: 1c:3f:15:c0:3d:48:6c:4c:0c:f0:30:24:46:e0:dd:fe:ff:2c: 2b:8e:a7:53:93:d9:2e:75:2c:e0:99:a3:36:af:7b:e9:c1:db: 86:b1:86:36:f6:de:19:f8:a6:7e:00:27:81:e7:02:3e:20:f0: d5:9a:30:67:fc:17:f2:16:84:50:38:c3:53:b2:c0:ac:ba:ad: 9e:96:67:de:16:0b:4b:53:d8:0f:a3:11:00:21:41:52:fe:05: 84:2c:46:94:91:05:30:62:17:c9:09:d1:22:23:00:9a:32:09: dd:a7:0b:75:b3:a7:4f:98:8d:aa:47:6b:1a:49:93:dd:0a:c4: d1:db:4c:05:3f:e7:af:8b:ae:99:90:04:2b:86:04:b6:4f:19: 06:2d:95:ee:c1:6a:c1:82:73:20:3c:16:3d:48:c3:f2:36:fd: 3a:f5:88:d3:9a:cc:18:d4:ca:bf:0e:b8:e3:dc:6a:ac:0e:be: 74:2f:95:e2:4f:3e:eb:1f:b2:be:f6:a5:d2:02:e5:1a:74:34: b4:d1:4a:5c:bf:a2:7f:80:e6:18:9a:76:41:b3:dc:48:ed:27: a9:88:d2:2a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSYFNxbJ3p0+QM3iJzxpTQ+UpBWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE5QTA5RTVFMzA3Mjg2QTBFQUNBNTg3QzFCODJBRDY3 QUFBNzZFMzAeFw0yNjA1MDMwMjQ4NDZaFw0yNzA1MDIwMjUzNDZaMDMxMTAvBgNV BAMTKEY5N0JFRTI2QTE4NDg5NDNBRTRFNEJENjMxMThCRjYyMkUyMzE1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZkrpcB0xSpqq6CRChebX+neQO 2mNIC2afumrxuj1JfSmlPldjpDHbHrn6eugvbqVqzeP/SSZwZ9FyHCkaIQ3jT0zI 22bL9FL4zToUm8kh8zR0jOSt4AO4QMkLlEDv00SoYlvUFEAFh6jKe16TrJhTmGjS eKRgSRUsPtz+kmhaXptrSVO4vI/ySPoamv2R5KtfdV4BwdCOOo39Ijs91XHdvK4a SHe3OC4J3a5ijysVvtwtElHYDBCyU9nouxR1qoLzyBweEZPmWNtgofDpc9aGXWkP Um8zfUQuVyapkmQ+cFiRDnQQQvni7TufNx0BvQXEUp4rFG3x0+lNFhSnw6hbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+XvuJqGEiUOuTkvWMRi/Yi4jFR0wHwYDVR0j BBgwFoAUIZoJ5eMHKGoOrKWHwbgq1nqqduMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTk0ZDFmNjItODQ4OC00MDg2LThkNGMtZjJkZTVjNzZkYTNkLzAvMjE5QTA5RTVF MzA3Mjg2QTBFQUNBNTg3QzFCODJBRDY3QUFBNzZFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yMTlBMDlFNUUzMDcyODZBMEVBQ0E1ODdDMUI4MkFENjdBQUE3 NkUzLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk5NGQxZjYyLTg0ODgtNDA4Ni04 ZDRjLWYyZGU1Yzc2ZGEzZC8wLzMxMzUzNzJlMzEzMDJlMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdCgEwDQYJKoZIhvcN AQELBQADggEBAAsz5wvkTSlZCwCkRjKjog5b/RH9zaAcJpD+FdUt90ibdKzZrRw/ FcA9SGxMDPAwJEbg3f7/LCuOp1OT2S51LOCZozave+nB24axhjb23hn4pn4AJ4Hn Aj4g8NWaMGf8F/IWhFA4w1OywKy6rZ6WZ94WC0tT2A+jEQAhQVL+BYQsRpSRBTBi F8kJ0SIjAJoyCd2nC3Wzp0+YjapHaxpJk90KxNHbTAU/56+LrpmQBCuGBLZPGQYt le7BasGCcyA8Fj1Iw/I2/Tr1iNOazBjUyr8OuOPcaqwOvnQvleJPPusfsr72pdIC 5Rp0NLTRSly/on+A5hiadkGz3EjtJ6mI0io= -----END CERTIFICATE-----Generated at Wed May 13 06:58:19 2026 by rpki-client