$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/3135372e36362e3137342e302f32332d3234203d3e20313532373439.roa File: 3135372e36362e3137342e302f32332d3234203d3e20313532373439.roa (raw, json) Hash identifier: 6xlY6BkzLkqd/N9VB1huC6lhu8FPlH61fiI7wLd83Qc= Subject key identifier: 98:42:B2:A0:B3:58:57:FD:BB:A4:2E:E6:32:B1:78:85:77:8F:1E:AA Certificate issuer: /CN=D761C44ABE9AA989F7048B4D3E561489C4DA8280 Certificate serial: 630EE27FBE498BDD02424BF8A2786FA842D87282 Authority key identifier: D7:61:C4:4A:BE:9A:A9:89:F7:04:8B:4D:3E:56:14:89:C4:DA:82:80 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/3135372e36362e3137342e302f32332d3234203d3e20313532373439.roa Signing time: Sun 03 May 2026 02:54:21 +0000 ROA not before: Sun 03 May 2026 02:49:21 +0000 ROA not after: Sun 02 May 2027 02:54:21 +0000 asID: 152749 IP address blocks: 157.66.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.crl rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0e:e2:7f:be:49:8b:dd:02:42:4b:f8:a2:78:6f:a8:42:d8:72:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D761C44ABE9AA989F7048B4D3E561489C4DA8280 Validity Not Before: May 3 02:49:21 2026 GMT Not After : May 2 02:54:21 2027 GMT Subject: CN=9842B2A0B35857FDBBA42EE632B17885778F1EAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9a:29:5d:75:cc:b1:b7:63:3e:c0:b5:92:28: 4e:74:97:dd:e0:80:b2:32:0b:24:45:2d:33:65:7d: db:b5:4b:53:a0:76:14:e4:ef:d0:24:b4:b4:cc:b9: 4c:4c:cd:af:9b:76:19:d3:16:47:f0:5d:c2:d1:29: 3c:ab:79:37:ef:04:c3:30:7f:ab:1a:d4:9c:20:d9: 2a:06:51:c6:98:58:4b:0c:8a:3e:d4:80:0b:ea:d9: 2d:a2:ca:cc:ca:84:7a:13:bb:78:0d:8f:82:4a:e1: 78:90:bb:9e:7e:14:65:da:60:c5:d0:3c:5a:49:d5: 59:92:1b:36:18:31:86:6e:3b:2a:0b:ff:f7:1b:a5: b1:82:13:a3:49:39:fe:8e:98:87:73:d9:bf:99:de: eb:7f:45:0e:9c:cb:05:8b:e4:06:40:10:66:41:a4: f3:88:6e:51:f7:86:98:86:bf:88:4a:14:7c:18:fd: cd:a2:f3:4a:98:d0:ee:c4:56:5f:68:9d:53:57:e1: a3:eb:77:1c:7d:92:7e:78:1d:44:e8:da:6e:5b:1b: c8:55:33:82:c1:b7:7f:fa:0a:b2:ac:1d:ab:81:80: d6:78:a1:bd:5b:73:08:26:fa:29:eb:47:de:97:c3: 04:ec:86:f0:c8:51:09:a7:73:5f:a8:04:a6:67:d0: 51:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:42:B2:A0:B3:58:57:FD:BB:A4:2E:E6:32:B1:78:85:77:8F:1E:AA X509v3 Authority Key Identifier: keyid:D7:61:C4:4A:BE:9A:A9:89:F7:04:8B:4D:3E:56:14:89:C4:DA:82:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D761C44ABE9AA989F7048B4D3E561489C4DA8280.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/0/3135372e36362e3137342e302f32332d3234203d3e20313532373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.174.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:77:83:2e:c3:e6:2e:d0:06:c8:5d:29:83:c7:3a:7a:84:4b: 67:c8:10:8e:64:0f:9b:3c:0a:8c:54:5c:90:b7:27:7a:31:99: 98:3f:d7:c7:14:d3:97:7f:44:0e:13:89:46:1c:06:42:da:18: 89:02:8f:53:f3:8c:a7:f0:84:27:00:36:46:3f:b7:50:f1:95: d3:0a:ab:e3:5f:45:3a:17:b7:3a:c3:e9:86:43:ab:7d:71:8e: f9:bc:ef:e0:93:53:ea:27:55:0e:6b:74:d7:d8:b0:27:95:e6: 68:fc:8f:96:2d:c7:0c:1d:24:b2:ff:e9:ac:4f:1b:3f:82:e1: d5:9a:6e:e8:e7:5a:91:68:0d:06:c6:4a:cc:f3:6e:61:16:51: ba:30:e9:18:36:e5:fc:4c:b7:39:11:81:f3:2d:0b:a7:40:4a: a7:fa:56:f6:7d:89:6d:59:4d:94:bb:3d:91:c6:9e:39:93:00: 11:f2:a6:8d:5a:06:0c:f7:9f:ec:e5:6b:86:cb:29:31:7d:0e: 6c:29:a9:03:21:77:8b:e5:dd:f1:d3:7f:92:08:a0:8f:14:87: a7:62:ea:61:9e:c7:7b:f4:91:6c:0d:b2:88:df:60:07:97:1e: 93:2a:f5:71:b4:b6:f3:ff:9b:81:d2:bc:14:3c:65:fc:02:92: ae:7d:33:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYw7if75Ji90CQkv4onhvqELYcoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc2MUM0NEFCRTlBQTk4OUY3MDQ4QjREM0U1NjE0ODlD NERBODI4MDAeFw0yNjA1MDMwMjQ5MjFaFw0yNzA1MDIwMjU0MjFaMDMxMTAvBgNV BAMTKDk4NDJCMkEwQjM1ODU3RkRCQkE0MkVFNjMyQjE3ODg1Nzc4RjFFQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQmilddcyxt2M+wLWSKE50l93g gLIyCyRFLTNlfdu1S1OgdhTk79AktLTMuUxMza+bdhnTFkfwXcLRKTyreTfvBMMw f6sa1Jwg2SoGUcaYWEsMij7UgAvq2S2iyszKhHoTu3gNj4JK4XiQu55+FGXaYMXQ PFpJ1VmSGzYYMYZuOyoL//cbpbGCE6NJOf6OmIdz2b+Z3ut/RQ6cywWL5AZAEGZB pPOIblH3hpiGv4hKFHwY/c2i80qY0O7EVl9onVNX4aPrdxx9kn54HUTo2m5bG8hV M4LBt3/6CrKsHauBgNZ4ob1bcwgm+inrR96XwwTshvDIUQmnc1+oBKZn0FH/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmEKyoLNYV/27pC7mMrF4hXePHqowHwYDVR0j BBgwFoAU12HESr6aqYn3BItNPlYUicTagoAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWI3MzNkY2YtOWY1ZS00Nzc1LTljZTctOWRkNTI1YjQ0Yjg2LzAvRDc2MUM0NEFC RTlBQTk4OUY3MDQ4QjREM0U1NjE0ODlDNERBODI4MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENzYxQzQ0QUJFOUFBOTg5RjcwNDhCNEQzRTU2MTQ4OUM0REE4 MjgwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzliNzMzZGNmLTlmNWUtNDc3NS05 Y2U3LTlkZDUyNWI0NGI4Ni8wLzMxMzUzNzJlMzYzNjJlMzEzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKuMA0GCSqG SIb3DQEBCwUAA4IBAQAud4Muw+Yu0AbIXSmDxzp6hEtnyBCOZA+bPAqMVFyQtyd6 MZmYP9fHFNOXf0QOE4lGHAZC2hiJAo9T84yn8IQnADZGP7dQ8ZXTCqvjX0U6F7c6 w+mGQ6t9cY75vO/gk1PqJ1UOa3TX2LAnleZo/I+WLccMHSSy/+msTxs/guHVmm7o 51qRaA0GxkrM825hFlG6MOkYNuX8TLc5EYHzLQunQEqn+lb2fYltWU2Uuz2Rxp45 kwAR8qaNWgYM95/s5WuGyykxfQ5sKakDIXeL5d3x03+SCKCPFIenYuphnsd79JFs DbKI32AHlx6TKvVxtLbz/5uB0rwUPGX8ApKufTOg -----END CERTIFICATE-----Generated at Wed May 13 03:56:30 2026 by rpki-client