$ rpki-client -vvf rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa File: 3135372e31352e34342e302f32332d3233203d3e20313532333931.roa (raw, json) Hash identifier: n4xjy2upk2LunwKR2BfVR8985IfNh54QVcVNRfdNf2s= Subject key identifier: C4:25:A8:D9:B1:C4:29:31:96:1A:44:85:1D:E5:84:EA:BB:BF:07:F1 Certificate issuer: /CN=E03B468CD361142C585663CF9ECF8523C31B59E9 Certificate serial: 23B628E08F207D2ADA0FDC1EBACD7BA4D97F95D7 Authority key identifier: E0:3B:46:8C:D3:61:14:2C:58:56:63:CF:9E:CF:85:23:C3:1B:59:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa Signing time: Sun 03 May 2026 02:55:09 +0000 ROA not before: Sun 03 May 2026 02:50:09 +0000 ROA not after: Sun 02 May 2027 02:55:09 +0000 asID: 152391 IP address blocks: 157.15.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.crl rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b6:28:e0:8f:20:7d:2a:da:0f:dc:1e:ba:cd:7b:a4:d9:7f:95:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E03B468CD361142C585663CF9ECF8523C31B59E9 Validity Not Before: May 3 02:50:09 2026 GMT Not After : May 2 02:55:09 2027 GMT Subject: CN=C425A8D9B1C42931961A44851DE584EABBBF07F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:91:e5:98:21:e5:aa:4f:71:ea:cd:72:d7:41: 2b:51:6f:54:f3:9b:d7:01:23:30:46:46:c4:ab:30: 49:72:cd:e4:f1:9a:b1:46:1b:86:bd:5e:9e:01:6e: 59:b4:d0:6b:fd:a9:1e:5f:0d:f7:53:89:df:57:8f: 1b:20:8d:a1:f5:59:73:7f:3d:81:5d:ec:8a:a5:39: 9d:ab:38:6e:cb:ef:fc:57:0c:2a:c2:50:86:3e:71: 41:5d:a2:82:ac:70:bd:d9:ed:81:d8:5c:b1:e7:23: 14:80:85:65:94:91:86:21:83:b2:c4:47:6e:83:04: d5:f7:1a:c4:4f:18:b3:5a:3e:17:d3:71:91:fd:4e: 70:95:a8:1d:18:5b:b3:79:3d:c7:ae:41:d9:6a:3c: b4:29:eb:e4:8d:bf:eb:94:2d:97:1c:ab:3d:42:35: e6:8e:d5:df:a3:07:25:e1:c0:93:f3:ee:a2:e0:bd: 04:d8:c3:a7:09:e9:35:cb:0c:cd:e9:55:15:e0:c9: 94:21:1b:18:d3:b9:2d:3e:d3:af:aa:90:13:d0:6e: 73:1d:07:fc:54:24:82:90:88:00:c4:46:0d:c8:35: b2:32:b2:8c:f6:76:3d:3b:78:ba:6f:3e:02:1d:42: 65:9f:0b:0e:1c:b9:06:84:9d:d3:1b:9c:3b:1b:51: 2f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:25:A8:D9:B1:C4:29:31:96:1A:44:85:1D:E5:84:EA:BB:BF:07:F1 X509v3 Authority Key Identifier: keyid:E0:3B:46:8C:D3:61:14:2C:58:56:63:CF:9E:CF:85:23:C3:1B:59:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32332d3233203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:5a:d0:62:1b:e4:c3:51:eb:fa:95:07:72:3b:b2:5e:f2:5d: cf:84:db:c8:2d:5c:35:d6:32:dc:7d:a2:60:8e:d2:22:d5:52: 5b:7a:30:c8:3f:bb:eb:e9:f5:f6:2a:79:40:59:4d:84:39:d1: 9d:8e:f5:aa:35:cd:40:58:83:c2:d5:d4:48:30:cb:bd:a4:51: 2f:5f:7a:41:56:83:9d:b6:69:2e:51:0f:e1:4d:85:bf:dc:da: 37:d1:9c:8a:bd:bd:89:ba:b6:bb:07:d9:21:db:cc:88:2c:e4: ff:fd:41:62:51:08:59:e7:e9:13:12:19:d4:4a:c9:87:12:6e: a1:1b:1e:c5:3e:51:a8:73:27:48:c1:5f:95:83:23:58:a9:75: fc:3c:76:51:83:aa:b6:aa:bb:eb:8e:7d:7b:aa:66:37:01:ba: 38:1d:de:e8:f9:53:4c:bd:c3:3a:b2:e8:b8:e0:ec:7e:f4:8c: 5c:42:34:1e:b9:0f:1c:6a:70:06:f4:d3:75:7d:7a:6f:ee:36: 64:a6:f0:52:bb:64:23:04:f5:c9:e1:72:36:13:46:8c:6a:6c: 1e:b8:a9:5f:f2:96:de:97:07:65:aa:d5:e2:a3:88:ae:59:73: 5c:13:da:dd:41:49:88:ef:1c:ff:1b:db:ee:d9:2b:0f:14:6f: e1:d9:21:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI7Yo4I8gfSraD9weus17pNl/ldcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAzQjQ2OENEMzYxMTQyQzU4NTY2M0NGOUVDRjg1MjND MzFCNTlFOTAeFw0yNjA1MDMwMjUwMDlaFw0yNzA1MDIwMjU1MDlaMDMxMTAvBgNV BAMTKEM0MjVBOEQ5QjFDNDI5MzE5NjFBNDQ4NTFERTU4NEVBQkJCRjA3RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtkeWYIeWqT3HqzXLXQStRb1Tz m9cBIzBGRsSrMElyzeTxmrFGG4a9Xp4Bblm00Gv9qR5fDfdTid9XjxsgjaH1WXN/ PYFd7IqlOZ2rOG7L7/xXDCrCUIY+cUFdooKscL3Z7YHYXLHnIxSAhWWUkYYhg7LE R26DBNX3GsRPGLNaPhfTcZH9TnCVqB0YW7N5PceuQdlqPLQp6+SNv+uULZccqz1C NeaO1d+jByXhwJPz7qLgvQTYw6cJ6TXLDM3pVRXgyZQhGxjTuS0+06+qkBPQbnMd B/xUJIKQiADERg3INbIysoz2dj07eLpvPgIdQmWfCw4cuQaEndMbnDsbUS/RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxCWo2bHEKTGWGkSFHeWE6ru/B/EwHwYDVR0j BBgwFoAU4DtGjNNhFCxYVmPPns+FI8MbWekwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWZkYWYwNmEtZjYyNC00MmNmLWJiMTktYjZiYmY5MzFhYWM4LzAvRTAzQjQ2OENE MzYxMTQyQzU4NTY2M0NGOUVDRjg1MjNDMzFCNTlFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FMDNCNDY4Q0QzNjExNDJDNTg1NjYzQ0Y5RUNGODUyM0MzMUI1 OUU5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0PLDANBgkqhkiG 9w0BAQsFAAOCAQEAbFrQYhvkw1Hr+pUHcjuyXvJdz4TbyC1cNdYy3H2iYI7SItVS W3owyD+76+n19ip5QFlNhDnRnY71qjXNQFiDwtXUSDDLvaRRL196QVaDnbZpLlEP 4U2Fv9zaN9Gcir29ibq2uwfZIdvMiCzk//1BYlEIWefpExIZ1ErJhxJuoRsexT5R qHMnSMFflYMjWKl1/Dx2UYOqtqq76459e6pmNwG6OB3e6PlTTL3DOrLouODsfvSM XEI0HrkPHGpwBvTTdX16b+42ZKbwUrtkIwT1yeFyNhNGjGpsHripX/KW3pcHZarV 4qOIrllzXBPa3UFJiO8c/xvb7tkrDxRv4dkhIQ== -----END CERTIFICATE-----Generated at Wed May 13 06:47:46 2026 by rpki-client