$ rpki-client -vvf rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa File: 3135372e31352e34342e302f32342d3234203d3e20313532333931.roa (raw, json) Hash identifier: YVVFf3w1oI5cN9GhWV4EQ/srdvKn64MAVk6XgK0Qog8= Subject key identifier: 9E:17:42:C0:09:C4:9D:DE:CC:D9:4F:00:F9:33:18:29:F7:14:A0:51 Certificate issuer: /CN=E03B468CD361142C585663CF9ECF8523C31B59E9 Certificate serial: 21D4DCCF9E14079C9730DAF12995CDC1894DB742 Authority key identifier: E0:3B:46:8C:D3:61:14:2C:58:56:63:CF:9E:CF:85:23:C3:1B:59:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa Signing time: Sun 03 May 2026 02:55:10 +0000 ROA not before: Sun 03 May 2026 02:50:10 +0000 ROA not after: Sun 02 May 2027 02:55:10 +0000 asID: 152391 IP address blocks: 157.15.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.crl rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d4:dc:cf:9e:14:07:9c:97:30:da:f1:29:95:cd:c1:89:4d:b7:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E03B468CD361142C585663CF9ECF8523C31B59E9 Validity Not Before: May 3 02:50:10 2026 GMT Not After : May 2 02:55:10 2027 GMT Subject: CN=9E1742C009C49DDECCD94F00F9331829F714A051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:c9:aa:9f:cf:97:b4:2b:8e:c9:23:02:65: 5b:2b:d7:d5:01:85:9e:47:a3:72:68:9f:ed:58:1b: 26:ce:47:e9:b5:0d:71:9a:ff:01:3c:6f:70:cc:24: 1d:b0:4e:fd:0f:83:61:87:18:67:7c:fa:de:c2:3b: 8c:69:65:56:60:78:40:e2:ff:bd:2c:f5:33:b2:59: dc:0c:a5:71:c9:40:4d:38:8e:71:f4:b9:80:4a:2d: 01:af:f3:95:cf:5a:5e:6f:ec:92:f5:9f:0f:50:5b: 77:99:4a:24:d3:c5:72:ba:7f:2e:32:06:8d:d6:e9: 9f:33:99:e3:85:dc:a6:71:42:17:e7:f9:44:c2:80: 9b:79:5f:2b:bd:4b:2f:79:7c:5d:65:51:53:4f:ae: f7:1d:78:0c:a7:75:5e:7b:c3:c7:06:9f:f0:7c:fa: 9d:64:f3:63:01:74:8e:0a:dd:86:5d:54:7e:9b:9a: a1:cd:12:c2:34:c6:bf:48:27:e0:e7:f4:a1:e2:0d: e4:f6:1c:69:97:6d:f7:15:f6:8d:40:da:b7:d1:f5: 1b:bc:ee:21:59:d3:c1:f6:37:2c:ea:cf:af:5d:10: 3b:c4:a1:84:fc:33:3b:94:17:25:85:f6:bd:5f:be: cd:e3:fa:ed:b6:43:ce:ea:a9:e5:0e:f1:44:0d:35: 42:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:17:42:C0:09:C4:9D:DE:CC:D9:4F:00:F9:33:18:29:F7:14:A0:51 X509v3 Authority Key Identifier: keyid:E0:3B:46:8C:D3:61:14:2C:58:56:63:CF:9E:CF:85:23:C3:1B:59:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/E03B468CD361142C585663CF9ECF8523C31B59E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/E03B468CD361142C585663CF9ECF8523C31B59E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/24 Signature Algorithm: sha256WithRSAEncryption c6:ff:aa:5f:28:92:63:86:72:0e:42:8e:12:93:71:b9:24:de: b1:29:ca:7b:14:44:a0:a4:17:7d:b9:4b:ca:b5:bd:c6:a0:f6: a7:32:ec:c7:8d:5a:48:e4:b6:55:03:af:bb:ba:a7:25:2f:cc: 83:30:49:09:21:96:87:1c:c2:67:51:44:3d:0d:b5:a6:c5:eb: 52:b9:75:a8:ed:1a:4a:a8:1e:b7:1b:19:9b:83:6d:39:5e:04: a5:ca:39:cb:55:54:60:1f:14:51:80:09:14:76:e8:6a:69:9d: 5e:12:0c:c5:a5:13:2f:1c:70:64:46:75:5d:4d:5a:4c:56:04: f2:98:bb:53:1f:50:6f:49:9d:10:82:55:1f:0f:fe:e3:b6:30: db:84:d2:e1:4a:4c:79:99:e1:b5:48:b3:38:6f:bc:8e:b6:bb: f5:a9:d1:21:a0:ef:bb:57:bf:fd:b5:a6:cb:9b:f7:a2:d3:f8: 15:0a:73:99:df:18:7a:50:e6:89:b1:1c:c8:d4:6f:be:3b:b4: f9:89:72:ad:f1:74:e6:f2:32:18:49:0b:ec:3b:01:38:7a:e9: 5b:f6:0c:f7:bb:a4:1c:51:eb:13:a2:37:09:74:26:fa:50:eb: 7b:a1:4a:ad:5d:c1:4a:df:c0:26:a8:44:14:08:1f:81:fe:4c: e8:07:cd:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIdTcz54UB5yXMNrxKZXNwYlNt0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAzQjQ2OENEMzYxMTQyQzU4NTY2M0NGOUVDRjg1MjND MzFCNTlFOTAeFw0yNjA1MDMwMjUwMTBaFw0yNzA1MDIwMjU1MTBaMDMxMTAvBgNV BAMTKDlFMTc0MkMwMDlDNDlEREVDQ0Q5NEYwMEY5MzMxODI5RjcxNEEwNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfrcmqn8+XtCuOySMCZVsr19UB hZ5Ho3Jon+1YGybOR+m1DXGa/wE8b3DMJB2wTv0Pg2GHGGd8+t7CO4xpZVZgeEDi /70s9TOyWdwMpXHJQE04jnH0uYBKLQGv85XPWl5v7JL1nw9QW3eZSiTTxXK6fy4y Bo3W6Z8zmeOF3KZxQhfn+UTCgJt5Xyu9Sy95fF1lUVNPrvcdeAyndV57w8cGn/B8 +p1k82MBdI4K3YZdVH6bmqHNEsI0xr9IJ+Dn9KHiDeT2HGmXbfcV9o1A2rfR9Ru8 7iFZ08H2Nyzqz69dEDvEoYT8MzuUFyWF9r1fvs3j+u22Q87qqeUO8UQNNUIfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnhdCwAnEnd7M2U8A+TMYKfcUoFEwHwYDVR0j BBgwFoAU4DtGjNNhFCxYVmPPns+FI8MbWekwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWZkYWYwNmEtZjYyNC00MmNmLWJiMTktYjZiYmY5MzFhYWM4LzAvRTAzQjQ2OENE MzYxMTQyQzU4NTY2M0NGOUVDRjg1MjNDMzFCNTlFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FMDNCNDY4Q0QzNjExNDJDNTg1NjYzQ0Y5RUNGODUyM0MzMUI1 OUU5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZhLWY2MjQtNDJjZi1i YjE5LWI2YmJmOTMxYWFjOC8wLzMxMzUzNzJlMzEzNTJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PLDANBgkqhkiG 9w0BAQsFAAOCAQEAxv+qXyiSY4ZyDkKOEpNxuSTesSnKexREoKQXfblLyrW9xqD2 pzLsx41aSOS2VQOvu7qnJS/MgzBJCSGWhxzCZ1FEPQ21psXrUrl1qO0aSqgetxsZ m4NtOV4Epco5y1VUYB8UUYAJFHboammdXhIMxaUTLxxwZEZ1XU1aTFYE8pi7Ux9Q b0mdEIJVHw/+47Yw24TS4UpMeZnhtUizOG+8jra79anRIaDvu1e//bWmy5v3otP4 FQpzmd8YelDmibEcyNRvvju0+YlyrfF05vIyGEkL7DsBOHrpW/YM97ukHFHrE6I3 CXQm+lDre6FKrV3BSt/AJqhEFAgfgf5M6AfNUQ== -----END CERTIFICATE-----Generated at Wed May 13 10:39:59 2026 by rpki-client