$ rpki-client -vvf rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa File: 3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa (raw, json) Hash identifier: Cn5QDaDrkWjZkYo9i7Qsji3m8C/nPclaYaM3+4eiEFI= Subject key identifier: 0A:42:5B:0C:BE:78:EB:A7:DE:5E:31:50:F8:6A:73:2A:B2:EE:57:B1 Certificate issuer: /CN=AF2070B1260531FBF069F7AE728D1824E0197266 Certificate serial: 348AC4C02D37EC31041ECB2006079864ACD754EC Authority key identifier: AF:20:70:B1:26:05:31:FB:F0:69:F7:AE:72:8D:18:24:E0:19:72:66 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa Signing time: Sun 03 May 2026 02:56:01 +0000 ROA not before: Sun 03 May 2026 02:51:01 +0000 ROA not after: Sun 02 May 2027 02:56:01 +0000 asID: 152437 IP address blocks: 157.20.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.crl rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8a:c4:c0:2d:37:ec:31:04:1e:cb:20:06:07:98:64:ac:d7:54:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF2070B1260531FBF069F7AE728D1824E0197266 Validity Not Before: May 3 02:51:01 2026 GMT Not After : May 2 02:56:01 2027 GMT Subject: CN=0A425B0CBE78EBA7DE5E3150F86A732AB2EE57B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:95:00:0a:a4:71:7f:c6:f0:a7:c7:70:e5: 6e:65:d7:be:dc:e0:eb:3d:2f:7f:f7:e6:4d:cc:c8: 82:aa:04:5d:dd:8d:27:09:68:b2:aa:3b:c4:3b:de: b5:d9:de:ac:d4:81:08:ff:c4:cf:be:52:f2:1a:5c: 87:9e:2f:52:f2:a5:05:4f:4b:06:b7:92:f6:98:71: 0b:83:0d:dd:69:2b:0c:62:2b:57:b2:6c:64:00:9b: 78:75:c0:f0:a7:9f:34:07:b5:e0:8e:34:72:e0:78: a8:10:c8:9c:8b:32:38:4a:f1:1f:86:80:a2:9f:82: 78:72:bc:c8:f9:48:5e:fa:00:9c:9d:36:38:4b:04: 1b:f3:92:45:4c:3b:3e:69:0a:da:9f:ac:8c:02:f9: 34:0e:c3:94:37:5f:c6:aa:53:e6:79:56:35:c1:75: 37:95:8d:8e:3b:d9:18:47:82:b7:6b:92:f7:07:03: 13:56:e0:e0:6c:ae:6f:a6:12:84:28:59:8f:f4:fb: 85:c9:9e:28:43:e7:5c:fb:8b:e9:76:77:2a:66:4c: 60:a5:94:73:bc:c5:7b:50:c0:d2:4c:53:91:52:74: 0d:b5:ca:48:17:78:d3:f2:50:7d:14:5e:cc:1d:e8: 40:eb:11:81:bb:73:ce:94:67:71:6b:a9:cd:5c:c5: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:42:5B:0C:BE:78:EB:A7:DE:5E:31:50:F8:6A:73:2A:B2:EE:57:B1 X509v3 Authority Key Identifier: keyid:AF:20:70:B1:26:05:31:FB:F0:69:F7:AE:72:8D:18:24:E0:19:72:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.223.0/24 Signature Algorithm: sha256WithRSAEncryption 10:ec:c3:01:da:01:4a:5b:b9:e4:f1:99:48:56:73:d4:24:94: e2:56:78:b0:cd:83:db:5a:6a:d9:11:29:09:d0:10:7b:8a:b0: a1:bc:53:55:c4:1d:c2:d3:4f:9c:8a:29:18:96:e0:b9:6f:ce: 9a:16:73:00:82:23:62:fb:e0:6c:a1:66:ee:9b:d2:0f:4c:e4: b8:5d:77:b9:64:af:d6:0f:be:78:1a:41:90:69:16:b2:e4:f1: 6f:65:2c:89:05:a7:f9:8c:0b:7d:87:8d:e4:1c:0f:be:83:a4: 50:9d:c1:4e:88:99:91:bb:91:3e:52:03:09:2e:e3:07:bd:8a: 15:1d:f4:7f:90:23:a5:1e:aa:e5:13:a9:ff:ab:7f:79:ab:6d: c4:c2:7d:19:88:b0:9a:c2:84:40:ef:bf:1f:47:0e:b5:89:1d: 52:ba:14:c8:5a:a6:05:cb:e0:1e:9b:c5:bd:ee:98:e5:40:d2: ea:f7:aa:52:ff:d8:b3:6b:8f:90:07:c0:cb:c8:02:fe:1a:39: f4:b5:c7:a9:a2:3f:35:cb:ee:3a:b7:85:2a:00:27:86:e1:fd: f9:89:44:34:3a:a7:2b:e4:cb:ca:9d:6d:26:98:0f:6c:f3:31: 41:17:1c:8a:ab:f5:70:ad:18:43:c8:2f:7c:2e:33:73:d7:3d: 3f:3a:a3:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNIrEwC037DEEHssgBgeYZKzXVOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYyMDcwQjEyNjA1MzFGQkYwNjlGN0FFNzI4RDE4MjRF MDE5NzI2NjAeFw0yNjA1MDMwMjUxMDFaFw0yNzA1MDIwMjU2MDFaMDMxMTAvBgNV BAMTKDBBNDI1QjBDQkU3OEVCQTdERTVFMzE1MEY4NkE3MzJBQjJFRTU3QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHOJUACqRxf8bwp8dw5W5l177c 4Os9L3/35k3MyIKqBF3djScJaLKqO8Q73rXZ3qzUgQj/xM++UvIaXIeeL1LypQVP Swa3kvaYcQuDDd1pKwxiK1eybGQAm3h1wPCnnzQHteCONHLgeKgQyJyLMjhK8R+G gKKfgnhyvMj5SF76AJydNjhLBBvzkkVMOz5pCtqfrIwC+TQOw5Q3X8aqU+Z5VjXB dTeVjY472RhHgrdrkvcHAxNW4OBsrm+mEoQoWY/0+4XJnihD51z7i+l2dypmTGCl lHO8xXtQwNJMU5FSdA21ykgXeNPyUH0UXswd6EDrEYG7c86UZ3Frqc1cxaVhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCkJbDL5466feXjFQ+GpzKrLuV7EwHwYDVR0j BBgwFoAUryBwsSYFMfvwafeuco0YJOAZcmYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTFmMTVhMWQtNWRhYy00Y2M5LTgxMWEtZTQ5Y2I0ZTdiY2UxLzAvQUYyMDcwQjEy NjA1MzFGQkYwNjlGN0FFNzI4RDE4MjRFMDE5NzI2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BRjIwNzBCMTI2MDUzMUZCRjA2OUY3QUU3MjhEMTgyNEUwMTk3 MjY2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFkLTVkYWMtNGNjOS04 MTFhLWU0OWNiNGU3YmNlMS8wLzMxMzUzNzJlMzIzMDJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTfMA0GCSqG SIb3DQEBCwUAA4IBAQAQ7MMB2gFKW7nk8ZlIVnPUJJTiVniwzYPbWmrZESkJ0BB7 irChvFNVxB3C00+ciikYluC5b86aFnMAgiNi++BsoWbum9IPTOS4XXe5ZK/WD754 GkGQaRay5PFvZSyJBaf5jAt9h43kHA++g6RQncFOiJmRu5E+UgMJLuMHvYoVHfR/ kCOlHqrlE6n/q395q23Ewn0ZiLCawoRA778fRw61iR1SuhTIWqYFy+Aem8W97pjl QNLq96pS/9iza4+QB8DLyAL+Gjn0tcepoj81y+46t4UqACeG4f35iUQ0Oqcr5MvK nW0mmA9s8zFBFxyKq/VwrRhDyC98LjNz1z0/OqNh -----END CERTIFICATE-----Generated at Wed May 13 00:45:12 2026 by rpki-client