$ rpki-client -vvf rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa File: 3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa (raw, json) Hash identifier: uYXVOfIT7P6Dr33KoZiS4hHMvBugVDHDvO0rydITSy0= Subject key identifier: 1E:81:13:1A:E2:04:50:D6:1F:32:65:E9:CC:23:B5:4C:FE:ED:B0:5B Certificate issuer: /CN=8577702D614C8CB829CA2CC51C2B3374AC66A40E Certificate serial: 5D24372AACF31E7527CB2AC4AD003332B002C1AA Authority key identifier: 85:77:70:2D:61:4C:8C:B8:29:CA:2C:C5:1C:2B:33:74:AC:66:A4:0E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa Signing time: Sun 03 May 2026 02:56:33 +0000 ROA not before: Sun 03 May 2026 02:51:33 +0000 ROA not after: Sun 02 May 2027 02:56:33 +0000 asID: 152777 IP address blocks: 157.66.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.crl rsync://rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:24:37:2a:ac:f3:1e:75:27:cb:2a:c4:ad:00:33:32:b0:02:c1:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8577702D614C8CB829CA2CC51C2B3374AC66A40E Validity Not Before: May 3 02:51:33 2026 GMT Not After : May 2 02:56:33 2027 GMT Subject: CN=1E81131AE20450D61F3265E9CC23B54CFEEDB05B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:9b:0e:b4:1f:98:cd:f1:5d:86:c1:ca:17: 06:94:35:62:f6:5b:4f:20:b2:a9:04:f8:48:48:a7: 26:17:9d:d0:fc:ac:3a:c5:09:55:1e:98:58:7e:cd: de:3f:f5:97:e3:79:80:b3:04:2c:44:5c:a6:a4:9e: a5:55:c5:4b:34:10:00:dd:76:1e:87:c5:4f:35:42: 98:29:54:3a:86:f3:ce:58:1f:f7:c8:19:4e:61:ff: e9:32:91:9c:15:c9:a3:cf:22:4a:42:fd:c3:a4:b2: 70:18:b2:3c:55:c8:28:d1:a8:d3:a1:f5:5b:0a:14: ad:6e:52:c5:26:c0:f8:68:73:9b:56:bd:8f:93:07: 82:da:4a:0b:24:bc:ff:3a:5a:da:16:29:93:06:a2: 10:8a:ee:7a:a9:b0:3c:cb:e5:cb:47:7a:6b:b5:45: ae:66:37:4b:ed:67:e8:8a:b8:d2:64:86:99:02:34: 00:c4:fc:92:30:67:11:43:24:34:80:42:4a:d9:f0: 30:df:8d:6d:f4:5f:e2:8c:54:d9:89:85:6f:0d:2e: 1f:7f:33:b9:9e:14:56:a7:e4:90:54:6a:0d:2f:35: 26:28:d5:9d:50:7a:9c:61:82:ac:ec:31:16:fe:91: 81:83:46:e1:cc:87:5c:10:9b:91:64:89:3b:36:b9: 9c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:81:13:1A:E2:04:50:D6:1F:32:65:E9:CC:23:B5:4C:FE:ED:B0:5B X509v3 Authority Key Identifier: keyid:85:77:70:2D:61:4C:8C:B8:29:CA:2C:C5:1C:2B:33:74:AC:66:A4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8577702D614C8CB829CA2CC51C2B3374AC66A40E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a5481606-d5fd-4196-abcd-58e6c76243c5/0/3135372e36362e3137312e302f32342d3234203d3e20313532373737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.171.0/24 Signature Algorithm: sha256WithRSAEncryption 98:ec:19:cb:e6:2a:75:fa:a3:89:a2:73:37:e8:43:45:59:d2: b4:5c:dd:f7:4b:41:48:04:26:25:46:e3:d8:d6:6b:01:dd:9b: bd:df:0c:a2:70:98:59:e1:65:33:aa:4a:4e:5f:41:97:3f:b8: 9f:ec:e6:94:9e:85:5f:36:ac:c5:ab:e5:59:34:29:8d:22:31: 2d:aa:3c:04:27:ae:d7:24:23:03:c3:7d:58:dc:74:27:f3:51: 7e:86:4c:5b:5c:4a:01:dc:1a:70:bf:06:47:9a:5c:e9:96:99: 4b:ae:95:0a:52:73:44:40:78:b2:29:a2:5c:26:22:74:e5:9c: ca:80:2f:4e:85:2b:32:53:62:a6:f1:5f:1e:31:32:f8:82:44: 04:53:2b:82:81:83:03:e9:f8:0c:69:06:ae:c3:e2:de:53:c2: 57:27:6d:5c:64:b5:cf:4e:90:85:b8:f5:d3:3d:4a:cb:09:19: ae:fd:8e:10:d7:5a:ef:f6:0b:3f:d0:43:0e:d3:6c:c0:33:af: 33:86:52:78:65:30:d2:bb:17:b1:64:71:dc:18:b0:10:c8:91: ec:b0:b7:60:3e:95:93:6e:2c:33:08:e3:28:3b:07:2e:2d:b1: fd:c7:7a:24:75:01:33:75:9f:73:3b:88:f2:5c:4e:27:5e:56: 19:16:aa:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXSQ3KqzzHnUnyyrErQAzMrACwaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3NzcwMkQ2MTRDOENCODI5Q0EyQ0M1MUMyQjMzNzRB QzY2QTQwRTAeFw0yNjA1MDMwMjUxMzNaFw0yNzA1MDIwMjU2MzNaMDMxMTAvBgNV BAMTKDFFODExMzFBRTIwNDUwRDYxRjMyNjVFOUNDMjNCNTRDRkVFREIwNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEsJsOtB+YzfFdhsHKFwaUNWL2 W08gsqkE+EhIpyYXndD8rDrFCVUemFh+zd4/9ZfjeYCzBCxEXKaknqVVxUs0EADd dh6HxU81QpgpVDqG885YH/fIGU5h/+kykZwVyaPPIkpC/cOksnAYsjxVyCjRqNOh 9VsKFK1uUsUmwPhoc5tWvY+TB4LaSgskvP86WtoWKZMGohCK7nqpsDzL5ctHemu1 Ra5mN0vtZ+iKuNJkhpkCNADE/JIwZxFDJDSAQkrZ8DDfjW30X+KMVNmJhW8NLh9/ M7meFFan5JBUag0vNSYo1Z1QepxhgqzsMRb+kYGDRuHMh1wQm5FkiTs2uZxXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHoETGuIEUNYfMmXpzCO1TP7tsFswHwYDVR0j BBgwFoAUhXdwLWFMjLgpyizFHCszdKxmpA4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU0ODE2MDYtZDVmZC00MTk2LWFiY2QtNThlNmM3NjI0M2M1LzAvODU3NzcwMkQ2 MTRDOENCODI5Q0EyQ0M1MUMyQjMzNzRBQzY2QTQwRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84NTc3NzAyRDYxNEM4Q0I4MjlDQTJDQzUxQzJCMzM3NEFDNjZB NDBFLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1NDgxNjA2LWQ1ZmQtNDE5Ni1h YmNkLTU4ZTZjNzYyNDNjNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKrMA0GCSqG SIb3DQEBCwUAA4IBAQCY7BnL5ip1+qOJonM36ENFWdK0XN33S0FIBCYlRuPY1msB 3Zu93wyicJhZ4WUzqkpOX0GXP7if7OaUnoVfNqzFq+VZNCmNIjEtqjwEJ67XJCMD w31Y3HQn81F+hkxbXEoB3BpwvwZHmlzplplLrpUKUnNEQHiyKaJcJiJ05ZzKgC9O hSsyU2Km8V8eMTL4gkQEUyuCgYMD6fgMaQauw+LeU8JXJ21cZLXPTpCFuPXTPUrL CRmu/Y4Q11rv9gs/0EMO02zAM68zhlJ4ZTDSuxexZHHcGLAQyJHssLdgPpWTbiwz COMoOwcuLbH9x3okdQEzdZ9zO4jyXE4nXlYZFqp1 -----END CERTIFICATE-----Generated at Wed May 13 03:58:42 2026 by rpki-client