$ rpki-client -vvf rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa File: 3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa (raw, json) Hash identifier: BjELFCipYQ5Q+BtKi2neiDtQ5aM5iD6aEteAOOyN4vE= Subject key identifier: 91:6A:D7:A7:88:06:B9:39:80:42:0A:8D:A4:07:27:F2:D5:86:50:DC Certificate issuer: /CN=07DE2856EE772937B8A7AD863D63341E1041C169 Certificate serial: 26CF2D2C6A672AA5304233029C5741B734BF2D71 Authority key identifier: 07:DE:28:56:EE:77:29:37:B8:A7:AD:86:3D:63:34:1E:10:41:C1:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/07DE2856EE772937B8A7AD863D63341E1041C169.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa Signing time: Sun 03 May 2026 02:56:34 +0000 ROA not before: Sun 03 May 2026 02:51:34 +0000 ROA not after: Sun 02 May 2027 02:56:34 +0000 asID: 152376 IP address blocks: 157.15.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/07DE2856EE772937B8A7AD863D63341E1041C169.crl rsync://rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/07DE2856EE772937B8A7AD863D63341E1041C169.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/07DE2856EE772937B8A7AD863D63341E1041C169.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:cf:2d:2c:6a:67:2a:a5:30:42:33:02:9c:57:41:b7:34:bf:2d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07DE2856EE772937B8A7AD863D63341E1041C169 Validity Not Before: May 3 02:51:34 2026 GMT Not After : May 2 02:56:34 2027 GMT Subject: CN=916AD7A78806B93980420A8DA40727F2D58650DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:25:74:80:62:38:89:90:bb:24:56:21:a3:74: 52:2f:dd:4a:e6:89:59:e2:d3:81:87:89:41:ae:05: 85:83:2a:c2:bd:9e:6d:af:d3:df:fa:03:1e:65:68: 2c:91:62:d7:7d:5d:73:59:2a:0b:2a:89:4f:86:c9: 58:41:08:bf:1b:49:c8:2f:8c:c3:c3:77:6d:c0:69: 7d:81:8f:d4:ee:6d:ce:63:38:74:7e:d2:49:73:6b: 63:44:b0:bc:bf:f7:81:1c:fa:ca:52:e7:20:90:10: 68:b9:91:31:a2:6e:d6:7e:26:c1:ec:93:67:70:bb: 6c:a9:e7:07:66:83:24:97:fd:30:c8:13:5d:86:3d: cf:68:7f:39:56:65:a4:21:de:b3:70:52:5c:39:9c: 14:90:b7:07:1f:8c:fd:56:8f:b6:5c:e8:63:fc:97: d6:67:10:c8:37:c2:3e:9c:74:56:3e:7b:54:d2:50: a7:18:d5:1e:b7:81:78:b2:17:6c:ed:d5:5e:31:bd: df:1e:31:47:34:33:78:9d:45:c0:ff:c0:58:6a:5f: da:47:ea:b4:fc:31:20:a9:4d:fe:b1:de:b2:3c:5f: 63:45:db:11:48:43:b5:a3:2a:d7:1d:aa:c2:ab:66: f9:3e:b8:59:49:40:b2:bd:8c:41:ba:4a:2c:f7:2f: 0a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6A:D7:A7:88:06:B9:39:80:42:0A:8D:A4:07:27:F2:D5:86:50:DC X509v3 Authority Key Identifier: keyid:07:DE:28:56:EE:77:29:37:B8:A7:AD:86:3D:63:34:1E:10:41:C1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/07DE2856EE772937B8A7AD863D63341E1041C169.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/07DE2856EE772937B8A7AD863D63341E1041C169.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134352e302f32342d3234203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.145.0/24 Signature Algorithm: sha256WithRSAEncryption 71:9f:37:fc:17:81:d2:17:37:e6:47:8c:c0:1b:8e:ac:f0:cf: 3f:ed:ee:15:15:4b:9b:af:a4:59:dd:63:9d:7c:29:48:fb:ef: b6:95:ab:d9:95:84:1d:a4:54:df:ab:1f:a5:31:46:1b:4d:61: 38:55:10:ee:0c:28:04:b2:f4:15:98:48:70:2b:fb:d0:c4:77: 61:bd:06:90:a8:53:6b:ad:34:35:07:18:25:92:0a:4c:8d:69: 44:6b:c7:c0:41:75:47:cf:48:fa:f1:e6:7f:3d:dd:c6:9a:1c: 20:3f:85:54:28:93:04:8d:28:b0:76:a5:5a:8b:d4:16:7b:a0: 9f:f7:63:e9:d3:e0:68:49:da:50:0d:72:c6:4a:23:aa:e6:a6: e0:37:94:50:4f:73:79:54:f8:62:b5:f7:67:76:f9:3f:e9:8b: b7:68:f8:4d:be:a8:da:d8:e2:9c:d3:4c:9c:5b:57:30:6a:e8: 48:48:bf:17:da:62:7c:c0:39:0a:e6:ab:a9:40:f1:96:c9:50: df:66:c1:98:22:9c:53:bd:56:ca:88:97:3f:d1:40:86:3f:1e: ad:af:ba:90:fa:f0:db:f1:0e:69:3f:b1:d9:4c:60:01:70:23: 81:5f:ef:42:c2:74:8e:a9:86:5a:98:ec:65:a9:a9:1a:6a:34: de:25:a8:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJs8tLGpnKqUwQjMCnFdBtzS/LXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDdERTI4NTZFRTc3MjkzN0I4QTdBRDg2M0Q2MzM0MUUx MDQxQzE2OTAeFw0yNjA1MDMwMjUxMzRaFw0yNzA1MDIwMjU2MzRaMDMxMTAvBgNV BAMTKDkxNkFEN0E3ODgwNkI5Mzk4MDQyMEE4REE0MDcyN0YyRDU4NjUwREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXJXSAYjiJkLskViGjdFIv3Urm iVni04GHiUGuBYWDKsK9nm2v09/6Ax5laCyRYtd9XXNZKgsqiU+GyVhBCL8bScgv jMPDd23AaX2Bj9Tubc5jOHR+0klza2NEsLy/94Ec+spS5yCQEGi5kTGibtZ+JsHs k2dwu2yp5wdmgySX/TDIE12GPc9ofzlWZaQh3rNwUlw5nBSQtwcfjP1Wj7Zc6GP8 l9ZnEMg3wj6cdFY+e1TSUKcY1R63gXiyF2zt1V4xvd8eMUc0M3idRcD/wFhqX9pH 6rT8MSCpTf6x3rI8X2NF2xFIQ7WjKtcdqsKrZvk+uFlJQLK9jEG6Siz3LwrfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkWrXp4gGuTmAQgqNpAcn8tWGUNwwHwYDVR0j BBgwFoAUB94oVu53KTe4p62GPWM0HhBBwWkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTU2ZWNjYjctZTkxNy00MGY1LWFjZWUtMDNkNjhiZTVmZDk3LzAvMDdERTI4NTZF RTc3MjkzN0I4QTdBRDg2M0Q2MzM0MUUxMDQxQzE2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wN0RFMjg1NkVFNzcyOTM3QjhBN0FEODYzRDYzMzQxRTEwNDFD MTY5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+RMA0GCSqG SIb3DQEBCwUAA4IBAQBxnzf8F4HSFzfmR4zAG46s8M8/7e4VFUubr6RZ3WOdfClI +++2lavZlYQdpFTfqx+lMUYbTWE4VRDuDCgEsvQVmEhwK/vQxHdhvQaQqFNrrTQ1 BxglkgpMjWlEa8fAQXVHz0j68eZ/Pd3GmhwgP4VUKJMEjSiwdqVai9QWe6Cf92Pp 0+BoSdpQDXLGSiOq5qbgN5RQT3N5VPhitfdndvk/6Yu3aPhNvqja2OKc00ycW1cw auhISL8X2mJ8wDkK5qupQPGWyVDfZsGYIpxTvVbKiJc/0UCGPx6tr7qQ+vDb8Q5p P7HZTGABcCOBX+9CwnSOqYZamOxlqakaajTeJaiM -----END CERTIFICATE-----Generated at Wed May 13 02:12:57 2026 by rpki-client