$ rpki-client -vvf rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa File: 3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa (raw, json) Hash identifier: wesRzy414+ZceFD9/gwocQJzbKqVZ+NX+KTjHeWFakA= Subject key identifier: 05:3B:CE:CC:39:7D:DA:7D:F5:4D:09:DE:5A:CD:B6:62:52:8C:AD:07 Certificate issuer: /CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Certificate serial: 1E7A549946A11E61ACC07B3A6612862CE50AF70B Authority key identifier: 8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa Signing time: Sun 03 May 2026 02:58:20 +0000 ROA not before: Sun 03 May 2026 02:53:20 +0000 ROA not after: Sun 02 May 2027 02:58:20 +0000 asID: 152756 IP address blocks: 157.66.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:7a:54:99:46:a1:1e:61:ac:c0:7b:3a:66:12:86:2c:e5:0a:f7:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Validity Not Before: May 3 02:53:20 2026 GMT Not After : May 2 02:58:20 2027 GMT Subject: CN=053BCECC397DDA7DF54D09DE5ACDB662528CAD07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:0e:f5:96:1c:e5:06:38:e7:97:ca:d6:75: 0c:9f:d6:9f:b9:ca:1a:d3:f4:33:9a:7e:85:c2:90: 9a:95:3d:68:22:3d:94:13:3b:31:43:ba:86:9d:4a: 98:cf:6e:d9:86:28:64:d7:50:c0:f5:d6:db:5a:5c: d3:ea:fa:5b:1f:a9:05:2b:c4:69:77:b4:e6:79:51: 8e:9b:3d:a8:24:61:ab:b5:9e:98:be:3e:f7:ac:56: ec:10:06:d6:a0:a3:04:3d:e1:ff:75:27:54:68:24: fd:b4:7b:0f:ae:1f:40:9c:32:1e:52:ac:ba:85:e0: 5d:69:d3:d6:4b:3d:71:15:23:36:1f:ac:20:38:34: 3b:fe:a4:55:d3:e9:7f:27:06:17:dc:30:f8:ee:8b: d4:84:66:97:36:3e:8d:3c:af:4f:f9:92:f4:67:d1: e2:77:a3:78:b7:f2:e7:3c:b5:94:97:34:e4:ea:0d: 9c:10:b5:62:cb:3e:fa:cf:1b:77:09:94:22:41:95: a0:13:99:45:ff:15:2c:2d:be:5c:1f:9d:c5:7c:19: 22:cf:98:f3:9f:14:07:6a:67:83:96:c9:2c:2d:92: b1:62:78:4e:b8:d6:23:9f:18:5e:2c:b1:1d:d9:79: e8:20:61:c4:35:30:1a:a2:a4:ad:52:10:38:96:02: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3B:CE:CC:39:7D:DA:7D:F5:4D:09:DE:5A:CD:B6:62:52:8C:AD:07 X509v3 Authority Key Identifier: keyid:8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32332d3233203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:7f:2d:f9:23:03:6e:09:b4:4d:c4:60:d4:07:17:51:85:cb: 9b:1f:a1:ad:c0:9b:43:ff:f1:9d:8a:90:fc:69:b1:49:c8:5b: 07:68:ae:0e:c1:78:23:4a:79:60:5f:8b:22:85:e8:e0:02:9d: 7b:43:13:97:ad:7b:1f:c5:36:df:de:8a:9a:71:b2:db:72:d2: 3a:bb:e3:c2:65:d0:12:21:be:57:b2:54:aa:05:40:9d:4f:65: 36:3c:77:63:59:54:eb:ea:6c:70:74:dc:2d:a9:5e:20:d4:05: 6f:78:a8:2b:52:6d:d5:f8:a1:d9:9e:e6:74:8a:46:fa:8d:6e: 5c:61:8b:d0:e0:fb:bb:50:45:41:e8:4a:d6:dc:dd:bf:21:f3: b7:c9:13:7c:f3:48:14:15:5b:b8:39:51:eb:5f:ee:7e:84:ad: 32:3b:3a:25:ea:31:29:73:bb:1d:8b:5b:b1:f4:a6:f3:21:06: ca:50:43:55:7c:79:1b:d6:c5:e4:06:35:d4:5c:04:e8:43:47: c9:db:bf:4c:ac:ed:e9:c4:56:6f:9a:03:34:af:9e:ce:4e:76: e2:09:03:d2:37:29:69:eb:71:f2:3e:a5:f7:d1:3e:1c:5c:77: 76:99:c5:80:47:04:f5:81:a4:51:d2:b7:d4:a3:de:f3:21:96: 3f:9b:48:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHnpUmUahHmGswHs6ZhKGLOUK9wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQzOUQyMDdBNDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0 RUYxRTYyQzAeFw0yNjA1MDMwMjUzMjBaFw0yNzA1MDIwMjU4MjBaMDMxMTAvBgNV BAMTKDA1M0JDRUNDMzk3RERBN0RGNTREMDlERTVBQ0RCNjYyNTI4Q0FEMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHpw71lhzlBjjnl8rWdQyf1p+5 yhrT9DOafoXCkJqVPWgiPZQTOzFDuoadSpjPbtmGKGTXUMD11ttaXNPq+lsfqQUr xGl3tOZ5UY6bPagkYau1npi+PvesVuwQBtagowQ94f91J1RoJP20ew+uH0CcMh5S rLqF4F1p09ZLPXEVIzYfrCA4NDv+pFXT6X8nBhfcMPjui9SEZpc2Po08r0/5kvRn 0eJ3o3i38uc8tZSXNOTqDZwQtWLLPvrPG3cJlCJBlaATmUX/FSwtvlwfncV8GSLP mPOfFAdqZ4OWySwtkrFieE641iOfGF4ssR3ZeeggYcQ1MBqipK1SEDiWAn0RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBTvOzDl92n31TQneWs22YlKMrQcwHwYDVR0j BBgwFoAUjTnSB6SeKlwdn9insn00SE7x5iwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFiNGUxNGQtMDIxZC00MGRjLTkyM2EtYzEyZDFhZjQ0M2I1LzAvOEQzOUQyMDdB NDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0RUYxRTYyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84RDM5RDIwN0E0OUUyQTVDMUQ5RkQ4QTdCMjdEMzQ0ODRFRjFF NjJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQAufy35IwNuCbRNxGDUBxdRhcubH6GtwJtD//GdipD8abFJ yFsHaK4OwXgjSnlgX4sihejgAp17QxOXrXsfxTbf3oqacbLbctI6u+PCZdASIb5X slSqBUCdT2U2PHdjWVTr6mxwdNwtqV4g1AVveKgrUm3V+KHZnuZ0ikb6jW5cYYvQ 4Pu7UEVB6ErW3N2/IfO3yRN880gUFVu4OVHrX+5+hK0yOzol6jEpc7sdi1ux9Kbz IQbKUENVfHkb1sXkBjXUXAToQ0fJ279MrO3pxFZvmgM0r57OTnbiCQPSNylp63Hy PqX30T4cXHd2mcWARwT1gaRR0rfUo97zIZY/m0ji -----END CERTIFICATE-----Generated at Wed May 13 02:40:42 2026 by rpki-client