$ rpki-client -vvf rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: Bi2PlajLpuJF5Q77N7WIyjkq2NapiUAEv+5ltKF4LBc= Subject key identifier: 70:55:BB:B1:EE:97:A5:81:EC:E3:AC:36:53:77:D1:C2:A3:CA:CE:EF Certificate issuer: /CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Certificate serial: 54E209707DEB4E9F7530130399F61287C3A886AC Authority key identifier: 8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa Signing time: Sun 03 May 2026 02:58:20 +0000 ROA not before: Sun 03 May 2026 02:53:20 +0000 ROA not after: Sun 02 May 2027 02:58:20 +0000 asID: 152756 IP address blocks: 157.66.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e2:09:70:7d:eb:4e:9f:75:30:13:03:99:f6:12:87:c3:a8:86:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Validity Not Before: May 3 02:53:20 2026 GMT Not After : May 2 02:58:20 2027 GMT Subject: CN=7055BBB1EE97A581ECE3AC365377D1C2A3CACEEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:bd:23:cc:6e:87:53:33:6e:b0:40:4b:50: 4e:fd:9b:39:e8:6a:96:5d:51:82:8c:0c:8f:ea:9b: f5:3c:41:8e:36:00:10:34:08:20:3b:31:f8:f9:83: a6:d4:63:7e:bf:c6:60:e7:9f:04:ce:83:45:3f:4e: 67:16:d9:8a:09:2d:11:2e:72:7f:84:94:7b:8b:19: 16:2e:d5:83:2b:21:45:5a:f5:5b:e3:0a:31:ef:8e: 33:91:b1:76:7e:5e:60:c2:10:f9:9a:83:1c:3c:ee: 2a:1e:a0:f9:62:b0:cb:0f:fb:92:35:03:87:56:e3: 66:7b:ac:b0:d5:d9:ec:9f:9d:5d:c9:e6:88:1d:e9: 26:4e:76:9b:47:18:80:b2:32:b9:e4:e9:fb:4e:24: 90:2d:4b:f2:c1:8b:53:0f:3b:72:d4:98:3b:22:25: eb:91:ba:24:61:57:f2:59:cd:85:00:af:5d:0f:ab: 66:a9:26:7f:9c:e9:7d:47:5e:90:7c:a7:b5:b2:c1: 02:0b:12:f6:f9:1b:da:8f:11:a0:40:d6:6e:22:5b: aa:1d:92:7a:fd:ae:0d:6d:4b:69:b1:00:48:61:98: d5:41:df:e4:97:47:4a:70:e6:87:30:ea:8a:c4:75: c1:74:4c:bb:fd:40:f4:2f:7a:bd:e2:a6:8a:08:90: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:55:BB:B1:EE:97:A5:81:EC:E3:AC:36:53:77:D1:C2:A3:CA:CE:EF X509v3 Authority Key Identifier: keyid:8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137362e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.176.0/24 Signature Algorithm: sha256WithRSAEncryption 81:d5:3c:19:64:b8:cf:f6:66:2c:05:e9:e6:6d:87:13:d3:a3: e0:da:5a:d6:df:06:a3:d0:d5:22:94:ab:88:d6:61:9b:71:00: 3a:3d:58:87:6f:24:f2:96:0a:c2:57:72:ba:b9:37:31:b3:5d: fa:9c:ff:bf:d3:c5:c0:9d:24:88:c7:f4:ac:7e:c2:8d:5f:55: 6c:56:cb:7a:25:07:49:eb:37:43:8d:23:62:fb:8f:0b:30:8d: 15:90:ac:3e:1f:63:76:49:1a:2d:6e:d4:51:19:65:f1:3f:a6: 0d:03:55:93:4e:f0:c6:c3:27:37:d3:ba:d1:fc:09:a8:f3:25: 0d:26:05:25:44:20:2d:c2:2e:62:2c:e1:68:fb:6c:80:49:0b: 8c:bd:39:fe:95:b4:3f:f5:1a:40:65:65:26:33:1d:84:a1:ee: ed:85:0b:6d:73:d5:53:59:8e:91:b2:40:e7:1d:c2:9c:9b:1d: dc:50:59:dc:94:48:ac:a8:75:4a:2d:6c:e2:92:98:c6:14:8a: a3:e4:4d:1e:9c:d9:e3:eb:a1:2c:9c:e1:36:ce:a7:b5:31:7b: a7:ae:15:7e:c7:a1:9b:ad:4c:2f:d2:0c:49:2b:52:a3:d7:ef: 1d:cf:42:04:7c:31:a3:2a:91:29:31:00:19:3b:2d:78:78:93: 69:4b:a3:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVOIJcH3rTp91MBMDmfYSh8OohqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQzOUQyMDdBNDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0 RUYxRTYyQzAeFw0yNjA1MDMwMjUzMjBaFw0yNzA1MDIwMjU4MjBaMDMxMTAvBgNV BAMTKDcwNTVCQkIxRUU5N0E1ODFFQ0UzQUMzNjUzNzdEMUMyQTNDQUNFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYgr0jzG6HUzNusEBLUE79mzno apZdUYKMDI/qm/U8QY42ABA0CCA7Mfj5g6bUY36/xmDnnwTOg0U/TmcW2YoJLREu cn+ElHuLGRYu1YMrIUVa9VvjCjHvjjORsXZ+XmDCEPmagxw87ioeoPlisMsP+5I1 A4dW42Z7rLDV2eyfnV3J5ogd6SZOdptHGICyMrnk6ftOJJAtS/LBi1MPO3LUmDsi JeuRuiRhV/JZzYUAr10Pq2apJn+c6X1HXpB8p7WywQILEvb5G9qPEaBA1m4iW6od knr9rg1tS2mxAEhhmNVB3+SXR0pw5ocw6orEdcF0TLv9QPQver3ipooIkD0zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcFW7se6XpYHs46w2U3fRwqPKzu8wHwYDVR0j BBgwFoAUjTnSB6SeKlwdn9insn00SE7x5iwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFiNGUxNGQtMDIxZC00MGRjLTkyM2EtYzEyZDFhZjQ0M2I1LzAvOEQzOUQyMDdB NDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0RUYxRTYyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84RDM5RDIwN0E0OUUyQTVDMUQ5RkQ4QTdCMjdEMzQ0ODRFRjFF NjJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKwMA0GCSqG SIb3DQEBCwUAA4IBAQCB1TwZZLjP9mYsBenmbYcT06Pg2lrW3waj0NUilKuI1mGb cQA6PViHbyTylgrCV3K6uTcxs136nP+/08XAnSSIx/SsfsKNX1VsVst6JQdJ6zdD jSNi+48LMI0VkKw+H2N2SRotbtRRGWXxP6YNA1WTTvDGwyc307rR/Amo8yUNJgUl RCAtwi5iLOFo+2yASQuMvTn+lbQ/9RpAZWUmMx2Eoe7thQttc9VTWY6RskDnHcKc mx3cUFnclEisqHVKLWzikpjGFIqj5E0enNnj66EsnOE2zqe1MXunrhV+x6GbrUwv 0gxJK1Kj1+8dz0IEfDGjKpEpMQAZOy14eJNpS6MW -----END CERTIFICATE-----Generated at Wed May 13 02:26:19 2026 by rpki-client