$ rpki-client -vvf rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa File: 3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa (raw, json) Hash identifier: HIdPJqjIrOEvu8Fg+POUaS/pAuaPSBpatCRmSscMNd8= Subject key identifier: 2D:3C:EF:C6:D7:5A:7A:76:2B:82:80:AF:4B:25:51:FB:DE:AC:E1:AE Certificate issuer: /CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Certificate serial: 4651C0E0B8065D7D14F6F01FBF8B2A2D3E5DB472 Authority key identifier: 8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa Signing time: Sun 03 May 2026 02:58:20 +0000 ROA not before: Sun 03 May 2026 02:53:20 +0000 ROA not after: Sun 02 May 2027 02:58:20 +0000 asID: 152756 IP address blocks: 157.66.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:51:c0:e0:b8:06:5d:7d:14:f6:f0:1f:bf:8b:2a:2d:3e:5d:b4:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C Validity Not Before: May 3 02:53:20 2026 GMT Not After : May 2 02:58:20 2027 GMT Subject: CN=2D3CEFC6D75A7A762B8280AF4B2551FBDEACE1AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:29:62:71:37:f6:d4:01:7e:5d:a6:a4:3c:0a: f5:48:80:8c:0f:b7:f1:f0:c4:28:8b:b2:ed:4f:0f: 52:07:16:13:21:15:54:81:2b:20:ba:f8:15:ad:08: 69:19:a0:6e:ed:f6:72:a7:2e:60:51:df:a6:b3:89: 33:df:36:2f:4c:eb:b8:20:6a:50:b7:26:b8:56:03: 5d:67:50:b5:6f:fd:01:b3:96:34:c5:5f:4c:5f:6c: e5:24:f7:19:28:82:3a:ff:e2:a8:64:a6:0b:9b:16: 4d:69:e9:66:e0:a3:91:26:ed:5d:aa:15:3e:53:a6: b4:76:7a:d9:b9:63:bc:47:00:42:ad:cc:03:af:60: eb:2d:ed:09:98:82:7f:4d:8a:a8:ec:76:2c:26:d6: 48:f9:f5:50:c4:e4:67:4b:ba:54:4b:40:8b:42:a4: 21:78:75:d0:75:3c:13:47:c1:a7:31:41:6f:b8:3c: f4:75:02:5d:2c:49:ae:b9:6d:3e:47:27:99:de:c5: e5:7a:d5:02:a9:a4:f3:3d:19:9b:cd:18:aa:5d:cc: 9b:2e:2b:33:b9:31:84:06:3c:b9:f3:7e:3e:36:3c: da:51:1e:82:33:99:22:c3:2e:ce:19:bc:13:12:a7: d3:23:35:64:0d:08:6a:9d:2c:14:41:d2:d7:86:1b: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3C:EF:C6:D7:5A:7A:76:2B:82:80:AF:4B:25:51:FB:DE:AC:E1:AE X509v3 Authority Key Identifier: keyid:8D:39:D2:07:A4:9E:2A:5C:1D:9F:D8:A7:B2:7D:34:48:4E:F1:E6:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/8D39D207A49E2A5C1D9FD8A7B27D34484EF1E62C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/0/3135372e36362e3137372e302f32342d3234203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.177.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:ad:61:73:17:cd:d4:3c:d7:d1:a1:b0:81:fa:f3:66:ea:17: b2:0a:38:b4:e5:15:44:de:6e:c9:10:fe:51:7e:3d:ed:2a:ac: 12:86:c8:f7:8c:a0:d9:ab:29:58:04:67:2f:ce:14:71:19:14: 7e:f0:3c:00:c1:79:a3:cb:b8:da:fe:05:20:ca:11:09:93:86: b7:97:bd:04:1e:94:67:80:90:e8:f7:0c:8c:fb:59:83:a2:f2: 91:17:9f:cb:58:c9:51:15:6b:ac:14:d7:65:e5:da:c0:e6:6d: 70:66:be:84:19:2a:ce:8d:bf:27:2b:a6:3b:ac:c7:0a:59:6b: e3:3c:01:ea:b1:eb:80:a5:48:5d:40:21:b4:f5:2c:6a:9d:94: b7:e5:63:2f:4d:3c:8c:5e:9e:0a:42:a2:56:70:55:81:85:83: c4:75:a5:41:ae:1b:72:48:9e:81:51:66:ab:e1:2d:88:20:98: 7e:f8:bb:1e:b6:86:bf:0a:a9:1d:9d:e5:be:46:83:e8:ce:85: d7:40:1f:5a:6e:de:59:ae:fa:56:37:b5:f8:dd:de:10:32:32: 09:45:56:04:24:b1:d3:da:e3:9d:23:38:4e:c7:e7:b5:be:d3: c2:22:9e:42:41:65:bf:c9:aa:b6:3a:20:b5:b0:a7:5c:7b:ed: 8e:ad:b9:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURlHA4LgGXX0U9vAfv4sqLT5dtHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQzOUQyMDdBNDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0 RUYxRTYyQzAeFw0yNjA1MDMwMjUzMjBaFw0yNzA1MDIwMjU4MjBaMDMxMTAvBgNV BAMTKDJEM0NFRkM2RDc1QTdBNzYyQjgyODBBRjRCMjU1MUZCREVBQ0UxQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfKWJxN/bUAX5dpqQ8CvVIgIwP t/HwxCiLsu1PD1IHFhMhFVSBKyC6+BWtCGkZoG7t9nKnLmBR36aziTPfNi9M67gg alC3JrhWA11nULVv/QGzljTFX0xfbOUk9xkogjr/4qhkpgubFk1p6Wbgo5Em7V2q FT5TprR2etm5Y7xHAEKtzAOvYOst7QmYgn9Niqjsdiwm1kj59VDE5GdLulRLQItC pCF4ddB1PBNHwacxQW+4PPR1Al0sSa65bT5HJ5nexeV61QKppPM9GZvNGKpdzJsu KzO5MYQGPLnzfj42PNpRHoIzmSLDLs4ZvBMSp9MjNWQNCGqdLBRB0teGGyyjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULTzvxtdaenYrgoCvSyVR+96s4a4wHwYDVR0j BBgwFoAUjTnSB6SeKlwdn9insn00SE7x5iwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFiNGUxNGQtMDIxZC00MGRjLTkyM2EtYzEyZDFhZjQ0M2I1LzAvOEQzOUQyMDdB NDlFMkE1QzFEOUZEOEE3QjI3RDM0NDg0RUYxRTYyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84RDM5RDIwN0E0OUUyQTVDMUQ5RkQ4QTdCMjdEMzQ0ODRFRjFF NjJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8wLzMxMzUzNzJlMzYzNjJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKxMA0GCSqG SIb3DQEBCwUAA4IBAQB7rWFzF83UPNfRobCB+vNm6heyCji05RVE3m7JEP5Rfj3t KqwShsj3jKDZqylYBGcvzhRxGRR+8DwAwXmjy7ja/gUgyhEJk4a3l70EHpRngJDo 9wyM+1mDovKRF5/LWMlRFWusFNdl5drA5m1wZr6EGSrOjb8nK6Y7rMcKWWvjPAHq seuApUhdQCG09SxqnZS35WMvTTyMXp4KQqJWcFWBhYPEdaVBrhtySJ6BUWar4S2I IJh++Lsetoa/CqkdneW+RoPozoXXQB9abt5ZrvpWN7X43d4QMjIJRVYEJLHT2uOd IzhOx+e1vtPCIp5CQWW/yaq2OiC1sKdce+2OrblN -----END CERTIFICATE-----Generated at Wed May 13 02:47:41 2026 by rpki-client