$ rpki-client -vvf rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa File: 3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa (raw, json) Hash identifier: SzOCWedu7Qhh9QrHie1gNK2ZtR2GDQm9yZncMipwLrI= Subject key identifier: 84:F5:92:FE:9D:A1:5D:D0:2C:4C:13:CA:7E:32:77:4C:39:3D:72:B4 Certificate issuer: /CN=D54419983140D3CB73E625681538225CB12E5424 Certificate serial: 3C4509D7F57D9E03A432AD1D5D9E11D5E90F927A Authority key identifier: D5:44:19:98:31:40:D3:CB:73:E6:25:68:15:38:22:5C:B1:2E:54:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D54419983140D3CB73E625681538225CB12E5424.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa Signing time: Sun 03 May 2026 02:58:27 +0000 ROA not before: Sun 03 May 2026 02:53:27 +0000 ROA not after: Sun 02 May 2027 02:58:27 +0000 asID: 152425 IP address blocks: 157.20.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/D54419983140D3CB73E625681538225CB12E5424.crl rsync://rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/D54419983140D3CB73E625681538225CB12E5424.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D54419983140D3CB73E625681538225CB12E5424.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:45:09:d7:f5:7d:9e:03:a4:32:ad:1d:5d:9e:11:d5:e9:0f:92:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D54419983140D3CB73E625681538225CB12E5424 Validity Not Before: May 3 02:53:27 2026 GMT Not After : May 2 02:58:27 2027 GMT Subject: CN=84F592FE9DA15DD02C4C13CA7E32774C393D72B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:78:42:46:9d:e3:e9:b3:b0:b8:7c:d3:2a:2e: 9e:da:3b:2a:68:68:db:ec:55:3b:ee:2f:34:ee:87: 6e:31:e1:05:80:17:66:19:f7:58:e8:a4:45:95:a5: fa:f4:7e:0d:b8:d3:68:19:54:6f:5a:46:e6:1f:86: ae:3e:fc:0e:6e:21:22:c3:30:46:9e:f4:78:5f:e5: 4f:bc:8e:9e:31:5f:d5:29:f6:c3:9c:c6:ed:be:5d: 2c:09:eb:be:30:dc:11:6b:b8:d4:b7:3a:80:25:2e: bc:c4:b6:0e:9f:8e:cd:8b:c3:43:6a:92:bc:27:9a: 37:91:17:c7:69:1a:09:12:cb:cf:83:0e:aa:d2:a5: 75:0b:65:17:df:bd:02:c0:b8:99:6c:3f:41:60:65: e5:c4:46:bd:b6:3c:1f:5a:41:93:01:a3:7a:cb:2d: a5:99:b9:cb:3a:66:50:7d:74:60:d9:ec:96:93:2e: 9a:27:28:e8:77:d1:c3:59:95:5a:36:a6:32:db:2a: cd:43:54:f5:7b:1f:2a:35:aa:1d:43:40:4b:03:36: f5:9a:8a:03:29:7f:92:41:00:5b:3d:65:c1:be:d8: 92:06:fe:33:da:47:3e:a6:44:11:dd:f6:2c:4a:56: c4:93:8f:71:12:90:1c:6d:51:91:57:2d:21:55:a3: 8f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F5:92:FE:9D:A1:5D:D0:2C:4C:13:CA:7E:32:77:4C:39:3D:72:B4 X509v3 Authority Key Identifier: keyid:D5:44:19:98:31:40:D3:CB:73:E6:25:68:15:38:22:5C:B1:2E:54:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/D54419983140D3CB73E625681538225CB12E5424.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D54419983140D3CB73E625681538225CB12E5424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/3135372e32302e3130302e302f32342d3234203d3e20313532343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.100.0/24 Signature Algorithm: sha256WithRSAEncryption 18:e3:7f:6c:d6:c6:73:55:ab:78:79:0a:db:71:be:1a:16:a5: 55:69:63:38:e4:48:f9:91:31:d4:e0:7a:03:d1:50:91:1b:3c: 43:de:80:80:6d:1b:f5:7e:8a:81:3a:7d:88:88:59:f5:7f:4d: 15:ef:f7:10:df:ad:e9:e4:95:c8:7f:90:08:9c:f9:fd:0e:27: c9:48:38:1a:5c:ab:2b:dd:bf:10:a4:6f:d9:73:76:ea:13:b3: 04:c7:07:68:14:ab:58:7c:cd:2c:1e:ab:a4:3d:74:2c:5a:3f: eb:78:e3:49:13:06:30:4c:8a:ab:59:71:bd:17:fd:f1:ab:80: 7e:c7:00:d1:cc:96:b7:fc:46:c0:59:ab:0c:b2:71:ac:63:e2: 32:6a:57:d9:b9:4c:52:68:b7:b8:e3:72:f1:7c:84:8a:b2:af: 10:4f:f8:86:fb:2f:ee:1f:ef:d8:74:50:ba:8a:81:07:93:28: 23:1f:96:05:13:30:34:f5:7e:06:2c:8f:fa:ee:0a:b6:17:2d: 51:eb:ef:8c:49:f9:f7:68:52:f7:3a:1f:d2:96:64:cf:0c:df: 61:35:9e:5a:f3:c2:64:48:e3:1b:9f:6e:3d:18:d9:e7:46:2c: c6:3d:5e:28:4e:65:1b:19:aa:85:9e:6d:b4:0a:a4:3d:76:eb: 8b:18:64:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPEUJ1/V9ngOkMq0dXZ4R1ekPknowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU0NDE5OTgzMTQwRDNDQjczRTYyNTY4MTUzODIyNUNC MTJFNTQyNDAeFw0yNjA1MDMwMjUzMjdaFw0yNzA1MDIwMjU4MjdaMDMxMTAvBgNV BAMTKDg0RjU5MkZFOURBMTVERDAyQzRDMTNDQTdFMzI3NzRDMzkzRDcyQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXeEJGnePps7C4fNMqLp7aOypo aNvsVTvuLzTuh24x4QWAF2YZ91jopEWVpfr0fg2402gZVG9aRuYfhq4+/A5uISLD MEae9Hhf5U+8jp4xX9Up9sOcxu2+XSwJ674w3BFruNS3OoAlLrzEtg6fjs2Lw0Nq krwnmjeRF8dpGgkSy8+DDqrSpXULZRffvQLAuJlsP0FgZeXERr22PB9aQZMBo3rL LaWZucs6ZlB9dGDZ7JaTLponKOh30cNZlVo2pjLbKs1DVPV7Hyo1qh1DQEsDNvWa igMpf5JBAFs9ZcG+2JIG/jPaRz6mRBHd9ixKVsSTj3ESkBxtUZFXLSFVo49hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhPWS/p2hXdAsTBPKfjJ3TDk9crQwHwYDVR0j BBgwFoAU1UQZmDFA08tz5iVoFTgiXLEuVCQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWI4OGQyY2EtMjI5Yi00YWFjLTliNWMtNDJjMTUxMDViYjgyLzAvRDU0NDE5OTgz MTQwRDNDQjczRTYyNTY4MTUzODIyNUNCMTJFNTQyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENTQ0MTk5ODMxNDBEM0NCNzNFNjI1NjgxNTM4MjI1Q0IxMkU1 NDI0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FiODhkMmNhLTIyOWItNGFhYy05 YjVjLTQyYzE1MTA1YmI4Mi8wLzMxMzUzNzJlMzIzMDJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRkMA0GCSqG SIb3DQEBCwUAA4IBAQAY439s1sZzVat4eQrbcb4aFqVVaWM45Ej5kTHU4HoD0VCR GzxD3oCAbRv1foqBOn2IiFn1f00V7/cQ363p5JXIf5AInPn9DifJSDgaXKsr3b8Q pG/Zc3bqE7MExwdoFKtYfM0sHqukPXQsWj/reONJEwYwTIqrWXG9F/3xq4B+xwDR zJa3/EbAWasMsnGsY+IyalfZuUxSaLe443LxfISKsq8QT/iG+y/uH+/YdFC6ioEH kygjH5YFEzA09X4GLI/67gq2Fy1R6++MSfn3aFL3Oh/SlmTPDN9hNZ5a88JkSOMb n249GNnnRizGPV4oTmUbGaqFnm20CqQ9duuLGGRy -----END CERTIFICATE-----Generated at Wed May 13 04:53:59 2026 by rpki-client