$ rpki-client -vvf rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa File: 3135372e32302e3233362e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: BrEAiFV+dHptCn088oRLw0yFHBOD29YxvGJgz6+xTEs= Subject key identifier: B3:F2:01:59:46:D9:89:C7:95:7D:B5:2A:1F:57:99:9B:E0:74:7D:66 Certificate issuer: /CN=A2CA2636D90ECEE03080294F58D8AB8A1B349996 Certificate serial: 0B69D9CFEDC5178E48D937225D338282BE856076 Authority key identifier: A2:CA:26:36:D9:0E:CE:E0:30:80:29:4F:58:D8:AB:8A:1B:34:99:96 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa Signing time: Sun 03 May 2026 02:58:40 +0000 ROA not before: Sun 03 May 2026 02:53:40 +0000 ROA not after: Sun 02 May 2027 02:58:40 +0000 asID: 58369 IP address blocks: 157.20.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.crl rsync://rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:69:d9:cf:ed:c5:17:8e:48:d9:37:22:5d:33:82:82:be:85:60:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2CA2636D90ECEE03080294F58D8AB8A1B349996 Validity Not Before: May 3 02:53:40 2026 GMT Not After : May 2 02:58:40 2027 GMT Subject: CN=B3F2015946D989C7957DB52A1F57999BE0747D66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:82:bd:5d:b3:04:ee:92:ec:74:3e:16:00:30: c7:93:52:a5:b0:c5:56:e2:25:01:9a:0e:6f:5d:fd: 02:93:95:fd:f3:7f:e7:83:47:ce:c6:3b:63:68:24: 17:87:13:59:20:85:d2:41:f2:46:65:e6:e8:11:2a: 48:33:fe:b3:73:46:2c:bc:ae:b8:00:f8:93:a6:13: 7b:92:47:de:0f:ce:9d:94:b0:21:40:c8:21:ad:69: de:9e:2b:90:d3:06:e6:15:9f:b0:31:ce:05:e9:37: 33:3b:26:ea:ac:7f:6d:63:f0:bf:89:15:de:cc:35: 3d:14:be:fb:93:8a:a8:50:4a:08:64:22:23:d2:92: ea:bd:01:7e:af:64:80:65:26:d4:dc:6f:95:83:98: 9c:3b:21:ae:a6:1d:cb:05:fd:dd:b4:b6:84:6e:66: 81:82:31:05:16:b9:86:b9:4b:4d:4c:d9:dc:84:f5: 7b:de:5c:fa:64:51:c0:33:72:48:e8:7c:9d:3e:12: de:d0:2d:f8:64:d1:a4:47:c7:bc:fc:ad:9a:86:21: c8:39:ee:e6:1c:06:bc:53:e7:7e:e5:22:63:b7:ad: f2:6d:aa:7a:85:cc:49:a8:1d:9b:5c:43:56:df:e2: de:e7:72:a2:5d:b6:ec:d0:47:c0:35:98:c5:0f:94: 84:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F2:01:59:46:D9:89:C7:95:7D:B5:2A:1F:57:99:9B:E0:74:7D:66 X509v3 Authority Key Identifier: keyid:A2:CA:26:36:D9:0E:CE:E0:30:80:29:4F:58:D8:AB:8A:1B:34:99:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CA2636D90ECEE03080294F58D8AB8A1B349996.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/acaccf26-8354-49c8-998a-0a44a64eb909/0/3135372e32302e3233362e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.236.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:db:c4:1e:ab:7d:cc:2f:79:8e:13:63:7d:cf:e5:7d:34:75: 85:7f:29:4f:e8:66:e4:96:68:eb:db:34:95:c9:be:b8:c9:3b: 56:10:11:fb:58:1f:22:a4:75:f1:44:00:5e:c5:d6:29:2e:be: af:91:7e:48:fa:07:0d:ef:f1:0e:5a:61:52:97:9a:eb:ff:36: 2e:3a:fc:ec:4d:c1:de:75:0b:db:95:6d:1d:46:fa:5c:3d:2f: b4:6f:cb:e3:3c:ff:08:5f:80:c3:54:1e:6b:d9:20:91:56:7d: 59:b2:86:43:61:24:be:ed:6e:05:84:0e:4f:f1:77:68:e0:ab: 93:08:eb:de:8c:aa:15:02:44:69:de:3b:c7:06:22:e3:bd:09: 0c:f4:7a:49:ac:ac:00:f0:b2:e7:57:4e:07:03:4a:ad:4e:c2: 93:ff:41:53:97:9f:6a:d1:67:ad:20:50:30:f5:98:2c:02:5e: 6e:79:c8:66:af:2d:ee:66:03:7e:24:42:40:e5:50:e1:d2:dd: f8:59:9a:b4:63:5c:bd:0e:9c:95:e3:f6:e4:86:bc:cf:91:9b: 4a:f1:77:2c:ef:b6:25:58:ff:07:b8:32:fb:52:2b:72:21:cd: a7:58:a0:ac:d5:a6:10:e7:7e:01:1f:95:f2:52:69:45:db:79: fa:35:1f:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC2nZz+3FF45I2TciXTOCgr6FYHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJDQTI2MzZEOTBFQ0VFMDMwODAyOTRGNThEOEFCOEEx QjM0OTk5NjAeFw0yNjA1MDMwMjUzNDBaFw0yNzA1MDIwMjU4NDBaMDMxMTAvBgNV BAMTKEIzRjIwMTU5NDZEOTg5Qzc5NTdEQjUyQTFGNTc5OTlCRTA3NDdENjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVgr1dswTukux0PhYAMMeTUqWw xVbiJQGaDm9d/QKTlf3zf+eDR87GO2NoJBeHE1kghdJB8kZl5ugRKkgz/rNzRiy8 rrgA+JOmE3uSR94Pzp2UsCFAyCGtad6eK5DTBuYVn7AxzgXpNzM7Juqsf21j8L+J Fd7MNT0UvvuTiqhQSghkIiPSkuq9AX6vZIBlJtTcb5WDmJw7Ia6mHcsF/d20toRu ZoGCMQUWuYa5S01M2dyE9XveXPpkUcAzckjofJ0+Et7QLfhk0aRHx7z8rZqGIcg5 7uYcBrxT537lImO3rfJtqnqFzEmoHZtcQ1bf4t7ncqJdtuzQR8A1mMUPlIShAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUs/IBWUbZiceVfbUqH1eZm+B0fWYwHwYDVR0j BBgwFoAUosomNtkOzuAwgClPWNirihs0mZYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWNhY2NmMjYtODM1NC00OWM4LTk5OGEtMGE0NGE2NGViOTA5LzAvQTJDQTI2MzZE OTBFQ0VFMDMwODAyOTRGNThEOEFCOEExQjM0OTk5Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BMkNBMjYzNkQ5MEVDRUUwMzA4MDI5NEY1OEQ4QUI4QTFCMzQ5 OTk2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjYWNjZjI2LTgzNTQtNDljOC05 OThhLTBhNDRhNjRlYjkwOS8wLzMxMzUzNzJlMzIzMDJlMzIzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0U7DANBgkqhkiG 9w0BAQsFAAOCAQEAKtvEHqt9zC95jhNjfc/lfTR1hX8pT+hm5JZo69s0lcm+uMk7 VhAR+1gfIqR18UQAXsXWKS6+r5F+SPoHDe/xDlphUpea6/82Ljr87E3B3nUL25Vt HUb6XD0vtG/L4zz/CF+Aw1Qea9kgkVZ9WbKGQ2Ekvu1uBYQOT/F3aOCrkwjr3oyq FQJEad47xwYi470JDPR6SaysAPCy51dOBwNKrU7Ck/9BU5efatFnrSBQMPWYLAJe bnnIZq8t7mYDfiRCQOVQ4dLd+FmatGNcvQ6cleP25Ia8z5GbSvF3LO+2JVj/B7gy +1IrciHNp1igrNWmEOd+AR+V8lJpRdt5+jUfIQ== -----END CERTIFICATE-----Generated at Wed May 13 09:21:11 2026 by rpki-client