$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: dsheODTWGHgEtYMTRu3FdjV0KqJJ4H5IlLGKFzm1e00= Subject key identifier: DD:C7:49:C0:49:C1:1D:F0:D3:09:B3:76:06:63:23:C5:64:9F:3F:01 Certificate issuer: /CN=F04BCF29E8A4983A7C61456338904B1D12249EF1 Certificate serial: 2B2B93E9594D9027F4568885DD0B9CCDE1437425 Authority key identifier: F0:4B:CF:29:E8:A4:98:3A:7C:61:45:63:38:90:4B:1D:12:24:9E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa Signing time: Sun 03 May 2026 03:00:13 +0000 ROA not before: Sun 03 May 2026 02:55:13 +0000 ROA not after: Sun 02 May 2027 03:00:13 +0000 asID: 140470 IP address blocks: 157.20.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.crl rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:2b:93:e9:59:4d:90:27:f4:56:88:85:dd:0b:9c:cd:e1:43:74:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F04BCF29E8A4983A7C61456338904B1D12249EF1 Validity Not Before: May 3 02:55:13 2026 GMT Not After : May 2 03:00:13 2027 GMT Subject: CN=DDC749C049C11DF0D309B376066323C5649F3F01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:db:1c:e5:b8:bf:a6:03:98:59:a9:7d:2f:35: 93:fe:3f:d1:c3:10:19:bd:bc:39:a4:86:aa:f4:31: b2:38:23:a0:dc:5e:33:f3:22:dc:be:e5:e1:c2:7f: b2:9d:aa:9f:24:47:ae:b0:fa:08:1f:f1:d8:a6:d1: a5:97:e0:ff:45:32:bc:dc:f0:47:41:5f:c1:48:2b: 52:ef:8b:75:4c:82:b0:0e:8e:cb:56:4a:3b:26:e1: d8:b6:e2:bb:d8:06:22:29:ef:2c:99:e2:81:50:ee: bb:cd:d8:bd:9f:4a:6c:ec:77:70:cb:43:9a:ef:05: 16:75:8f:5c:fa:41:c7:b1:20:b7:ec:cf:c3:e7:93: e3:8d:35:2a:3d:fc:f9:e5:1b:db:16:50:7c:20:97: 79:35:41:9e:fd:2c:1f:aa:1d:eb:a0:1a:fb:d0:ec: 2c:c0:73:6b:55:1b:9e:20:96:6a:40:a7:76:a9:69: 02:19:24:2b:63:f6:b9:32:c6:a5:7e:0c:f1:ed:e9: 44:85:ef:a0:50:82:62:35:7e:b1:4b:de:f1:6f:1d: 83:7a:5d:78:49:df:b8:13:97:af:db:70:3b:9e:8f: ca:98:b2:30:1f:56:2b:92:7d:bb:f1:5d:09:be:4d: 79:82:59:99:f5:49:bb:1a:70:01:4f:e8:73:49:49: 09:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C7:49:C0:49:C1:1D:F0:D3:09:B3:76:06:63:23:C5:64:9F:3F:01 X509v3 Authority Key Identifier: keyid:F0:4B:CF:29:E8:A4:98:3A:7C:61:45:63:38:90:4B:1D:12:24:9E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:21:f6:75:c6:b8:63:a3:73:fb:ec:93:ad:bd:4b:9e:3d:48: 97:69:7a:ff:49:70:df:64:80:89:f0:1b:40:b4:b7:05:b7:12: 1d:f4:9d:de:57:86:91:ae:24:fe:e0:3d:f9:34:fb:a2:ea:14: 3b:c9:b9:38:bb:1f:ca:c1:b9:64:06:d6:d5:49:a9:49:95:cb: bc:c5:38:4c:88:ff:13:b4:8d:51:79:6d:3f:58:4e:a0:af:7f: 60:32:1f:9b:94:d0:fa:27:dc:3d:20:5d:4f:27:4b:0c:1f:ff: 75:88:06:66:a6:43:b8:da:2e:0d:ce:ca:77:83:5c:b0:ed:e6: 1f:29:48:8f:18:25:ac:0d:fc:04:77:29:8d:c6:b2:cf:b1:35: 33:bf:a2:87:23:7b:21:fd:97:4e:43:c2:8a:a8:2a:96:9d:37: 4b:5b:9b:02:2e:34:55:fb:a0:6b:f4:31:9f:45:fc:d1:22:55: d6:97:ac:ec:7f:2a:1a:a8:e2:11:b6:79:83:6d:75:b5:c9:07: 48:e1:d4:29:eb:44:c4:d4:e1:74:17:7d:53:b6:49:8d:6a:e7: 0c:6e:c5:86:ae:32:3c:c5:e4:9f:e5:bb:d8:e5:6a:57:6b:c3: 2e:5f:fd:f1:0c:dd:79:73:ed:cf:0e:5b:d2:44:22:c9:ff:f5: 71:ab:21:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKyuT6VlNkCf0VoiF3QuczeFDdCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA0QkNGMjlFOEE0OTgzQTdDNjE0NTYzMzg5MDRCMUQx MjI0OUVGMTAeFw0yNjA1MDMwMjU1MTNaFw0yNzA1MDIwMzAwMTNaMDMxMTAvBgNV BAMTKEREQzc0OUMwNDlDMTFERjBEMzA5QjM3NjA2NjMyM0M1NjQ5RjNGMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCK2xzluL+mA5hZqX0vNZP+P9HD EBm9vDmkhqr0MbI4I6DcXjPzIty+5eHCf7Kdqp8kR66w+ggf8dim0aWX4P9FMrzc 8EdBX8FIK1Lvi3VMgrAOjstWSjsm4di24rvYBiIp7yyZ4oFQ7rvN2L2fSmzsd3DL Q5rvBRZ1j1z6QcexILfsz8Pnk+ONNSo9/PnlG9sWUHwgl3k1QZ79LB+qHeugGvvQ 7CzAc2tVG54glmpAp3apaQIZJCtj9rkyxqV+DPHt6USF76BQgmI1frFL3vFvHYN6 XXhJ37gTl6/bcDuej8qYsjAfViuSfbvxXQm+TXmCWZn1SbsacAFP6HNJSQk3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3cdJwEnBHfDTCbN2BmMjxWSfPwEwHwYDVR0j BBgwFoAU8EvPKeikmDp8YUVjOJBLHRIknvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBiZDdkNmMtZWE1YS00YzQ1LTk1NTgtNzE3OTk0YWI2ODBlLzAvRjA0QkNGMjlF OEE0OTgzQTdDNjE0NTYzMzg5MDRCMUQxMjI0OUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GMDRCQ0YyOUU4QTQ5ODNBN0M2MTQ1NjMzODkwNEIxRDEyMjQ5 RUYxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAOyH2dca4Y6Nz++yTrb1Lnj1Il2l6/0lw32SAifAbQLS3BbcS HfSd3leGka4k/uA9+TT7ouoUO8m5OLsfysG5ZAbW1UmpSZXLvMU4TIj/E7SNUXlt P1hOoK9/YDIfm5TQ+ifcPSBdTydLDB//dYgGZqZDuNouDc7Kd4NcsO3mHylIjxgl rA38BHcpjcayz7E1M7+ihyN7If2XTkPCiqgqlp03S1ubAi40Vfuga/Qxn0X80SJV 1pes7H8qGqjiEbZ5g211tckHSOHUKetExNThdBd9U7ZJjWrnDG7Fhq4yPMXkn+W7 2OVqV2vDLl/98QzdeXPtzw5b0kQiyf/1cashwA== -----END CERTIFICATE-----Generated at Wed May 13 03:59:07 2026 by rpki-client