$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: LMBHCsJkYSf+3QotxJzINazyD8/H6U50nZHKQJfkTg8= Subject key identifier: CB:34:97:81:E7:19:92:7D:2B:9E:DC:71:6B:C0:41:3D:B5:10:5F:D1 Certificate issuer: /CN=F04BCF29E8A4983A7C61456338904B1D12249EF1 Certificate serial: 51646D899E27B9DE128B3BEF34A8BBE85997708A Authority key identifier: F0:4B:CF:29:E8:A4:98:3A:7C:61:45:63:38:90:4B:1D:12:24:9E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa Signing time: Sun 03 May 2026 03:00:12 +0000 ROA not before: Sun 03 May 2026 02:55:12 +0000 ROA not after: Sun 02 May 2027 03:00:12 +0000 asID: 140470 IP address blocks: 157.20.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.crl rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:64:6d:89:9e:27:b9:de:12:8b:3b:ef:34:a8:bb:e8:59:97:70:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F04BCF29E8A4983A7C61456338904B1D12249EF1 Validity Not Before: May 3 02:55:12 2026 GMT Not After : May 2 03:00:12 2027 GMT Subject: CN=CB349781E719927D2B9EDC716BC0413DB5105FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:9d:15:e8:7a:19:e0:26:a8:a1:51:52:cb: f5:78:60:1b:55:0a:a6:29:02:98:f5:ef:b1:ae:6c: 2d:ff:67:98:9d:6f:dc:4b:e3:7a:4f:01:24:d7:8e: da:32:e4:e2:65:ed:bd:20:4e:13:0b:69:e9:73:a4: ec:a9:aa:81:13:db:c0:90:6f:5b:19:01:1d:46:fa: aa:b0:15:5e:d2:52:b5:56:cd:93:4f:b7:24:fc:f9: 5c:57:bf:87:51:19:64:8b:3a:39:5b:36:b6:83:8c: ac:67:4c:79:43:4f:f1:c5:dc:b8:7d:a0:91:10:aa: d7:b0:63:07:94:ce:21:48:57:31:3d:17:20:8f:1f: 30:7b:71:2b:76:4e:2e:8d:3b:d9:1f:24:81:fd:a5: a2:a9:85:dd:07:a9:53:b3:ab:fc:ee:e7:ba:c1:12: 06:a6:7e:dd:58:62:8a:66:24:a1:16:51:ab:53:20: 20:ae:9a:3a:61:a0:2f:5e:2a:a5:9e:40:54:1e:e5: 71:2b:fe:38:67:61:99:36:d1:fd:77:10:dd:3b:d5: a8:e1:76:9e:93:cf:b5:db:d8:98:e1:bc:55:99:24: 80:33:f4:e6:fd:20:a2:6d:52:df:28:8b:bf:37:33: 1b:73:7c:54:15:3f:22:1d:b3:4a:d0:35:48:37:02: 93:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:34:97:81:E7:19:92:7D:2B:9E:DC:71:6B:C0:41:3D:B5:10:5F:D1 X509v3 Authority Key Identifier: keyid:F0:4B:CF:29:E8:A4:98:3A:7C:61:45:63:38:90:4B:1D:12:24:9E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F04BCF29E8A4983A7C61456338904B1D12249EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.37.0/24 Signature Algorithm: sha256WithRSAEncryption 76:c1:fa:75:93:38:0b:dd:57:a5:bb:a3:d6:1b:18:30:d3:90: e7:58:37:1f:40:5e:5c:31:f8:36:29:70:c2:93:0f:d8:8b:bf: a9:2f:03:67:82:db:1a:66:13:85:4b:44:a6:80:e1:f5:ed:1e: eb:ef:54:14:97:21:f2:ed:bc:37:86:6e:07:81:b8:6d:82:fd: 48:30:e2:2b:5a:27:44:69:b5:f5:d2:db:54:d5:b7:9b:d1:9c: 7d:5f:68:b6:74:b7:e3:c9:1a:d1:c3:13:64:69:24:8a:a7:fc: 57:53:82:7e:3a:f8:4e:21:44:ee:6c:1e:36:e5:c0:94:52:1c: 7e:ae:21:14:b3:d1:85:f3:5d:29:b0:37:c8:f2:91:9f:9d:ef: 7d:3e:c0:80:93:ae:5a:ab:20:f6:87:30:f1:74:3a:84:cd:a2: b0:c7:30:ce:8d:d9:e9:d7:a6:a8:3b:e3:23:6e:80:35:21:f6: 23:0e:e9:6b:9e:f7:ee:77:ac:7b:b1:88:5b:e7:71:d6:f0:48: ce:a1:78:44:b9:79:e4:bf:92:61:ae:6b:ce:77:99:16:a5:8b: 82:09:db:5d:a4:15:5b:47:0c:b8:1e:af:20:ed:37:fa:bf:07: 1a:01:fb:0c:bf:e5:0a:68:fb:e5:f7:26:42:4e:f0:53:3e:6d: eb:25:20:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUWRtiZ4nud4SizvvNKi76FmXcIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA0QkNGMjlFOEE0OTgzQTdDNjE0NTYzMzg5MDRCMUQx MjI0OUVGMTAeFw0yNjA1MDMwMjU1MTJaFw0yNzA1MDIwMzAwMTJaMDMxMTAvBgNV BAMTKENCMzQ5NzgxRTcxOTkyN0QyQjlFREM3MTZCQzA0MTNEQjUxMDVGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK8p0V6HoZ4CaooVFSy/V4YBtV CqYpApj177GubC3/Z5idb9xL43pPASTXjtoy5OJl7b0gThMLaelzpOypqoET28CQ b1sZAR1G+qqwFV7SUrVWzZNPtyT8+VxXv4dRGWSLOjlbNraDjKxnTHlDT/HF3Lh9 oJEQqtewYweUziFIVzE9FyCPHzB7cSt2Ti6NO9kfJIH9paKphd0HqVOzq/zu57rB Egamft1YYopmJKEWUatTICCumjphoC9eKqWeQFQe5XEr/jhnYZk20f13EN071ajh dp6Tz7Xb2JjhvFWZJIAz9Ob9IKJtUt8oi783MxtzfFQVPyIds0rQNUg3ApMPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyzSXgecZkn0rntxxa8BBPbUQX9EwHwYDVR0j BBgwFoAU8EvPKeikmDp8YUVjOJBLHRIknvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBiZDdkNmMtZWE1YS00YzQ1LTk1NTgtNzE3OTk0YWI2ODBlLzAvRjA0QkNGMjlF OEE0OTgzQTdDNjE0NTYzMzg5MDRCMUQxMjI0OUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GMDRCQ0YyOUU4QTQ5ODNBN0M2MTQ1NjMzODkwNEIxRDEyMjQ5 RUYxLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJTANBgkqhkiG 9w0BAQsFAAOCAQEAdsH6dZM4C91Xpbuj1hsYMNOQ51g3H0BeXDH4NilwwpMP2Iu/ qS8DZ4LbGmYThUtEpoDh9e0e6+9UFJch8u28N4ZuB4G4bYL9SDDiK1onRGm19dLb VNW3m9GcfV9otnS348ka0cMTZGkkiqf8V1OCfjr4TiFE7mweNuXAlFIcfq4hFLPR hfNdKbA3yPKRn53vfT7AgJOuWqsg9ocw8XQ6hM2isMcwzo3Z6demqDvjI26ANSH2 Iw7pa5737nese7GIW+dx1vBIzqF4RLl55L+SYa5rzneZFqWLggnbXaQVW0cMuB6v IO03+r8HGgH7DL/lCmj75fcmQk7wUz5t6yUg+A== -----END CERTIFICATE-----Generated at Wed May 13 03:59:51 2026 by rpki-client