$ rpki-client -vvf rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa File: 3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa (raw, json) Hash identifier: e9freSOl6ZanO/adGulxqpvEl7SzFc7wYY3wkhJg4CE= Subject key identifier: 9F:4B:00:D5:25:A3:AF:55:A6:48:55:50:44:18:35:A4:D1:91:47:DF Certificate issuer: /CN=7F5CED197F7E8809448CD3168850A9ACABA35BCD Certificate serial: 3BB45A5DC88658B81E048B2F314ECAC56D183894 Authority key identifier: 7F:5C:ED:19:7F:7E:88:09:44:8C:D3:16:88:50:A9:AC:AB:A3:5B:CD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa Signing time: Sun 03 May 2026 03:00:18 +0000 ROA not before: Sun 03 May 2026 02:55:18 +0000 ROA not after: Sun 02 May 2027 03:00:18 +0000 asID: 152765 IP address blocks: 157.66.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.crl rsync://rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b4:5a:5d:c8:86:58:b8:1e:04:8b:2f:31:4e:ca:c5:6d:18:38:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F5CED197F7E8809448CD3168850A9ACABA35BCD Validity Not Before: May 3 02:55:18 2026 GMT Not After : May 2 03:00:18 2027 GMT Subject: CN=9F4B00D525A3AF55A6485550441835A4D19147DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b8:bc:ae:40:a9:12:54:35:8f:cb:38:78:e5: 20:69:46:30:c8:d4:98:8d:1d:0a:9c:dc:7d:fe:50: 43:0d:a3:56:29:f2:68:11:b2:b1:1c:6e:85:38:d4: 29:1a:bb:21:b7:e2:24:78:d1:2b:c9:14:ce:8f:f5: f6:9e:2e:60:c0:9a:72:09:02:37:ed:ce:3f:e8:1a: e9:b2:c1:bd:9d:da:d6:27:41:12:08:c6:54:f2:17: a8:0a:5e:9d:d3:e5:89:af:12:6f:af:dc:97:e3:25: 95:e5:bd:f3:6e:b9:84:fb:ba:e8:43:4b:b8:6b:74: 42:1b:fe:94:b1:3d:c4:42:ef:44:3c:4c:21:1d:9d: 88:6c:76:81:2d:cf:ac:d1:5d:c0:fe:86:b6:43:62: e7:9b:ff:2f:38:c2:9e:1e:40:76:df:c8:89:04:a9: c6:b6:a6:68:e1:e3:9d:85:a7:c1:1d:81:d9:0f:6c: b3:e1:f2:b2:22:bc:d3:92:6a:0d:8b:97:c6:fa:3c: 12:41:e4:81:6c:bb:ea:de:70:ab:0c:b2:bd:53:83: d0:3a:fa:a0:e9:42:f4:07:88:2d:56:2d:a3:d8:5c: 2e:e0:b2:46:b5:29:7d:ac:01:12:d3:06:1c:ac:1c: 73:ab:27:7d:a6:2d:84:50:97:15:c6:a6:62:97:ba: ee:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:4B:00:D5:25:A3:AF:55:A6:48:55:50:44:18:35:A4:D1:91:47:DF X509v3 Authority Key Identifier: keyid:7F:5C:ED:19:7F:7E:88:09:44:8C:D3:16:88:50:A9:AC:AB:A3:5B:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7F5CED197F7E8809448CD3168850A9ACABA35BCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b12bf863-a1f0-42d0-9e3a-3f9ff69a2d15/0/3135372e36362e3235302e302f32342d3234203d3e20313532373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.250.0/24 Signature Algorithm: sha256WithRSAEncryption 72:21:41:c1:5a:a6:0f:04:e7:f4:a0:6d:33:12:c1:b0:37:09: c5:a5:76:c8:d7:bf:77:4b:13:d2:5c:b1:35:c6:2f:25:d6:be: 71:2f:60:a1:ac:92:c9:c1:a9:8f:ef:f3:5d:00:12:44:75:ff: c4:f1:e9:c1:9e:0a:10:94:01:ef:3f:87:d2:63:3c:ab:86:66: b7:ac:73:70:2a:f6:2e:d8:59:36:06:b9:79:0a:04:23:19:7d: ae:7e:8d:e8:64:f3:04:f0:6e:e0:40:b9:8c:4c:06:2d:27:f0: 57:0c:91:99:1b:f7:76:2d:45:24:0a:b0:58:a5:2a:a0:ef:ed: f3:55:79:16:97:7c:39:0c:c2:f7:9e:e3:68:14:c3:3d:f8:13: 35:ba:02:64:aa:ce:dd:48:21:07:44:b3:61:41:af:b8:aa:9c: 45:a4:57:9d:da:d3:39:5c:95:f4:86:60:88:34:52:dc:3a:8a: d1:59:d5:d3:21:8a:10:7e:05:97:c5:30:84:a3:1a:04:e5:be: 1f:2a:5a:82:91:b6:60:5a:94:75:fe:05:d3:5d:62:17:b0:1a: fb:81:59:04:bb:d8:02:64:66:df:e5:cf:60:12:fc:82:b9:0f: 1c:cd:48:83:f1:78:36:0d:9e:a7:2f:6f:5b:1f:d1:d7:77:5f: 89:5a:21:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO7RaXciGWLgeBIsvMU7KxW0YOJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Y1Q0VEMTk3RjdFODgwOTQ0OENEMzE2ODg1MEE5QUNB QkEzNUJDRDAeFw0yNjA1MDMwMjU1MThaFw0yNzA1MDIwMzAwMThaMDMxMTAvBgNV BAMTKDlGNEIwMEQ1MjVBM0FGNTVBNjQ4NTU1MDQ0MTgzNUE0RDE5MTQ3REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLuLyuQKkSVDWPyzh45SBpRjDI 1JiNHQqc3H3+UEMNo1Yp8mgRsrEcboU41CkauyG34iR40SvJFM6P9faeLmDAmnIJ Ajftzj/oGumywb2d2tYnQRIIxlTyF6gKXp3T5YmvEm+v3JfjJZXlvfNuuYT7uuhD S7hrdEIb/pSxPcRC70Q8TCEdnYhsdoEtz6zRXcD+hrZDYueb/y84wp4eQHbfyIkE qca2pmjh452Fp8EdgdkPbLPh8rIivNOSag2Ll8b6PBJB5IFsu+recKsMsr1Tg9A6 +qDpQvQHiC1WLaPYXC7gska1KX2sARLTBhysHHOrJ32mLYRQlxXGpmKXuu5JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn0sA1SWjr1WmSFVQRBg1pNGRR98wHwYDVR0j BBgwFoAUf1ztGX9+iAlEjNMWiFCprKujW80wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjEyYmY4NjMtYTFmMC00MmQwLTllM2EtM2Y5ZmY2OWEyZDE1LzAvN0Y1Q0VEMTk3 RjdFODgwOTQ0OENEMzE2ODg1MEE5QUNBQkEzNUJDRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83RjVDRUQxOTdGN0U4ODA5NDQ4Q0QzMTY4ODUwQTlBQ0FCQTM1 QkNELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxMmJmODYzLWExZjAtNDJkMC05 ZTNhLTNmOWZmNjlhMmQxNS8wLzMxMzUzNzJlMzYzNjJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUL6MA0GCSqG SIb3DQEBCwUAA4IBAQByIUHBWqYPBOf0oG0zEsGwNwnFpXbI1793SxPSXLE1xi8l 1r5xL2ChrJLJwamP7/NdABJEdf/E8enBngoQlAHvP4fSYzyrhma3rHNwKvYu2Fk2 Brl5CgQjGX2ufo3oZPME8G7gQLmMTAYtJ/BXDJGZG/d2LUUkCrBYpSqg7+3zVXkW l3w5DML3nuNoFMM9+BM1ugJkqs7dSCEHRLNhQa+4qpxFpFed2tM5XJX0hmCINFLc OorRWdXTIYoQfgWXxTCEoxoE5b4fKlqCkbZgWpR1/gXTXWIXsBr7gVkEu9gCZGbf 5c9gEvyCuQ8czUiD8Xg2DZ6nL29bH9HXd1+JWiGT -----END CERTIFICATE-----Generated at Wed May 13 05:55:29 2026 by rpki-client