$ rpki-client -vvf rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa File: 3135372e36362e342e302f32332d3233203d3e20313336383633.roa (raw, json) Hash identifier: 9KpyEhEGhAy9FznniYWT52KZ7CJy6UiIPh+5fqTydWs= Subject key identifier: 9E:5B:EA:16:8B:2F:CE:67:2E:E4:C4:FB:A4:02:41:21:FD:65:61:71 Certificate issuer: /CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Certificate serial: 74FF6881AA31988274587FA2934344045FD8F06C Authority key identifier: 67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa Signing time: Sun 03 May 2026 03:00:36 +0000 ROA not before: Sun 03 May 2026 02:55:36 +0000 ROA not after: Sun 02 May 2027 03:00:36 +0000 asID: 136863 IP address blocks: 157.66.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 05:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ff:68:81:aa:31:98:82:74:58:7f:a2:93:43:44:04:5f:d8:f0:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Validity Not Before: May 3 02:55:36 2026 GMT Not After : May 2 03:00:36 2027 GMT Subject: CN=9E5BEA168B2FCE672EE4C4FBA4024121FD656171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:bf:65:71:8c:c9:3c:ea:24:ca:50:5e:77: d7:41:09:a0:b7:b4:81:7f:90:79:4c:66:bb:69:d5: cf:eb:33:2b:74:57:33:f0:26:a7:c2:a0:89:1e:d7: c5:dc:65:54:42:d3:8a:8a:be:83:68:3c:db:cc:b1: ea:52:ad:a4:5b:de:e6:19:1d:2f:e7:68:a1:40:6c: e2:a3:d1:87:78:62:33:5e:06:fb:2f:80:a4:2e:41: 3e:15:99:81:e6:97:5d:be:da:9e:c5:76:29:2d:0b: 4c:69:bb:0c:59:b8:03:02:8a:6e:bf:84:3a:25:dd: 12:72:32:40:b4:57:cc:aa:1d:2d:12:9c:41:ff:99: a2:e2:b4:b9:2a:38:0c:df:03:80:05:d0:2b:39:55: 6d:1b:16:d5:e9:5d:42:1f:f0:76:1a:4d:c3:9c:36: f7:e3:d8:74:22:81:7e:10:f2:e6:56:c6:5b:45:6c: fd:0f:c1:d9:6f:25:82:fc:ad:1c:3f:63:be:5f:3b: bf:77:74:d2:8b:3b:f7:5d:92:28:ca:a0:d1:53:e0: 53:77:36:84:65:45:6a:cd:93:0f:ed:94:45:25:6d: a7:7f:81:48:36:0a:77:9a:8f:33:03:08:18:7f:94: 76:89:95:f7:37:28:e7:24:6f:c4:06:b7:10:16:e0: 7f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5B:EA:16:8B:2F:CE:67:2E:E4:C4:FB:A4:02:41:21:FD:65:61:71 X509v3 Authority Key Identifier: keyid:67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32332d3233203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:30:50:94:38:b8:45:0b:01:66:16:6a:84:c8:f0:a1:2e:da: ea:f7:74:80:43:01:a0:e5:de:99:ca:66:2f:c1:59:6d:38:64: 29:1a:a0:fc:cc:56:c9:f9:f9:5c:d0:4b:d0:10:33:24:d9:f8: 64:8f:56:cf:b0:43:0e:ff:3d:16:c9:7b:79:ff:58:5d:aa:8b: ed:82:62:d3:19:56:6b:2f:ba:7d:86:f8:0d:ea:d8:0d:38:d6: b3:1d:9a:87:14:cf:fb:e7:f0:f3:7c:14:22:b8:ba:5d:d5:d4: 61:91:2e:e4:f1:51:89:c5:b7:89:9b:2c:14:ee:73:f5:64:d2: c3:5d:6a:1c:61:19:85:ad:63:6b:2c:57:aa:53:5b:1b:6a:c9: ee:52:24:dc:dd:e4:c9:7e:ac:7c:65:72:8e:b1:1d:da:9b:1b: 22:86:d2:9e:cc:94:78:87:f8:9e:2a:a2:e4:0c:20:89:64:41: 43:e8:cd:a9:cb:84:05:02:6c:d7:a5:84:1d:81:a4:74:2e:38: 31:2a:df:57:66:e2:ef:c0:8c:2c:1c:7c:65:d9:20:4e:a2:21: 97:7e:5b:45:d1:95:08:ae:9d:e1:4c:8e:45:a0:5b:9b:a3:9a: f5:da:b7:d1:7c:28:a0:e5:01:da:e2:d3:5e:0f:60:d6:a3:51: 38:21:e2:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdP9ogaoxmIJ0WH+ik0NEBF/Y8GwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4ODYxMzAyNzUzMkRFOEY2MEQwNDNERjg4QUM2M0JB QjAzQkJGODAeFw0yNjA1MDMwMjU1MzZaFw0yNzA1MDIwMzAwMzZaMDMxMTAvBgNV BAMTKDlFNUJFQTE2OEIyRkNFNjcyRUU0QzRGQkE0MDI0MTIxRkQ2NTYxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjJr9lcYzJPOokylBed9dBCaC3 tIF/kHlMZrtp1c/rMyt0VzPwJqfCoIke18XcZVRC04qKvoNoPNvMsepSraRb3uYZ HS/naKFAbOKj0Yd4YjNeBvsvgKQuQT4VmYHml12+2p7FdiktC0xpuwxZuAMCim6/ hDol3RJyMkC0V8yqHS0SnEH/maLitLkqOAzfA4AF0Cs5VW0bFtXpXUIf8HYaTcOc Nvfj2HQigX4Q8uZWxltFbP0PwdlvJYL8rRw/Y75fO793dNKLO/ddkijKoNFT4FN3 NoRlRWrNkw/tlEUlbad/gUg2CneajzMDCBh/lHaJlfc3KOckb8QGtxAW4H9/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnlvqFosvzmcu5MT7pAJBIf1lYXEwHwYDVR0j BBgwFoAUZ4hhMCdTLej2DQQ9+IrGO6sDu/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI2NGJmYjItZDQxZC00MzE3LWI5MmQtYmI5NDQxZmQwZGNmLzAvNjc4ODYxMzAy NzUzMkRFOEY2MEQwNDNERjg4QUM2M0JBQjAzQkJGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Nzg4NjEzMDI3NTMyREU4RjYwRDA0M0RGODhBQzYzQkFCMDNC QkY4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQgQwDQYJKoZIhvcN AQELBQADggEBAB4wUJQ4uEULAWYWaoTI8KEu2ur3dIBDAaDl3pnKZi/BWW04ZCka oPzMVsn5+VzQS9AQMyTZ+GSPVs+wQw7/PRbJe3n/WF2qi+2CYtMZVmsvun2G+A3q 2A041rMdmocUz/vn8PN8FCK4ul3V1GGRLuTxUYnFt4mbLBTuc/Vk0sNdahxhGYWt Y2ssV6pTWxtqye5SJNzd5Ml+rHxlco6xHdqbGyKG0p7MlHiH+J4qouQMIIlkQUPo zanLhAUCbNelhB2BpHQuODEq31dm4u/AjCwcfGXZIE6iIZd+W0XRlQiuneFMjkWg W5ujmvXat9F8KKDlAdri014PYNajUTgh4jI= -----END CERTIFICATE-----Generated at Tue May 12 22:56:24 2026 by rpki-client