$ rpki-client -vvf rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa File: 3135372e36362e342e302f32342d3234203d3e20313336383633.roa (raw, json) Hash identifier: bN4+AtALc/9iyjNGa+tTVjtSTWUiYCkfUiJRmkaULIU= Subject key identifier: B3:69:0F:6B:DE:6D:4E:A4:14:CA:08:6C:EC:A1:D3:3B:2B:AB:BA:B5 Certificate issuer: /CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Certificate serial: 09CB0B9E2C16BC92EBE2F0F1F6FB0D437B700CB3 Authority key identifier: 67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa Signing time: Sun 03 May 2026 03:00:35 +0000 ROA not before: Sun 03 May 2026 02:55:35 +0000 ROA not after: Sun 02 May 2027 03:00:35 +0000 asID: 136863 IP address blocks: 157.66.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cb:0b:9e:2c:16:bc:92:eb:e2:f0:f1:f6:fb:0d:43:7b:70:0c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Validity Not Before: May 3 02:55:35 2026 GMT Not After : May 2 03:00:35 2027 GMT Subject: CN=B3690F6BDE6D4EA414CA086CECA1D33B2BABBAB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:28:fb:42:16:f5:b4:57:43:3a:3e:f6:da:fe: 57:ce:e5:4d:f6:15:a6:f1:c5:7d:7e:90:6d:69:e8: 69:91:a0:c8:c4:c6:36:96:b4:95:cd:23:47:c2:bc: eb:d6:f3:4f:54:1d:14:ee:27:cd:b1:b4:a2:e8:61: a6:02:3e:ca:39:1f:97:ba:f4:37:3b:55:b8:dd:32: a5:f0:ab:cf:9e:02:b4:d5:0b:3e:64:bd:ec:ba:55: 55:f0:21:46:57:2d:ca:1b:62:94:41:c2:c1:14:33: 71:4f:5d:4a:b6:ab:39:9f:45:1c:ce:c7:e5:fd:38: e1:51:00:c6:48:e9:44:52:cb:04:f1:8e:c2:eb:a4: b0:71:98:5b:1e:b8:03:19:65:ba:d4:f0:11:dc:d0: 79:43:20:35:14:22:69:02:e6:46:b8:6e:b3:ee:68: bf:b7:c1:9a:40:ca:9d:1e:8a:6d:a7:5b:78:64:ec: 71:cf:5a:0f:f7:8d:fe:d6:66:4a:6f:4a:99:75:27: b0:d1:32:b4:fb:c0:d6:f1:fa:62:20:04:cb:52:79: 91:91:e8:83:85:ee:09:71:42:c9:e2:ef:fb:cd:ad: 75:f7:05:d8:95:60:a4:ee:d9:f9:ae:d8:12:44:2d: c2:51:23:88:99:08:e4:26:e3:e3:f5:a7:f0:2a:9f: 92:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:69:0F:6B:DE:6D:4E:A4:14:CA:08:6C:EC:A1:D3:3B:2B:AB:BA:B5 X509v3 Authority Key Identifier: keyid:67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e342e302f32342d3234203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/24 Signature Algorithm: sha256WithRSAEncryption 61:f3:14:bb:9d:ed:7d:9a:21:5d:01:81:4b:51:8e:14:e8:23: cd:34:55:f1:49:fa:7f:0b:88:93:99:f1:d4:53:5c:a5:c5:a6: 14:88:e9:f8:8a:39:04:aa:1c:1e:04:4f:8e:ed:75:92:64:b4: 90:08:07:d8:3f:e8:79:20:71:1d:f5:22:02:95:b7:ac:94:fc: fc:a7:8f:21:3a:b8:9d:8b:dc:20:62:e2:97:c5:cf:95:ec:aa: 4d:d5:fc:0e:ab:1b:95:cc:66:d5:5f:10:cb:fb:b0:df:79:b0: e1:65:ca:db:27:ee:6c:eb:4d:81:3d:fe:ef:f7:d1:52:a4:d0: d4:e3:4c:de:87:e2:0b:d4:dd:82:55:d9:c9:92:f1:4c:d6:cc: e2:ae:78:f3:57:b4:22:ca:d8:84:7f:3c:9a:49:65:ab:5b:de: d4:c0:55:b5:fd:1a:4c:7c:be:d2:c5:70:92:37:b7:dc:43:f1: 91:35:c5:3d:fd:00:3e:e3:4b:33:87:fd:b7:51:9c:55:5e:bf: ed:81:52:12:9b:5c:53:3b:3c:65:7d:f6:96:a5:6a:34:68:ac: cb:9e:03:f5:6b:d1:a3:48:33:34:32:27:05:08:63:0d:1d:56: ef:44:6e:1e:40:03:04:55:ca:55:cd:89:ae:b9:ae:5d:9b:ed: 7c:e4:5e:2d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCcsLniwWvJLr4vDx9vsNQ3twDLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4ODYxMzAyNzUzMkRFOEY2MEQwNDNERjg4QUM2M0JB QjAzQkJGODAeFw0yNjA1MDMwMjU1MzVaFw0yNzA1MDIwMzAwMzVaMDMxMTAvBgNV BAMTKEIzNjkwRjZCREU2RDRFQTQxNENBMDg2Q0VDQTFEMzNCMkJBQkJBQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwKPtCFvW0V0M6Pvba/lfO5U32 FabxxX1+kG1p6GmRoMjExjaWtJXNI0fCvOvW809UHRTuJ82xtKLoYaYCPso5H5e6 9Dc7VbjdMqXwq8+eArTVCz5kvey6VVXwIUZXLcobYpRBwsEUM3FPXUq2qzmfRRzO x+X9OOFRAMZI6URSywTxjsLrpLBxmFseuAMZZbrU8BHc0HlDIDUUImkC5ka4brPu aL+3wZpAyp0eim2nW3hk7HHPWg/3jf7WZkpvSpl1J7DRMrT7wNbx+mIgBMtSeZGR 6IOF7glxQsni7/vNrXX3BdiVYKTu2fmu2BJELcJRI4iZCOQm4+P1p/Aqn5I5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUs2kPa95tTqQUyghs7KHTOyururUwHwYDVR0j BBgwFoAUZ4hhMCdTLej2DQQ9+IrGO6sDu/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI2NGJmYjItZDQxZC00MzE3LWI5MmQtYmI5NDQxZmQwZGNmLzAvNjc4ODYxMzAy NzUzMkRFOEY2MEQwNDNERjg4QUM2M0JBQjAzQkJGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Nzg4NjEzMDI3NTMyREU4RjYwRDA0M0RGODhBQzYzQkFCMDNC QkY4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgQwDQYJKoZIhvcN AQELBQADggEBAGHzFLud7X2aIV0BgUtRjhToI800VfFJ+n8LiJOZ8dRTXKXFphSI 6fiKOQSqHB4ET47tdZJktJAIB9g/6HkgcR31IgKVt6yU/PynjyE6uJ2L3CBi4pfF z5Xsqk3V/A6rG5XMZtVfEMv7sN95sOFlytsn7mzrTYE9/u/30VKk0NTjTN6H4gvU 3YJV2cmS8UzWzOKuePNXtCLK2IR/PJpJZatb3tTAVbX9Gkx8vtLFcJI3t9xD8ZE1 xT39AD7jSzOH/bdRnFVev+2BUhKbXFM7PGV99palajRorMueA/Vr0aNIMzQyJwUI Yw0dVu9Ebh5AAwRVylXNia65rl2b7XzkXi0= -----END CERTIFICATE-----Generated at Wed May 13 00:21:27 2026 by rpki-client