$ rpki-client -vvf rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa File: 3135372e36362e352e302f32342d3234203d3e20313336383633.roa (raw, json) Hash identifier: 4cMlP64uyDCNnS+HV6/5myzDbaQzlXGJoTPK5CiDoaQ= Subject key identifier: 3D:D2:2F:0A:54:52:79:97:A8:5F:CD:41:00:FB:7B:DD:BB:83:55:75 Certificate issuer: /CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Certificate serial: 2CBF0AA35B29D7B7F6312416BE4BDDB31AA810FA Authority key identifier: 67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa Signing time: Sun 03 May 2026 03:00:35 +0000 ROA not before: Sun 03 May 2026 02:55:35 +0000 ROA not after: Sun 02 May 2027 03:00:35 +0000 asID: 136863 IP address blocks: 157.66.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:bf:0a:a3:5b:29:d7:b7:f6:31:24:16:be:4b:dd:b3:1a:a8:10:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6788613027532DE8F60D043DF88AC63BAB03BBF8 Validity Not Before: May 3 02:55:35 2026 GMT Not After : May 2 03:00:35 2027 GMT Subject: CN=3DD22F0A54527997A85FCD4100FB7BDDBB835575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0e:b5:83:1c:6e:94:67:28:c4:00:ec:88:7a: 75:ce:de:dd:b8:06:19:96:55:bc:a0:d8:53:d8:59: 62:7b:66:bd:cc:f8:6b:4f:0c:b7:49:f3:80:b7:47: ee:e1:a9:38:0c:24:03:1c:2b:9f:16:7b:16:ae:ba: 26:36:54:d9:e6:b4:e5:65:56:f1:e0:ce:5e:9a:39: 15:ce:20:8a:86:1d:71:f2:11:af:15:bd:e9:7e:e4: cc:af:71:05:0c:ad:41:b0:ad:a9:ba:ef:52:4d:ac: e6:8a:76:a4:b8:f6:3a:92:af:92:74:f8:8b:be:fc: ec:59:97:fb:55:cc:f3:fd:f5:99:41:0a:08:27:eb: 46:06:a8:0a:c9:0b:7a:27:ae:ee:43:af:44:6c:62: a3:d0:78:5e:26:ce:38:c6:cc:45:21:e9:cf:de:e9: 60:b6:be:3d:15:5d:c4:23:02:8b:ee:37:03:92:50: c1:fa:ad:0f:ce:b6:84:94:db:51:1b:a7:88:df:63: 6f:22:31:ca:57:00:85:d7:23:11:26:c6:89:2b:95: 89:c5:fc:1e:85:29:0c:c7:9e:6d:64:74:19:f5:0b: f0:81:88:7e:a6:7d:57:29:96:ce:43:c9:9c:fb:f2: 03:c2:08:49:96:c0:ed:75:43:7c:61:af:ac:d1:63: d6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D2:2F:0A:54:52:79:97:A8:5F:CD:41:00:FB:7B:DD:BB:83:55:75 X509v3 Authority Key Identifier: keyid:67:88:61:30:27:53:2D:E8:F6:0D:04:3D:F8:8A:C6:3B:AB:03:BB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6788613027532DE8F60D043DF88AC63BAB03BBF8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/3135372e36362e352e302f32342d3234203d3e20313336383633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.5.0/24 Signature Algorithm: sha256WithRSAEncryption 23:da:09:14:51:8b:ff:ef:ec:e1:5f:e2:d3:ff:37:38:51:cc: 4d:ed:b6:ae:37:32:1c:8d:84:26:ec:8a:73:06:ce:ca:c2:4f: 85:dd:53:fd:5c:15:ae:5b:11:fa:05:c5:8d:f5:aa:a4:95:87: 52:e5:93:c6:ed:e8:f0:21:36:45:63:00:f3:b2:db:03:78:b3: 86:b0:f3:9e:c9:45:44:d3:77:32:63:cd:50:cf:bc:f6:50:01: 47:12:f8:3f:2e:39:2b:b8:b2:b9:5a:a0:42:eb:7a:17:6a:ee: 93:d8:76:d3:43:53:64:43:69:54:1f:43:9f:51:4e:e3:ba:1b: 3e:bf:03:4d:e2:5c:e0:70:8e:8b:34:8e:2b:ea:01:f8:8a:88: 6a:46:86:94:cf:aa:2d:f8:2b:33:eb:e3:7b:52:80:9a:92:96: 65:29:6f:09:73:4b:94:7d:de:fb:f2:89:47:ce:c3:6b:73:db: 66:12:4d:ab:64:99:0a:2d:a6:88:15:d8:39:f2:40:02:7e:5a: 88:f5:36:9b:cf:b9:9d:f3:50:34:e6:75:ad:f9:dc:22:a0:c7: 4c:b4:eb:2b:a5:f6:41:4a:7d:f7:5c:e2:de:e3:77:22:a4:02: 81:06:4a:3e:36:2f:57:9c:8d:cb:68:0c:97:7e:72:5b:99:0e: 62:04:37:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULL8Ko1sp17f2MSQWvkvdsxqoEPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4ODYxMzAyNzUzMkRFOEY2MEQwNDNERjg4QUM2M0JB QjAzQkJGODAeFw0yNjA1MDMwMjU1MzVaFw0yNzA1MDIwMzAwMzVaMDMxMTAvBgNV BAMTKDNERDIyRjBBNTQ1Mjc5OTdBODVGQ0Q0MTAwRkI3QkREQkI4MzU1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdDrWDHG6UZyjEAOyIenXO3t24 BhmWVbyg2FPYWWJ7Zr3M+GtPDLdJ84C3R+7hqTgMJAMcK58WexauuiY2VNnmtOVl VvHgzl6aORXOIIqGHXHyEa8Vvel+5MyvcQUMrUGwram671JNrOaKdqS49jqSr5J0 +Iu+/OxZl/tVzPP99ZlBCggn60YGqArJC3onru5Dr0RsYqPQeF4mzjjGzEUh6c/e 6WC2vj0VXcQjAovuNwOSUMH6rQ/OtoSU21Ebp4jfY28iMcpXAIXXIxEmxokrlYnF /B6FKQzHnm1kdBn1C/CBiH6mfVcpls5DyZz78gPCCEmWwO11Q3xhr6zRY9YPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPdIvClRSeZeoX81BAPt73buDVXUwHwYDVR0j BBgwFoAUZ4hhMCdTLej2DQQ9+IrGO6sDu/gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI2NGJmYjItZDQxZC00MzE3LWI5MmQtYmI5NDQxZmQwZGNmLzAvNjc4ODYxMzAy NzUzMkRFOEY2MEQwNDNERjg4QUM2M0JBQjAzQkJGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82Nzg4NjEzMDI3NTMyREU4RjYwRDA0M0RGODhBQzYzQkFCMDNC QkY4LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIyLWQ0MWQtNDMxNy1i OTJkLWJiOTQ0MWZkMGRjZi8wLzMxMzUzNzJlMzYzNjJlMzUyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzYzODM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQgUwDQYJKoZIhvcN AQELBQADggEBACPaCRRRi//v7OFf4tP/NzhRzE3ttq43MhyNhCbsinMGzsrCT4Xd U/1cFa5bEfoFxY31qqSVh1Llk8bt6PAhNkVjAPOy2wN4s4aw857JRUTTdzJjzVDP vPZQAUcS+D8uOSu4srlaoELrehdq7pPYdtNDU2RDaVQfQ59RTuO6Gz6/A03iXOBw jos0jivqAfiKiGpGhpTPqi34KzPr43tSgJqSlmUpbwlzS5R93vvyiUfOw2tz22YS TatkmQotpogV2DnyQAJ+Woj1NpvPuZ3zUDTmda353CKgx0y06yul9kFKffdc4t7j dyKkAoEGSj42L1ecjctoDJd+cluZDmIENz4= -----END CERTIFICATE-----Generated at Wed May 13 00:21:43 2026 by rpki-client