$ rpki-client -vvf rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa File: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (raw, json) Hash identifier: Ci+C8lgdBuoIRcX6sBTuz002jYwNdox6i5sko8xMKfo= Subject key identifier: 35:B3:F9:04:5D:84:12:4E:3E:C1:BA:30:33:70:A9:B4:9B:BE:2B:14 Certificate issuer: /CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Certificate serial: 68746CFA48D4DDB81CC7ABF02A8E69574B46253B Authority key identifier: BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa Signing time: Sun 03 May 2026 03:00:47 +0000 ROA not before: Sun 03 May 2026 02:55:47 +0000 ROA not after: Sun 02 May 2027 03:00:47 +0000 asID: 152418 IP address blocks: 157.20.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:74:6c:fa:48:d4:dd:b8:1c:c7:ab:f0:2a:8e:69:57:4b:46:25:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Validity Not Before: May 3 02:55:47 2026 GMT Not After : May 2 03:00:47 2027 GMT Subject: CN=35B3F9045D84124E3EC1BA303370A9B49BBE2B14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:b5:b1:92:5c:09:3d:91:42:85:bf:a9:08: 3f:9a:ed:83:51:51:4b:01:e1:c5:7f:97:48:a1:b3: 4c:d8:de:d3:9e:5b:dd:fd:4b:c3:01:78:c4:54:64: 69:5c:85:25:ef:32:03:b8:a1:0d:82:11:49:9a:60: af:dd:45:9e:76:c1:76:a5:79:de:49:d3:73:14:e1: 83:02:40:ee:34:04:cc:f8:53:e7:9f:91:e8:a2:ee: 88:af:58:63:3a:30:7a:ef:80:94:b2:78:11:d9:49: 26:e2:54:92:15:54:23:20:e7:6d:dd:9c:66:5a:c3: be:99:d4:8e:7b:dd:71:c2:e8:66:2b:79:00:04:45: 6a:ca:03:53:4d:01:6b:4f:85:57:22:97:ba:90:a4: 8c:3a:81:46:c3:12:4d:8d:38:48:e5:77:ca:3f:64: bb:31:3f:c0:a6:9e:26:64:42:51:7e:41:ea:9b:96: cb:40:45:e6:b6:46:71:38:63:f5:b7:c4:cc:f8:4e: f4:a9:68:b5:d3:6a:ac:90:8f:56:32:5c:a5:61:f8: ce:af:81:30:15:71:c8:69:82:c9:de:f0:1e:41:46: ea:8b:82:2d:af:fc:04:59:c3:56:b8:82:7d:78:a8: 26:7a:94:18:a1:6f:59:02:c7:8f:57:23:a9:bd:02: 34:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B3:F9:04:5D:84:12:4E:3E:C1:BA:30:33:70:A9:B4:9B:BE:2B:14 X509v3 Authority Key Identifier: keyid:BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:93:33:12:97:f0:d5:79:07:9d:1d:9e:96:c4:91:0f:fc:96: 40:75:8a:e4:d3:ea:0d:aa:2d:d3:8b:18:99:70:56:a1:7e:ef: b1:93:98:77:b7:a3:32:48:fe:0e:c8:ca:37:c4:7b:1f:4b:52: 6b:a2:15:3f:a4:88:1b:d3:22:b7:f5:c3:a0:7b:3f:29:b7:9d: 9b:2b:50:11:08:25:23:f3:13:57:21:73:bc:98:7f:61:e0:fc: 52:99:f5:9d:69:20:63:35:8c:94:c6:39:a5:ef:f1:a8:62:a7: 8f:4d:34:c7:2e:1c:03:c2:91:8c:90:3a:0d:e8:27:0c:c8:7d: ab:af:df:a2:d8:ba:36:35:90:8c:34:54:85:ef:18:f3:32:88: 64:ca:65:1f:e4:af:6c:2e:37:55:29:93:93:d7:c4:0e:1d:ec: fd:e1:08:c3:68:d3:aa:d4:46:0e:61:87:f9:9d:9b:23:83:a4: a9:f3:08:14:93:0f:15:e6:7c:f7:63:65:b1:d8:2d:49:6a:e3: aa:76:c8:bd:0f:00:97:0d:42:bc:5d:2f:cb:fb:cb:d5:27:cc: 8b:75:03:be:81:02:6c:9a:8f:cf:64:88:c9:67:78:2e:33:02: ec:20:5c:97:ee:74:20:0c:2c:1c:cc:3a:8b:94:6a:ce:3d:72: 7e:15:71:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaHRs+kjU3bgcx6vwKo5pV0tGJTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVDODJBQTNCQjBEMUZBREFBOTE4NjY1RjVERjA0NTVC NzYxRDdBMTAeFw0yNjA1MDMwMjU1NDdaFw0yNzA1MDIwMzAwNDdaMDMxMTAvBgNV BAMTKDM1QjNGOTA0NUQ4NDEyNEUzRUMxQkEzMDMzNzBBOUI0OUJCRTJCMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB+bWxklwJPZFChb+pCD+a7YNR UUsB4cV/l0ihs0zY3tOeW939S8MBeMRUZGlchSXvMgO4oQ2CEUmaYK/dRZ52wXal ed5J03MU4YMCQO40BMz4U+efkeii7oivWGM6MHrvgJSyeBHZSSbiVJIVVCMg523d nGZaw76Z1I573XHC6GYreQAERWrKA1NNAWtPhVcil7qQpIw6gUbDEk2NOEjld8o/ ZLsxP8CmniZkQlF+QeqblstARea2RnE4Y/W3xMz4TvSpaLXTaqyQj1YyXKVh+M6v gTAVcchpgsne8B5BRuqLgi2v/ARZw1a4gn14qCZ6lBihb1kCx49XI6m9AjQJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNbP5BF2EEk4+wbowM3CptJu+KxQwHwYDVR0j BBgwFoAUvsgqo7sNH62qkYZl9d8EVbdh16EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM2MDY2ZTgtOGUxOS00ZGU3LTk0N2ItOTRlZTNjZDA5Zjg1LzAvQkVDODJBQTNC QjBEMUZBREFBOTE4NjY1RjVERjA0NTVCNzYxRDdBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRUM4MkFBM0JCMEQxRkFEQUE5MTg2NjVGNURGMDQ1NUI3NjFE N0ExLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQCNkzMSl/DVeQedHZ6WxJEP/JZAdYrk0+oNqi3TixiZcFah fu+xk5h3t6MySP4OyMo3xHsfS1JrohU/pIgb0yK39cOgez8pt52bK1ARCCUj8xNX IXO8mH9h4PxSmfWdaSBjNYyUxjml7/GoYqePTTTHLhwDwpGMkDoN6CcMyH2rr9+i 2Lo2NZCMNFSF7xjzMohkymUf5K9sLjdVKZOT18QOHez94QjDaNOq1EYOYYf5nZsj g6Sp8wgUkw8V5nz3Y2Wx2C1JauOqdsi9DwCXDUK8XS/L+8vVJ8yLdQO+gQJsmo/P ZIjJZ3guMwLsIFyX7nQgDCwczDqLlGrOPXJ+FXHx -----END CERTIFICATE-----Generated at Wed May 13 02:26:25 2026 by rpki-client