$ rpki-client -vvf rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: OpScNhGSGHF9cfh0SvlMC4D5SddDMF64JzbjkAw/z6U= Subject key identifier: 9A:6C:53:C4:A1:43:4B:F0:E2:62:F6:16:E0:A8:8D:62:A4:E1:B2:FD Certificate issuer: /CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Certificate serial: 29C4C91F27C191492E540F0B4EA5CC6E0265AAF5 Authority key identifier: BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa Signing time: Sun 03 May 2026 03:00:48 +0000 ROA not before: Sun 03 May 2026 02:55:48 +0000 ROA not after: Sun 02 May 2027 03:00:48 +0000 asID: 152418 IP address blocks: 157.20.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c4:c9:1f:27:c1:91:49:2e:54:0f:0b:4e:a5:cc:6e:02:65:aa:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Validity Not Before: May 3 02:55:48 2026 GMT Not After : May 2 03:00:48 2027 GMT Subject: CN=9A6C53C4A1434BF0E262F616E0A88D62A4E1B2FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d3:d1:86:37:5c:46:46:a7:7f:45:94:4a:a2: 3c:a7:81:60:48:be:83:c3:5a:c1:08:53:53:27:7c: 33:a6:31:ed:81:f2:6c:d8:3d:f2:40:15:4c:a7:ab: 4e:cc:16:67:68:32:20:f8:4a:96:00:43:b4:52:d6: b7:a9:98:94:d9:66:31:7e:de:cf:d7:d0:e7:5a:60: 45:6d:2a:85:f0:e4:0b:dc:02:f3:ee:53:7a:78:e0: 28:e4:2b:02:70:27:74:b9:05:69:89:04:90:de:78: 83:be:4a:a9:e2:77:fc:28:2c:2d:5a:dc:7b:8d:f1: c0:a8:b5:7e:a6:7b:06:f0:71:14:8c:c8:90:fd:de: 40:35:b7:81:a1:e9:48:93:a0:24:c0:41:c7:b1:1c: 74:e1:16:49:1e:32:66:24:b2:14:65:7d:1a:62:27: d6:aa:73:0b:c7:01:0c:b4:87:e3:8f:ea:a6:b6:24: 07:18:b7:60:24:d5:68:d0:96:ae:8a:82:0e:14:e9: 51:ca:e5:a9:d9:c7:55:9a:1a:d9:ba:db:00:eb:c4: b8:2e:64:dd:49:23:d7:f8:7c:8f:ed:b8:6f:f8:d1: d2:af:0e:07:1d:15:29:27:62:12:fe:4a:a5:be:f8: ae:14:d1:02:76:b8:dc:7f:b6:d3:8c:c6:9e:c9:de: 28:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6C:53:C4:A1:43:4B:F0:E2:62:F6:16:E0:A8:8D:62:A4:E1:B2:FD X509v3 Authority Key Identifier: keyid:BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.178.0/24 Signature Algorithm: sha256WithRSAEncryption 36:bc:6e:b7:da:93:68:72:71:90:5e:3d:92:66:65:06:d9:10: e5:d8:21:6b:f9:49:b3:b4:15:65:5f:2e:de:af:6b:3f:cf:e5: 27:ef:3a:f2:86:3a:6e:5c:7a:4a:b8:83:66:b8:cf:f2:af:59: 76:e6:b4:ed:be:5b:62:60:22:96:11:16:94:30:68:82:e5:2c: c9:05:14:82:a4:93:22:4d:d8:2f:3a:39:74:85:e9:e4:ed:a6: 91:b6:15:f0:d4:c8:8e:88:80:b1:15:c0:bb:0c:54:4d:66:c4: c8:b5:a3:06:55:59:d4:df:a3:6a:03:c2:51:67:1f:03:7e:76: 2b:a3:b4:44:d2:c0:50:78:3e:7b:6d:cf:fd:80:8c:46:3b:d4: 9e:9c:7e:47:79:89:fa:d3:f3:30:a9:05:85:84:79:79:40:a8: c4:00:cf:b3:c7:ee:ab:21:be:1c:d9:20:69:eb:9c:2c:84:fd: 76:54:a4:06:64:2c:97:2a:ef:72:f0:57:9d:23:b0:1e:54:ba: a6:e8:b0:7d:2a:b1:42:c5:3d:9c:51:9d:2c:77:a8:68:e8:a8: 57:e3:8d:8c:4f:60:2a:25:d0:d3:91:88:2b:36:b7:69:7b:ed: 29:c1:c9:e0:f1:7c:2e:e6:c9:d8:57:47:af:a9:47:aa:57:99: 8e:cb:cd:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKcTJHyfBkUkuVA8LTqXMbgJlqvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVDODJBQTNCQjBEMUZBREFBOTE4NjY1RjVERjA0NTVC NzYxRDdBMTAeFw0yNjA1MDMwMjU1NDhaFw0yNzA1MDIwMzAwNDhaMDMxMTAvBgNV BAMTKDlBNkM1M0M0QTE0MzRCRjBFMjYyRjYxNkUwQTg4RDYyQTRFMUIyRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg09GGN1xGRqd/RZRKojyngWBI voPDWsEIU1MnfDOmMe2B8mzYPfJAFUynq07MFmdoMiD4SpYAQ7RS1repmJTZZjF+ 3s/X0OdaYEVtKoXw5AvcAvPuU3p44CjkKwJwJ3S5BWmJBJDeeIO+Sqnid/woLC1a 3HuN8cCotX6mewbwcRSMyJD93kA1t4Gh6UiToCTAQcexHHThFkkeMmYkshRlfRpi J9aqcwvHAQy0h+OP6qa2JAcYt2Ak1WjQlq6Kgg4U6VHK5anZx1WaGtm62wDrxLgu ZN1JI9f4fI/tuG/40dKvDgcdFSknYhL+SqW++K4U0QJ2uNx/ttOMxp7J3ijhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmmxTxKFDS/DiYvYW4KiNYqThsv0wHwYDVR0j BBgwFoAUvsgqo7sNH62qkYZl9d8EVbdh16EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM2MDY2ZTgtOGUxOS00ZGU3LTk0N2ItOTRlZTNjZDA5Zjg1LzAvQkVDODJBQTNC QjBEMUZBREFBOTE4NjY1RjVERjA0NTVCNzYxRDdBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRUM4MkFBM0JCMEQxRkFEQUE5MTg2NjVGNURGMDQ1NUI3NjFE N0ExLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSyMA0GCSqG SIb3DQEBCwUAA4IBAQA2vG632pNocnGQXj2SZmUG2RDl2CFr+UmztBVlXy7er2s/ z+Un7zryhjpuXHpKuINmuM/yr1l25rTtvltiYCKWERaUMGiC5SzJBRSCpJMiTdgv Ojl0henk7aaRthXw1MiOiICxFcC7DFRNZsTItaMGVVnU36NqA8JRZx8DfnYro7RE 0sBQeD57bc/9gIxGO9SenH5HeYn60/MwqQWFhHl5QKjEAM+zx+6rIb4c2SBp65ws hP12VKQGZCyXKu9y8FedI7AeVLqm6LB9KrFCxT2cUZ0sd6ho6KhX442MT2AqJdDT kYgrNrdpe+0pwcng8Xwu5snYV0evqUeqV5mOy83+ -----END CERTIFICATE-----Generated at Wed May 13 04:16:09 2026 by rpki-client