$ rpki-client -vvf rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa File: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (raw, json) Hash identifier: OONf1oH6b7/Al0k4fu2OIqf+coPCbCkVYT8Alt0EfK4= Subject key identifier: BD:B3:D6:EC:54:7E:F0:07:25:CA:06:94:00:54:B1:A2:CF:CF:21:33 Certificate issuer: /CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Certificate serial: 622DC77DF8205E2BC96F249B1FECA7186A67DC1C Authority key identifier: BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa Signing time: Sun 03 May 2026 03:00:47 +0000 ROA not before: Sun 03 May 2026 02:55:47 +0000 ROA not after: Sun 02 May 2027 03:00:47 +0000 asID: 152418 IP address blocks: 157.20.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2d:c7:7d:f8:20:5e:2b:c9:6f:24:9b:1f:ec:a7:18:6a:67:dc:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1 Validity Not Before: May 3 02:55:47 2026 GMT Not After : May 2 03:00:47 2027 GMT Subject: CN=BDB3D6EC547EF00725CA06940054B1A2CFCF2133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5f:c6:28:0b:78:5e:fb:32:27:3f:38:b1:5e: 3c:59:30:59:ce:95:9c:f8:c4:34:46:a5:ae:d3:96: ac:39:45:88:fb:f5:ac:d7:1e:41:4f:49:b9:d4:55: 4c:f5:77:d0:87:7d:fd:1b:3a:c3:56:4c:b7:2f:8b: 7d:b2:ce:8a:4e:7a:b6:0f:e1:45:1a:94:33:50:2d: 47:42:c5:6f:e6:1d:43:6a:8f:3c:05:f3:26:18:7a: 22:e7:f1:89:52:38:64:1c:1f:49:d7:75:11:67:a6: 08:28:eb:48:42:58:ee:aa:1b:97:87:a4:e3:02:ae: 3f:80:23:08:8e:dc:50:9c:d3:3b:b8:fc:97:31:a3: 0c:f2:29:61:f9:7c:4e:84:c2:39:7f:c2:07:5e:88: 97:a4:3f:0c:ea:78:1f:39:fd:8f:77:ad:dc:6e:e3: cf:a8:26:01:0a:92:bd:8a:9b:ef:56:31:58:b3:72: a5:3b:fc:e5:a7:25:ed:bc:a1:28:65:46:24:9e:fe: 42:09:3e:d1:a9:76:91:e6:e7:a7:6b:2a:48:cb:c8: b6:6e:ea:53:0f:f8:03:1e:67:c3:b7:a4:d6:bf:ac: 48:c1:a4:7a:c8:ff:43:34:d4:52:4d:0a:1e:83:e1: 85:8b:50:1d:ac:a1:40:49:a7:eb:89:28:17:50:30: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B3:D6:EC:54:7E:F0:07:25:CA:06:94:00:54:B1:A2:CF:CF:21:33 X509v3 Authority Key Identifier: keyid:BE:C8:2A:A3:BB:0D:1F:AD:AA:91:86:65:F5:DF:04:55:B7:61:D7:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BEC82AA3BB0D1FADAA918665F5DF0455B761D7A1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.179.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:69:a2:95:02:87:48:70:d5:8b:d4:f3:79:d5:c3:c7:27:ba: 93:f6:2d:50:5c:52:fc:2c:72:4e:dc:62:56:c7:a1:51:61:af: 64:c7:6e:a5:6c:7e:cf:98:5c:93:29:aa:14:85:a2:45:c7:06: de:dc:c4:fd:92:c2:73:6e:34:ea:cf:a6:b7:58:87:a7:11:8e: 42:d2:d5:4c:fb:33:9b:7c:c7:3f:f9:59:46:91:28:2a:68:51: 44:4f:35:2d:b7:38:09:5f:a8:c1:6c:e1:69:6a:5a:a3:19:30: b8:7e:74:d3:35:d3:cc:ff:c8:4b:27:60:bf:b7:da:4a:31:f6: c7:46:af:f6:bc:4c:1e:19:1b:49:ae:6f:ee:ff:98:71:08:34: 84:4c:3b:0d:09:28:3d:c0:24:b8:a4:15:67:f1:d4:80:51:ac: 1f:89:4b:e8:58:d7:93:31:83:5c:df:98:f4:a4:cf:5f:3a:df: 89:22:5d:69:a6:dc:ef:a1:d1:76:c7:0e:e4:e9:d5:69:b2:c2: 22:eb:b0:eb:e2:9e:d5:87:9a:e7:46:ea:1c:4b:e0:d8:1a:37: 50:d2:cd:9b:0a:f4:b5:68:d2:73:bd:51:77:15:84:de:b5:cd: 79:71:a8:1a:39:97:71:43:fc:fa:0f:cb:bc:2b:72:b7:8a:29: e6:1d:26:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYi3HffggXivJbySbH+ynGGpn3BwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVDODJBQTNCQjBEMUZBREFBOTE4NjY1RjVERjA0NTVC NzYxRDdBMTAeFw0yNjA1MDMwMjU1NDdaFw0yNzA1MDIwMzAwNDdaMDMxMTAvBgNV BAMTKEJEQjNENkVDNTQ3RUYwMDcyNUNBMDY5NDAwNTRCMUEyQ0ZDRjIxMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoX8YoC3he+zInPzixXjxZMFnO lZz4xDRGpa7Tlqw5RYj79azXHkFPSbnUVUz1d9CHff0bOsNWTLcvi32yzopOerYP 4UUalDNQLUdCxW/mHUNqjzwF8yYYeiLn8YlSOGQcH0nXdRFnpggo60hCWO6qG5eH pOMCrj+AIwiO3FCc0zu4/JcxowzyKWH5fE6Ewjl/wgdeiJekPwzqeB85/Y93rdxu 48+oJgEKkr2Km+9WMVizcqU7/OWnJe28oShlRiSe/kIJPtGpdpHm56drKkjLyLZu 6lMP+AMeZ8O3pNa/rEjBpHrI/0M01FJNCh6D4YWLUB2soUBJp+uJKBdQMMxzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvbPW7FR+8AclygaUAFSxos/PITMwHwYDVR0j BBgwFoAUvsgqo7sNH62qkYZl9d8EVbdh16EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM2MDY2ZTgtOGUxOS00ZGU3LTk0N2ItOTRlZTNjZDA5Zjg1LzAvQkVDODJBQTNC QjBEMUZBREFBOTE4NjY1RjVERjA0NTVCNzYxRDdBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRUM4MkFBM0JCMEQxRkFEQUE5MTg2NjVGNURGMDQ1NUI3NjFE N0ExLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05 NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSzMA0GCSqG SIb3DQEBCwUAA4IBAQB8aaKVAodIcNWL1PN51cPHJ7qT9i1QXFL8LHJO3GJWx6FR Ya9kx26lbH7PmFyTKaoUhaJFxwbe3MT9ksJzbjTqz6a3WIenEY5C0tVM+zObfMc/ +VlGkSgqaFFETzUttzgJX6jBbOFpalqjGTC4fnTTNdPM/8hLJ2C/t9pKMfbHRq/2 vEweGRtJrm/u/5hxCDSETDsNCSg9wCS4pBVn8dSAUawfiUvoWNeTMYNc35j0pM9f Ot+JIl1pptzvodF2xw7k6dVpssIi67Dr4p7Vh5rnRuocS+DYGjdQ0s2bCvS1aNJz vVF3FYTetc15cagaOZdxQ/z6D8u8K3K3iinmHSYt -----END CERTIFICATE-----Generated at Wed May 13 04:51:00 2026 by rpki-client