$ rpki-client -vvf rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa File: 3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: p4Sr8FlFmUwj/pC6EPbP4Z4DB4YyU4S3h6AHeZD4KSk= Subject key identifier: 2B:94:3E:15:80:4A:79:BF:52:A8:01:E9:2F:16:D4:81:D6:E8:83:E2 Certificate issuer: /CN=C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA Certificate serial: 28414DB3B1B901F639706CA5EA1463E8250E91C5 Authority key identifier: C1:26:0A:95:8F:86:F1:FF:20:AE:0F:31:E8:46:BA:1C:4E:9A:24:FA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa Signing time: Sun 03 May 2026 03:01:16 +0000 ROA not before: Sun 03 May 2026 02:56:16 +0000 ROA not after: Sun 02 May 2027 03:01:16 +0000 asID: 55699 IP address blocks: 150.107.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.crl rsync://rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:41:4d:b3:b1:b9:01:f6:39:70:6c:a5:ea:14:63:e8:25:0e:91:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA Validity Not Before: May 3 02:56:16 2026 GMT Not After : May 2 03:01:16 2027 GMT Subject: CN=2B943E15804A79BF52A801E92F16D481D6E883E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:82:31:dd:bb:d4:42:28:04:0b:17:de:70: 8a:c7:9e:d7:85:6a:1e:5a:ba:60:b0:48:0d:00:8e: 22:8a:77:ac:33:d3:b3:cd:97:7a:c3:a6:95:38:e8: 5e:db:28:ec:5b:48:b1:ab:9e:b1:9b:40:b9:b4:5d: 89:2c:39:e2:9c:db:e5:93:97:b0:45:27:fa:86:6f: fd:e7:3e:46:6d:e4:1b:55:b9:3e:92:06:16:71:fa: 9a:f4:ed:04:a0:62:7e:84:38:e9:44:14:68:8a:31: bf:16:d8:90:0a:cf:4c:cc:db:38:97:a8:92:cc:04: a4:95:fe:91:d9:45:8b:68:f0:d6:91:b1:6c:e3:f0: f2:71:84:db:20:c0:84:e3:b6:38:50:31:bd:b6:68: a9:98:39:fc:b5:76:be:83:1b:3e:59:8f:b0:6a:da: d5:3b:5f:7c:27:86:28:a3:ad:aa:15:b4:77:30:be: 8b:28:d4:a9:e2:e2:f1:2a:ba:13:2a:21:45:de:04: 04:db:df:54:d4:6d:49:c5:e2:b8:99:87:f4:81:c0: 02:25:d7:45:82:4f:6b:de:a5:49:65:44:61:7e:60: 81:69:a4:a6:13:44:0f:a7:ff:a6:cf:d0:3a:07:42: b5:6d:2d:87:f1:6c:e4:0f:ce:83:f1:e8:ca:ff:e3: e6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:94:3E:15:80:4A:79:BF:52:A8:01:E9:2F:16:D4:81:D6:E8:83:E2 X509v3 Authority Key Identifier: keyid:C1:26:0A:95:8F:86:F1:FF:20:AE:0F:31:E8:46:BA:1C:4E:9A:24:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1260A958F86F1FF20AE0F31E846BA1C4E9A24FA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3135302e3130372e3234342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.244.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:5d:bc:1c:72:23:8a:1a:05:bd:b4:a8:6c:8f:c3:d5:65:7a: 97:30:2d:d8:b6:5e:a8:0c:6f:71:0c:13:f7:35:4d:ec:1d:cc: f1:10:ab:b7:f3:d5:42:2f:0d:5f:ab:43:95:47:0f:64:33:97: 7a:ea:2e:f6:5a:7a:fc:ab:32:e1:81:57:7d:73:20:19:4d:7e: 37:c8:bf:50:68:38:f5:23:5e:ff:40:2c:38:ad:2a:7e:07:5c: 97:8d:f9:18:85:cf:5b:29:1d:ab:b7:8d:da:5a:e5:44:0b:bc: 7d:0c:08:13:49:c7:1f:ec:00:f4:f6:0f:63:3e:1c:8c:d9:e6: 2a:6c:b2:7b:73:51:fb:d2:1a:28:1d:4e:85:2b:6e:0d:af:17: 38:de:b2:be:21:74:66:3e:f3:8a:57:b5:a0:fb:cc:d6:7c:63: ba:c7:bd:f7:0d:46:ec:18:d2:8a:37:d4:66:ae:a6:19:75:5f: 05:7e:ab:c9:33:48:74:db:40:52:49:0d:b5:04:c6:93:64:66: 91:e1:6a:05:d9:75:a8:fb:f9:21:26:9c:b5:26:35:41:4a:60: fd:75:23:dc:d5:45:f8:e1:53:c8:10:f5:5a:51:89:6a:96:57: 53:e2:92:a4:cb:ee:de:a6:73:d7:83:2f:2b:2e:17:f0:a9:2a: 1e:70:9a:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKEFNs7G5AfY5cGyl6hRj6CUOkcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzEyNjBBOTU4Rjg2RjFGRjIwQUUwRjMxRTg0NkJBMUM0 RTlBMjRGQTAeFw0yNjA1MDMwMjU2MTZaFw0yNzA1MDIwMzAxMTZaMDMxMTAvBgNV BAMTKDJCOTQzRTE1ODA0QTc5QkY1MkE4MDFFOTJGMTZENDgxRDZFODgzRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/IIx3bvUQigECxfecIrHnteF ah5aumCwSA0AjiKKd6wz07PNl3rDppU46F7bKOxbSLGrnrGbQLm0XYksOeKc2+WT l7BFJ/qGb/3nPkZt5BtVuT6SBhZx+pr07QSgYn6EOOlEFGiKMb8W2JAKz0zM2ziX qJLMBKSV/pHZRYto8NaRsWzj8PJxhNsgwITjtjhQMb22aKmYOfy1dr6DGz5Zj7Bq 2tU7X3wnhiijraoVtHcwvoso1Kni4vEquhMqIUXeBATb31TUbUnF4riZh/SBwAIl 10WCT2vepUllRGF+YIFppKYTRA+n/6bP0DoHQrVtLYfxbOQPzoPx6Mr/4+aJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK5Q+FYBKeb9SqAHpLxbUgdbog+IwHwYDVR0j BBgwFoAUwSYKlY+G8f8grg8x6Ea6HE6aJPowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjU5OWVkOTYtZDQwOC00NDE4LWI4MmEtNWQ1YThlNjY1N2YzLzAvQzEyNjBBOTU4 Rjg2RjFGRjIwQUUwRjMxRTg0NkJBMUM0RTlBMjRGQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMTI2MEE5NThGODZGMUZGMjBBRTBGMzFFODQ2QkExQzRFOUEy NEZBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzUzMDJlMzEzMDM3MmUzMjM0MzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClmv0MA0GCSqG SIb3DQEBCwUAA4IBAQBNXbwcciOKGgW9tKhsj8PVZXqXMC3Ytl6oDG9xDBP3NU3s HczxEKu389VCLw1fq0OVRw9kM5d66i72Wnr8qzLhgVd9cyAZTX43yL9QaDj1I17/ QCw4rSp+B1yXjfkYhc9bKR2rt43aWuVEC7x9DAgTSccf7AD09g9jPhyM2eYqbLJ7 c1H70hooHU6FK24Nrxc43rK+IXRmPvOKV7Wg+8zWfGO6x733DUbsGNKKN9RmrqYZ dV8FfqvJM0h020BSSQ21BMaTZGaR4WoF2XWo+/khJpy1JjVBSmD9dSPc1UX44VPI EPVaUYlqlldT4pKky+7epnPXgy8rLhfwqSoecJpq -----END CERTIFICATE-----Generated at Wed May 13 06:04:31 2026 by rpki-client