$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa File: 3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: CrQaFYM2XV0r43WotNZ/B8GivPG46TQ9lYBJplJwJ8s= Subject key identifier: EE:61:5E:1D:2C:CF:CF:AF:BC:3B:58:34:44:0C:5D:40:34:75:C1:36 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 6D636B55FF340823EFE075A9977130C40968C0C3 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:38 +0000 ROA not before: Sun 03 May 2026 02:58:38 +0000 ROA not after: Sun 02 May 2027 03:03:38 +0000 asID: 18059 IP address blocks: 150.107.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:63:6b:55:ff:34:08:23:ef:e0:75:a9:97:71:30:c4:09:68:c0:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:38 2026 GMT Not After : May 2 03:03:38 2027 GMT Subject: CN=EE615E1D2CCFCFAFBC3B5834440C5D403475C136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:02:09:e8:56:ed:97:a3:33:da:c1:34:57:e0: d8:23:17:a6:30:ea:9e:45:e6:20:aa:ca:10:69:81: fc:9e:14:85:e6:74:03:2e:d5:11:b7:26:f5:03:bc: 4e:d7:10:6f:51:55:77:4e:e1:8d:79:bd:ac:dc:f0: 40:7a:c2:d4:35:cd:fa:2f:09:c2:f8:d5:e1:65:5d: 80:0d:18:68:36:8f:d8:f4:0c:e9:68:0e:1a:0c:a8: e8:eb:3e:4e:53:62:52:d6:cc:9f:79:06:7f:e9:a4: 52:24:e3:20:7a:31:ad:60:2a:09:c2:66:bc:12:99: b4:75:e7:11:df:d9:6d:e2:0e:27:3d:56:1c:64:33: ea:8b:3c:60:b6:aa:8a:64:f3:13:80:70:2b:39:0c: 55:3a:2c:73:4a:0c:d5:8b:dd:1d:33:dc:1f:81:ad: ae:24:5a:16:80:f7:75:1b:a8:e8:92:2c:f9:6b:c7: 1a:c0:29:46:4b:d8:d9:82:3d:4a:74:4f:04:38:43: 62:fc:14:d4:55:cd:57:be:e1:0e:9d:32:b6:f4:f7: 94:d2:ab:a6:06:6e:17:27:b2:6d:fd:99:ad:f7:3e: 75:17:90:c8:1a:d3:94:e2:d0:e4:03:30:98:33:a3: a6:d3:bf:62:5f:23:44:56:eb:ad:f7:6a:1c:b5:8e: ec:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:61:5E:1D:2C:CF:CF:AF:BC:3B:58:34:44:0C:5D:40:34:75:C1:36 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.108.0/24 Signature Algorithm: sha256WithRSAEncryption 47:6f:45:1e:42:d1:50:31:f2:7d:fe:c4:fe:12:30:a5:79:fb: a5:58:7b:2c:65:86:a0:61:87:31:e5:11:d8:ec:6a:8d:49:26: 52:b9:50:35:39:9d:a2:a3:7d:26:0a:68:f1:48:aa:5c:90:53: 5e:0c:2a:2f:17:ea:04:a9:87:43:c1:d2:29:86:17:5d:0d:d5: 05:85:c4:09:e7:ee:fc:05:bb:21:62:e7:22:34:0a:4b:c5:6f: ab:83:50:4b:4f:7b:20:ec:d8:36:bd:5c:8b:c7:8f:66:96:5c: c1:c1:ae:34:ea:04:35:34:0d:74:c1:32:6a:f6:03:ea:7e:fb: c0:47:8f:ac:be:aa:10:88:0d:00:7f:bb:d9:ea:ef:f2:98:1a: a6:ec:17:24:2d:03:10:de:a1:9c:0d:2d:a7:61:93:1b:d4:08: 69:8f:8c:4a:da:f3:26:de:d8:3e:dd:44:d9:d4:8f:35:df:73: 8d:bf:c0:cb:cf:00:cd:a7:b9:f1:3b:c6:92:c7:68:4e:67:2e: dd:31:13:ba:95:48:7d:be:62:96:ab:50:0c:c4:9e:ea:5d:4f: d0:78:d0:56:6b:55:95:68:6d:00:aa:06:4a:a1:db:25:0c:04: ac:8a:5b:50:ce:dd:12:e1:1a:95:32:52:6f:1f:9f:b1:88:a3: 8a:ed:ec:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbWNrVf80CCPv4HWpl3EwxAlowMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzhaFw0yNzA1MDIwMzAzMzhaMDMxMTAvBgNV BAMTKEVFNjE1RTFEMkNDRkNGQUZCQzNCNTgzNDQ0MEM1RDQwMzQ3NUMxMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsAgnoVu2XozPawTRX4NgjF6Yw 6p5F5iCqyhBpgfyeFIXmdAMu1RG3JvUDvE7XEG9RVXdO4Y15vazc8EB6wtQ1zfov CcL41eFlXYANGGg2j9j0DOloDhoMqOjrPk5TYlLWzJ95Bn/ppFIk4yB6Ma1gKgnC ZrwSmbR15xHf2W3iDic9VhxkM+qLPGC2qopk8xOAcCs5DFU6LHNKDNWL3R0z3B+B ra4kWhaA93UbqOiSLPlrxxrAKUZL2NmCPUp0TwQ4Q2L8FNRVzVe+4Q6dMrb095TS q6YGbhcnsm39ma33PnUXkMga05Ti0OQDMJgzo6bTv2JfI0RW6633ahy1juzLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7mFeHSzPz6+8O1g0RAxdQDR1wTYwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmtsMA0GCSqG SIb3DQEBCwUAA4IBAQBHb0UeQtFQMfJ9/sT+EjClefulWHssZYagYYcx5RHY7GqN SSZSuVA1OZ2io30mCmjxSKpckFNeDCovF+oEqYdDwdIphhddDdUFhcQJ5+78Bbsh YuciNApLxW+rg1BLT3sg7Ng2vVyLx49mllzBwa406gQ1NA10wTJq9gPqfvvAR4+s vqoQiA0Af7vZ6u/ymBqm7BckLQMQ3qGcDS2nYZMb1Ahpj4xK2vMm3tg+3UTZ1I81 33ONv8DLzwDNp7nxO8aSx2hOZy7dMRO6lUh9vmKWq1AMxJ7qXU/QeNBWa1WVaG0A qgZKodslDASsiltQzt0S4RqVMlJvH5+xiKOK7ex2 -----END CERTIFICATE-----Generated at Wed May 13 09:12:22 2026 by rpki-client