$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130392e302f32342d3234203d3e203138303539.roa File: 3135302e3130372e3130392e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: KPChYBhVgHLm+3TK7sJyEDvoq4wvPwoUVLml1chiX1I= Subject key identifier: 9B:E0:E0:CF:59:74:BD:B6:E7:95:40:5A:C5:1A:AB:E4:F3:B4:AF:71 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 70E0925E6492F69806FBAE8F820BC5A47EF365CC Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130392e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:39 +0000 ROA not before: Sun 03 May 2026 02:58:39 +0000 ROA not after: Sun 02 May 2027 03:03:39 +0000 asID: 18059 IP address blocks: 150.107.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e0:92:5e:64:92:f6:98:06:fb:ae:8f:82:0b:c5:a4:7e:f3:65:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:39 2026 GMT Not After : May 2 03:03:39 2027 GMT Subject: CN=9BE0E0CF5974BDB6E795405AC51AABE4F3B4AF71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:5d:a8:ad:9b:b6:47:64:a6:e5:cb:57:a8:a3: f5:73:d8:cd:01:8f:5a:51:85:5c:bc:37:e9:55:db: 8e:3d:2d:c3:9c:25:5c:bd:ff:77:8c:32:1e:f5:b4: 6b:97:67:dd:65:35:93:76:06:6a:d2:a5:23:1f:3d: bf:01:e0:be:fe:5e:3b:8a:8f:e2:bf:91:5f:fd:92: 50:9c:60:a1:d8:01:5a:71:d8:2b:01:ea:1a:72:28: 76:a1:cd:f8:9b:89:ee:04:02:68:0e:80:f3:53:d3: 67:88:9a:97:9d:8f:db:90:2f:2f:c3:23:ee:81:d2: cc:80:92:b4:fb:41:27:c6:ca:70:7a:c3:29:dd:c1: 14:d0:00:c3:2b:18:e9:3c:18:87:c7:16:f6:c7:4a: 4d:c8:c7:38:a9:71:c0:5e:74:61:50:cb:7d:66:36: 48:b3:55:29:39:e7:f6:90:76:06:7e:1a:a5:9c:9d: 99:f0:ed:eb:88:bd:44:a1:e0:72:b0:dd:ea:b8:b4: 46:06:ad:fc:a2:cc:a6:20:e0:73:9d:ac:da:44:26: 43:a3:1f:43:19:f6:f0:bb:ea:17:d7:5b:aa:9f:ed: 5d:74:f6:4b:b9:76:aa:84:1d:d8:53:15:6a:a1:f9: da:57:81:03:33:f6:f3:02:1c:05:5a:c4:b0:28:82: 80:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E0:E0:CF:59:74:BD:B6:E7:95:40:5A:C5:1A:AB:E4:F3:B4:AF:71 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3130392e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.109.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7e:07:94:a6:6e:a9:1b:35:9a:9e:d1:ac:c6:4c:ac:0e:dd: 2a:4a:fa:5b:9f:7e:5b:81:b3:05:a8:51:d5:a2:c0:9e:e2:c2: 61:0a:d9:fd:79:77:56:f1:09:c2:3f:9b:aa:b7:c3:61:c5:7e: 27:79:9c:cb:7a:43:0c:f8:d6:1b:be:5a:75:31:10:8e:09:3f: 9c:c3:9a:28:88:fb:0d:38:03:28:41:8a:b0:31:6d:e5:68:cd: f4:8a:25:27:a7:fc:db:fa:7c:af:83:e0:b9:f5:76:da:97:d3: 88:6a:59:91:d8:68:aa:74:f5:ba:0b:ea:99:07:da:68:29:58: 2e:2f:bb:59:f8:db:c8:4e:9a:1c:b6:6e:0c:31:c8:1e:e5:db: ed:69:0c:6c:1b:4f:a2:66:86:2b:b9:cb:20:5a:3a:c9:13:eb: d6:0e:24:b6:e5:ab:18:d8:a6:48:f3:bf:b1:97:6d:3c:26:3a: b8:9e:54:40:96:30:88:e5:50:8a:4a:9a:fa:5b:6d:b1:e7:d0: fa:95:bf:4e:b1:34:6c:cf:fe:e7:1e:60:5a:8c:03:42:a4:38: 0c:62:a6:43:f1:fa:71:00:d0:2e:45:fd:1f:74:0c:bf:f9:39: 5d:94:62:34:24:ee:f3:d8:38:ef:c5:ba:fe:43:4d:57:a2:90: 83:31:ca:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcOCSXmSS9pgG+66PggvFpH7zZcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzlaFw0yNzA1MDIwMzAzMzlaMDMxMTAvBgNV BAMTKDlCRTBFMENGNTk3NEJEQjZFNzk1NDA1QUM1MUFBQkU0RjNCNEFGNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIXaitm7ZHZKbly1eoo/Vz2M0B j1pRhVy8N+lV2449LcOcJVy9/3eMMh71tGuXZ91lNZN2BmrSpSMfPb8B4L7+XjuK j+K/kV/9klCcYKHYAVpx2CsB6hpyKHahzfibie4EAmgOgPNT02eImpedj9uQLy/D I+6B0syAkrT7QSfGynB6wyndwRTQAMMrGOk8GIfHFvbHSk3IxzipccBedGFQy31m NkizVSk55/aQdgZ+GqWcnZnw7euIvUSh4HKw3eq4tEYGrfyizKYg4HOdrNpEJkOj H0MZ9vC76hfXW6qf7V109ku5dqqEHdhTFWqh+dpXgQMz9vMCHAVaxLAogoB7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm+Dgz1l0vbbnlUBaxRqr5PO0r3EwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmttMA0GCSqG SIb3DQEBCwUAA4IBAQAffgeUpm6pGzWantGsxkysDt0qSvpbn35bgbMFqFHVosCe 4sJhCtn9eXdW8QnCP5uqt8NhxX4neZzLekMM+NYbvlp1MRCOCT+cw5ooiPsNOAMo QYqwMW3laM30iiUnp/zb+nyvg+C59Xbal9OIalmR2GiqdPW6C+qZB9poKVguL7tZ +NvITpoctm4MMcge5dvtaQxsG0+iZoYrucsgWjrJE+vWDiS25asY2KZI87+xl208 Jjq4nlRAljCI5VCKSpr6W22x59D6lb9OsTRsz/7nHmBajANCpDgMYqZD8fpxANAu Rf0fdAy/+TldlGI0JO7z2Djvxbr+Q01XopCDMcpa -----END CERTIFICATE-----Generated at Wed May 13 09:17:47 2026 by rpki-client