$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa File: 3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: aCqvSxepmzD5sIIpWPjyrxsv3XGCPiZSJTz2QbUwrzc= Subject key identifier: CA:82:3A:D0:CD:0F:96:4A:09:EF:9D:24:0B:93:D0:5D:7F:A0:61:79 Certificate issuer: /CN=67239F5E47D123019D26807163E6542441401507 Certificate serial: 3AB15C5D3F1BFCCBE4D017FE66196D0004FFA168 Authority key identifier: 67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa Signing time: Sun 03 May 2026 03:03:38 +0000 ROA not before: Sun 03 May 2026 02:58:38 +0000 ROA not after: Sun 02 May 2027 03:03:38 +0000 asID: 18059 IP address blocks: 150.107.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b1:5c:5d:3f:1b:fc:cb:e4:d0:17:fe:66:19:6d:00:04:ff:a1:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67239F5E47D123019D26807163E6542441401507 Validity Not Before: May 3 02:58:38 2026 GMT Not After : May 2 03:03:38 2027 GMT Subject: CN=CA823AD0CD0F964A09EF9D240B93D05D7FA06179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:04:2e:05:e7:1a:48:19:07:ec:9d:2c:22:b4: 0e:8f:6f:af:30:8e:33:ae:2f:fa:16:57:80:6e:b3: 29:15:ca:c3:46:8b:f5:8e:16:43:5d:a6:e9:e7:58: 2c:6c:96:e2:e1:17:51:13:a3:8e:f6:39:38:e8:49: 86:ae:0a:af:cf:37:6a:90:6b:6b:99:c2:81:f7:c6: 95:0e:9e:df:2b:96:58:a7:27:ed:a1:15:43:de:9c: 92:a0:86:e5:e7:b8:fd:ee:e5:98:f4:51:22:d0:b3: 1b:6e:f3:1c:78:e9:02:44:b8:ee:e7:7d:28:80:e1: 0c:23:a2:36:52:10:cc:87:fa:15:c2:0c:88:3b:88: 14:43:21:fc:f7:98:0c:92:41:bb:d9:01:e2:ee:27: 28:5d:8f:93:5c:63:3e:d9:cb:9d:94:d8:66:c3:c3: df:57:be:aa:9c:f7:1f:f2:3f:22:00:ae:6f:5f:68: ad:86:c5:f7:7d:40:e6:57:92:ef:df:74:43:cd:b0: 0f:01:12:7d:54:f2:33:d9:df:7d:39:9f:af:6e:da: 36:bf:8c:ad:21:5f:58:87:9c:17:23:0c:54:70:ce: ca:7a:8d:5d:53:6c:d7:8d:fd:e0:b5:e3:67:5c:1f: 57:9b:35:c2:b7:46:1f:3e:f1:b3:54:8e:c7:5b:8b: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:82:3A:D0:CD:0F:96:4A:09:EF:9D:24:0B:93:D0:5D:7F:A0:61:79 X509v3 Authority Key Identifier: keyid:67:23:9F:5E:47:D1:23:01:9D:26:80:71:63:E6:54:24:41:40:15:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/67239F5E47D123019D26807163E6542441401507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67239F5E47D123019D26807163E6542441401507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.107.111.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:dc:c2:ce:93:85:14:e9:45:8c:f3:61:38:31:88:9a:0a:c1: c2:4c:05:68:82:34:37:d0:ce:09:e8:0e:4b:9b:f1:11:cf:46: 6e:33:bc:b9:9f:b5:5e:80:19:39:a7:13:b4:14:45:4e:f2:c9: 35:9c:f8:db:6c:06:94:7d:e7:73:1f:e7:89:e7:58:0f:9d:fc: 02:66:74:ed:96:89:8c:42:97:46:10:79:e2:36:3b:9b:52:49: 5e:59:78:05:6e:c9:bb:e8:12:d3:a8:82:5e:10:b9:01:df:34: a9:6b:cb:98:29:92:ec:60:53:00:c8:a4:ed:eb:43:b0:ed:76: 4d:64:15:f5:07:2e:4d:74:b6:aa:35:93:24:65:8b:d9:49:4d: 32:44:03:6f:63:0c:a2:d6:cf:b1:f6:15:87:ec:96:c7:7a:1b: df:49:9c:36:4a:77:7c:bf:c4:09:07:70:57:0c:cd:43:16:56: f2:41:c2:33:35:79:16:eb:12:e6:6f:c0:45:d3:64:3a:eb:25: e8:7f:8b:9f:f0:c8:ae:29:21:d7:0a:ec:7e:e6:73:e9:19:04: 42:a0:1c:da:f9:0a:0f:24:26:2f:9d:a9:c7:28:c2:b9:99:1c: bd:ad:33:27:39:97:cc:59:37:dc:8b:a2:46:c4:08:50:9f:54: 69:37:bf:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOrFcXT8b/Mvk0Bf+ZhltAAT/oWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcyMzlGNUU0N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0 MTQwMTUwNzAeFw0yNjA1MDMwMjU4MzhaFw0yNzA1MDIwMzAzMzhaMDMxMTAvBgNV BAMTKENBODIzQUQwQ0QwRjk2NEEwOUVGOUQyNDBCOTNEMDVEN0ZBMDYxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIBC4F5xpIGQfsnSwitA6Pb68w jjOuL/oWV4BusykVysNGi/WOFkNdpunnWCxsluLhF1ETo472OTjoSYauCq/PN2qQ a2uZwoH3xpUOnt8rllinJ+2hFUPenJKghuXnuP3u5Zj0USLQsxtu8xx46QJEuO7n fSiA4QwjojZSEMyH+hXCDIg7iBRDIfz3mAySQbvZAeLuJyhdj5NcYz7Zy52U2GbD w99Xvqqc9x/yPyIArm9faK2Gxfd9QOZXku/fdEPNsA8BEn1U8jPZ3305n69u2ja/ jK0hX1iHnBcjDFRwzsp6jV1TbNeN/eC142dcH1ebNcK3Rh8+8bNUjsdbi+oHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyoI60M0PlkoJ750kC5PQXX+gYXkwHwYDVR0j BBgwFoAUZyOfXkfRIwGdJoBxY+ZUJEFAFQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzI4MzY3NjMtMTJiNi00ZDhmLWFkMGItNGNkNWI2MTk1OWVmLzAvNjcyMzlGNUU0 N0QxMjMwMTlEMjY4MDcxNjNFNjU0MjQ0MTQwMTUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzIzOUY1RTQ3RDEyMzAxOUQyNjgwNzE2M0U2NTQyNDQxNDAx NTA3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmtvMA0GCSqG SIb3DQEBCwUAA4IBAQB+3MLOk4UU6UWM82E4MYiaCsHCTAVogjQ30M4J6A5Lm/ER z0ZuM7y5n7VegBk5pxO0FEVO8sk1nPjbbAaUfedzH+eJ51gPnfwCZnTtlomMQpdG EHniNjubUkleWXgFbsm76BLTqIJeELkB3zSpa8uYKZLsYFMAyKTt60Ow7XZNZBX1 By5NdLaqNZMkZYvZSU0yRANvYwyi1s+x9hWH7JbHehvfSZw2Snd8v8QJB3BXDM1D FlbyQcIzNXkW6xLmb8BF02Q66yXof4uf8MiuKSHXCux+5nPpGQRCoBza+QoPJCYv nanHKMK5mRy9rTMnOZfMWTfci6JGxAhQn1RpN79G -----END CERTIFICATE-----Generated at Wed May 13 09:14:49 2026 by rpki-client