$ rpki-client -vvf rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa File: 3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa (raw, json) Hash identifier: 8PPdaCX6mIjApYArjunSo3wNOsnTma7JcAZ0c6t+SzU= Subject key identifier: EC:73:F2:BD:C9:AC:45:E6:1B:0E:2E:3F:82:6B:1B:B0:FB:8B:D0:8F Certificate issuer: /CN=A5251C27E1AF09AE2F28618250807EA4D573694B Certificate serial: 1A4D295228C4FE0D60DB40A02E3CF910E4350B7E Authority key identifier: A5:25:1C:27:E1:AF:09:AE:2F:28:61:82:50:80:7E:A4:D5:73:69:4B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A5251C27E1AF09AE2F28618250807EA4D573694B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa Signing time: Sun 03 May 2026 03:04:54 +0000 ROA not before: Sun 03 May 2026 02:59:54 +0000 ROA not after: Sun 02 May 2027 03:04:54 +0000 asID: 152372 IP address blocks: 157.15.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/A5251C27E1AF09AE2F28618250807EA4D573694B.crl rsync://rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/A5251C27E1AF09AE2F28618250807EA4D573694B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A5251C27E1AF09AE2F28618250807EA4D573694B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4d:29:52:28:c4:fe:0d:60:db:40:a0:2e:3c:f9:10:e4:35:0b:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5251C27E1AF09AE2F28618250807EA4D573694B Validity Not Before: May 3 02:59:54 2026 GMT Not After : May 2 03:04:54 2027 GMT Subject: CN=EC73F2BDC9AC45E61B0E2E3F826B1BB0FB8BD08F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:cb:64:31:28:c3:52:14:d7:20:72:32:94: 8d:9d:18:75:ac:70:37:3b:0a:40:8c:f3:83:8e:c2: 70:07:a8:90:ea:aa:26:c1:e9:99:ab:c7:61:eb:e6: ce:97:d0:31:b1:b7:17:29:f0:fc:6b:28:96:19:eb: 7c:88:3e:94:a2:bb:06:02:ee:d4:53:11:e1:b2:70: de:82:45:03:34:27:ed:69:56:4a:2e:e7:17:f8:df: 8c:17:a0:ca:05:e3:22:36:28:1b:c8:6b:9d:5c:7d: d1:7a:8b:a7:cc:81:c4:38:10:87:2b:5e:72:54:92: f3:49:83:2f:5b:a2:92:8f:bf:31:fd:3f:69:60:0e: 3a:df:6b:a0:1c:6f:eb:8d:e6:2c:28:8d:c5:cd:34: 00:a8:96:ec:dc:0b:e5:76:ad:3c:12:df:0a:89:61: 1c:e4:61:72:d8:27:56:bd:a5:8a:e5:c0:09:ae:63: 1d:59:de:50:d3:30:37:67:01:ba:5a:d4:e4:f9:da: 82:ca:3d:6a:0b:d7:94:7c:2b:dd:0d:57:d4:bd:fd: 35:b7:55:95:52:ac:ee:35:47:3b:11:d4:59:1a:08: 4f:49:a2:07:b1:d8:72:9e:23:ad:91:89:00:f0:4f: 99:ed:8d:cf:3d:8e:e6:63:80:24:ff:60:08:89:aa: 92:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:73:F2:BD:C9:AC:45:E6:1B:0E:2E:3F:82:6B:1B:B0:FB:8B:D0:8F X509v3 Authority Key Identifier: keyid:A5:25:1C:27:E1:AF:09:AE:2F:28:61:82:50:80:7E:A4:D5:73:69:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/A5251C27E1AF09AE2F28618250807EA4D573694B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A5251C27E1AF09AE2F28618250807EA4D573694B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c47f6cf6-dd2b-4823-b264-e2bf4f30abfe/0/3135372e31352e3131362e302f32332d3234203d3e20313532333732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.116.0/23 Signature Algorithm: sha256WithRSAEncryption a1:69:89:04:61:d6:3b:83:05:a5:bc:37:33:70:9f:bd:c7:cd: 49:3a:80:23:1b:e8:1f:09:fa:98:71:ca:28:92:fc:4c:e5:de: 6e:a4:12:86:2e:ce:56:77:09:9b:fd:98:86:f0:64:42:8b:ce: 2d:eb:92:dd:4e:cd:b2:1c:74:6a:cc:df:35:8a:21:be:c1:2e: b6:6c:6a:e3:ff:fe:30:ad:b1:3d:e1:da:82:96:78:cb:45:56: 29:56:31:ef:a8:df:5e:64:9d:10:c6:ed:74:3c:7a:60:de:95: c5:f2:a2:06:6f:45:2c:1d:3e:12:42:36:4f:1e:8d:6f:d5:79: c7:e3:3a:11:02:3e:32:21:a7:c4:30:8f:db:dc:6a:5c:2f:ba: b7:f7:bc:9b:c9:c0:68:5b:18:aa:d0:d2:d9:a6:ab:b1:08:fa: ae:ce:aa:a8:c3:cd:89:d9:a7:e0:90:f9:be:1b:97:41:82:2b: 68:d0:7e:7d:e9:6f:2c:b5:bc:ef:7e:c0:0f:08:8d:bc:9f:63: 8b:6b:ef:b7:db:3e:66:ff:81:5c:51:93:55:d2:a5:b0:a1:e5: ab:e6:60:ab:a0:f8:0d:96:2d:b6:55:d9:07:cf:61:6d:08:d8: 8d:8a:9e:01:61:1f:09:95:e5:f6:ef:3b:de:ec:2b:18:95:b6: ec:9a:25:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGk0pUijE/g1g20CgLjz5EOQ1C34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUyNTFDMjdFMUFGMDlBRTJGMjg2MTgyNTA4MDdFQTRE NTczNjk0QjAeFw0yNjA1MDMwMjU5NTRaFw0yNzA1MDIwMzA0NTRaMDMxMTAvBgNV BAMTKEVDNzNGMkJEQzlBQzQ1RTYxQjBFMkUzRjgyNkIxQkIwRkI4QkQwOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7gMtkMSjDUhTXIHIylI2dGHWs cDc7CkCM84OOwnAHqJDqqibB6Zmrx2Hr5s6X0DGxtxcp8PxrKJYZ63yIPpSiuwYC 7tRTEeGycN6CRQM0J+1pVkou5xf434wXoMoF4yI2KBvIa51cfdF6i6fMgcQ4EIcr XnJUkvNJgy9bopKPvzH9P2lgDjrfa6Acb+uN5iwojcXNNAColuzcC+V2rTwS3wqJ YRzkYXLYJ1a9pYrlwAmuYx1Z3lDTMDdnAbpa1OT52oLKPWoL15R8K90NV9S9/TW3 VZVSrO41RzsR1FkaCE9Jogex2HKeI62RiQDwT5ntjc89juZjgCT/YAiJqpI3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7HPyvcmsReYbDi4/gmsbsPuL0I8wHwYDVR0j BBgwFoAUpSUcJ+GvCa4vKGGCUIB+pNVzaUswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzQ3ZjZjZjYtZGQyYi00ODIzLWIyNjQtZTJiZjRmMzBhYmZlLzAvQTUyNTFDMjdF MUFGMDlBRTJGMjg2MTgyNTA4MDdFQTRENTczNjk0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BNTI1MUMyN0UxQUYwOUFFMkYyODYxODI1MDgwN0VBNEQ1NzM2 OTRCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M0N2Y2Y2Y2LWRkMmItNDgyMy1i MjY0LWUyYmY0ZjMwYWJmZS8wLzMxMzUzNzJlMzEzNTJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ90MA0GCSqG SIb3DQEBCwUAA4IBAQChaYkEYdY7gwWlvDczcJ+9x81JOoAjG+gfCfqYccookvxM 5d5upBKGLs5Wdwmb/ZiG8GRCi84t65LdTs2yHHRqzN81iiG+wS62bGrj//4wrbE9 4dqClnjLRVYpVjHvqN9eZJ0Qxu10PHpg3pXF8qIGb0UsHT4SQjZPHo1v1XnH4zoR Aj4yIafEMI/b3GpcL7q397ybycBoWxiq0NLZpquxCPquzqqow82J2afgkPm+G5dB gito0H596W8stbzvfsAPCI28n2OLa++32z5m/4FcUZNV0qWwoeWr5mCroPgNli22 VdkHz2FtCNiNip4BYR8JleX27zve7CsYlbbsmiW3 -----END CERTIFICATE-----Generated at Tue May 12 22:32:52 2026 by rpki-client