$ rpki-client -vvf rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133302e302f32342d3234203d3e20313532343134.roa File: 3135372e32302e3133302e302f32342d3234203d3e20313532343134.roa (raw, json) Hash identifier: 3BHAnWW4TLEpO1A4dud6ZoedASP5ZMDsQskvXQSf2zg= Subject key identifier: 3D:12:B7:03:77:7B:F1:83:F3:41:90:82:B0:C8:04:6D:F1:BE:47:2F Certificate issuer: /CN=1B22824E2A256E413E679DEC541FE82DC0BAD8A0 Certificate serial: 50E0B298EC8E22E37BEC23B9A87024828EBCE46B Authority key identifier: 1B:22:82:4E:2A:25:6E:41:3E:67:9D:EC:54:1F:E8:2D:C0:BA:D8:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133302e302f32342d3234203d3e20313532343134.roa Signing time: Sun 03 May 2026 03:06:04 +0000 ROA not before: Sun 03 May 2026 03:01:04 +0000 ROA not after: Sun 02 May 2027 03:06:04 +0000 asID: 152414 IP address blocks: 157.20.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.crl rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e0:b2:98:ec:8e:22:e3:7b:ec:23:b9:a8:70:24:82:8e:bc:e4:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B22824E2A256E413E679DEC541FE82DC0BAD8A0 Validity Not Before: May 3 03:01:04 2026 GMT Not After : May 2 03:06:04 2027 GMT Subject: CN=3D12B703777BF183F3419082B0C8046DF1BE472F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9b:a1:6c:5f:fd:97:8d:b2:33:e5:31:d9:14: c2:63:23:bc:b5:64:03:74:f0:0a:31:3e:2c:b8:30: 78:9e:df:59:9c:54:60:e5:51:59:f0:83:c6:f6:8c: 43:af:c5:90:8a:24:75:98:96:37:9a:70:2b:f0:04: ab:72:22:1d:95:7d:3c:60:ff:dd:6c:bb:9e:df:f8: c9:10:da:79:50:9c:cc:16:9c:6a:be:e5:fc:ac:17: 4f:0b:3f:6b:02:fb:c9:3e:1f:3b:6e:f4:26:2c:73: c8:53:12:26:90:3e:4c:41:db:ce:10:98:2a:9a:6a: 3f:29:85:f9:8d:13:60:02:6b:e2:03:03:11:f1:67: 1a:6c:cb:b1:68:51:4a:9f:c0:d4:ed:ac:8b:d3:1a: 55:be:1f:25:f6:51:94:56:66:2f:0a:c5:89:5c:7b: 05:c7:80:a9:1e:ec:41:14:c5:46:8e:2b:6e:5a:0a: c8:c9:d3:09:ae:d2:ce:f2:9f:70:49:8e:d7:9a:f9: 91:1e:5d:1f:6f:95:43:bd:39:f2:00:77:02:0e:c1: 35:4f:83:54:8b:e7:75:7e:4b:11:47:a5:6a:a2:ad: bc:42:dc:b3:b6:d6:6d:48:0e:ba:67:26:11:b0:a2: 74:e6:0f:45:02:a6:fb:ab:e4:25:a7:dd:51:02:2a: 39:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:12:B7:03:77:7B:F1:83:F3:41:90:82:B0:C8:04:6D:F1:BE:47:2F X509v3 Authority Key Identifier: keyid:1B:22:82:4E:2A:25:6E:41:3E:67:9D:EC:54:1F:E8:2D:C0:BA:D8:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133302e302f32342d3234203d3e20313532343134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.130.0/24 Signature Algorithm: sha256WithRSAEncryption 27:a9:ae:f7:aa:51:57:b0:79:10:1c:44:40:f2:a1:a7:06:f8: 88:c7:5f:8b:a6:d7:85:a9:f5:63:b1:a1:4d:05:a4:66:55:4a: ff:e4:c3:48:25:e7:ee:4b:31:ba:a0:0f:22:1c:8c:ef:1e:0c: 81:ff:fb:2c:86:97:91:bf:fc:09:42:ba:a1:99:26:7e:e7:3f: 01:86:02:6c:e5:94:c9:01:b2:7e:f3:3d:67:1c:d8:e4:96:61: 44:bd:df:69:1e:3c:db:9e:bd:2d:99:c7:1e:db:41:c0:f9:40: 0e:64:06:8e:53:ca:00:97:9a:13:ed:20:57:0e:0a:4f:7a:77: d5:e4:a0:1e:23:83:8c:e8:bf:c2:60:d7:c7:06:96:66:b4:3c: 2e:c5:3d:c5:dd:7a:47:0d:ef:3a:ad:cd:4b:d2:b3:3b:16:56: 6d:36:de:1f:2d:09:64:4e:11:b1:01:25:24:1b:ae:ad:29:5f: 11:25:ef:01:90:4c:33:bd:20:05:e4:7c:53:d5:58:22:29:eb: 2b:e0:c3:72:b6:d5:de:fb:2b:c6:b1:9f:05:62:e0:b9:bd:99: bf:e6:88:09:64:37:28:d2:08:90:8c:ab:86:48:dc:48:62:3a: c7:37:38:b2:82:3b:36:1a:34:a5:31:3d:7a:a7:0b:3b:97:53: bd:46:c9:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUOCymOyOIuN77CO5qHAkgo685GswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyMjgyNEUyQTI1NkU0MTNFNjc5REVDNTQxRkU4MkRD MEJBRDhBMDAeFw0yNjA1MDMwMzAxMDRaFw0yNzA1MDIwMzA2MDRaMDMxMTAvBgNV BAMTKDNEMTJCNzAzNzc3QkYxODNGMzQxOTA4MkIwQzgwNDZERjFCRTQ3MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZm6FsX/2XjbIz5THZFMJjI7y1 ZAN08AoxPiy4MHie31mcVGDlUVnwg8b2jEOvxZCKJHWYljeacCvwBKtyIh2VfTxg /91su57f+MkQ2nlQnMwWnGq+5fysF08LP2sC+8k+Hztu9CYsc8hTEiaQPkxB284Q mCqaaj8phfmNE2ACa+IDAxHxZxpsy7FoUUqfwNTtrIvTGlW+HyX2UZRWZi8KxYlc ewXHgKke7EEUxUaOK25aCsjJ0wmu0s7yn3BJjtea+ZEeXR9vlUO9OfIAdwIOwTVP g1SL53V+SxFHpWqirbxC3LO21m1IDrpnJhGwonTmD0UCpvur5CWn3VECKjlrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPRK3A3d78YPzQZCCsMgEbfG+Ry8wHwYDVR0j BBgwFoAUGyKCTiolbkE+Z53sVB/oLcC62KAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzg2ZmYyNjQtZmYyNS00ZmU2LTg2ZWYtZDg0YjdkMjg4MzU0LzAvMUIyMjgyNEUy QTI1NkU0MTNFNjc5REVDNTQxRkU4MkRDMEJBRDhBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8xQjIyODI0RTJBMjU2RTQxM0U2NzlERUM1NDFGRTgyREMwQkFE OEEwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4NmZmMjY0LWZmMjUtNGZlNi04 NmVmLWQ4NGI3ZDI4ODM1NC8wLzMxMzUzNzJlMzIzMDJlMzEzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSCMA0GCSqG SIb3DQEBCwUAA4IBAQAnqa73qlFXsHkQHERA8qGnBviIx1+LpteFqfVjsaFNBaRm VUr/5MNIJefuSzG6oA8iHIzvHgyB//sshpeRv/wJQrqhmSZ+5z8BhgJs5ZTJAbJ+ 8z1nHNjklmFEvd9pHjzbnr0tmcce20HA+UAOZAaOU8oAl5oT7SBXDgpPenfV5KAe I4OM6L/CYNfHBpZmtDwuxT3F3XpHDe86rc1L0rM7FlZtNt4fLQlkThGxASUkG66t KV8RJe8BkEwzvSAF5HxT1VgiKesr4MNyttXe+yvGsZ8FYuC5vZm/5ogJZDco0giQ jKuGSNxIYjrHNziygjs2GjSlMT16pws7l1O9RskF -----END CERTIFICATE-----Generated at Wed May 13 06:56:04 2026 by rpki-client