$ rpki-client -vvf rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133312e302f32342d3234203d3e20313532343134.roa File: 3135372e32302e3133312e302f32342d3234203d3e20313532343134.roa (raw, json) Hash identifier: uWBx9zBBtj0stXgPd31iD2z2lhamwuv83R9Ofcw0CoU= Subject key identifier: 91:47:13:A5:8B:87:F7:4F:DF:F5:D5:94:BA:52:57:91:80:5B:7C:D6 Certificate issuer: /CN=1B22824E2A256E413E679DEC541FE82DC0BAD8A0 Certificate serial: 697AB347401F979E1B3CC476D14AC22EF64B81CF Authority key identifier: 1B:22:82:4E:2A:25:6E:41:3E:67:9D:EC:54:1F:E8:2D:C0:BA:D8:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133312e302f32342d3234203d3e20313532343134.roa Signing time: Sun 03 May 2026 03:06:04 +0000 ROA not before: Sun 03 May 2026 03:01:04 +0000 ROA not after: Sun 02 May 2027 03:06:04 +0000 asID: 152414 IP address blocks: 157.20.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.crl rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:7a:b3:47:40:1f:97:9e:1b:3c:c4:76:d1:4a:c2:2e:f6:4b:81:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B22824E2A256E413E679DEC541FE82DC0BAD8A0 Validity Not Before: May 3 03:01:04 2026 GMT Not After : May 2 03:06:04 2027 GMT Subject: CN=914713A58B87F74FDFF5D594BA525791805B7CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:22:1b:ef:f2:26:b2:45:31:b2:b1:17:2b:0f: 30:94:51:00:35:41:cc:54:12:76:2a:a1:4c:48:e7: 1b:19:0a:48:c5:90:b9:b5:f5:8b:a2:8b:4d:a4:bc: 6c:18:98:00:13:7e:c1:12:9e:c8:5d:db:29:00:80: 33:bb:40:bd:61:df:34:d2:1e:ec:c9:10:08:b1:90: 46:b4:a0:e5:99:b6:de:0f:7b:db:df:52:cb:fd:35: 89:7b:bf:a2:8c:e9:42:0a:47:d8:48:05:1f:82:7a: c2:76:55:e5:68:79:22:eb:e5:d6:1e:cd:bb:22:98: ca:91:fc:d2:d9:af:65:a3:3c:eb:50:5f:90:df:f9: 06:01:b9:9a:2d:6c:2b:9a:b6:dd:b3:71:3e:6d:3e: 12:53:8f:f1:94:8c:92:af:f9:87:43:ae:bc:c1:7e: 74:dc:d1:83:29:21:a5:b7:2a:3f:20:5c:6c:55:f6: 02:fa:af:39:3a:5f:b3:7f:c2:ab:e1:a0:d1:27:28: 5e:8f:4c:40:ff:d7:cf:d4:4b:0c:cf:a3:89:9a:fe: 19:47:06:fe:32:82:18:08:d9:88:56:38:6c:5f:56: d3:e3:2e:fd:86:ab:73:af:23:3e:8d:92:66:8a:03: ad:30:26:f5:28:2c:10:87:f8:c1:0d:59:21:d4:fd: 45:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:47:13:A5:8B:87:F7:4F:DF:F5:D5:94:BA:52:57:91:80:5B:7C:D6 X509v3 Authority Key Identifier: keyid:1B:22:82:4E:2A:25:6E:41:3E:67:9D:EC:54:1F:E8:2D:C0:BA:D8:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/1B22824E2A256E413E679DEC541FE82DC0BAD8A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/3135372e32302e3133312e302f32342d3234203d3e20313532343134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.131.0/24 Signature Algorithm: sha256WithRSAEncryption 12:63:48:4a:9d:75:5d:70:a3:4d:4a:f3:cb:d7:1e:51:69:0e: 81:55:66:d7:f6:6f:06:24:12:fc:2b:af:13:5b:f2:65:30:eb: 55:c5:bb:88:5d:e1:27:f5:8b:52:d0:1f:02:1b:ec:08:64:08: 45:a0:40:da:64:8f:95:53:31:d5:b8:79:25:4b:56:5f:8b:c3: 93:62:c2:1d:21:2e:2d:d6:23:d0:f7:a2:26:73:bb:58:9e:7c: d1:fd:2c:de:03:a1:4d:13:b8:9f:97:91:a5:76:41:71:08:45: ff:fa:b4:dd:8a:a1:10:75:05:e6:c5:45:0c:d5:79:79:7a:a3: a7:6d:08:73:da:58:c8:59:18:b0:65:29:18:b7:04:f3:3d:f7: ee:06:e0:3b:67:d0:6a:0c:68:00:75:92:f0:b2:ed:b4:dd:3f: cd:53:49:28:86:8c:2f:f5:a5:20:02:76:b9:f5:b7:c4:06:68: 21:7e:40:0a:f1:22:5a:06:c2:5d:ff:11:ab:cb:e9:24:85:92: b6:0d:b4:04:9f:bd:fa:c7:fd:e1:b1:d6:58:d4:3e:69:12:d2: a4:2b:02:a7:ec:71:6f:18:df:90:bd:37:58:09:7c:01:bb:11: db:fc:3a:0d:37:d5:8c:2b:b5:86:17:6e:c0:16:c3:0b:dc:4b: 30:58:5b:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaXqzR0Afl54bPMR20UrCLvZLgc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyMjgyNEUyQTI1NkU0MTNFNjc5REVDNTQxRkU4MkRD MEJBRDhBMDAeFw0yNjA1MDMwMzAxMDRaFw0yNzA1MDIwMzA2MDRaMDMxMTAvBgNV BAMTKDkxNDcxM0E1OEI4N0Y3NEZERkY1RDU5NEJBNTI1NzkxODA1QjdDRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwIhvv8iayRTGysRcrDzCUUQA1 QcxUEnYqoUxI5xsZCkjFkLm19Yuii02kvGwYmAATfsESnshd2ykAgDO7QL1h3zTS HuzJEAixkEa0oOWZtt4Pe9vfUsv9NYl7v6KM6UIKR9hIBR+CesJ2VeVoeSLr5dYe zbsimMqR/NLZr2WjPOtQX5Df+QYBuZotbCuatt2zcT5tPhJTj/GUjJKv+YdDrrzB fnTc0YMpIaW3Kj8gXGxV9gL6rzk6X7N/wqvhoNEnKF6PTED/18/USwzPo4ma/hlH Bv4yghgI2YhWOGxfVtPjLv2Gq3OvIz6NkmaKA60wJvUoLBCH+MENWSHU/UX7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkUcTpYuH90/f9dWUulJXkYBbfNYwHwYDVR0j BBgwFoAUGyKCTiolbkE+Z53sVB/oLcC62KAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzg2ZmYyNjQtZmYyNS00ZmU2LTg2ZWYtZDg0YjdkMjg4MzU0LzAvMUIyMjgyNEUy QTI1NkU0MTNFNjc5REVDNTQxRkU4MkRDMEJBRDhBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8xQjIyODI0RTJBMjU2RTQxM0U2NzlERUM1NDFGRTgyREMwQkFE OEEwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4NmZmMjY0LWZmMjUtNGZlNi04 NmVmLWQ4NGI3ZDI4ODM1NC8wLzMxMzUzNzJlMzIzMDJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSDMA0GCSqG SIb3DQEBCwUAA4IBAQASY0hKnXVdcKNNSvPL1x5RaQ6BVWbX9m8GJBL8K68TW/Jl MOtVxbuIXeEn9YtS0B8CG+wIZAhFoEDaZI+VUzHVuHklS1Zfi8OTYsIdIS4t1iPQ 96Imc7tYnnzR/SzeA6FNE7ifl5GldkFxCEX/+rTdiqEQdQXmxUUM1Xl5eqOnbQhz 2ljIWRiwZSkYtwTzPffuBuA7Z9BqDGgAdZLwsu203T/NU0kohowv9aUgAna59bfE BmghfkAK8SJaBsJd/xGry+kkhZK2DbQEn736x/3hsdZY1D5pEtKkKwKn7HFvGN+Q vTdYCXwBuxHb/DoNN9WMK7WGF27AFsML3EswWFsP -----END CERTIFICATE-----Generated at Wed May 13 05:24:39 2026 by rpki-client