$ rpki-client -vvf rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa File: 3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa (raw, json) Hash identifier: l/JxszKitcaLUbjYnu5Z5o+X75HkVNIcWyDMcKUckc8= Subject key identifier: 30:9B:2D:B8:64:6A:C5:27:8B:80:E1:16:B3:95:15:4B:18:08:64:B1 Certificate issuer: /CN=F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F Certificate serial: 28CCD186D20322535F0EDF22CA125FF453B2DF41 Authority key identifier: F6:B8:6F:E2:0E:73:A2:2D:9A:35:3C:C9:2E:D8:DB:F9:D2:21:F9:6F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa Signing time: Sun 03 May 2026 03:06:43 +0000 ROA not before: Sun 03 May 2026 03:01:43 +0000 ROA not after: Sun 02 May 2027 03:06:43 +0000 asID: 141898 IP address blocks: 157.10.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.crl rsync://rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:cc:d1:86:d2:03:22:53:5f:0e:df:22:ca:12:5f:f4:53:b2:df:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F Validity Not Before: May 3 03:01:43 2026 GMT Not After : May 2 03:06:43 2027 GMT Subject: CN=309B2DB8646AC5278B80E116B395154B180864B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6c:b1:94:66:dc:46:43:cf:33:21:aa:f3:45: a1:93:7b:c8:80:03:27:15:5c:0a:20:e7:22:79:58: 44:3a:e0:43:35:bf:15:d0:a4:b3:b3:4f:1d:80:cc: 97:22:9e:b9:13:e0:18:9c:96:d9:a1:45:a2:2b:da: 46:27:77:b7:c7:df:eb:12:b6:2b:6f:b7:f4:e2:9f: 7a:bc:05:54:a5:80:5b:e1:e4:ca:b6:70:bb:2a:77: 80:d3:28:df:0b:55:e2:25:65:96:d8:f8:f3:36:c0: 75:77:b7:70:f3:39:30:cf:58:6b:02:a4:fb:70:cd: a4:8e:fa:37:26:d8:52:f3:ba:bd:a5:d9:24:4e:39: e9:48:c2:07:53:1b:43:cf:f9:56:08:c1:bc:92:f1: d5:91:63:2d:30:b4:d0:8d:f1:d2:82:9a:fb:b2:06: 3b:22:80:e4:12:c3:f1:a2:5f:31:48:cf:b3:7e:d4: 39:3a:8b:b3:e9:b8:60:d4:1a:91:25:e2:dc:85:69: c8:3a:de:7d:90:d8:f6:0f:18:10:7c:9b:98:5b:62: 13:29:5c:05:8f:de:86:f1:cf:ef:88:67:98:18:30: 42:1c:af:a3:da:0d:e8:f3:e7:f1:c6:a7:27:cc:0c: 05:8f:77:4b:2e:e4:fb:70:68:4f:f0:58:51:fe:37: 26:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9B:2D:B8:64:6A:C5:27:8B:80:E1:16:B3:95:15:4B:18:08:64:B1 X509v3 Authority Key Identifier: keyid:F6:B8:6F:E2:0E:73:A2:2D:9A:35:3C:C9:2E:D8:DB:F9:D2:21:F9:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F6B86FE20E73A22D9A353CC92ED8DBF9D221F96F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.222.0/23 Signature Algorithm: sha256WithRSAEncryption 87:20:d8:5c:85:f1:6f:20:3b:42:e5:37:4b:54:30:e9:9b:fd: df:7d:d8:90:20:17:63:f8:4a:4e:38:17:bd:a3:05:74:6b:1f: 4e:92:df:66:2f:ed:36:6e:89:2a:29:93:67:83:eb:65:93:70: 51:25:6a:c6:7f:45:8e:62:74:19:2a:18:60:80:0d:f8:cb:41: 47:0a:ee:b6:b2:2e:53:b3:fe:03:83:0f:df:19:73:89:79:08: 77:f9:12:67:d9:3a:48:0a:85:6a:fe:d0:e2:2d:cf:7e:6d:c6: cb:9a:4e:3d:64:e0:c4:21:1c:63:f3:2e:51:33:6f:12:58:51: c5:82:29:a1:15:ed:d0:90:98:96:f8:6e:5d:d7:a2:02:27:53: 49:2a:64:45:ed:20:90:a2:3d:ea:a4:ec:e8:da:38:30:6a:a4: c2:e6:ef:7f:33:8d:57:ea:98:1c:04:35:2e:53:35:60:fc:a1: b3:02:66:39:78:77:d7:82:81:96:7e:8a:66:18:8d:34:c0:ae: 1e:f3:b3:a9:fb:2f:54:6e:8a:0a:ae:09:7a:4e:45:57:92:60: 53:75:15:58:4b:f0:b7:1f:4e:39:46:6c:ee:d3:59:d4:18:ba: b9:2a:60:67:7f:6f:1c:9a:c9:a2:f9:69:2e:21:87:34:76:3c: 45:ba:fc:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKMzRhtIDIlNfDt8iyhJf9FOy30EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjZCODZGRTIwRTczQTIyRDlBMzUzQ0M5MkVEOERCRjlE MjIxRjk2RjAeFw0yNjA1MDMwMzAxNDNaFw0yNzA1MDIwMzA2NDNaMDMxMTAvBgNV BAMTKDMwOUIyREI4NjQ2QUM1Mjc4QjgwRTExNkIzOTUxNTRCMTgwODY0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQbLGUZtxGQ88zIarzRaGTe8iA AycVXAog5yJ5WEQ64EM1vxXQpLOzTx2AzJcinrkT4BicltmhRaIr2kYnd7fH3+sS titvt/Tin3q8BVSlgFvh5Mq2cLsqd4DTKN8LVeIlZZbY+PM2wHV3t3DzOTDPWGsC pPtwzaSO+jcm2FLzur2l2SROOelIwgdTG0PP+VYIwbyS8dWRYy0wtNCN8dKCmvuy BjsigOQSw/GiXzFIz7N+1Dk6i7PpuGDUGpEl4tyFacg63n2Q2PYPGBB8m5hbYhMp XAWP3obxz++IZ5gYMEIcr6PaDejz5/HGpyfMDAWPd0su5PtwaE/wWFH+NyajAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMJstuGRqxSeLgOEWs5UVSxgIZLEwHwYDVR0j BBgwFoAU9rhv4g5zoi2aNTzJLtjb+dIh+W8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2EzNzZhNmUtM2VjYS00ZjczLThkMTUtZDFkZGVlOTFmZjk4LzAvRjZCODZGRTIw RTczQTIyRDlBMzUzQ0M5MkVEOERCRjlEMjIxRjk2Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GNkI4NkZFMjBFNzNBMjJEOUEzNTNDQzkyRUQ4REJGOUQyMjFG OTZGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NhMzc2YTZlLTNlY2EtNGY3My04 ZDE1LWQxZGRlZTkxZmY5OC8wLzMxMzUzNzJlMzEzMDJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQreMA0GCSqG SIb3DQEBCwUAA4IBAQCHINhchfFvIDtC5TdLVDDpm/3ffdiQIBdj+EpOOBe9owV0 ax9Okt9mL+02bokqKZNng+tlk3BRJWrGf0WOYnQZKhhggA34y0FHCu62si5Ts/4D gw/fGXOJeQh3+RJn2TpICoVq/tDiLc9+bcbLmk49ZODEIRxj8y5RM28SWFHFgimh Fe3QkJiW+G5d16ICJ1NJKmRF7SCQoj3qpOzo2jgwaqTC5u9/M41X6pgcBDUuUzVg /KGzAmY5eHfXgoGWfopmGI00wK4e87Op+y9UbooKrgl6TkVXkmBTdRVYS/C3H045 Rmzu01nUGLq5KmBnf28cmsmi+WkuIYc0djxFuvwC -----END CERTIFICATE-----Generated at Wed May 13 02:59:56 2026 by rpki-client