$ rpki-client -vvf rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa File: 3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: 7ql88/IJdY/aWaZ2NP20wpbVy2vo7/DTiipCEcxNsYM= Subject key identifier: 8E:FB:9B:6F:7C:51:29:80:E0:45:EB:5E:18:6F:5A:79:E3:46:4F:EB Certificate issuer: /CN=4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B Certificate serial: 284EFC0C6B2888F14621CA5DFDB71D234F9D8FE0 Authority key identifier: 4A:F7:A5:C6:F5:4C:5F:DB:D8:95:7A:7F:E5:B7:24:24:26:06:9C:2B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa Signing time: Sun 03 May 2026 03:08:30 +0000 ROA not before: Sun 03 May 2026 03:03:30 +0000 ROA not after: Sun 02 May 2027 03:08:30 +0000 asID: 141120 IP address blocks: 157.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.crl rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:4e:fc:0c:6b:28:88:f1:46:21:ca:5d:fd:b7:1d:23:4f:9d:8f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B Validity Not Before: May 3 03:03:30 2026 GMT Not After : May 2 03:08:30 2027 GMT Subject: CN=8EFB9B6F7C512980E045EB5E186F5A79E3464FEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:58:71:a1:80:28:3c:8e:f9:b1:99:c0:3e:89: 72:bf:b3:ff:c1:ae:ef:1a:df:7c:f9:d2:0f:4b:61: 01:21:a5:f9:ec:5a:51:0a:50:84:79:e6:6e:b1:27: f8:17:0a:f8:7e:5a:8b:6e:92:0f:4f:11:04:27:5b: ee:10:58:19:bd:c9:15:32:93:f2:8f:eb:c0:10:3b: 76:b7:60:2f:7b:5c:bf:5b:10:59:48:78:7e:10:24: 7f:f6:1d:55:75:34:c5:ae:18:8c:1c:57:47:1b:17: 19:c3:97:c6:c2:dc:34:a2:95:57:bd:61:d8:a5:d9: d4:7e:04:31:5e:ca:68:cd:d1:83:26:04:4d:95:7c: 59:0a:c3:ca:ae:22:20:eb:74:bf:4e:8b:c2:aa:68: dd:54:fc:50:c7:1d:96:90:b9:8d:c1:78:92:44:00: d6:64:24:8d:72:0a:f3:4c:2d:13:84:51:d5:a9:77: a3:38:bf:ae:3d:a5:93:e0:8e:ee:a0:3a:51:36:8a: 4d:db:38:55:0a:73:53:22:69:92:48:51:a0:ca:9f: 36:cc:69:0e:9c:dc:a7:48:9e:47:48:2b:ab:5a:92: 11:d3:d4:bb:22:6c:c0:c3:3f:66:af:b6:e5:7d:47: 3c:8f:46:a2:80:b6:bb:a0:87:d8:89:fb:89:cd:bf: 7c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FB:9B:6F:7C:51:29:80:E0:45:EB:5E:18:6F:5A:79:E3:46:4F:EB X509v3 Authority Key Identifier: keyid:4A:F7:A5:C6:F5:4C:5F:DB:D8:95:7A:7F:E5:B7:24:24:26:06:9C:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135382e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 34:3e:0e:4d:45:87:0d:61:04:93:ff:bd:f4:0a:e2:d2:29:dc: 37:05:38:a8:b9:e0:b3:1e:ad:7b:90:b2:d6:36:c4:9c:52:8a: d4:f9:96:9d:ee:c2:c8:ed:5d:16:bc:3c:8f:5c:30:0d:c7:46: e8:76:17:f3:23:e8:28:03:20:5c:bd:de:c3:af:35:82:aa:31: ed:f1:e8:e6:66:b7:81:40:3f:b7:8a:17:53:0b:a1:84:1c:88: 57:b6:88:a5:61:7a:73:9f:16:98:a8:d1:11:1e:28:af:21:dd: 2d:91:47:14:f7:2f:8f:5e:52:c3:eb:7b:78:fb:fe:8f:5c:84: 0a:50:51:56:e8:dc:9a:3f:b2:86:b3:a0:21:89:ad:5a:c5:6b: 85:ca:36:dc:68:46:dc:32:b4:14:6f:3b:de:29:4c:ae:e8:c6: 5d:cd:2e:80:ab:39:ef:93:6a:f8:e1:4f:3e:64:ca:46:2c:fe: ee:19:d1:4b:ef:cb:c6:33:c4:f1:c6:0b:48:25:53:db:e3:da: 13:09:a9:37:da:51:f5:81:2a:d6:4f:22:32:f4:10:eb:81:fb: 9a:2e:b2:34:89:a2:67:6c:02:40:a6:c7:ab:22:67:c3:62:4c: a6:50:7c:96:7f:2b:db:70:43:36:50:d5:35:f0:ae:0b:cd:8e: 82:e7:05:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKE78DGsoiPFGIcpd/bcdI0+dj+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGN0E1QzZGNTRDNUZEQkQ4OTU3QTdGRTVCNzI0MjQy NjA2OUMyQjAeFw0yNjA1MDMwMzAzMzBaFw0yNzA1MDIwMzA4MzBaMDMxMTAvBgNV BAMTKDhFRkI5QjZGN0M1MTI5ODBFMDQ1RUI1RTE4NkY1QTc5RTM0NjRGRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0WHGhgCg8jvmxmcA+iXK/s//B ru8a33z50g9LYQEhpfnsWlEKUIR55m6xJ/gXCvh+Wotukg9PEQQnW+4QWBm9yRUy k/KP68AQO3a3YC97XL9bEFlIeH4QJH/2HVV1NMWuGIwcV0cbFxnDl8bC3DSilVe9 Ydil2dR+BDFeymjN0YMmBE2VfFkKw8quIiDrdL9Oi8KqaN1U/FDHHZaQuY3BeJJE ANZkJI1yCvNMLROEUdWpd6M4v649pZPgju6gOlE2ik3bOFUKc1MiaZJIUaDKnzbM aQ6c3KdInkdIK6takhHT1LsibMDDP2avtuV9RzyPRqKAtrugh9iJ+4nNv3zNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjvubb3xRKYDgReteGG9aeeNGT+swHwYDVR0j BBgwFoAUSvelxvVMX9vYlXp/5bckJCYGnCswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDE1OWEzNjItOTUwYy00NWMyLWFlY2MtODJiMjE0YmNlNDc0LzAvNEFGN0E1QzZG NTRDNUZEQkQ4OTU3QTdGRTVCNzI0MjQyNjA2OUMyQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80QUY3QTVDNkY1NEM1RkRCRDg5NTdBN0ZFNUI3MjQyNDI2MDY5 QzJCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSeMA0GCSqG SIb3DQEBCwUAA4IBAQA0Pg5NRYcNYQST/730CuLSKdw3BTioueCzHq17kLLWNsSc UorU+Zad7sLI7V0WvDyPXDANx0bodhfzI+goAyBcvd7DrzWCqjHt8ejmZreBQD+3 ihdTC6GEHIhXtoilYXpznxaYqNERHiivId0tkUcU9y+PXlLD63t4+/6PXIQKUFFW 6NyaP7KGs6Ahia1axWuFyjbcaEbcMrQUbzveKUyu6MZdzS6Aqznvk2r44U8+ZMpG LP7uGdFL78vGM8TxxgtIJVPb49oTCak32lH1gSrWTyIy9BDrgfuaLrI0iaJnbAJA pserImfDYkymUHyWfyvbcEM2UNU18K4LzY6C5wVy -----END CERTIFICATE-----Generated at Wed May 13 09:54:48 2026 by rpki-client