$ rpki-client -vvf rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135392e302f32342d3234203d3e20313431313230.roa File: 3135372e32302e3135392e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: RcYrOS6rHRHWdeyezVsL3GaabN57kfPwCIDe/5oYbMs= Subject key identifier: AD:07:00:A0:24:21:67:F4:FA:83:F3:86:D9:5F:30:F1:D5:DA:49:16 Certificate issuer: /CN=4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B Certificate serial: 5B251444C48D8D49449A874CB997658814870573 Authority key identifier: 4A:F7:A5:C6:F5:4C:5F:DB:D8:95:7A:7F:E5:B7:24:24:26:06:9C:2B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135392e302f32342d3234203d3e20313431313230.roa Signing time: Sun 03 May 2026 03:08:30 +0000 ROA not before: Sun 03 May 2026 03:03:30 +0000 ROA not after: Sun 02 May 2027 03:08:30 +0000 asID: 141120 IP address blocks: 157.20.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.crl rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:25:14:44:c4:8d:8d:49:44:9a:87:4c:b9:97:65:88:14:87:05:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B Validity Not Before: May 3 03:03:30 2026 GMT Not After : May 2 03:08:30 2027 GMT Subject: CN=AD0700A0242167F4FA83F386D95F30F1D5DA4916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:43:70:1b:92:76:e7:9f:42:ce:3d:03:33: ac:83:f6:ba:15:5d:3f:18:5f:80:88:b8:5d:c5:84: c4:3a:ae:1d:15:41:20:f1:7b:e0:77:3a:49:bc:0d: f1:be:2c:97:06:17:b5:1f:0c:18:95:96:2c:d8:e5: cb:c8:67:96:62:0b:bd:d4:41:a8:4c:80:72:86:f5: 3d:19:d9:8c:87:cd:6f:cb:3e:6c:d0:98:4c:d9:27: 27:fd:08:e6:dc:4b:26:f8:4a:f0:9a:bc:f6:cf:ec: 78:7c:09:bb:ec:64:f6:d8:8a:0e:ce:3c:f3:6f:86: 10:de:a3:a5:d0:67:3b:9d:64:20:fa:c8:18:43:d7: 81:c2:f4:3f:c0:af:f2:90:f6:f8:40:0d:43:91:74: 0d:cc:31:bc:d1:38:98:0a:bf:bb:5e:d3:7d:c4:87: 80:27:df:a6:22:02:dc:43:6d:35:12:5f:fa:fc:77: 5c:22:0d:a9:7f:c3:b9:f4:80:5c:19:35:f2:cf:23: e0:73:f4:42:0f:c3:79:cc:28:cc:15:7a:cc:fe:e0: c5:52:26:61:5d:1a:47:28:43:88:e2:c3:f2:68:22: 78:5e:08:18:82:e3:59:79:d3:2a:46:7f:9b:36:5b: c5:6d:3c:0e:c2:e9:47:92:fd:18:ab:25:e5:bb:ae: 1b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:07:00:A0:24:21:67:F4:FA:83:F3:86:D9:5F:30:F1:D5:DA:49:16 X509v3 Authority Key Identifier: keyid:4A:F7:A5:C6:F5:4C:5F:DB:D8:95:7A:7F:E5:B7:24:24:26:06:9C:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AF7A5C6F54C5FDBD8957A7FE5B7242426069C2B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d159a362-950c-45c2-aecc-82b214bce474/0/3135372e32302e3135392e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.159.0/24 Signature Algorithm: sha256WithRSAEncryption 96:bb:f9:63:bb:22:c6:c2:c3:a3:7e:62:4d:23:1a:4f:af:51: 80:7b:ef:c9:c3:d9:f3:73:65:55:69:05:b8:d6:da:46:8a:f4: f3:f2:f0:bf:20:e6:22:f3:b3:18:19:df:96:b6:ca:10:4b:ed: 6c:e5:81:f2:c2:31:70:27:e0:b7:e5:71:7f:c7:61:41:1b:a5: ff:aa:32:65:91:32:0e:66:de:29:60:85:4e:99:8a:5d:c3:81: f2:be:a0:b3:22:bd:2c:8b:e5:93:43:f0:80:76:15:6e:ab:a0: a6:24:b3:2c:30:26:5e:7b:bb:1e:e2:2b:fd:22:c3:5f:fa:38: 2a:9f:8b:d9:fe:3f:53:fc:af:13:d0:81:85:52:47:be:23:7f: 8f:79:e9:d9:ce:8a:80:27:b1:12:87:0a:42:d1:df:1d:cf:d7: 39:fa:d0:4a:40:4c:dd:70:4e:6a:24:9f:42:e0:a9:c1:e6:e5: d7:d0:c7:76:bb:de:f4:b1:70:8d:79:3c:fb:32:cc:99:d5:92: c7:3b:1b:61:ad:44:cf:db:a9:f1:d0:22:bd:c8:37:44:7d:91: b0:47:cd:1f:e4:ee:58:8c:d2:dd:24:df:7c:02:87:1b:86:d0: c7:63:3f:3a:b2:d2:ae:32:e3:15:a3:24:a8:5d:08:28:a6:eb: 7a:4f:3b:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWyUURMSNjUlEmodMuZdliBSHBXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGN0E1QzZGNTRDNUZEQkQ4OTU3QTdGRTVCNzI0MjQy NjA2OUMyQjAeFw0yNjA1MDMwMzAzMzBaFw0yNzA1MDIwMzA4MzBaMDMxMTAvBgNV BAMTKEFEMDcwMEEwMjQyMTY3RjRGQTgzRjM4NkQ5NUYzMEYxRDVEQTQ5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrVENwG5J2559Czj0DM6yD9roV XT8YX4CIuF3FhMQ6rh0VQSDxe+B3Okm8DfG+LJcGF7UfDBiVlizY5cvIZ5ZiC73U QahMgHKG9T0Z2YyHzW/LPmzQmEzZJyf9CObcSyb4SvCavPbP7Hh8CbvsZPbYig7O PPNvhhDeo6XQZzudZCD6yBhD14HC9D/Ar/KQ9vhADUORdA3MMbzROJgKv7te033E h4An36YiAtxDbTUSX/r8d1wiDal/w7n0gFwZNfLPI+Bz9EIPw3nMKMwVesz+4MVS JmFdGkcoQ4jiw/JoInheCBiC41l50ypGf5s2W8VtPA7C6UeS/RirJeW7rhvjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrQcAoCQhZ/T6g/OG2V8w8dXaSRYwHwYDVR0j BBgwFoAUSvelxvVMX9vYlXp/5bckJCYGnCswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDE1OWEzNjItOTUwYy00NWMyLWFlY2MtODJiMjE0YmNlNDc0LzAvNEFGN0E1QzZG NTRDNUZEQkQ4OTU3QTdGRTVCNzI0MjQyNjA2OUMyQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80QUY3QTVDNkY1NEM1RkRCRDg5NTdBN0ZFNUI3MjQyNDI2MDY5 QzJCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxNTlhMzYyLTk1MGMtNDVjMi1h ZWNjLTgyYjIxNGJjZTQ3NC8wLzMxMzUzNzJlMzIzMDJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSfMA0GCSqG SIb3DQEBCwUAA4IBAQCWu/ljuyLGwsOjfmJNIxpPr1GAe+/Jw9nzc2VVaQW41tpG ivTz8vC/IOYi87MYGd+WtsoQS+1s5YHywjFwJ+C35XF/x2FBG6X/qjJlkTIOZt4p YIVOmYpdw4HyvqCzIr0si+WTQ/CAdhVuq6CmJLMsMCZee7se4iv9IsNf+jgqn4vZ /j9T/K8T0IGFUke+I3+PeenZzoqAJ7EShwpC0d8dz9c5+tBKQEzdcE5qJJ9C4KnB 5uXX0Md2u970sXCNeTz7MsyZ1ZLHOxthrUTP26nx0CK9yDdEfZGwR80f5O5YjNLd JN98AocbhtDHYz86stKuMuMVoySoXQgoput6TztT -----END CERTIFICATE-----Generated at Wed May 13 10:00:44 2026 by rpki-client