$ rpki-client -vvf rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa File: 3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa (raw, json) Hash identifier: jUIsiSJsjPDf0Krk/AfybK3xD1mWMXMOgk6ke4wG6/A= Subject key identifier: BF:F1:94:E4:1E:A5:1E:05:2C:A5:77:65:E5:E8:B6:B3:C2:14:07:04 Certificate issuer: /CN=08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB Certificate serial: 2DAAEC862731D8734D1F58D03CEA99970B949FC8 Authority key identifier: 08:15:1F:D6:2F:A1:8C:9E:C2:F5:B9:DB:5D:4A:03:11:DF:50:90:BB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa Signing time: Sun 03 May 2026 03:10:17 +0000 ROA not before: Sun 03 May 2026 03:05:17 +0000 ROA not after: Sun 02 May 2027 03:10:17 +0000 asID: 152758 IP address blocks: 157.66.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.crl rsync://rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:aa:ec:86:27:31:d8:73:4d:1f:58:d0:3c:ea:99:97:0b:94:9f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB Validity Not Before: May 3 03:05:17 2026 GMT Not After : May 2 03:10:17 2027 GMT Subject: CN=BFF194E41EA51E052CA57765E5E8B6B3C2140704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:b3:ab:00:e1:b0:15:63:db:09:be:2b:b7: 4f:98:cf:15:1d:95:d8:1e:45:14:f5:2d:91:a1:ce: 09:71:c9:40:f5:23:b9:d9:26:5a:99:35:14:5c:11: 43:50:23:21:87:e4:1e:03:2b:d0:7a:28:ac:3e:22: f4:a7:10:52:5c:cf:f0:0d:c4:ac:86:7f:84:bb:30: cd:0b:24:dc:6a:e8:d5:a7:bc:05:1c:ee:43:a1:3b: 46:5d:59:17:13:c7:ca:4c:92:e2:f7:73:4e:4e:09: f1:9e:5d:e0:66:18:26:1f:68:8a:02:ea:cf:d0:02: 06:46:f2:76:37:e6:92:95:d0:ad:cf:10:59:9b:58: d4:f5:97:d2:7f:44:ba:e5:c5:01:3b:02:fc:43:d6: 92:90:0c:d5:56:9a:db:cf:0e:37:8c:95:e6:3b:d5: 77:9f:c2:67:f3:bf:3c:0d:6f:ef:c1:cf:92:f0:91: a0:d3:f5:20:ce:2a:36:7d:18:0e:43:e9:60:fd:fe: f5:cf:fa:3b:0c:23:90:35:d6:b0:df:cc:2c:a5:ab: 20:ce:f9:73:09:1f:ba:57:4a:aa:5b:d8:ca:fc:65: 8b:09:de:84:0f:b9:0e:d0:ab:60:f3:88:bc:62:71: f4:43:41:96:49:78:ed:d0:58:df:40:bb:db:b5:c7: 5f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F1:94:E4:1E:A5:1E:05:2C:A5:77:65:E5:E8:B6:B3:C2:14:07:04 X509v3 Authority Key Identifier: keyid:08:15:1F:D6:2F:A1:8C:9E:C2:F5:B9:DB:5D:4A:03:11:DF:50:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/08151FD62FA18C9EC2F5B9DB5D4A0311DF5090BB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233382e302f32332d3233203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.238.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:37:73:27:28:42:03:b6:47:3c:f9:cf:b2:80:5a:72:32:20: 5b:9b:47:fa:47:4d:f2:85:fb:bb:4a:c0:29:4c:a1:88:d2:be: b0:39:8a:ae:ff:c9:9d:2c:8f:d8:70:58:2d:50:79:07:67:2f: 3f:4a:00:a6:e1:46:37:3a:11:e4:ec:1d:5d:ba:f7:8d:8d:46: 77:c4:6c:9b:38:7a:80:01:a5:4f:06:33:29:69:d6:cf:42:cb: 6f:1c:08:9e:9e:b9:6d:af:91:74:ff:d2:61:44:b1:9d:d0:be: 37:84:da:84:b0:83:9e:f2:71:85:07:c7:f1:61:33:bf:0b:4d: 3f:97:10:58:4b:e6:e1:c7:73:7e:5f:c3:4b:04:11:67:bd:1d: 07:9a:1e:88:2e:30:3d:f2:85:9f:85:fe:6f:7e:1f:d6:83:a9: 2a:d0:71:1c:b4:57:4c:f9:f0:6f:40:65:3b:5a:18:b3:4b:75: 22:46:f5:83:a2:85:ba:e8:85:1e:90:ab:12:2f:7f:16:34:0d: d9:ca:93:91:ae:ff:db:4a:30:9a:05:1e:3a:53:37:13:c8:7d: e9:b8:a9:3f:c3:3b:85:7e:f0:38:62:2c:92:b7:19:6a:42:c1: 2a:84:e8:f0:c2:84:e7:9c:8b:e7:59:d1:4f:8e:8d:bb:c4:d4: 7d:ca:0d:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULarshicx2HNNH1jQPOqZlwuUn8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDgxNTFGRDYyRkExOEM5RUMyRjVCOURCNUQ0QTAzMTFE RjUwOTBCQjAeFw0yNjA1MDMwMzA1MTdaFw0yNzA1MDIwMzEwMTdaMDMxMTAvBgNV BAMTKEJGRjE5NEU0MUVBNTFFMDUyQ0E1Nzc2NUU1RThCNkIzQzIxNDA3MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC58rOrAOGwFWPbCb4rt0+YzxUd ldgeRRT1LZGhzglxyUD1I7nZJlqZNRRcEUNQIyGH5B4DK9B6KKw+IvSnEFJcz/AN xKyGf4S7MM0LJNxq6NWnvAUc7kOhO0ZdWRcTx8pMkuL3c05OCfGeXeBmGCYfaIoC 6s/QAgZG8nY35pKV0K3PEFmbWNT1l9J/RLrlxQE7AvxD1pKQDNVWmtvPDjeMleY7 1XefwmfzvzwNb+/Bz5LwkaDT9SDOKjZ9GA5D6WD9/vXP+jsMI5A11rDfzCylqyDO +XMJH7pXSqpb2Mr8ZYsJ3oQPuQ7Qq2DziLxicfRDQZZJeO3QWN9Au9u1x1/NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUv/GU5B6lHgUspXdl5ei2s8IUBwQwHwYDVR0j BBgwFoAUCBUf1i+hjJ7C9bnbXUoDEd9QkLswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDdkZDI1MTktMzA3OC00N2QzLTllODYtNDhmZDNiZGU3NmM4LzAvMDgxNTFGRDYy RkExOEM5RUMyRjVCOURCNUQ0QTAzMTFERjUwOTBCQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wODE1MUZENjJGQTE4QzlFQzJGNUI5REI1RDRBMDMxMURGNTA5 MEJCLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8wLzMxMzUzNzJlMzYzNjJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnULuMA0GCSqG SIb3DQEBCwUAA4IBAQAPN3MnKEIDtkc8+c+ygFpyMiBbm0f6R03yhfu7SsApTKGI 0r6wOYqu/8mdLI/YcFgtUHkHZy8/SgCm4UY3OhHk7B1duveNjUZ3xGybOHqAAaVP BjMpadbPQstvHAienrltr5F0/9JhRLGd0L43hNqEsIOe8nGFB8fxYTO/C00/lxBY S+bhx3N+X8NLBBFnvR0Hmh6ILjA98oWfhf5vfh/Wg6kq0HEctFdM+fBvQGU7Whiz S3UiRvWDooW66IUekKsSL38WNA3ZypORrv/bSjCaBR46UzcTyH3puKk/wzuFfvA4 YiyStxlqQsEqhOjwwoTnnIvnWdFPjo27xNR9yg3V -----END CERTIFICATE-----Generated at Wed May 13 02:40:21 2026 by rpki-client