$ rpki-client -vvf rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa File: 3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: 45CN9yoUG6RuKCQ3eV8UKAqFsZNc0HLFA8m6Fw2raWM= Subject key identifier: 6E:6F:EC:6A:27:B7:B3:4B:42:05:AE:98:67:4C:AB:08:1C:7F:A3:E6 Certificate issuer: /CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Certificate serial: 6694BAA6EA591BA14A1E0CEAE25D3BCFF7264D27 Authority key identifier: 9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa Signing time: Sun 03 May 2026 03:10:34 +0000 ROA not before: Sun 03 May 2026 03:05:34 +0000 ROA not after: Sun 02 May 2027 03:10:34 +0000 asID: 38149 IP address blocks: 150.129.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:94:ba:a6:ea:59:1b:a1:4a:1e:0c:ea:e2:5d:3b:cf:f7:26:4d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BE1F1BA8091631A409BE939BDB0733274F4AAC4 Validity Not Before: May 3 03:05:34 2026 GMT Not After : May 2 03:10:34 2027 GMT Subject: CN=6E6FEC6A27B7B34B4205AE98674CAB081C7FA3E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:0d:c6:6a:ec:da:fc:c3:a3:53:97:f8:54: 54:54:0d:19:93:13:3a:e5:99:d7:a5:b7:0f:e0:56: b5:c7:1f:9e:18:62:3e:15:fa:a3:e3:d9:fd:a7:35: 32:2e:0a:05:73:88:29:3d:69:e9:1a:a1:5d:f9:4f: f0:b0:32:04:27:45:6c:b5:b7:3b:b4:48:06:33:7b: 94:e2:37:76:34:e9:0e:8d:2e:84:ec:7f:d9:17:36: 14:05:98:a4:88:59:1f:20:70:b5:90:cf:ff:03:86: 65:7e:8c:e6:86:94:50:f0:78:a9:c8:81:cc:9a:bf: 46:7c:3a:9b:6c:af:1c:1b:60:1f:e1:ad:af:ab:a8: 2a:a0:95:17:c7:a7:62:67:0d:30:4c:95:16:bd:15: c3:73:1a:9b:09:db:8c:14:29:44:a8:c8:e7:22:3f: 9a:1c:28:5f:da:52:f8:e6:ad:2c:f1:86:76:ad:c4: 09:92:00:65:c6:71:47:ee:e7:26:77:13:c2:83:bb: 6c:99:34:ac:6a:aa:82:2c:e6:63:0d:a2:2f:0d:22: 17:e0:94:93:7d:35:97:4c:40:d8:99:9d:c2:6b:47: ca:44:2d:cf:b6:17:75:59:15:77:72:3b:b1:ec:06: d9:e8:2a:c5:88:99:d5:d5:d2:e3:9a:2d:04:9c:cc: 97:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6F:EC:6A:27:B7:B3:4B:42:05:AE:98:67:4C:AB:08:1C:7F:A3:E6 X509v3 Authority Key Identifier: keyid:9B:E1:F1:BA:80:91:63:1A:40:9B:E9:39:BD:B0:73:32:74:F4:AA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9BE1F1BA8091631A409BE939BDB0733274F4AAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3139312e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.129.191.0/24 Signature Algorithm: sha256WithRSAEncryption 76:0d:a2:99:41:19:42:7e:e6:be:35:16:07:a1:06:c7:75:a6: d7:08:38:4a:fc:b0:35:f9:f0:b6:6c:00:e3:d1:d4:4a:85:2a: 74:67:88:43:44:87:90:32:3f:1a:f9:bb:7a:3e:2a:b2:a9:58: a8:86:bb:2a:00:3e:36:72:59:67:0a:79:73:2d:49:5b:c4:f5: c5:62:98:c7:80:eb:73:6e:ec:c4:aa:0d:0e:84:3c:76:0e:19: ec:e3:b8:9f:0f:77:78:5b:e5:26:51:2a:02:07:42:50:a8:4f: a6:02:41:14:53:7a:33:37:70:48:d3:91:be:bf:78:9f:92:18: 5d:82:93:6c:f4:8a:c6:a4:ce:01:23:e8:4c:17:ae:9c:d3:b7: bf:40:8e:a9:8b:e3:1b:fa:aa:3b:3f:e8:99:28:41:27:27:7a: c6:8f:33:85:9e:c3:a9:b5:fe:5e:09:1e:15:d3:b7:a8:b0:6a: 8e:5f:22:02:d3:3e:d3:c3:40:d8:24:c6:bf:a3:2c:22:58:e9: 60:24:2d:12:67:69:64:da:e4:b7:4f:39:28:69:43:40:3a:f9: a7:29:41:97:39:a4:92:42:ff:34:9c:8e:f8:61:e4:e6:b0:e8: b6:9b:ac:04:56:64:f3:51:3d:66:cf:0b:f0:4a:06:03:57:75: cd:fd:39:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZpS6pupZG6FKHgzq4l07z/cmTScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJFMUYxQkE4MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3 NEY0QUFDNDAeFw0yNjA1MDMwMzA1MzRaFw0yNzA1MDIwMzEwMzRaMDMxMTAvBgNV BAMTKDZFNkZFQzZBMjdCN0IzNEI0MjA1QUU5ODY3NENBQjA4MUM3RkEzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqGg3Gauza/MOjU5f4VFRUDRmT Ezrlmdeltw/gVrXHH54YYj4V+qPj2f2nNTIuCgVziCk9aekaoV35T/CwMgQnRWy1 tzu0SAYze5TiN3Y06Q6NLoTsf9kXNhQFmKSIWR8gcLWQz/8DhmV+jOaGlFDweKnI gcyav0Z8OptsrxwbYB/hra+rqCqglRfHp2JnDTBMlRa9FcNzGpsJ24wUKUSoyOci P5ocKF/aUvjmrSzxhnatxAmSAGXGcUfu5yZ3E8KDu2yZNKxqqoIs5mMNoi8NIhfg lJN9NZdMQNiZncJrR8pELc+2F3VZFXdyO7HsBtnoKsWImdXV0uOaLQSczJe7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbm/saie3s0tCBa6YZ0yrCBx/o+YwHwYDVR0j BBgwFoAUm+HxuoCRYxpAm+k5vbBzMnT0qsQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDhlM2IzOWMtZGExMS00NWVlLWFhYjMtNWNiMTRlYzQ0NzBjLzAvOUJFMUYxQkE4 MDkxNjMxQTQwOUJFOTM5QkRCMDczMzI3NEY0QUFDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QkUxRjFCQTgwOTE2MzFBNDA5QkU5MzlCREIwNzMzMjc0RjRB QUM0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzUzMDJlMzEzMjM5MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAloG/MA0GCSqG SIb3DQEBCwUAA4IBAQB2DaKZQRlCfua+NRYHoQbHdabXCDhK/LA1+fC2bADj0dRK hSp0Z4hDRIeQMj8a+bt6PiqyqViohrsqAD42cllnCnlzLUlbxPXFYpjHgOtzbuzE qg0OhDx2Dhns47ifD3d4W+UmUSoCB0JQqE+mAkEUU3ozN3BI05G+v3ifkhhdgpNs 9IrGpM4BI+hMF66c07e/QI6pi+Mb+qo7P+iZKEEnJ3rGjzOFnsOptf5eCR4V07eo sGqOXyIC0z7Tw0DYJMa/oywiWOlgJC0SZ2lk2uS3TzkoaUNAOvmnKUGXOaSSQv80 nI74YeTmsOi2m6wEVmTzUT1mzwvwSgYDV3XN/Tmg -----END CERTIFICATE-----Generated at Wed May 13 04:54:31 2026 by rpki-client