$ rpki-client -vvf rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa File: 3135372e32302e39352e302f32342d3234203d3e20313431363032.roa (raw, json) Hash identifier: uA8fdhhgRgay+nwR5lgokvA0Y41clLqd0FjSgZQaSws= Subject key identifier: F1:A4:2A:1F:55:4C:7B:F7:5E:28:CC:99:58:CF:2E:C5:A3:F1:51:92 Certificate issuer: /CN=60B7F65507671C158E1D599CEE8EC29532B62A05 Certificate serial: 6F88532859B31D126AA860A8BBE1D822C992C4AA Authority key identifier: 60:B7:F6:55:07:67:1C:15:8E:1D:59:9C:EE:8E:C2:95:32:B6:2A:05 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/60B7F65507671C158E1D599CEE8EC29532B62A05.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa Signing time: Sun 03 May 2026 03:11:08 +0000 ROA not before: Sun 03 May 2026 03:06:08 +0000 ROA not after: Sun 02 May 2027 03:11:08 +0000 asID: 141602 IP address blocks: 157.20.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/60B7F65507671C158E1D599CEE8EC29532B62A05.crl rsync://rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/60B7F65507671C158E1D599CEE8EC29532B62A05.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/60B7F65507671C158E1D599CEE8EC29532B62A05.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:88:53:28:59:b3:1d:12:6a:a8:60:a8:bb:e1:d8:22:c9:92:c4:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60B7F65507671C158E1D599CEE8EC29532B62A05 Validity Not Before: May 3 03:06:08 2026 GMT Not After : May 2 03:11:08 2027 GMT Subject: CN=F1A42A1F554C7BF75E28CC9958CF2EC5A3F15192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1e:8f:6c:d9:90:c8:90:1f:a6:64:4b:25:eb: d7:bc:54:68:30:1f:d9:61:ba:26:e8:1b:e1:e5:82: 5b:4c:ee:75:48:75:df:b2:02:60:ac:d1:25:72:6c: 98:6e:29:fe:08:93:77:84:19:ee:c5:09:fd:c4:93: 6d:70:dd:c1:2a:09:17:b6:e1:25:fe:67:e2:10:8a: 0a:47:cc:99:01:77:02:d7:15:e4:92:a2:2f:ba:fc: f5:ba:d2:79:98:37:5d:3a:e9:36:2a:45:21:0c:d5: 0c:c8:37:5f:88:20:77:b2:c0:dd:99:d2:81:98:fe: 01:45:6f:46:7f:3f:b6:32:a7:29:22:2d:c0:b1:6c: 0e:e3:43:1c:5b:27:b4:5d:b2:a0:c6:19:c3:84:ae: 70:de:43:b7:5b:27:61:35:ff:f6:69:45:00:48:ad: ca:a3:97:9c:ff:ab:38:0f:dc:9a:41:0a:9b:c6:c0: 8e:32:ae:d0:1d:e0:0c:57:82:da:21:c8:78:23:b9: 0c:59:5e:de:a1:92:89:3e:a3:aa:10:39:6e:8e:93: e7:a8:c0:d2:eb:9c:4b:0e:e0:6f:07:fd:df:ed:1a: 9b:c3:78:d7:1b:2b:a8:1d:87:0c:c1:ba:cf:6b:28: 9d:6d:38:14:a5:93:49:a3:96:2d:00:db:0f:b2:00: b5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A4:2A:1F:55:4C:7B:F7:5E:28:CC:99:58:CF:2E:C5:A3:F1:51:92 X509v3 Authority Key Identifier: keyid:60:B7:F6:55:07:67:1C:15:8E:1D:59:9C:EE:8E:C2:95:32:B6:2A:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/60B7F65507671C158E1D599CEE8EC29532B62A05.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/60B7F65507671C158E1D599CEE8EC29532B62A05.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dae13bac-91c1-463b-8333-64eec6d2797e/0/3135372e32302e39352e302f32342d3234203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.95.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:0c:1e:d6:07:57:e5:3b:ea:fa:a9:82:52:81:cf:a1:b4:af: 9d:96:23:11:2f:63:e0:c0:3d:a3:4d:3e:95:93:23:be:4e:ba: 63:bf:b4:58:97:86:b9:81:52:54:f9:54:29:fc:23:26:b1:26: 97:1f:b6:68:f6:80:67:d0:ec:20:f7:36:f4:d9:c5:50:a9:2d: 43:e7:ad:1e:db:ec:54:55:44:ca:c2:74:13:e2:50:8b:47:f2: 45:e0:45:7b:3a:be:6b:05:e1:42:d3:7a:0e:11:c7:0c:c9:10: fa:3c:13:fb:c0:d7:a1:94:5e:e4:28:ec:8c:58:b8:6c:f0:8c: a2:f4:9b:34:56:c9:62:32:e0:c9:90:90:fa:80:41:3c:ba:d0: 7a:7c:07:20:1b:2e:cb:74:88:82:3d:d3:8b:70:d4:77:ff:cb: 93:a3:3f:31:87:c9:36:ee:96:63:1e:80:ed:27:96:da:fb:77: 65:87:a0:91:d6:00:db:02:b3:1b:be:8c:a4:e3:0d:0a:ed:dd: 25:a9:3c:8f:74:ff:bf:a1:07:c2:7d:4a:7f:88:67:3e:f0:12: e3:44:94:a0:76:5f:85:c5:62:9f:61:c7:39:a0:87:b3:7f:3a: 83:24:5b:70:99:3f:55:07:66:0d:46:28:8f:93:be:60:7d:81: c9:2e:03:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb4hTKFmzHRJqqGCou+HYIsmSxKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBCN0Y2NTUwNzY3MUMxNThFMUQ1OTlDRUU4RUMyOTUz MkI2MkEwNTAeFw0yNjA1MDMwMzA2MDhaFw0yNzA1MDIwMzExMDhaMDMxMTAvBgNV BAMTKEYxQTQyQTFGNTU0QzdCRjc1RTI4Q0M5OTU4Q0YyRUM1QTNGMTUxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmHo9s2ZDIkB+mZEsl69e8VGgw H9lhuiboG+HlgltM7nVIdd+yAmCs0SVybJhuKf4Ik3eEGe7FCf3Ek21w3cEqCRe2 4SX+Z+IQigpHzJkBdwLXFeSSoi+6/PW60nmYN1066TYqRSEM1QzIN1+IIHeywN2Z 0oGY/gFFb0Z/P7YypykiLcCxbA7jQxxbJ7RdsqDGGcOErnDeQ7dbJ2E1//ZpRQBI rcqjl5z/qzgP3JpBCpvGwI4yrtAd4AxXgtohyHgjuQxZXt6hkok+o6oQOW6Ok+eo wNLrnEsO4G8H/d/tGpvDeNcbK6gdhwzBus9rKJ1tOBSlk0mjli0A2w+yALXhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8aQqH1VMe/deKMyZWM8uxaPxUZIwHwYDVR0j BBgwFoAUYLf2VQdnHBWOHVmc7o7ClTK2KgUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGFlMTNiYWMtOTFjMS00NjNiLTgzMzMtNjRlZWM2ZDI3OTdlLzAvNjBCN0Y2NTUw NzY3MUMxNThFMUQ1OTlDRUU4RUMyOTUzMkI2MkEwNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82MEI3RjY1NTA3NjcxQzE1OEUxRDU5OUNFRThFQzI5NTMyQjYy QTA1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RhZTEzYmFjLTkxYzEtNDYzYi04 MzMzLTY0ZWVjNmQyNzk3ZS8wLzMxMzUzNzJlMzIzMDJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UXzANBgkqhkiG 9w0BAQsFAAOCAQEAfQwe1gdX5Tvq+qmCUoHPobSvnZYjES9j4MA9o00+lZMjvk66 Y7+0WJeGuYFSVPlUKfwjJrEmlx+2aPaAZ9DsIPc29NnFUKktQ+etHtvsVFVEysJ0 E+JQi0fyReBFezq+awXhQtN6DhHHDMkQ+jwT+8DXoZRe5CjsjFi4bPCMovSbNFbJ YjLgyZCQ+oBBPLrQenwHIBsuy3SIgj3Ti3DUd//Lk6M/MYfJNu6WYx6A7SeW2vt3 ZYegkdYA2wKzG76MpOMNCu3dJak8j3T/v6EHwn1Kf4hnPvAS40SUoHZfhcVin2HH OaCHs386gyRbcJk/VQdmDUYoj5O+YH2ByS4DYg== -----END CERTIFICATE-----Generated at Wed May 13 02:47:07 2026 by rpki-client