$ rpki-client -vvf rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134302e302f32342d3234203d3e20313532373539.roa File: 3135372e36362e3134302e302f32342d3234203d3e20313532373539.roa (raw, json) Hash identifier: CjlIt4MYvo7XEt2sGyJogAmUB68TdPA5ouLe//ZK0KM= Subject key identifier: EC:38:58:9A:98:5E:66:06:E5:E5:C4:D7:D7:2F:D6:9F:75:09:F5:69 Certificate issuer: /CN=3722F57F36FC6DF64F0F6638C89CF2B35E53A611 Certificate serial: 663EA4AFD99645AE59B5A77D6B9B5CC999CB7518 Authority key identifier: 37:22:F5:7F:36:FC:6D:F6:4F:0F:66:38:C8:9C:F2:B3:5E:53:A6:11 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134302e302f32342d3234203d3e20313532373539.roa Signing time: Sun 03 May 2026 03:11:15 +0000 ROA not before: Sun 03 May 2026 03:06:15 +0000 ROA not after: Sun 02 May 2027 03:11:15 +0000 asID: 152759 IP address blocks: 157.66.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.crl rsync://rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:3e:a4:af:d9:96:45:ae:59:b5:a7:7d:6b:9b:5c:c9:99:cb:75:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722F57F36FC6DF64F0F6638C89CF2B35E53A611 Validity Not Before: May 3 03:06:15 2026 GMT Not After : May 2 03:11:15 2027 GMT Subject: CN=EC38589A985E6606E5E5C4D7D72FD69F7509F569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:e5:91:6f:e4:2d:0d:01:c3:6d:d0:1d:68: 05:9f:a6:49:38:09:75:7c:32:28:c3:7b:14:19:0a: ab:5e:8f:45:d4:23:ca:1d:cc:93:d9:ad:a0:35:fb: 18:8e:95:b1:c1:78:9e:cd:e1:11:5a:85:f4:99:de: 83:99:16:d0:0c:86:8b:f1:b4:92:82:19:2d:d1:d6: 60:00:5c:e7:bd:8b:0d:41:48:3a:c8:da:3d:f8:74: df:2a:50:5c:68:fb:26:36:b2:8a:9a:bd:b6:78:67: 72:54:68:16:35:0d:f3:55:8d:13:d9:f9:54:05:23: cb:be:f2:98:dc:8a:2c:d8:c4:d4:b8:0d:5f:e8:4c: a2:04:2f:cb:e9:c8:cd:b2:2c:98:a7:9c:c6:2a:28: c3:43:68:47:5a:45:23:61:f2:39:f2:34:25:e5:d2: 5d:f1:9e:f4:03:01:cf:67:a5:ad:85:d3:52:0c:2e: ea:c5:9d:0e:c4:17:0d:9a:e2:a9:ac:00:b7:76:6d: c9:23:86:12:43:31:0b:59:dd:79:4e:ce:a9:1c:e0: 78:3a:4d:50:98:e7:4c:8b:ae:c2:37:ef:ff:38:b2: 5a:06:b8:ae:08:16:7d:ca:38:8c:1a:eb:44:c7:b2: 8f:86:8f:55:bc:6f:ed:67:b1:1b:ff:25:58:fc:03: 81:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:38:58:9A:98:5E:66:06:E5:E5:C4:D7:D7:2F:D6:9F:75:09:F5:69 X509v3 Authority Key Identifier: keyid:37:22:F5:7F:36:FC:6D:F6:4F:0F:66:38:C8:9C:F2:B3:5E:53:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3722F57F36FC6DF64F0F6638C89CF2B35E53A611.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/3135372e36362e3134302e302f32342d3234203d3e20313532373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.140.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:7a:98:f5:1a:cf:8c:30:ef:58:5e:57:f6:de:93:03:b7:d1: bf:2c:d2:1a:9a:1f:29:75:ce:47:a8:2c:89:16:19:bc:96:91: 05:e0:b1:50:cd:69:76:f2:e6:79:fb:8a:ea:04:ee:ae:08:fa: b0:f8:0a:14:1a:2e:63:a3:e0:c1:71:1a:ad:ad:2f:31:6e:3f: 4b:08:ff:7c:d1:c4:1f:17:23:ce:fb:e1:2b:2f:22:50:ef:90: 9d:b9:52:cd:69:5e:62:d6:50:00:b5:f3:4d:38:bd:84:bc:fd: a9:e9:7e:f2:e9:74:d0:7f:e8:06:93:34:f8:a5:ef:43:69:db: 2f:d6:3c:64:4e:76:b9:da:ff:3d:73:d6:ed:a9:c5:96:3a:9f: cb:7a:86:6c:55:f1:df:b9:c6:51:2d:17:df:9f:a8:6c:55:99: a8:6c:3a:81:91:98:37:d2:50:d0:65:bb:3f:66:cb:df:93:41: 35:14:ef:78:bf:cf:8b:00:8e:78:91:42:c9:6a:b2:20:52:f8: 4e:49:0a:ee:1c:77:bd:40:8f:e8:ae:36:e6:1b:20:4b:b5:44: 2e:3b:b8:8d:82:f0:2b:45:3d:ff:37:d5:f5:ac:05:c9:89:b6: f4:83:f8:7b:4c:88:63:06:c7:3a:a9:e9:13:ed:8c:5f:de:ad: a7:04:93:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZj6kr9mWRa5Ztad9a5tcyZnLdRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkY1N0YzNkZDNkRGNjRGMEY2NjM4Qzg5Q0YyQjM1 RTUzQTYxMTAeFw0yNjA1MDMwMzA2MTVaFw0yNzA1MDIwMzExMTVaMDMxMTAvBgNV BAMTKEVDMzg1ODlBOTg1RTY2MDZFNUU1QzREN0Q3MkZENjlGNzUwOUY1NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzh+WRb+QtDQHDbdAdaAWfpkk4 CXV8MijDexQZCqtej0XUI8odzJPZraA1+xiOlbHBeJ7N4RFahfSZ3oOZFtAMhovx tJKCGS3R1mAAXOe9iw1BSDrI2j34dN8qUFxo+yY2soqavbZ4Z3JUaBY1DfNVjRPZ +VQFI8u+8pjciizYxNS4DV/oTKIEL8vpyM2yLJinnMYqKMNDaEdaRSNh8jnyNCXl 0l3xnvQDAc9npa2F01IMLurFnQ7EFw2a4qmsALd2bckjhhJDMQtZ3XlOzqkc4Hg6 TVCY50yLrsI37/84sloGuK4IFn3KOIwa60THso+Gj1W8b+1nsRv/JVj8A4H1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7DhYmpheZgbl5cTX1y/Wn3UJ9WkwHwYDVR0j BBgwFoAUNyL1fzb8bfZPD2Y4yJzys15TphEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGJhOWY0ZTItYzczYi00NDI3LTk4MjktMWRhMWJhYWI4NzBiLzAvMzcyMkY1N0Yz NkZDNkRGNjRGMEY2NjM4Qzg5Q0YyQjM1RTUzQTYxMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zNzIyRjU3RjM2RkM2REY2NEYwRjY2MzhDODlDRjJCMzVFNTNB NjExLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RiYTlmNGUyLWM3M2ItNDQyNy05 ODI5LTFkYTFiYWFiODcwYi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKMMA0GCSqG SIb3DQEBCwUAA4IBAQBdepj1Gs+MMO9YXlf23pMDt9G/LNIamh8pdc5HqCyJFhm8 lpEF4LFQzWl28uZ5+4rqBO6uCPqw+AoUGi5jo+DBcRqtrS8xbj9LCP980cQfFyPO ++ErLyJQ75CduVLNaV5i1lAAtfNNOL2EvP2p6X7y6XTQf+gGkzT4pe9Dadsv1jxk Tna52v89c9btqcWWOp/LeoZsVfHfucZRLRffn6hsVZmobDqBkZg30lDQZbs/Zsvf k0E1FO94v8+LAI54kULJarIgUvhOSQruHHe9QI/orjbmGyBLtUQuO7iNgvArRT3/ N9X1rAXJibb0g/h7TIhjBsc6qekT7Yxf3q2nBJOa -----END CERTIFICATE-----Generated at Wed May 13 03:59:12 2026 by rpki-client