$ rpki-client -vvf rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa File: 3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa (raw, json) Hash identifier: 6sJwEQuVC2SCQbpKDbpQ7062AUPzj2WmwzEMVpDHp88= Subject key identifier: 25:90:A4:46:4F:C9:B2:A0:B6:54:48:E6:98:E2:50:AC:CC:66:1B:BB Certificate issuer: /CN=A65F65BF2DB9317754BA910F052FC09429259CBC Certificate serial: 2F53E3EBF733561C3484FE15D52A0BA21853C0F2 Authority key identifier: A6:5F:65:BF:2D:B9:31:77:54:BA:91:0F:05:2F:C0:94:29:25:9C:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa Signing time: Sun 03 May 2026 03:11:23 +0000 ROA not before: Sun 03 May 2026 03:06:23 +0000 ROA not after: Sun 02 May 2027 03:11:23 +0000 asID: 152416 IP address blocks: 157.20.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.crl rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:53:e3:eb:f7:33:56:1c:34:84:fe:15:d5:2a:0b:a2:18:53:c0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A65F65BF2DB9317754BA910F052FC09429259CBC Validity Not Before: May 3 03:06:23 2026 GMT Not After : May 2 03:11:23 2027 GMT Subject: CN=2590A4464FC9B2A0B65448E698E250ACCC661BBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:35:9c:e5:c5:7a:1c:b7:2f:7b:58:29:57:9b: 14:ad:f0:37:ba:90:e4:f8:c7:aa:0b:bb:7b:92:f9: 15:28:19:b1:29:1e:41:aa:41:a3:3c:7b:67:6e:2f: c2:fe:05:48:cc:34:7e:b6:fc:99:94:c9:c0:18:31: 71:79:ec:cd:31:16:fd:20:cd:7d:36:04:be:2e:93: d4:81:1f:8b:7a:cd:db:65:25:e7:e6:8a:f1:be:67: bb:9a:99:2f:71:4f:2b:4d:3a:d2:67:d7:91:02:33: 39:63:a7:31:03:ce:33:29:9b:83:8d:09:e8:c1:59: 2d:3e:7b:52:90:17:b0:8a:d0:84:34:b0:96:60:bb: f2:75:3f:5e:24:14:e8:03:f2:b6:ad:ef:97:46:dd: 78:b1:30:f9:80:19:1f:00:89:2b:09:04:02:5a:99: b9:f2:b8:85:39:df:1b:01:cb:e3:c1:f1:b3:9c:1b: af:d9:2a:6f:cf:7f:59:4d:69:fe:e7:92:c5:0a:6c: 29:ab:16:e4:bd:53:3a:02:b4:6f:6b:60:33:f8:ca: e7:56:4d:e5:74:3e:41:7f:4b:0e:a1:e5:df:e9:7f: dd:62:fe:6b:e4:63:39:3b:9a:b3:e7:f0:3f:83:29: 6e:b4:de:27:8a:f1:ad:16:9a:be:de:05:7c:28:93: e2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:90:A4:46:4F:C9:B2:A0:B6:54:48:E6:98:E2:50:AC:CC:66:1B:BB X509v3 Authority Key Identifier: keyid:A6:5F:65:BF:2D:B9:31:77:54:BA:91:0F:05:2F:C0:94:29:25:9C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.208.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:94:cf:3a:7f:95:54:d6:2f:96:21:d3:80:67:1b:9b:a4:75: e7:04:67:db:8e:f4:9c:af:13:34:82:ac:66:62:43:73:3f:3a: b6:e3:79:82:ef:61:dc:68:6c:eb:c7:30:17:14:a1:78:8d:98: 9d:8b:67:8e:9a:91:8a:6d:6e:1b:e9:49:e3:05:94:c5:01:b6: 5b:60:33:f3:c6:ac:b3:f2:50:96:65:7d:a1:11:43:a6:c8:e5: 25:87:80:8e:fa:e5:62:43:02:83:aa:9b:82:20:51:d7:8c:aa: 21:79:cc:f8:87:4b:f9:c1:82:51:49:24:c3:2e:ea:ed:d0:5b: 9c:84:c6:c7:fb:41:6f:2e:02:ae:cd:3c:f1:e5:32:62:df:65: 12:df:dc:45:1e:9c:be:9a:e5:79:64:b4:24:62:95:f4:20:2e: ae:c1:4e:13:f2:a5:9b:43:ea:de:77:9e:3e:23:16:bb:3b:24: d3:6d:41:5f:9d:03:cc:e1:67:8d:96:e2:35:a5:1f:4a:ed:28: b4:5a:68:31:65:25:11:b0:df:60:1e:d8:79:16:43:ff:d5:11: 44:f6:87:e9:2f:ac:15:1f:2f:89:42:be:8a:04:03:98:21:ac: d8:45:5f:c6:87:70:d9:f6:de:ed:ad:fa:a2:16:3e:65:ae:f0: a8:25:89:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL1Pj6/czVhw0hP4V1SoLohhTwPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY1RjY1QkYyREI5MzE3NzU0QkE5MTBGMDUyRkMwOTQy OTI1OUNCQzAeFw0yNjA1MDMwMzA2MjNaFw0yNzA1MDIwMzExMjNaMDMxMTAvBgNV BAMTKDI1OTBBNDQ2NEZDOUIyQTBCNjU0NDhFNjk4RTI1MEFDQ0M2NjFCQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgNZzlxXocty97WClXmxSt8De6 kOT4x6oLu3uS+RUoGbEpHkGqQaM8e2duL8L+BUjMNH62/JmUycAYMXF57M0xFv0g zX02BL4uk9SBH4t6zdtlJefmivG+Z7uamS9xTytNOtJn15ECMzljpzEDzjMpm4ON CejBWS0+e1KQF7CK0IQ0sJZgu/J1P14kFOgD8rat75dG3XixMPmAGR8AiSsJBAJa mbnyuIU53xsBy+PB8bOcG6/ZKm/Pf1lNaf7nksUKbCmrFuS9UzoCtG9rYDP4yudW TeV0PkF/Sw6h5d/pf91i/mvkYzk7mrPn8D+DKW603ieK8a0Wmr7eBXwok+IDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJZCkRk/JsqC2VEjmmOJQrMxmG7swHwYDVR0j BBgwFoAUpl9lvy25MXdUupEPBS/AlCklnLwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGM0MDk0ZDItZTE4ZC00ODQwLTg0ZmEtYzU3NTdhZjU4MGYxLzAvQTY1RjY1QkYy REI5MzE3NzU0QkE5MTBGMDUyRkMwOTQyOTI1OUNCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BNjVGNjVCRjJEQjkzMTc3NTRCQTkxMEYwNTJGQzA5NDI5MjU5 Q0JDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTQMA0GCSqG SIb3DQEBCwUAA4IBAQCNlM86f5VU1i+WIdOAZxubpHXnBGfbjvScrxM0gqxmYkNz Pzq243mC72HcaGzrxzAXFKF4jZidi2eOmpGKbW4b6UnjBZTFAbZbYDPzxqyz8lCW ZX2hEUOmyOUlh4CO+uViQwKDqpuCIFHXjKohecz4h0v5wYJRSSTDLurt0FuchMbH +0FvLgKuzTzx5TJi32US39xFHpy+muV5ZLQkYpX0IC6uwU4T8qWbQ+red54+Ixa7 OyTTbUFfnQPM4WeNluI1pR9K7Si0WmgxZSURsN9gHth5FkP/1RFE9ofpL6wVHy+J Qr6KBAOYIazYRV/Gh3DZ9t7trfqiFj5lrvCoJYl2 -----END CERTIFICATE-----Generated at Wed May 13 00:34:04 2026 by rpki-client