$ rpki-client -vvf rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa File: 3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa (raw, json) Hash identifier: rwfp5y5H5qPfQhaF6rDqIcStalVTGJI0mJpk4RX2nTI= Subject key identifier: 19:93:70:23:38:4A:2F:4A:FD:F1:CC:C3:AE:5F:58:E4:04:D0:99:03 Certificate issuer: /CN=A65F65BF2DB9317754BA910F052FC09429259CBC Certificate serial: 6C37C847D8BF8F89EE82311016F13E50758A00AA Authority key identifier: A6:5F:65:BF:2D:B9:31:77:54:BA:91:0F:05:2F:C0:94:29:25:9C:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa Signing time: Sun 03 May 2026 03:11:22 +0000 ROA not before: Sun 03 May 2026 03:06:22 +0000 ROA not after: Sun 02 May 2027 03:11:22 +0000 asID: 152416 IP address blocks: 157.20.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.crl rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:37:c8:47:d8:bf:8f:89:ee:82:31:10:16:f1:3e:50:75:8a:00:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A65F65BF2DB9317754BA910F052FC09429259CBC Validity Not Before: May 3 03:06:22 2026 GMT Not After : May 2 03:11:22 2027 GMT Subject: CN=19937023384A2F4AFDF1CCC3AE5F58E404D09903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4c:28:20:c4:51:29:90:dd:c8:74:07:6b:20: ea:10:8d:c1:c2:4b:90:03:d0:40:cf:3f:58:87:b9: 82:67:b7:bd:d7:6e:db:88:05:96:fe:10:08:aa:99: ab:86:b7:b7:0a:d5:eb:f8:06:2c:25:31:9c:cb:22: f8:07:d2:91:49:aa:b2:a6:19:99:0d:b5:07:59:cc: 42:65:d1:65:4b:43:a9:77:13:e3:d3:b3:0d:89:9e: 56:3b:78:a0:f0:0f:7c:89:83:44:d0:42:1a:51:58: 84:5d:29:d7:e3:4d:da:a2:a6:7e:3d:7c:4b:d3:6a: 44:66:b0:4b:80:06:eb:4d:3f:43:79:20:f4:82:7e: 36:10:fa:21:92:f8:c2:1d:3b:f2:7a:13:fc:a5:69: fa:d2:c2:65:8f:aa:a3:8c:ff:96:0c:5d:ae:2a:dd: 36:c9:fd:5d:74:82:1b:a0:82:63:0e:ba:ee:9c:04: dc:75:ac:e0:c7:f7:06:90:86:26:91:ff:1c:16:22: 83:79:22:c0:63:b4:da:97:03:64:39:46:29:04:71: d3:45:92:d0:b9:6b:90:77:db:29:d4:37:80:23:ef: ee:42:2f:7e:e0:a0:8a:cf:9d:5f:09:8c:b7:d6:93: f4:6d:1d:62:17:31:1a:54:e8:52:f0:38:82:36:58: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:93:70:23:38:4A:2F:4A:FD:F1:CC:C3:AE:5F:58:E4:04:D0:99:03 X509v3 Authority Key Identifier: keyid:A6:5F:65:BF:2D:B9:31:77:54:BA:91:0F:05:2F:C0:94:29:25:9C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/A65F65BF2DB9317754BA910F052FC09429259CBC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A65F65BF2DB9317754BA910F052FC09429259CBC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.209.0/24 Signature Algorithm: sha256WithRSAEncryption 05:b7:5d:7b:3f:24:91:d4:bf:ef:e0:52:d5:24:48:24:35:ec: bd:bd:f0:0b:3e:e8:94:b6:aa:92:c7:fe:b1:24:10:71:4c:d7: b3:e7:99:40:66:97:60:35:87:3f:cb:e9:90:2c:fc:d9:fa:7c: 97:ad:a3:a1:6f:57:2b:b2:f4:a8:49:cb:c7:83:1d:a5:86:73: 72:56:b8:2a:8a:fa:48:90:38:9e:1c:fe:50:a9:1a:e0:f9:d5: c6:9a:a5:30:75:bc:3c:63:12:4a:91:6a:c1:ee:8f:1e:02:04: 3b:f9:44:df:02:c6:71:ee:c4:8c:c7:14:d1:7b:d9:fa:4f:3c: 47:7a:2f:ef:71:98:81:b7:c7:60:9f:58:75:05:1f:4a:32:90: fe:db:49:b4:4e:bf:eb:59:63:83:7a:2c:32:e7:f2:cb:b2:4a: e3:43:d3:6a:df:a5:b9:e7:b4:7f:78:85:0f:2f:5b:a7:9b:d9: 57:e1:30:85:67:8a:77:fa:64:e7:fa:12:91:62:d3:11:84:f7: a5:b9:5b:f7:d6:12:14:ae:f8:69:fa:a5:eb:c9:35:95:d0:86: 93:78:53:8e:bd:9a:93:b8:30:2d:3e:21:d4:95:4d:e0:29:52: 85:5a:5a:40:9b:0e:2e:13:e1:eb:6c:2e:1d:64:d8:dd:ec:62: a1:bd:39:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbDfIR9i/j4nugjEQFvE+UHWKAKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY1RjY1QkYyREI5MzE3NzU0QkE5MTBGMDUyRkMwOTQy OTI1OUNCQzAeFw0yNjA1MDMwMzA2MjJaFw0yNzA1MDIwMzExMjJaMDMxMTAvBgNV BAMTKDE5OTM3MDIzMzg0QTJGNEFGREYxQ0NDM0FFNUY1OEU0MDREMDk5MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiTCggxFEpkN3IdAdrIOoQjcHC S5AD0EDPP1iHuYJnt73XbtuIBZb+EAiqmauGt7cK1ev4BiwlMZzLIvgH0pFJqrKm GZkNtQdZzEJl0WVLQ6l3E+PTsw2JnlY7eKDwD3yJg0TQQhpRWIRdKdfjTdqipn49 fEvTakRmsEuAButNP0N5IPSCfjYQ+iGS+MIdO/J6E/ylafrSwmWPqqOM/5YMXa4q 3TbJ/V10ghuggmMOuu6cBNx1rODH9waQhiaR/xwWIoN5IsBjtNqXA2Q5RikEcdNF ktC5a5B32ynUN4Aj7+5CL37goIrPnV8JjLfWk/RtHWIXMRpU6FLwOII2WC3vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGZNwIzhKL0r98czDrl9Y5ATQmQMwHwYDVR0j BBgwFoAUpl9lvy25MXdUupEPBS/AlCklnLwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGM0MDk0ZDItZTE4ZC00ODQwLTg0ZmEtYzU3NTdhZjU4MGYxLzAvQTY1RjY1QkYy REI5MzE3NzU0QkE5MTBGMDUyRkMwOTQyOTI1OUNCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BNjVGNjVCRjJEQjkzMTc3NTRCQTkxMEYwNTJGQzA5NDI5MjU5 Q0JDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTRMA0GCSqG SIb3DQEBCwUAA4IBAQAFt117PySR1L/v4FLVJEgkNey9vfALPuiUtqqSx/6xJBBx TNez55lAZpdgNYc/y+mQLPzZ+nyXraOhb1crsvSoScvHgx2lhnNyVrgqivpIkDie HP5QqRrg+dXGmqUwdbw8YxJKkWrB7o8eAgQ7+UTfAsZx7sSMxxTRe9n6TzxHei/v cZiBt8dgn1h1BR9KMpD+20m0Tr/rWWODeiwy5/LLskrjQ9Nq36W557R/eIUPL1un m9lX4TCFZ4p3+mTn+hKRYtMRhPeluVv31hIUrvhp+qXryTWV0IaTeFOOvZqTuDAt PiHUlU3gKVKFWlpAmw4uE+HrbC4dZNjd7GKhvTkm -----END CERTIFICATE-----Generated at Wed May 13 02:39:59 2026 by rpki-client