$ rpki-client -vvf rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa File: 3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa (raw, json) Hash identifier: oN269PBRDnF940fO+bfI5PiA4IWS9ygfFhv4r3jDKlw= Subject key identifier: 45:8E:15:C0:77:1B:8B:40:81:A6:8F:54:66:CC:D8:51:FC:73:24:E1 Certificate issuer: /CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Certificate serial: 3375383B2F28A0E7762E6A1056561BDD43426E90 Authority key identifier: 3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa Signing time: Sun 03 May 2026 03:13:04 +0000 ROA not before: Sun 03 May 2026 03:08:04 +0000 ROA not after: Sun 02 May 2027 03:13:04 +0000 asID: 152423 IP address blocks: 157.20.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 06:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:75:38:3b:2f:28:a0:e7:76:2e:6a:10:56:56:1b:dd:43:42:6e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Validity Not Before: May 3 03:08:04 2026 GMT Not After : May 2 03:13:04 2027 GMT Subject: CN=458E15C0771B8B4081A68F5466CCD851FC7324E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:e4:51:d6:69:0f:bd:2a:9a:22:97:f2:05: af:5d:60:5a:5c:65:41:93:a7:bb:01:90:c3:71:3b: a3:b3:4a:65:85:43:db:7f:5d:35:61:b7:6d:e3:9f: f5:2d:2c:c0:f0:28:4d:ca:38:53:95:0c:5d:85:96: f7:b3:54:33:36:0d:a3:5e:c7:95:1a:1b:dd:db:64: 87:4f:cd:35:f9:8f:cc:ce:f6:6c:f8:a1:1a:1d:8d: cf:3d:71:d3:d8:49:6c:e7:4b:5e:04:6d:f2:3f:b5: 17:52:e6:6a:16:65:a2:4c:f7:e3:33:ca:e2:7f:0f: db:a0:b2:38:23:a8:48:2c:3e:44:f6:cb:53:95:c0: fe:51:33:81:ae:9d:0e:cd:b9:8e:9b:11:05:5f:24: d8:a4:c1:de:b6:b0:7e:d6:66:1e:86:6a:46:25:41: 8a:d5:6c:9b:56:47:d9:ad:01:a4:72:a9:2b:0e:db: d2:90:a7:32:ba:d5:f9:27:77:ab:66:a5:45:52:c5: fb:27:ac:16:1e:f3:90:ea:54:20:39:00:a1:8f:f5: 9a:c1:c1:4b:ec:fb:8d:4a:83:91:71:eb:41:a2:71: 54:32:5b:bc:37:90:39:1f:29:e3:7e:2d:d5:51:33: 8c:ae:a9:ea:4a:b5:86:61:43:37:4a:7c:87:dc:eb: fd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8E:15:C0:77:1B:8B:40:81:A6:8F:54:66:CC:D8:51:FC:73:24:E1 X509v3 Authority Key Identifier: keyid:3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32332d3233203d3e20313532343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:ac:66:76:e9:56:58:65:87:dc:cf:73:c4:54:26:0a:c5:d4: 6e:79:b2:9a:0c:e2:ca:0c:a1:44:85:87:f3:a3:07:f9:c3:a0: d4:04:a7:8c:cc:97:1f:1c:d2:8b:ee:24:19:df:0b:c9:34:4b: a8:09:c1:88:58:48:53:3e:e7:3b:08:16:f2:29:93:84:e5:44: 47:f1:02:60:ab:61:f0:bd:cd:91:2b:ef:9b:73:45:6b:37:b7: 37:58:34:d6:5f:94:1d:85:94:b3:10:a4:40:5c:27:57:17:00: 8a:0e:79:ea:d6:53:2e:c1:00:8e:33:bb:fd:b4:2c:52:7a:c4: 63:48:34:b4:a0:b3:ed:e4:ce:49:fb:86:ab:b6:b7:2a:d7:f3: 9c:01:2d:b0:37:7d:a1:aa:a9:62:14:3d:ae:cb:46:80:06:dc: 3d:f7:a0:9e:59:b7:c5:d8:d4:b4:96:75:f2:e8:6b:95:8a:48: 95:2c:f9:d7:9f:82:8d:6c:cd:91:92:e2:bd:0a:dd:00:ce:95: 1a:bd:94:ee:14:bd:a2:65:9d:de:b9:68:79:d4:12:65:bf:ff: 79:36:8f:69:bc:69:fe:dd:e3:ec:dd:3c:65:4e:77:b3:3b:01: f9:fc:0c:9b:a9:d1:cf:0d:20:14:00:2a:d5:8c:16:b5:0e:95: d8:8e:6c:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM3U4Oy8ooOd2LmoQVlYb3UNCbpAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MwQkQ2QkIxQjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0 OUZFRkU1NDAeFw0yNjA1MDMwMzA4MDRaFw0yNzA1MDIwMzEzMDRaMDMxMTAvBgNV BAMTKDQ1OEUxNUMwNzcxQjhCNDA4MUE2OEY1NDY2Q0NEODUxRkM3MzI0RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ouRR1mkPvSqaIpfyBa9dYFpc ZUGTp7sBkMNxO6OzSmWFQ9t/XTVht23jn/UtLMDwKE3KOFOVDF2FlvezVDM2DaNe x5UaG93bZIdPzTX5j8zO9mz4oRodjc89cdPYSWznS14EbfI/tRdS5moWZaJM9+Mz yuJ/D9ugsjgjqEgsPkT2y1OVwP5RM4GunQ7NuY6bEQVfJNikwd62sH7WZh6GakYl QYrVbJtWR9mtAaRyqSsO29KQpzK61fknd6tmpUVSxfsnrBYe85DqVCA5AKGP9ZrB wUvs+41Kg5Fx60GicVQyW7w3kDkfKeN+LdVRM4yuqepKtYZhQzdKfIfc6/3fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURY4VwHcbi0CBpo9UZszYUfxzJOEwHwYDVR0j BBgwFoAUPAvWuxtMsH3Fj28wFrXsN0n+/lQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTJlODNhZmUtM2JkYy00NGIyLWE3MDItYjQ1NTVkYWE2NWVhLzAvM0MwQkQ2QkIx QjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0OUZFRkU1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQzBCRDZCQjFCNENCMDdEQzU4RjZGMzAxNkI1RUMzNzQ5RkVG RTU0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZlLTNiZGMtNDRiMi1h NzAyLWI0NTU1ZGFhNjVlYS8wLzMxMzUzNzJlMzIzMDJlMzIzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTaMA0GCSqG SIb3DQEBCwUAA4IBAQCOrGZ26VZYZYfcz3PEVCYKxdRuebKaDOLKDKFEhYfzowf5 w6DUBKeMzJcfHNKL7iQZ3wvJNEuoCcGIWEhTPuc7CBbyKZOE5URH8QJgq2Hwvc2R K++bc0VrN7c3WDTWX5QdhZSzEKRAXCdXFwCKDnnq1lMuwQCOM7v9tCxSesRjSDS0 oLPt5M5J+4artrcq1/OcAS2wN32hqqliFD2uy0aABtw996CeWbfF2NS0lnXy6GuV ikiVLPnXn4KNbM2RkuK9Ct0AzpUavZTuFL2iZZ3euWh51BJlv/95No9pvGn+3ePs 3TxlTnezOwH5/AybqdHPDSAUACrVjBa1DpXYjmxQ -----END CERTIFICATE-----Generated at Tue May 12 22:32:42 2026 by rpki-client