$ rpki-client -vvf rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32342d3234203d3e20313532343233.roa File: 3135372e32302e3231382e302f32342d3234203d3e20313532343233.roa (raw, json) Hash identifier: nv2/DUQnze7FZdnWg8O1b8JOsCb1KZzG0d/PmRvY8wo= Subject key identifier: 89:CD:7B:8B:76:9B:A6:56:D6:9E:E1:26:36:9B:CD:1D:08:72:37:8E Certificate issuer: /CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Certificate serial: 3A166D937885A15740668B3C695309A33FB2378E Authority key identifier: 3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32342d3234203d3e20313532343233.roa Signing time: Sun 03 May 2026 03:13:05 +0000 ROA not before: Sun 03 May 2026 03:08:05 +0000 ROA not after: Sun 02 May 2027 03:13:05 +0000 asID: 152423 IP address blocks: 157.20.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:16:6d:93:78:85:a1:57:40:66:8b:3c:69:53:09:a3:3f:b2:37:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Validity Not Before: May 3 03:08:05 2026 GMT Not After : May 2 03:13:05 2027 GMT Subject: CN=89CD7B8B769BA656D69EE126369BCD1D0872378E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:0c:a2:fd:ff:f7:53:72:06:98:3a:3c:44: d2:98:e1:10:6d:05:a5:0d:6f:ae:c6:f5:37:1d:22: 2b:2e:af:56:36:3d:27:6b:32:45:ba:f8:3d:4d:39: 91:ec:2e:29:74:9d:e1:c3:af:4a:72:da:11:65:bf: 44:c1:a3:5e:89:1c:30:98:3b:04:87:5f:5b:16:e0: 34:91:52:31:84:91:d5:75:09:50:f8:28:51:81:32: 27:b3:9c:5b:70:ed:39:1b:eb:24:d4:ab:7d:7a:40: 12:fd:fd:da:f2:18:75:24:92:ce:cd:5e:67:f0:19: 13:4c:d9:db:ea:69:ea:43:ab:86:ba:92:11:ea:f1: 8c:3b:23:55:0f:8e:37:fe:cb:8f:04:e7:28:f8:50: ee:92:a3:5c:98:f9:72:bb:a6:51:1b:fd:db:7f:1b: c9:54:4d:bb:90:5c:3b:58:ac:a8:62:0a:eb:ab:f6: 53:d1:e0:e1:7f:91:d0:6d:9a:b6:7a:02:38:8e:70: 4d:26:46:dd:c2:af:55:b2:4f:d1:30:78:db:3a:43: d4:3a:b6:f2:22:6b:eb:64:38:57:33:03:e6:c9:6b: 68:48:25:9c:af:f9:fb:18:d2:10:b2:74:a2:27:62: 2a:2f:3c:58:8e:d8:73:5d:be:cb:af:00:6d:af:17: 69:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:CD:7B:8B:76:9B:A6:56:D6:9E:E1:26:36:9B:CD:1D:08:72:37:8E X509v3 Authority Key Identifier: keyid:3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231382e302f32342d3234203d3e20313532343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.218.0/24 Signature Algorithm: sha256WithRSAEncryption 62:32:7d:e3:19:a4:11:4c:d4:a9:6d:99:fc:86:08:be:2d:30: c9:cc:a7:94:76:11:0d:a2:87:da:aa:86:f2:34:bd:d0:f6:c7: 93:f6:4e:5d:71:ab:72:85:67:96:dd:26:c7:5a:35:ef:cc:33: d9:60:56:61:49:69:58:10:49:7d:c2:50:ce:d7:50:9c:f1:7b: 47:6b:77:9e:15:9c:7f:d5:22:ea:4c:d2:8d:2f:81:3f:ff:b2: 7a:b7:5b:69:5a:46:44:2d:1c:19:50:75:7f:1e:36:2a:93:99: e6:77:98:8f:eb:29:91:56:4e:5e:bd:52:08:3b:0a:d2:98:1f: 33:57:89:ff:98:f6:cf:6c:7e:4e:b7:3c:8d:f0:5f:d2:8e:63: 09:8b:b1:1f:a5:c1:09:ad:b3:ac:11:45:e2:c8:01:3a:4a:d0: 4b:74:9d:47:50:e9:e1:39:d2:93:fa:b5:a6:c7:35:ba:31:db: 85:b9:5c:1a:2f:e1:bf:94:ae:31:8d:1b:13:82:5a:37:61:0d: ef:f7:63:72:ae:91:e0:5a:21:d0:ec:78:cf:56:b7:0b:1a:fd: a1:db:d8:6c:7d:65:b5:43:ed:72:92:53:d4:36:02:0a:9f:1b: 66:fc:63:00:91:ea:a9:5c:8e:75:36:8b:98:ff:03:5a:ed:6b: ec:92:73:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOhZtk3iFoVdAZos8aVMJoz+yN44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MwQkQ2QkIxQjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0 OUZFRkU1NDAeFw0yNjA1MDMwMzA4MDVaFw0yNzA1MDIwMzEzMDVaMDMxMTAvBgNV BAMTKDg5Q0Q3QjhCNzY5QkE2NTZENjlFRTEyNjM2OUJDRDFEMDg3MjM3OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFNAyi/f/3U3IGmDo8RNKY4RBt BaUNb67G9TcdIisur1Y2PSdrMkW6+D1NOZHsLil0neHDr0py2hFlv0TBo16JHDCY OwSHX1sW4DSRUjGEkdV1CVD4KFGBMieznFtw7Tkb6yTUq316QBL9/dryGHUkks7N XmfwGRNM2dvqaepDq4a6khHq8Yw7I1UPjjf+y48E5yj4UO6So1yY+XK7plEb/dt/ G8lUTbuQXDtYrKhiCuur9lPR4OF/kdBtmrZ6AjiOcE0mRt3Cr1WyT9EweNs6Q9Q6 tvIia+tkOFczA+bJa2hIJZyv+fsY0hCydKInYiovPFiO2HNdvsuvAG2vF2mbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUic17i3abplbWnuEmNpvNHQhyN44wHwYDVR0j BBgwFoAUPAvWuxtMsH3Fj28wFrXsN0n+/lQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTJlODNhZmUtM2JkYy00NGIyLWE3MDItYjQ1NTVkYWE2NWVhLzAvM0MwQkQ2QkIx QjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0OUZFRkU1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQzBCRDZCQjFCNENCMDdEQzU4RjZGMzAxNkI1RUMzNzQ5RkVG RTU0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZlLTNiZGMtNDRiMi1h NzAyLWI0NTU1ZGFhNjVlYS8wLzMxMzUzNzJlMzIzMDJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTaMA0GCSqG SIb3DQEBCwUAA4IBAQBiMn3jGaQRTNSpbZn8hgi+LTDJzKeUdhENoofaqobyNL3Q 9seT9k5dcatyhWeW3SbHWjXvzDPZYFZhSWlYEEl9wlDO11Cc8XtHa3eeFZx/1SLq TNKNL4E//7J6t1tpWkZELRwZUHV/HjYqk5nmd5iP6ymRVk5evVIIOwrSmB8zV4n/ mPbPbH5OtzyN8F/SjmMJi7EfpcEJrbOsEUXiyAE6StBLdJ1HUOnhOdKT+rWmxzW6 MduFuVwaL+G/lK4xjRsTglo3YQ3v92NyrpHgWiHQ7HjPVrcLGv2h29hsfWW1Q+1y klPUNgIKnxtm/GMAkeqpXI51NouY/wNa7WvsknM4 -----END CERTIFICATE-----Generated at Wed May 13 02:40:57 2026 by rpki-client