$ rpki-client -vvf rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa File: 3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa (raw, json) Hash identifier: VLaO/ySY+ntAKUzijWFb7J8NTbjb4cdGL70vMkZXXug= Subject key identifier: 41:8F:F6:B7:DD:A7:C5:7B:E4:14:78:D6:89:E4:48:DA:4F:50:48:E6 Certificate issuer: /CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Certificate serial: 69BE3C923355CDAEDD2B9000A87812E898308B35 Authority key identifier: 3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa Signing time: Sun 03 May 2026 03:13:04 +0000 ROA not before: Sun 03 May 2026 03:08:04 +0000 ROA not after: Sun 02 May 2027 03:13:04 +0000 asID: 152423 IP address blocks: 157.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:be:3c:92:33:55:cd:ae:dd:2b:90:00:a8:78:12:e8:98:30:8b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54 Validity Not Before: May 3 03:08:04 2026 GMT Not After : May 2 03:13:04 2027 GMT Subject: CN=418FF6B7DDA7C57BE41478D689E448DA4F5048E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6b:46:d5:71:48:e2:a9:47:05:9c:40:24:fb: cf:10:2c:20:b9:6e:e7:e2:26:64:48:c0:19:23:2d: 2a:0e:4f:db:c7:c8:80:34:d9:64:f8:1f:ce:50:c0: a0:1d:cf:42:c4:45:32:f5:58:9e:b6:96:51:e4:a0: c2:a0:41:2e:2a:05:f9:ba:e3:8e:c8:81:1f:ba:14: 1d:5d:e7:7d:29:f0:9e:f2:fc:44:7e:80:3a:bf:b7: 46:cd:16:b9:0a:3d:45:74:1c:d2:76:2c:a6:76:9c: 3c:0a:ca:b7:0a:31:3d:5e:5d:1c:61:ff:37:52:70: 55:17:6b:6d:63:89:e9:b2:95:a2:df:7d:e0:69:5d: 36:68:a4:f2:06:96:bf:d7:bb:27:3c:93:11:c5:2d: 77:c8:44:8d:6e:c9:e3:5e:91:44:40:90:68:79:95: 0e:e7:f9:86:4b:0d:3f:61:43:c6:9e:6a:d7:c4:90: 39:5a:e0:04:6a:f4:ba:eb:62:a4:cd:fc:25:1a:21: 61:08:ba:06:bf:44:90:b9:db:7c:20:d1:e3:11:76: e1:7a:1b:35:0f:c0:f4:69:30:0f:e3:f3:8e:75:7e: 7a:b7:d5:1c:db:bc:1b:70:04:21:65:d2:80:47:5a: b0:cd:b2:1c:48:60:5b:84:16:34:42:b0:b4:9f:fc: 3a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8F:F6:B7:DD:A7:C5:7B:E4:14:78:D6:89:E4:48:DA:4F:50:48:E6 X509v3 Authority Key Identifier: keyid:3C:0B:D6:BB:1B:4C:B0:7D:C5:8F:6F:30:16:B5:EC:37:49:FE:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3C0BD6BB1B4CB07DC58F6F3016B5EC3749FEFE54.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/3135372e32302e3231392e302f32342d3234203d3e20313532343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.219.0/24 Signature Algorithm: sha256WithRSAEncryption b5:84:87:a3:f8:4f:46:f0:fd:54:03:cb:da:81:bd:cc:b6:7a: 44:15:a2:e3:27:83:d8:fb:10:4a:ec:5e:b3:0e:55:bd:ce:8d: 2e:71:27:3a:76:8a:9f:9d:61:13:eb:6e:8e:0f:16:28:8c:a6: 58:47:8a:81:d7:0f:74:c7:8a:b9:59:dc:b7:bb:0b:20:10:1c: 68:81:4c:04:5f:1c:18:1d:da:fe:e3:45:5f:9b:16:6f:72:a8: 29:74:c2:3f:e1:54:d1:a3:7b:32:f7:87:4c:6e:4b:e1:ab:fc: 82:c7:aa:51:85:51:81:a2:16:30:12:9e:04:12:8e:fd:33:49: 3b:69:39:27:4e:8c:82:1f:17:36:67:de:79:d6:24:66:5b:b2: 24:7e:0b:ae:37:7e:50:1f:20:8d:61:ce:b9:00:9a:85:a5:75: 91:a5:b9:92:63:3c:27:d9:bd:3d:07:8b:1f:e4:ac:a6:e7:0a: 72:5c:14:8f:1a:ea:b3:ee:99:3d:3d:02:e7:82:54:07:d6:3d: 44:58:69:c0:fa:71:dc:d0:dd:e2:f0:3c:f1:2e:87:3c:ab:4e: 7f:c7:bc:1a:4f:3d:68:5a:aa:ea:64:99:9c:40:9a:43:5c:db: 8b:a3:7e:bd:d3:90:9f:89:70:80:28:41:c2:9a:96:94:0b:b8: fe:24:46:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUab48kjNVza7dK5AAqHgS6JgwizUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MwQkQ2QkIxQjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0 OUZFRkU1NDAeFw0yNjA1MDMwMzA4MDRaFw0yNzA1MDIwMzEzMDRaMDMxMTAvBgNV BAMTKDQxOEZGNkI3RERBN0M1N0JFNDE0NzhENjg5RTQ0OERBNEY1MDQ4RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQa0bVcUjiqUcFnEAk+88QLCC5 bufiJmRIwBkjLSoOT9vHyIA02WT4H85QwKAdz0LERTL1WJ62llHkoMKgQS4qBfm6 447IgR+6FB1d530p8J7y/ER+gDq/t0bNFrkKPUV0HNJ2LKZ2nDwKyrcKMT1eXRxh /zdScFUXa21jiemylaLffeBpXTZopPIGlr/Xuyc8kxHFLXfIRI1uyeNekURAkGh5 lQ7n+YZLDT9hQ8aeatfEkDla4ARq9LrrYqTN/CUaIWEIuga/RJC523wg0eMRduF6 GzUPwPRpMA/j8451fnq31RzbvBtwBCFl0oBHWrDNshxIYFuEFjRCsLSf/DozAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQY/2t92nxXvkFHjWieRI2k9QSOYwHwYDVR0j BBgwFoAUPAvWuxtMsH3Fj28wFrXsN0n+/lQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTJlODNhZmUtM2JkYy00NGIyLWE3MDItYjQ1NTVkYWE2NWVhLzAvM0MwQkQ2QkIx QjRDQjA3REM1OEY2RjMwMTZCNUVDMzc0OUZFRkU1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQzBCRDZCQjFCNENCMDdEQzU4RjZGMzAxNkI1RUMzNzQ5RkVG RTU0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZlLTNiZGMtNDRiMi1h NzAyLWI0NTU1ZGFhNjVlYS8wLzMxMzUzNzJlMzIzMDJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTbMA0GCSqG SIb3DQEBCwUAA4IBAQC1hIej+E9G8P1UA8vagb3MtnpEFaLjJ4PY+xBK7F6zDlW9 zo0ucSc6doqfnWET626ODxYojKZYR4qB1w90x4q5Wdy3uwsgEBxogUwEXxwYHdr+ 40VfmxZvcqgpdMI/4VTRo3sy94dMbkvhq/yCx6pRhVGBohYwEp4EEo79M0k7aTkn ToyCHxc2Z9551iRmW7IkfguuN35QHyCNYc65AJqFpXWRpbmSYzwn2b09B4sf5Kym 5wpyXBSPGuqz7pk9PQLnglQH1j1EWGnA+nHc0N3i8DzxLoc8q05/x7waTz1oWqrq ZJmcQJpDXNuLo36905CfiXCAKEHCmpaUC7j+JEb/ -----END CERTIFICATE-----Generated at Wed May 13 02:40:54 2026 by rpki-client