$ rpki-client -vvf rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: dZzrlBZCDkmu4VCWIhI5hpUpjLyVFUXhz7gItuWKI3k= Subject key identifier: 43:06:3D:AA:33:AE:06:5C:43:E2:3E:8D:64:D2:B4:DE:94:70:99:EA Certificate issuer: /CN=62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79 Certificate serial: 6C09CB6E3F316661A1EE38E0BE1E53A4E7E2A9FF Authority key identifier: 62:CC:55:FF:7E:46:DD:8B:E3:BD:A9:CC:26:0F:D6:CB:5C:AE:7F:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Sun 03 May 2026 03:13:18 +0000 ROA not before: Sun 03 May 2026 03:08:18 +0000 ROA not after: Sun 02 May 2027 03:13:18 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.crl rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:09:cb:6e:3f:31:66:61:a1:ee:38:e0:be:1e:53:a4:e7:e2:a9:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79 Validity Not Before: May 3 03:08:18 2026 GMT Not After : May 2 03:13:18 2027 GMT Subject: CN=43063DAA33AE065C43E23E8D64D2B4DE947099EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fe:bc:13:5b:4f:23:31:2c:2d:c5:c9:73:0d: d5:09:b0:9a:84:71:aa:2b:2f:e3:32:a4:90:5e:c6: 71:1e:bc:9b:23:22:49:14:62:67:10:ba:c3:a0:34: ed:ca:82:72:1a:68:57:ac:0a:91:09:63:69:9f:c0: bc:6a:8b:5b:f2:ff:99:b5:10:6b:05:69:db:c1:59: e4:ab:fd:a8:a5:18:c2:a6:61:2c:aa:00:fb:16:93: 4e:2b:1c:42:bd:25:7c:45:d0:e1:4e:90:10:24:e2: fa:10:78:c4:11:98:0c:af:e4:d2:1f:32:15:5e:03: 61:2a:b7:91:9f:09:cb:89:72:b7:0e:2b:95:a9:e0: 56:15:56:22:3a:27:0e:b3:a3:9f:72:ac:f1:51:a3: a2:09:33:c0:16:15:34:c5:5d:d6:a1:29:4b:e4:c5: 1f:20:87:20:2f:74:ec:58:97:14:a9:3d:ca:44:05: d9:52:b9:b8:31:eb:ef:71:0d:ae:8f:5e:2a:05:1b: 56:c3:14:80:9e:9f:49:96:e7:5f:77:a7:68:55:71: e0:ed:7e:22:72:bc:6c:2e:bd:28:d8:26:ae:ce:09: 99:96:be:8d:fe:c2:72:09:e1:e3:df:07:cf:e7:ba: d0:f3:7b:41:74:67:81:a7:07:df:aa:9c:63:30:43: 7d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:06:3D:AA:33:AE:06:5C:43:E2:3E:8D:64:D2:B4:DE:94:70:99:EA X509v3 Authority Key Identifier: keyid:62:CC:55:FF:7E:46:DD:8B:E3:BD:A9:CC:26:0F:D6:CB:5C:AE:7F:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/62CC55FF7E46DD8BE3BDA9CC260FD6CB5CAE7F79.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption 72:68:03:3d:3a:a9:4b:4d:68:0f:d7:94:3e:c1:a5:97:7a:65: 3a:61:9b:29:33:8e:f8:6c:81:a9:73:65:bc:9e:a5:88:75:91: 19:b6:88:2a:6c:d5:f3:96:d2:9c:75:e2:bd:24:89:1d:0f:b6: 63:73:d7:06:38:30:d5:e4:90:7d:5d:58:01:8e:2a:60:f2:95: 15:f1:7b:84:e1:67:73:20:7d:91:d9:1f:2e:3c:ce:92:f1:81: ef:fd:27:c4:44:df:cc:34:93:e9:fa:e4:a4:92:56:5e:ba:c7: 99:d5:f4:69:49:62:a9:2e:3b:b6:af:3a:e1:0d:26:26:ec:0d: 45:68:24:df:27:58:71:15:72:e5:29:db:4b:9a:96:cf:e3:d5: 18:eb:81:f9:cd:60:dc:ba:6a:e6:2d:33:3a:86:2c:8f:6a:9f: 4c:c6:ed:c8:09:b4:c7:3e:d8:bc:57:1b:50:ae:b7:8b:05:10: 76:1f:96:d7:76:ff:2b:52:4f:75:37:c6:04:b7:63:e9:3e:72: 1f:b9:fc:60:86:6d:bb:16:d3:f6:41:b3:51:af:0b:a1:54:92: ec:cc:9e:c5:16:d6:7d:9f:82:f8:5c:45:ae:c7:51:ec:e0:fe: 36:4d:cd:82:d4:78:61:fe:e7:20:f5:c9:7b:ae:c0:31:3a:61: 22:98:06:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbAnLbj8xZmGh7jjgvh5TpOfiqf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJDQzU1RkY3RTQ2REQ4QkUzQkRBOUNDMjYwRkQ2Q0I1 Q0FFN0Y3OTAeFw0yNjA1MDMwMzA4MThaFw0yNzA1MDIwMzEzMThaMDMxMTAvBgNV BAMTKDQzMDYzREFBMzNBRTA2NUM0M0UyM0U4RDY0RDJCNERFOTQ3MDk5RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ/rwTW08jMSwtxclzDdUJsJqE caorL+MypJBexnEevJsjIkkUYmcQusOgNO3KgnIaaFesCpEJY2mfwLxqi1vy/5m1 EGsFadvBWeSr/ailGMKmYSyqAPsWk04rHEK9JXxF0OFOkBAk4voQeMQRmAyv5NIf MhVeA2Eqt5GfCcuJcrcOK5Wp4FYVViI6Jw6zo59yrPFRo6IJM8AWFTTFXdahKUvk xR8ghyAvdOxYlxSpPcpEBdlSubgx6+9xDa6PXioFG1bDFICen0mW5193p2hVceDt fiJyvGwuvSjYJq7OCZmWvo3+wnIJ4ePfB8/nutDze0F0Z4GnB9+qnGMwQ321AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQwY9qjOuBlxD4j6NZNK03pRwmeowHwYDVR0j BBgwFoAUYsxV/35G3YvjvanMJg/Wy1yuf3kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTQ3Y2Q1YTItYTc0Mi00NTBjLWIxOTAtNTAwZTc1NDUyMGRlLzAvNjJDQzU1RkY3 RTQ2REQ4QkUzQkRBOUNDMjYwRkQ2Q0I1Q0FFN0Y3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82MkNDNTVGRjdFNDZERDhCRTNCREE5Q0MyNjBGRDZDQjVDQUU3 Rjc5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAcmgDPTqpS01oD9eUPsGll3plOmGbKTOO+GyBqXNlvJ6liHWR GbaIKmzV85bSnHXivSSJHQ+2Y3PXBjgw1eSQfV1YAY4qYPKVFfF7hOFncyB9kdkf LjzOkvGB7/0nxETfzDST6frkpJJWXrrHmdX0aUliqS47tq864Q0mJuwNRWgk3ydY cRVy5SnbS5qWz+PVGOuB+c1g3Lpq5i0zOoYsj2qfTMbtyAm0xz7YvFcbUK63iwUQ dh+W13b/K1JPdTfGBLdj6T5yH7n8YIZtuxbT9kGzUa8LoVSS7MyexRbWfZ+C+FxF rsdR7OD+Nk3NgtR4Yf7nIPXJe67AMTphIpgGuA== -----END CERTIFICATE-----Generated at Wed May 13 03:51:24 2026 by rpki-client