$ rpki-client -vvf rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa File: 3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa (raw, json) Hash identifier: Tkh0+XsPVTypniidThAuJHBFvt6qbkv8XEWtO3EZhzc= Subject key identifier: 36:45:F3:11:CD:81:AC:38:F0:EC:12:93:3A:4E:08:A2:66:C8:59:A6 Certificate issuer: /CN=4AE1581EC7DFE65F5E99AA613475D8542808C46A Certificate serial: 3384ECE77D7D0704D108F634ADC6E48C04C7BFE4 Authority key identifier: 4A:E1:58:1E:C7:DF:E6:5F:5E:99:AA:61:34:75:D8:54:28:08:C4:6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa Signing time: Sun 03 May 2026 03:14:44 +0000 ROA not before: Sun 03 May 2026 03:09:44 +0000 ROA not after: Sun 02 May 2027 03:14:44 +0000 asID: 152439 IP address blocks: 157.20.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.crl rsync://rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:84:ec:e7:7d:7d:07:04:d1:08:f6:34:ad:c6:e4:8c:04:c7:bf:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AE1581EC7DFE65F5E99AA613475D8542808C46A Validity Not Before: May 3 03:09:44 2026 GMT Not After : May 2 03:14:44 2027 GMT Subject: CN=3645F311CD81AC38F0EC12933A4E08A266C859A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8b:9b:a2:d2:22:6f:04:e4:06:30:1e:cb:be: 70:aa:76:ea:17:3a:24:7b:b9:61:42:a9:9b:10:bf: ac:11:fc:08:51:e5:d4:30:1d:87:c0:9b:be:08:88: 50:95:c3:73:5e:d0:22:ad:27:81:d8:e5:26:d8:7b: fc:85:ee:21:05:6b:ce:84:03:3e:c3:fb:13:a5:6b: 14:04:08:53:67:1c:2b:4b:38:13:81:67:29:f1:ad: 28:03:b6:ca:e9:1a:05:4f:76:0c:89:7d:35:f3:2e: 5d:dc:b6:13:74:24:6d:e9:15:63:c5:70:f5:1d:ff: 1e:1a:1c:9c:a9:6f:03:88:9b:04:30:ff:eb:2e:73: b0:ac:46:91:84:33:4e:05:88:34:6d:a7:70:6e:c4: aa:92:fe:9c:b4:6c:f1:a2:ce:4c:e7:52:24:bf:6d: c9:bf:ed:55:ec:b5:c3:f1:95:40:a9:c0:dd:20:16: ad:34:9d:f1:dc:96:92:04:ed:da:65:d7:39:df:80: ca:04:26:83:5b:79:4c:ae:e9:3f:94:d9:75:97:98: b7:f0:51:a1:32:84:9a:d5:f0:e5:b1:b6:3e:d8:da: 36:12:92:c0:f2:50:94:28:52:2a:98:a2:f4:be:ce: a5:bf:4e:5b:e6:8b:f1:68:f3:0d:ff:e2:19:a3:1b: 94:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:45:F3:11:CD:81:AC:38:F0:EC:12:93:3A:4E:08:A2:66:C8:59:A6 X509v3 Authority Key Identifier: keyid:4A:E1:58:1E:C7:DF:E6:5F:5E:99:AA:61:34:75:D8:54:28:08:C4:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4AE1581EC7DFE65F5E99AA613475D8542808C46A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e8ced18d-a7cc-4b44-af4a-85f304f9eb6c/0/3135372e32302e3233332e302f32342d3234203d3e20313532343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.233.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:e6:f2:fb:63:d1:e5:22:6f:ea:01:a7:5e:40:83:76:61:e1: a2:ea:a7:c1:18:8a:c8:ea:72:ff:39:27:82:77:51:ef:ea:df: f0:df:3c:72:8a:5d:9a:fd:5f:6c:28:0e:d8:06:6e:a1:e0:2a: ce:96:38:25:a6:73:37:d0:c0:f9:d4:e1:9d:02:e4:aa:63:32: f9:dc:a8:95:f5:7d:16:89:9d:c4:c0:53:19:52:19:b1:34:9c: 70:15:85:2d:af:da:f7:f3:da:e2:2c:83:d1:6b:ec:a7:cc:79: 0f:e5:d1:6b:bd:3e:e4:c2:4f:fc:cf:e5:d3:59:2c:16:71:5b: 40:1e:ad:67:97:3b:71:b5:fc:7e:54:0a:ba:c7:6c:a1:f4:fe: 64:4e:0e:d3:7c:49:3c:6e:e6:ce:16:96:b9:11:62:37:3d:c0: c3:a0:4a:74:5c:fe:20:17:f6:52:56:77:b2:6c:0d:32:e1:52: e1:2b:72:86:98:d9:3c:7e:73:b9:0a:1c:f2:93:2d:ce:8e:42: 27:64:2c:10:5a:37:5d:87:b7:65:d2:5e:01:0f:bf:7d:8c:39: 6d:fe:92:cc:46:e4:7b:96:b3:bb:93:70:20:a8:a5:a0:a9:b4: 17:41:27:1f:bd:dd:00:2f:6e:e1:60:62:3f:82:b4:8e:27:95: 15:96:0a:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM4Ts5319BwTRCPY0rcbkjATHv+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFFMTU4MUVDN0RGRTY1RjVFOTlBQTYxMzQ3NUQ4NTQy ODA4QzQ2QTAeFw0yNjA1MDMwMzA5NDRaFw0yNzA1MDIwMzE0NDRaMDMxMTAvBgNV BAMTKDM2NDVGMzExQ0Q4MUFDMzhGMEVDMTI5MzNBNEUwOEEyNjZDODU5QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfi5ui0iJvBOQGMB7LvnCqduoX OiR7uWFCqZsQv6wR/AhR5dQwHYfAm74IiFCVw3Ne0CKtJ4HY5SbYe/yF7iEFa86E Az7D+xOlaxQECFNnHCtLOBOBZynxrSgDtsrpGgVPdgyJfTXzLl3cthN0JG3pFWPF cPUd/x4aHJypbwOImwQw/+suc7CsRpGEM04FiDRtp3BuxKqS/py0bPGizkznUiS/ bcm/7VXstcPxlUCpwN0gFq00nfHclpIE7dpl1znfgMoEJoNbeUyu6T+U2XWXmLfw UaEyhJrV8OWxtj7Y2jYSksDyUJQoUiqYovS+zqW/Tlvmi/Fo8w3/4hmjG5TtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNkXzEc2BrDjw7BKTOk4IombIWaYwHwYDVR0j BBgwFoAUSuFYHsff5l9emaphNHXYVCgIxGowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZThjZWQxOGQtYTdjYy00YjQ0LWFmNGEtODVmMzA0ZjllYjZjLzAvNEFFMTU4MUVD N0RGRTY1RjVFOTlBQTYxMzQ3NUQ4NTQyODA4QzQ2QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80QUUxNTgxRUM3REZFNjVGNUU5OUFBNjEzNDc1RDg1NDI4MDhD NDZBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U4Y2VkMThkLWE3Y2MtNGI0NC1h ZjRhLTg1ZjMwNGY5ZWI2Yy8wLzMxMzUzNzJlMzIzMDJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTpMA0GCSqG SIb3DQEBCwUAA4IBAQBr5vL7Y9HlIm/qAadeQIN2YeGi6qfBGIrI6nL/OSeCd1Hv 6t/w3zxyil2a/V9sKA7YBm6h4CrOljglpnM30MD51OGdAuSqYzL53KiV9X0WiZ3E wFMZUhmxNJxwFYUtr9r389riLIPRa+ynzHkP5dFrvT7kwk/8z+XTWSwWcVtAHq1n lztxtfx+VAq6x2yh9P5kTg7TfEk8bubOFpa5EWI3PcDDoEp0XP4gF/ZSVneybA0y 4VLhK3KGmNk8fnO5Chzyky3OjkInZCwQWjddh7dl0l4BD799jDlt/pLMRuR7lrO7 k3AgqKWgqbQXQScfvd0AL27hYGI/grSOJ5UVlgpg -----END CERTIFICATE-----Generated at Wed May 13 04:54:10 2026 by rpki-client