$ rpki-client -vvf rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa File: 3135372e32302e33382e302f32332d3234203d3e20313532333838.roa (raw, json) Hash identifier: Fkc3ZEGjxhAmx9yiD5p0cw71FlkcW6QQyX3i9KwIKmI= Subject key identifier: CC:81:50:DB:80:10:B8:82:12:70:2B:8E:16:72:0B:9C:49:7E:18:B9 Certificate issuer: /CN=80DF8BB38CBC3C159969522F39C2926484A3509E Certificate serial: 6A0783D686B6335B555AEAAE5F152E2D5D22B442 Authority key identifier: 80:DF:8B:B3:8C:BC:3C:15:99:69:52:2F:39:C2:92:64:84:A3:50:9E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/80DF8BB38CBC3C159969522F39C2926484A3509E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa Signing time: Sun 03 May 2026 03:14:50 +0000 ROA not before: Sun 03 May 2026 03:09:50 +0000 ROA not after: Sun 02 May 2027 03:14:50 +0000 asID: 152388 IP address blocks: 157.20.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/80DF8BB38CBC3C159969522F39C2926484A3509E.crl rsync://rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/80DF8BB38CBC3C159969522F39C2926484A3509E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/80DF8BB38CBC3C159969522F39C2926484A3509E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:07:83:d6:86:b6:33:5b:55:5a:ea:ae:5f:15:2e:2d:5d:22:b4:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80DF8BB38CBC3C159969522F39C2926484A3509E Validity Not Before: May 3 03:09:50 2026 GMT Not After : May 2 03:14:50 2027 GMT Subject: CN=CC8150DB8010B88212702B8E16720B9C497E18B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:91:d6:c3:90:10:4d:e3:b0:b0:6f:78:14:d1: 00:8a:fc:fa:27:e1:98:09:87:a4:fb:75:45:f0:70: f1:7f:14:83:60:3b:06:cb:33:cc:a8:f5:aa:4a:05: ab:a4:d6:30:12:5f:1b:77:c7:39:2a:e7:d9:f4:e8: 2e:5e:b1:7e:ba:8e:3a:59:07:7c:b1:46:b1:71:d1: 55:1a:f5:e5:cd:3e:8d:0c:fd:73:77:b4:9e:65:f5: 30:2c:54:0f:bd:eb:16:0d:76:d2:6e:aa:e7:c5:d4: c2:b5:b5:4f:60:24:42:04:51:0f:38:61:9c:a9:e2: 74:18:28:59:ca:e1:7c:df:ce:63:1f:6d:eb:f9:b7: 8d:48:ec:47:e2:ff:67:fc:50:fb:61:b5:5d:f3:4d: 0e:0a:08:32:2f:4d:45:df:7f:b7:e1:0c:b0:62:bf: 1d:90:97:d6:b2:f6:bc:80:61:36:09:01:67:fe:76: 40:3c:63:94:55:d3:cc:9e:27:5d:72:09:a6:88:5b: 37:ee:70:8e:0a:2c:e2:29:6b:cc:3c:08:e4:1b:52: 91:0f:99:69:29:0a:56:47:8f:36:06:3e:d2:71:63: ba:f3:09:14:ed:26:3a:64:34:08:72:ec:c4:f3:20: 0f:43:e2:90:4b:85:9d:09:e0:63:ca:9b:c4:0e:91: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:81:50:DB:80:10:B8:82:12:70:2B:8E:16:72:0B:9C:49:7E:18:B9 X509v3 Authority Key Identifier: keyid:80:DF:8B:B3:8C:BC:3C:15:99:69:52:2F:39:C2:92:64:84:A3:50:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/80DF8BB38CBC3C159969522F39C2926484A3509E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/80DF8BB38CBC3C159969522F39C2926484A3509E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e992bf26-c8e6-4a86-9b33-ea3a2af557f0/0/3135372e32302e33382e302f32332d3234203d3e20313532333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.38.0/23 Signature Algorithm: sha256WithRSAEncryption 33:16:f2:01:f0:ac:86:db:9c:df:01:80:4d:e7:14:40:f0:de: 65:bc:81:e1:bd:b3:65:67:ad:a7:a4:20:14:1b:95:e5:3a:a6: 58:78:99:4e:b7:34:1e:98:e5:a9:75:66:43:b3:c1:5e:81:4d: 2e:79:92:bd:ff:11:cc:de:a1:40:d1:70:73:83:6d:1c:0c:34: 31:3a:9f:02:1c:9c:89:fb:2f:4a:89:8a:87:66:9a:02:a0:aa: b9:11:eb:c9:f0:39:ea:e9:20:3d:83:4a:32:28:a5:f7:2e:ce: f1:e5:ff:7b:4a:cd:60:db:f3:4b:60:4d:a5:ed:50:38:8b:a2: fb:b7:6d:1d:7e:62:24:49:4d:fb:cc:69:56:25:5c:91:96:cc: e5:d4:c6:52:2c:5c:c9:db:d0:0d:2c:c5:88:6a:1d:73:36:45: 90:bc:3d:70:d8:a7:8b:35:f9:c6:f8:9c:ea:95:99:8a:db:3a: 95:a1:58:ff:50:75:b0:85:4e:f7:a9:51:34:ec:58:5e:2e:a7: 60:06:5c:58:6d:6d:d2:d1:85:a8:df:05:8e:7b:c8:36:1b:97: 22:24:e5:88:99:5f:bd:b8:3f:54:c9:46:1c:af:64:e3:25:ae: de:44:34:14:aa:83:34:cd:0b:d1:04:7f:4a:a1:b0:5a:d3:13: fb:4e:48:14 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUageD1oa2M1tVWuquXxUuLV0itEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBERjhCQjM4Q0JDM0MxNTk5Njk1MjJGMzlDMjkyNjQ4 NEEzNTA5RTAeFw0yNjA1MDMwMzA5NTBaFw0yNzA1MDIwMzE0NTBaMDMxMTAvBgNV BAMTKENDODE1MERCODAxMEI4ODIxMjcwMkI4RTE2NzIwQjlDNDk3RTE4QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUkdbDkBBN47Cwb3gU0QCK/Pon 4ZgJh6T7dUXwcPF/FINgOwbLM8yo9apKBauk1jASXxt3xzkq59n06C5esX66jjpZ B3yxRrFx0VUa9eXNPo0M/XN3tJ5l9TAsVA+96xYNdtJuqufF1MK1tU9gJEIEUQ84 YZyp4nQYKFnK4XzfzmMfbev5t41I7Efi/2f8UPthtV3zTQ4KCDIvTUXff7fhDLBi vx2Ql9ay9ryAYTYJAWf+dkA8Y5RV08yeJ11yCaaIWzfucI4KLOIpa8w8COQbUpEP mWkpClZHjzYGPtJxY7rzCRTtJjpkNAhy7MTzIA9D4pBLhZ0J4GPKm8QOkfSzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzIFQ24AQuIIScCuOFnILnEl+GLkwHwYDVR0j BBgwFoAUgN+Ls4y8PBWZaVIvOcKSZISjUJ4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTk5MmJmMjYtYzhlNi00YTg2LTliMzMtZWEzYTJhZjU1N2YwLzAvODBERjhCQjM4 Q0JDM0MxNTk5Njk1MjJGMzlDMjkyNjQ4NEEzNTA5RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84MERGOEJCMzhDQkMzQzE1OTk2OTUyMkYzOUMyOTI2NDg0QTM1 MDlFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U5OTJiZjI2LWM4ZTYtNGE4Ni05 YjMzLWVhM2EyYWY1NTdmMC8wLzMxMzUzNzJlMzIzMDJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UJjANBgkqhkiG 9w0BAQsFAAOCAQEAMxbyAfCshtuc3wGATecUQPDeZbyB4b2zZWetp6QgFBuV5Tqm WHiZTrc0HpjlqXVmQ7PBXoFNLnmSvf8RzN6hQNFwc4NtHAw0MTqfAhycifsvSomK h2aaAqCquRHryfA56ukgPYNKMiil9y7O8eX/e0rNYNvzS2BNpe1QOIui+7dtHX5i JElN+8xpViVckZbM5dTGUixcydvQDSzFiGodczZFkLw9cNinizX5xvic6pWZits6 laFY/1B1sIVO96lRNOxYXi6nYAZcWG1t0tGFqN8FjnvINhuXIiTliJlfvbg/VMlG HK9k4yWu3kQ0FKqDNM0L0QR/SqGwWtMT+05IFA== -----END CERTIFICATE-----Generated at Wed May 13 00:34:31 2026 by rpki-client