$ rpki-client -vvf rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa File: 3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa (raw, json) Hash identifier: sBlAsBUm/zFX+7CxaqiGPRe6UIyTyExAzuBvhzYHXTs= Subject key identifier: 54:88:70:CB:88:95:E9:CE:CB:7F:02:A5:F1:C9:4A:15:F6:40:08:B2 Certificate issuer: /CN=24288406EA1098AC2D2234BC7B2FF39074F71A3C Certificate serial: 0EB353E725D0F5A307368697554DC9480ACDDBC3 Authority key identifier: 24:28:84:06:EA:10:98:AC:2D:22:34:BC:7B:2F:F3:90:74:F7:1A:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa Signing time: Sun 03 May 2026 03:14:53 +0000 ROA not before: Sun 03 May 2026 03:09:53 +0000 ROA not after: Sun 02 May 2027 03:14:53 +0000 asID: 152403 IP address blocks: 157.20.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.crl rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:b3:53:e7:25:d0:f5:a3:07:36:86:97:55:4d:c9:48:0a:cd:db:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24288406EA1098AC2D2234BC7B2FF39074F71A3C Validity Not Before: May 3 03:09:53 2026 GMT Not After : May 2 03:14:53 2027 GMT Subject: CN=548870CB8895E9CECB7F02A5F1C94A15F64008B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:a3:03:30:1d:1d:0b:39:51:9d:01:5e:a0: c4:8c:cb:ff:bd:c4:ea:cb:6a:b2:5e:6c:8a:17:0c: a2:d0:6d:4d:fb:60:b7:52:be:41:8b:7d:6e:87:fc: 51:f0:16:19:5c:8c:b5:67:d8:f0:bc:e1:53:1f:7f: da:a2:62:ce:01:71:d1:62:ae:e9:82:4f:2d:42:57: f0:39:c2:7e:dd:4c:4e:2b:5e:2a:07:c5:36:54:22: 25:30:12:0e:77:5a:d6:ef:eb:49:e7:4e:3a:be:ca: a1:fb:73:68:73:e7:2b:2f:95:3f:06:f2:f1:cf:ae: 71:85:49:03:35:77:c5:e1:2b:8d:af:ea:80:e4:d2: 41:60:4b:0f:2d:66:67:0a:4a:76:33:40:fa:e6:52: 19:23:22:5e:d6:c0:4b:2a:bb:cd:d9:25:5d:cf:db: 4e:40:28:ef:8a:88:7d:f0:ee:75:bd:30:76:6d:b1: 69:8b:b5:71:38:e2:ee:6c:e7:e2:ec:62:4a:e6:44: 3e:5f:a1:20:fc:9f:6b:fb:d6:94:d0:2a:5d:04:c0: 56:7c:90:cf:c9:4b:48:89:a1:b5:ee:a8:12:ba:9d: e4:8b:45:6e:94:ac:7c:9b:a2:b5:21:e4:c1:86:37: 0f:e6:13:ed:af:04:cb:21:35:f7:d5:3f:45:e9:a7: 57:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:70:CB:88:95:E9:CE:CB:7F:02:A5:F1:C9:4A:15:F6:40:08:B2 X509v3 Authority Key Identifier: keyid:24:28:84:06:EA:10:98:AC:2D:22:34:BC:7B:2F:F3:90:74:F7:1A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.132.0/23 Signature Algorithm: sha256WithRSAEncryption df:c1:d9:01:07:5b:f3:f0:85:cb:8f:95:9e:48:24:55:a6:4e: 9f:e2:64:24:36:b1:11:89:67:4c:7a:ca:9c:00:c5:fd:6d:13: 73:c2:e3:e1:b6:65:32:35:d2:1e:9b:87:dd:45:1c:6f:ae:2d: 4e:eb:b8:fa:01:0f:fb:86:34:dc:60:6e:a5:7e:61:35:15:25: 30:37:b8:9d:e3:5c:f8:55:14:0d:4f:26:0c:d4:56:82:91:fd: 6a:fb:0e:fc:cd:6e:50:fa:e7:ac:31:e3:ff:26:cd:15:bc:51: 6a:57:15:96:f6:bc:96:b1:76:06:73:2b:1c:38:a8:44:7a:6b: 7e:8f:43:4e:33:9d:0d:8e:21:d9:39:03:a3:a9:ca:cf:1d:96: ef:23:1b:8c:d9:8e:42:51:11:7b:27:45:32:7e:4f:a2:ab:05: ce:8a:d5:55:8f:f1:1f:bf:34:12:0a:49:7e:8c:7b:a6:98:9c: c5:9d:75:12:33:9b:1e:3c:32:3f:3c:9f:b3:fb:3f:99:ef:f0: 1e:7b:a9:53:b5:2e:47:47:8e:5b:06:74:b3:d9:66:53:5d:98: 05:27:17:ae:fa:cc:0c:f4:2a:79:4a:c0:4a:d8:5c:6d:2b:f8: 6b:9f:9f:73:f6:bf:43:11:52:aa:41:e5:ae:b3:9f:e3:c0:24: 7f:0f:51:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDrNT5yXQ9aMHNoaXVU3JSArN28MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQyODg0MDZFQTEwOThBQzJEMjIzNEJDN0IyRkYzOTA3 NEY3MUEzQzAeFw0yNjA1MDMwMzA5NTNaFw0yNzA1MDIwMzE0NTNaMDMxMTAvBgNV BAMTKDU0ODg3MENCODg5NUU5Q0VDQjdGMDJBNUYxQzk0QTE1RjY0MDA4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDMaMDMB0dCzlRnQFeoMSMy/+9 xOrLarJebIoXDKLQbU37YLdSvkGLfW6H/FHwFhlcjLVn2PC84VMff9qiYs4BcdFi rumCTy1CV/A5wn7dTE4rXioHxTZUIiUwEg53Wtbv60nnTjq+yqH7c2hz5ysvlT8G 8vHPrnGFSQM1d8XhK42v6oDk0kFgSw8tZmcKSnYzQPrmUhkjIl7WwEsqu83ZJV3P 205AKO+KiH3w7nW9MHZtsWmLtXE44u5s5+LsYkrmRD5foSD8n2v71pTQKl0EwFZ8 kM/JS0iJobXuqBK6neSLRW6UrHyborUh5MGGNw/mE+2vBMshNffVP0Xpp1ddAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVIhwy4iV6c7LfwKl8clKFfZACLIwHwYDVR0j BBgwFoAUJCiEBuoQmKwtIjS8ey/zkHT3GjwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTljMTViNzgtMjA3MS00NGQxLTlhMWQtYWQ2ZWIwOWZhZTA4LzAvMjQyODg0MDZF QTEwOThBQzJEMjIzNEJDN0IyRkYzOTA3NEY3MUEzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yNDI4ODQwNkVBMTA5OEFDMkQyMjM0QkM3QjJGRjM5MDc0Rjcx QTNDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U5YzE1Yjc4LTIwNzEtNDRkMS05 YTFkLWFkNmViMDlmYWUwOC8wLzMxMzUzNzJlMzIzMDJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSEMA0GCSqG SIb3DQEBCwUAA4IBAQDfwdkBB1vz8IXLj5WeSCRVpk6f4mQkNrERiWdMesqcAMX9 bRNzwuPhtmUyNdIem4fdRRxvri1O67j6AQ/7hjTcYG6lfmE1FSUwN7id41z4VRQN TyYM1FaCkf1q+w78zW5Q+uesMeP/Js0VvFFqVxWW9ryWsXYGcyscOKhEemt+j0NO M50NjiHZOQOjqcrPHZbvIxuM2Y5CURF7J0Uyfk+iqwXOitVVj/EfvzQSCkl+jHum mJzFnXUSM5sePDI/PJ+z+z+Z7/Aee6lTtS5HR45bBnSz2WZTXZgFJxeu+swM9Cp5 SsBK2FxtK/hrn59z9r9DEVKqQeWus5/jwCR/D1El -----END CERTIFICATE-----Generated at Wed May 13 03:58:56 2026 by rpki-client