$ rpki-client -vvf rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133332e302f32342d3234203d3e20313532343033.roa File: 3135372e32302e3133332e302f32342d3234203d3e20313532343033.roa (raw, json) Hash identifier: P2rFVCGkfAn7n6YhnSsQWxTg2/yvpx/ugQFzNxgB2+8= Subject key identifier: 0A:8E:44:EF:71:32:90:69:92:67:61:61:DE:4D:B6:FD:71:A0:B6:39 Certificate issuer: /CN=24288406EA1098AC2D2234BC7B2FF39074F71A3C Certificate serial: 4B051A7A7311906EBE52751287FF6DFE14322CF1 Authority key identifier: 24:28:84:06:EA:10:98:AC:2D:22:34:BC:7B:2F:F3:90:74:F7:1A:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133332e302f32342d3234203d3e20313532343033.roa Signing time: Sun 03 May 2026 03:14:52 +0000 ROA not before: Sun 03 May 2026 03:09:52 +0000 ROA not after: Sun 02 May 2027 03:14:52 +0000 asID: 152403 IP address blocks: 157.20.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.crl rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:05:1a:7a:73:11:90:6e:be:52:75:12:87:ff:6d:fe:14:32:2c:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24288406EA1098AC2D2234BC7B2FF39074F71A3C Validity Not Before: May 3 03:09:52 2026 GMT Not After : May 2 03:14:52 2027 GMT Subject: CN=0A8E44EF7132906992676161DE4DB6FD71A0B639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8b:97:3f:f6:01:bc:15:e6:bb:01:1d:3c:84: 6a:fa:3d:69:bb:51:c9:4f:ca:20:e8:cc:36:7c:45: 4e:51:67:af:1c:d6:10:75:7e:ea:e4:1a:a3:ac:7a: 01:78:7e:c6:2f:5d:f2:d1:4c:fa:92:49:02:3c:06: 16:cb:94:36:b6:bb:96:6d:61:ee:df:15:8e:33:a4: c4:e3:00:e1:23:9d:4b:ce:98:81:fa:fa:da:fa:45: 92:ad:03:d9:12:02:04:64:28:f0:53:fe:01:36:e6: a4:78:17:7d:f3:97:ec:69:5e:fb:3f:98:61:c6:06: 27:24:5e:9a:f4:76:25:a4:e0:f4:60:5e:ba:ed:13: 23:f4:ea:b2:60:82:2e:62:a3:fd:83:06:cf:de:95: 72:5a:98:4b:6e:39:6f:1c:f8:06:2f:b9:a5:a3:4b: 30:5e:8e:64:48:6c:97:9c:2a:85:05:58:5f:bc:b0: 48:b2:1f:40:f5:4b:1d:84:90:3a:1d:b2:7d:5f:a1: 01:88:33:85:00:b0:c7:bf:9e:5c:91:fd:9f:2f:74: 77:e0:0b:f9:ea:b7:88:14:4c:9f:7f:29:bd:01:be: 3a:d9:f6:5c:6b:0d:0a:b3:86:bd:54:f8:7a:71:e4: 1b:fc:2a:da:02:f6:79:42:b7:16:9d:68:87:34:b1: 7d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8E:44:EF:71:32:90:69:92:67:61:61:DE:4D:B6:FD:71:A0:B6:39 X509v3 Authority Key Identifier: keyid:24:28:84:06:EA:10:98:AC:2D:22:34:BC:7B:2F:F3:90:74:F7:1A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/24288406EA1098AC2D2234BC7B2FF39074F71A3C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133332e302f32342d3234203d3e20313532343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.133.0/24 Signature Algorithm: sha256WithRSAEncryption a5:8f:68:97:7b:0e:ec:2f:67:4f:95:ee:45:f1:84:7a:e7:16: bf:4b:46:6b:ea:79:8b:4b:81:e3:de:8e:ad:fa:ee:58:71:15: 99:82:84:74:d2:cc:f9:8a:02:ed:39:ff:61:ca:f4:7c:fb:c7: b7:ea:17:d2:c4:13:0d:f1:ff:1a:c8:5b:ea:82:19:ab:7b:23: aa:a6:bb:d0:ad:9d:2d:53:e7:0e:89:28:c2:72:6d:13:a9:af: 89:a3:62:71:61:44:2e:4b:4b:75:40:32:f9:3d:a7:5a:1b:2c: 6e:9e:17:32:39:03:2c:23:9a:9e:b3:ac:93:1d:54:73:8e:7c: bc:4a:3c:06:a9:b7:4f:b7:2c:ac:71:8a:5d:cd:93:d9:c5:53: 28:9c:c7:0c:47:66:31:24:ac:cc:ad:55:b8:9d:67:7f:ed:e9: dd:4d:92:c7:10:df:a5:22:8f:eb:92:b4:a8:62:a1:f3:1c:15: f5:d3:ae:ae:4d:ba:e9:e3:83:1c:91:64:43:e0:89:c6:23:62: 13:b9:28:b4:ef:6f:bf:29:bb:6f:c5:e6:57:75:cb:5b:7f:c1: 39:cd:78:94:60:12:a1:b9:40:a4:29:b5:e0:92:53:8a:34:ff: bf:d6:a3:d7:5d:e3:2e:89:6d:c5:99:85:37:cf:29:bd:91:82: 50:1f:eb:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSwUaenMRkG6+UnUSh/9t/hQyLPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQyODg0MDZFQTEwOThBQzJEMjIzNEJDN0IyRkYzOTA3 NEY3MUEzQzAeFw0yNjA1MDMwMzA5NTJaFw0yNzA1MDIwMzE0NTJaMDMxMTAvBgNV BAMTKDBBOEU0NEVGNzEzMjkwNjk5MjY3NjE2MURFNERCNkZENzFBMEI2MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXi5c/9gG8Fea7AR08hGr6PWm7 UclPyiDozDZ8RU5RZ68c1hB1furkGqOsegF4fsYvXfLRTPqSSQI8BhbLlDa2u5Zt Ye7fFY4zpMTjAOEjnUvOmIH6+tr6RZKtA9kSAgRkKPBT/gE25qR4F33zl+xpXvs/ mGHGBickXpr0diWk4PRgXrrtEyP06rJggi5io/2DBs/elXJamEtuOW8c+AYvuaWj SzBejmRIbJecKoUFWF+8sEiyH0D1Sx2EkDodsn1foQGIM4UAsMe/nlyR/Z8vdHfg C/nqt4gUTJ9/Kb0BvjrZ9lxrDQqzhr1U+Hpx5Bv8KtoC9nlCtxadaIc0sX2PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCo5E73EykGmSZ2Fh3k22/XGgtjkwHwYDVR0j BBgwFoAUJCiEBuoQmKwtIjS8ey/zkHT3GjwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTljMTViNzgtMjA3MS00NGQxLTlhMWQtYWQ2ZWIwOWZhZTA4LzAvMjQyODg0MDZF QTEwOThBQzJEMjIzNEJDN0IyRkYzOTA3NEY3MUEzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yNDI4ODQwNkVBMTA5OEFDMkQyMjM0QkM3QjJGRjM5MDc0Rjcx QTNDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U5YzE1Yjc4LTIwNzEtNDRkMS05 YTFkLWFkNmViMDlmYWUwOC8wLzMxMzUzNzJlMzIzMDJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSFMA0GCSqG SIb3DQEBCwUAA4IBAQClj2iXew7sL2dPle5F8YR65xa/S0Zr6nmLS4Hj3o6t+u5Y cRWZgoR00sz5igLtOf9hyvR8+8e36hfSxBMN8f8ayFvqghmreyOqprvQrZ0tU+cO iSjCcm0Tqa+Jo2JxYUQuS0t1QDL5PadaGyxunhcyOQMsI5qes6yTHVRzjny8SjwG qbdPtyyscYpdzZPZxVMonMcMR2YxJKzMrVW4nWd/7endTZLHEN+lIo/rkrSoYqHz HBX1066uTbrp44MckWRD4InGI2ITuSi072+/KbtvxeZXdctbf8E5zXiUYBKhuUCk KbXgklOKNP+/1qPXXeMuiW3FmYU3zym9kYJQH+tO -----END CERTIFICATE-----Generated at Wed May 13 08:25:02 2026 by rpki-client