$ rpki-client -vvf rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa File: 3135372e36362e33382e302f32332d3234203d3e203633383635.roa (raw, json) Hash identifier: oNAyYs1M4vvZUL8ZRq7sx5Uf/aJwxuSkl8dJpKgZM5c= Subject key identifier: BA:12:9A:B1:E0:EF:B3:8C:D1:65:9B:71:D4:9E:9D:28:8B:EB:8A:EC Certificate issuer: /CN=38C858950BCB54DEAE9489EE3C053B5A8FCAF110 Certificate serial: 03ECC135DEDFF36975106C2AB2992EBEB27E74C5 Authority key identifier: 38:C8:58:95:0B:CB:54:DE:AE:94:89:EE:3C:05:3B:5A:8F:CA:F1:10 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa Signing time: Sun 03 May 2026 03:16:44 +0000 ROA not before: Sun 03 May 2026 03:11:44 +0000 ROA not after: Sun 02 May 2027 03:16:44 +0000 asID: 63865 IP address blocks: 157.66.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.crl rsync://rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ec:c1:35:de:df:f3:69:75:10:6c:2a:b2:99:2e:be:b2:7e:74:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38C858950BCB54DEAE9489EE3C053B5A8FCAF110 Validity Not Before: May 3 03:11:44 2026 GMT Not After : May 2 03:16:44 2027 GMT Subject: CN=BA129AB1E0EFB38CD1659B71D49E9D288BEB8AEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:3d:58:f7:9b:7a:57:88:08:ea:29:5e:74: ac:cb:cc:92:66:29:6f:4c:f2:e8:f4:3b:1c:82:e4: 4d:8c:ca:12:ff:33:6b:8d:12:9b:7d:da:7c:d8:85: 11:1b:5c:46:34:c8:77:80:a1:ba:e9:ca:81:74:a3: 84:72:b2:97:6f:ad:2d:9c:59:66:cb:b6:70:35:40: ac:7b:85:7c:e9:33:26:49:8c:77:f5:d1:3c:78:64: d0:d1:07:a4:28:90:1d:c4:c1:1b:19:4d:d7:5d:75: 60:c6:99:b3:0d:b6:ce:3e:9b:f4:c0:61:c2:4a:5f: 16:0c:3f:71:0c:77:71:02:8b:03:47:bb:4f:8a:2b: cf:94:25:85:46:07:69:bf:73:2d:17:ef:fa:ce:e5: 8b:a4:61:60:d6:af:9c:9d:83:92:ed:70:e4:19:d3: 4f:a8:8e:49:6d:03:38:c9:d8:c7:25:fe:02:ef:a6: c8:c5:6d:28:78:e7:74:3a:5a:c4:84:67:32:4f:d9: 4a:98:6b:b8:7f:42:13:53:cb:2a:61:d1:3f:f4:d0: 92:d2:6d:1d:f9:9d:65:b9:0a:db:28:0c:da:34:b8: a7:e9:c5:d1:2d:aa:3c:19:be:a1:bf:e2:bb:43:e5: ae:35:11:f2:72:54:b5:d9:38:e5:da:49:02:ed:92: 67:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:12:9A:B1:E0:EF:B3:8C:D1:65:9B:71:D4:9E:9D:28:8B:EB:8A:EC X509v3 Authority Key Identifier: keyid:38:C8:58:95:0B:CB:54:DE:AE:94:89:EE:3C:05:3B:5A:8F:CA:F1:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/38C858950BCB54DEAE9489EE3C053B5A8FCAF110.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.38.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:65:90:55:f3:a2:07:8a:79:17:e2:77:2e:60:86:a7:16:5d: 43:e8:cb:07:cf:30:5e:72:50:83:28:84:30:cd:cf:fc:dc:b2: b7:71:64:01:86:aa:23:aa:16:3b:ca:97:8d:ed:98:bf:1b:e0: b8:1b:a8:a0:40:f2:52:9a:a6:5d:fd:e2:de:f8:11:27:fb:3b: 15:9e:34:7c:68:57:c5:1a:f2:53:34:00:18:49:de:f5:aa:5a: 5e:ed:38:e0:8f:ee:0e:09:fc:46:fb:c3:ec:58:31:b1:9e:3b: 75:96:51:a5:69:69:28:14:7c:f6:48:21:00:dd:e7:4d:33:6e: 72:91:08:da:a1:81:bc:28:29:ad:43:60:79:34:03:8c:97:7c: 98:d6:c9:1a:68:59:a2:d5:d5:37:a0:b5:23:8f:9b:03:74:67: 39:32:0f:f6:39:38:0b:8c:44:65:62:a6:7b:09:38:20:14:90: 72:8c:6b:07:45:77:6b:6b:a1:67:07:d2:70:27:69:bc:7a:48: e3:f2:0d:62:da:b2:77:6f:94:9d:91:34:b9:a0:f7:16:e2:cc: 84:94:ba:fb:87:80:8f:5c:f1:3a:f4:2b:f6:f1:56:39:a2:15: c9:3e:17:59:c8:b5:a8:48:02:b5:0d:46:72:2e:9b:f6:88:38: 41:f5:dd:3a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA+zBNd7f82l1EGwqspkuvrJ+dMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhDODU4OTUwQkNCNTRERUFFOTQ4OUVFM0MwNTNCNUE4 RkNBRjExMDAeFw0yNjA1MDMwMzExNDRaFw0yNzA1MDIwMzE2NDRaMDMxMTAvBgNV BAMTKEJBMTI5QUIxRTBFRkIzOENEMTY1OUI3MUQ0OUU5RDI4OEJFQjhBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XD1Y95t6V4gI6iledKzLzJJm KW9M8uj0OxyC5E2MyhL/M2uNEpt92nzYhREbXEY0yHeAobrpyoF0o4RyspdvrS2c WWbLtnA1QKx7hXzpMyZJjHf10Tx4ZNDRB6QokB3EwRsZTddddWDGmbMNts4+m/TA YcJKXxYMP3EMd3ECiwNHu0+KK8+UJYVGB2m/cy0X7/rO5YukYWDWr5ydg5LtcOQZ 00+ojkltAzjJ2Mcl/gLvpsjFbSh453Q6WsSEZzJP2UqYa7h/QhNTyyph0T/00JLS bR35nWW5CtsoDNo0uKfpxdEtqjwZvqG/4rtD5a41EfJyVLXZOOXaSQLtkmfbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuhKaseDvs4zRZZtx1J6dKIvriuwwHwYDVR0j BBgwFoAUOMhYlQvLVN6ulInuPAU7Wo/K8RAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjFiMjY3YTQtNTAzMC00YTRmLWJiODYtNzFmZDIzMGY1M2QxLzAvMzhDODU4OTUw QkNCNTRERUFFOTQ4OUVFM0MwNTNCNUE4RkNBRjExMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zOEM4NTg5NTBCQ0I1NERFQUU5NDg5RUUzQzA1M0I1QThGQ0FG MTEwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxYjI2N2E0LTUwMzAtNGE0Zi1i Yjg2LTcxZmQyMzBmNTNkMS8wLzMxMzUzNzJlMzYzNjJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiYwDQYJKoZIhvcN AQELBQADggEBACplkFXzogeKeRfidy5ghqcWXUPoywfPMF5yUIMohDDNz/zcsrdx ZAGGqiOqFjvKl43tmL8b4LgbqKBA8lKapl394t74ESf7OxWeNHxoV8Ua8lM0ABhJ 3vWqWl7tOOCP7g4J/Eb7w+xYMbGeO3WWUaVpaSgUfPZIIQDd500zbnKRCNqhgbwo Ka1DYHk0A4yXfJjWyRpoWaLV1TegtSOPmwN0ZzkyD/Y5OAuMRGVipnsJOCAUkHKM awdFd2troWcH0nAnabx6SOPyDWLasndvlJ2RNLmg9xbizISUuvuHgI9c8Tr0K/bx VjmiFck+F1nItahIArUNRnIum/aIOEH13To= -----END CERTIFICATE-----Generated at Wed May 13 02:58:43 2026 by rpki-client