$ rpki-client -vvf rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa File: 3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa (raw, json) Hash identifier: 2KuqxGxxUoWsjT52nc8YqV6GIpta4WniQwIsnjhtsto= Subject key identifier: 63:D2:24:7F:50:AE:E1:F7:8C:3E:0D:33:7B:D2:90:2B:59:B1:9D:58 Certificate issuer: /CN=ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2 Certificate serial: 5AE855E41D044D2015DB1764E0CE3372B4268395 Authority key identifier: ED:41:DE:F7:56:30:D6:BC:76:B3:92:AB:AF:C7:A2:0B:95:98:A8:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa Signing time: Sun 03 May 2026 03:18:59 +0000 ROA not before: Sun 03 May 2026 03:13:59 +0000 ROA not after: Sun 02 May 2027 03:18:59 +0000 asID: 45302 IP address blocks: 157.119.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.crl rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e8:55:e4:1d:04:4d:20:15:db:17:64:e0:ce:33:72:b4:26:83:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2 Validity Not Before: May 3 03:13:59 2026 GMT Not After : May 2 03:18:59 2027 GMT Subject: CN=63D2247F50AEE1F78C3E0D337BD2902B59B19D58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d3:07:dc:9d:f7:f0:32:64:54:2f:69:02:cf: ef:f0:88:d5:31:c7:34:de:72:ad:75:cd:be:19:8b: 47:43:4a:94:f7:75:d2:84:ee:1a:d2:b2:68:4f:7f: 80:f8:a9:7a:c8:10:d0:3e:62:3a:45:01:46:35:9d: a6:72:8b:f5:b0:ee:a7:0d:5d:a0:a9:31:bf:44:d4: 71:95:97:c3:17:27:e1:05:19:d0:d7:8e:94:b2:b5: b7:99:25:3a:7c:45:53:c5:34:a2:78:3f:05:6b:2d: af:9e:6a:02:f0:d1:e6:f6:1a:0c:9b:a8:04:8d:98: 92:b7:84:c2:04:f1:2c:de:a8:75:61:e1:6f:3d:16: 6e:60:6f:b2:0b:11:a2:4e:fa:02:a3:f2:c7:7f:d0: cb:17:56:4d:b3:13:04:b9:b0:57:a6:e0:f3:9d:fa: ff:b1:4d:59:a9:f3:21:ef:de:5e:26:71:3b:db:6b: 51:dc:41:7a:73:08:af:8e:67:55:51:fc:e6:76:16: 27:83:cf:bd:e7:4b:14:66:4e:e2:ac:a3:59:4d:81: b5:fe:f2:6c:39:34:30:9e:b8:fc:1c:30:2c:00:02: e8:fd:78:64:c5:85:c4:22:b7:f2:da:80:f7:a5:68: 45:e0:23:c2:c3:73:16:03:16:9a:15:24:42:29:56: 0b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D2:24:7F:50:AE:E1:F7:8C:3E:0D:33:7B:D2:90:2B:59:B1:9D:58 X509v3 Authority Key Identifier: keyid:ED:41:DE:F7:56:30:D6:BC:76:B3:92:AB:AF:C7:A2:0B:95:98:A8:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3135372e3131392e3232302e302f32322d3234203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.220.0/22 Signature Algorithm: sha256WithRSAEncryption a5:ff:0e:79:85:53:19:5c:3a:0d:97:01:be:aa:8e:eb:21:1c: 00:e6:45:ef:ab:f9:4e:5f:24:ba:9f:c7:63:c9:7f:b1:07:87: e4:d0:2c:0f:7b:28:fd:96:78:17:4e:2a:5e:e8:9f:89:09:82: e9:59:e1:62:e8:1c:f2:33:05:6e:01:f2:6e:7e:f4:b1:73:f5: d6:24:76:4b:6b:ea:71:fe:ae:ec:3e:29:4e:03:58:82:d1:8e: 18:95:fc:5a:af:ff:f4:2f:e7:c7:2e:50:6c:c2:cb:3b:46:09: 5c:03:ed:6a:66:55:35:a6:25:3e:bf:b4:0f:05:db:34:c0:7f: 98:24:07:00:e9:4f:d7:b1:e9:52:d5:da:ef:52:76:ac:2b:3d: 20:9c:b3:a0:41:e2:1b:3d:79:90:e0:57:c0:48:69:46:55:c2: 91:bc:74:c2:81:df:1b:62:b0:a6:8d:5b:24:f6:e7:d8:27:d6: 41:a4:10:e3:c6:bd:0d:58:34:70:07:f4:ac:3d:e2:e8:a0:f0: 60:c8:48:4a:7b:b2:d5:f5:7a:40:d2:60:5e:d1:3a:a4:d2:2b: 4c:c8:3e:f1:6a:be:90:3f:d7:51:43:77:41:b7:d4:ff:82:d4: 1b:7b:04:61:2b:42:ac:fc:91:ad:ae:71:0a:51:01:42:3d:40: d9:73:01:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWuhV5B0ETSAV2xdk4M4zcrQmg5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0MURFRjc1NjMwRDZCQzc2QjM5MkFCQUZDN0EyMEI5 NTk4QThBMjAeFw0yNjA1MDMwMzEzNTlaFw0yNzA1MDIwMzE4NTlaMDMxMTAvBgNV BAMTKDYzRDIyNDdGNTBBRUUxRjc4QzNFMEQzMzdCRDI5MDJCNTlCMTlENTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC20wfcnffwMmRUL2kCz+/wiNUx xzTecq11zb4Zi0dDSpT3ddKE7hrSsmhPf4D4qXrIENA+YjpFAUY1naZyi/Ww7qcN XaCpMb9E1HGVl8MXJ+EFGdDXjpSytbeZJTp8RVPFNKJ4PwVrLa+eagLw0eb2Ggyb qASNmJK3hMIE8SzeqHVh4W89Fm5gb7ILEaJO+gKj8sd/0MsXVk2zEwS5sFem4POd +v+xTVmp8yHv3l4mcTvba1HcQXpzCK+OZ1VR/OZ2FieDz73nSxRmTuKso1lNgbX+ 8mw5NDCeuPwcMCwAAuj9eGTFhcQit/LagPelaEXgI8LDcxYDFpoVJEIpVgsNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY9Ikf1Cu4feMPg0ze9KQK1mxnVgwHwYDVR0j BBgwFoAU7UHe91Yw1rx2s5Krr8eiC5WYqKIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmI4ODU4ZTAtZWNmMC00ZTUzLWE0OTAtM2I3YzJkZTE2OTNjLzAvRUQ0MURFRjc1 NjMwRDZCQzc2QjM5MkFCQUZDN0EyMEI5NTk4QThBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRDQxREVGNzU2MzBENkJDNzZCMzkyQUJBRkM3QTIwQjk1OThB OEEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMxMzUzNzJlMzEzMTM5MmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXfcMA0GCSqG SIb3DQEBCwUAA4IBAQCl/w55hVMZXDoNlwG+qo7rIRwA5kXvq/lOXyS6n8djyX+x B4fk0CwPeyj9lngXTipe6J+JCYLpWeFi6BzyMwVuAfJufvSxc/XWJHZLa+px/q7s PilOA1iC0Y4Ylfxar//0L+fHLlBswss7RglcA+1qZlU1piU+v7QPBds0wH+YJAcA 6U/XselS1drvUnasKz0gnLOgQeIbPXmQ4FfASGlGVcKRvHTCgd8bYrCmjVsk9ufY J9ZBpBDjxr0NWDRwB/SsPeLooPBgyEhKe7LV9XpA0mBe0Tqk0itMyD7xar6QP9dR Q3dBt9T/gtQbewRhK0Ks/JGtrnEKUQFCPUDZcwEd -----END CERTIFICATE-----Generated at Wed May 13 02:18:50 2026 by rpki-client