$ rpki-client -vvf rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa File: 3135372e31302e36332e302f32342d3234203d3e20313532303835.roa (raw, json) Hash identifier: yL9CLlILHqLbQJKBIi0ABV5wanAH6ejKvh6ick9wGpY= Subject key identifier: 83:34:67:0B:97:2F:BD:72:F5:AB:7C:36:9E:BA:87:F5:DB:70:A4:75 Certificate issuer: /CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Certificate serial: 3F1B13C81CCA4F9B0EB0C6185C74A2FD7A54F2AB Authority key identifier: 68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa Signing time: Sun 03 May 2026 03:19:26 +0000 ROA not before: Sun 03 May 2026 03:14:26 +0000 ROA not after: Sun 02 May 2027 03:19:26 +0000 asID: 152085 IP address blocks: 157.10.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:1b:13:c8:1c:ca:4f:9b:0e:b0:c6:18:5c:74:a2:fd:7a:54:f2:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Validity Not Before: May 3 03:14:26 2026 GMT Not After : May 2 03:19:26 2027 GMT Subject: CN=8334670B972FBD72F5AB7C369EBA87F5DB70A475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8c:87:56:52:aa:fa:25:98:60:0d:ce:c1:64: 7e:d1:d9:e5:95:0c:1a:45:c4:13:50:d6:66:f8:6e: e1:e1:54:5c:97:4e:aa:6f:33:60:fb:eb:56:b5:5e: e6:ad:75:3f:5d:9d:16:39:46:c1:a0:78:a4:d9:51: 73:89:3c:e1:68:4f:f8:fe:56:29:93:6c:8a:21:91: 88:12:0e:01:d0:f4:89:c5:6b:a7:f4:70:ed:13:3a: f4:20:f9:f1:08:77:7d:d7:4b:24:b9:46:f2:e0:81: 82:21:9c:4c:24:80:29:ae:8b:21:9b:75:a2:6e:a4: 6e:8f:f7:9f:f2:be:e3:52:fd:47:7d:9d:52:38:16: 50:66:27:79:9e:46:8f:11:57:fb:f0:d5:e5:ce:3f: 51:48:0d:39:64:ef:1e:75:1e:13:63:ba:d1:50:22: e3:ae:74:40:fa:74:0c:b1:ac:01:37:da:13:94:ce: e6:c1:20:2f:66:9d:e4:73:06:a8:4d:48:a7:0e:ec: 66:b5:3e:7c:b1:70:3f:5f:bb:02:8b:11:af:aa:10: df:98:d1:63:5f:cc:a5:5d:4f:e5:4d:2e:70:41:b3: fc:5a:97:a3:40:26:bc:ef:dd:83:f4:c2:47:80:f9: f5:a7:1f:41:31:d4:35:c0:1c:f1:d2:21:24:00:19: 44:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:34:67:0B:97:2F:BD:72:F5:AB:7C:36:9E:BA:87:F5:DB:70:A4:75 X509v3 Authority Key Identifier: keyid:68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/3135372e31302e36332e302f32342d3234203d3e20313532303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.63.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:9a:38:a7:d3:17:73:00:11:2b:a1:ec:1f:f2:65:4a:52:34: bf:b0:e4:07:69:58:c0:cb:e0:a9:92:fb:41:c4:2d:a3:9f:e3: 0b:ed:22:4e:e1:55:eb:26:c7:c3:f7:82:eb:a5:d5:d5:1c:0a: 15:bd:1b:dd:4c:c5:46:0e:0d:d6:c3:07:1f:ae:4e:2d:1c:98: 48:f2:62:c0:a1:33:ac:5a:60:52:be:f1:42:d4:2c:70:b3:e9: e8:23:51:6a:8e:d6:9d:8f:4f:8f:fa:c1:55:50:6e:e3:9e:8d: ce:0f:26:bd:fd:16:d6:d7:4d:01:6f:14:82:71:f0:60:4f:8b: b3:1d:b6:6f:9a:30:a7:91:5f:d5:f9:47:80:e1:19:da:2e:79: bc:0f:ff:de:ce:cf:50:db:a3:a4:5b:20:64:da:60:ba:22:7e: d3:6f:7a:14:11:25:72:2c:10:17:11:c4:eb:75:70:dd:9e:30: a4:69:73:1b:42:b1:cd:0f:8f:ee:76:1f:d2:a8:35:cf:45:61: b2:0a:31:65:c1:e0:9e:94:9f:78:a6:3c:ff:e8:2c:07:09:a2: f4:e4:b0:4b:be:1b:4b:8b:13:b1:41:b4:18:fe:2d:a2:5d:aa: 60:9d:1c:02:30:43:f5:b1:51:f5:b0:3c:ce:82:ac:e8:f3:f2: 3c:1f:f2:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPxsTyBzKT5sOsMYYXHSi/XpU8qswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhCNTAzNTMyMkZGREI5QzhENkVFQzEwQjVEMkYxQTc3 REZGNzBDRjAeFw0yNjA1MDMwMzE0MjZaFw0yNzA1MDIwMzE5MjZaMDMxMTAvBgNV BAMTKDgzMzQ2NzBCOTcyRkJENzJGNUFCN0MzNjlFQkE4N0Y1REI3MEE0NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjjIdWUqr6JZhgDc7BZH7R2eWV DBpFxBNQ1mb4buHhVFyXTqpvM2D761a1XuatdT9dnRY5RsGgeKTZUXOJPOFoT/j+ VimTbIohkYgSDgHQ9InFa6f0cO0TOvQg+fEId33XSyS5RvLggYIhnEwkgCmuiyGb daJupG6P95/yvuNS/Ud9nVI4FlBmJ3meRo8RV/vw1eXOP1FIDTlk7x51HhNjutFQ IuOudED6dAyxrAE32hOUzubBIC9mneRzBqhNSKcO7Ga1PnyxcD9fuwKLEa+qEN+Y 0WNfzKVdT+VNLnBBs/xal6NAJrzv3YP0wkeA+fWnH0Ex1DXAHPHSISQAGUT5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgzRnC5cvvXL1q3w2nrqH9dtwpHUwHwYDVR0j BBgwFoAUaLUDUyL/25yNbuwQtdLxp33/cM8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmQzYTJmZGYtYmNiYS00NzU3LWIzNjYtZTFhMGFkMmQzNzRhLzAvNjhCNTAzNTMy MkZGREI5QzhENkVFQzEwQjVEMkYxQTc3REZGNzBDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82OEI1MDM1MzIyRkZEQjlDOEQ2RUVDMTBCNUQyRjFBNzdERkY3 MENGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZkM2EyZmRmLWJjYmEtNDc1Ny1i MzY2LWUxYTBhZDJkMzc0YS8wLzMxMzUzNzJlMzEzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KPzANBgkqhkiG 9w0BAQsFAAOCAQEAHJo4p9MXcwARK6HsH/JlSlI0v7DkB2lYwMvgqZL7QcQto5/j C+0iTuFV6ybHw/eC66XV1RwKFb0b3UzFRg4N1sMHH65OLRyYSPJiwKEzrFpgUr7x QtQscLPp6CNRao7WnY9Pj/rBVVBu456Nzg8mvf0W1tdNAW8UgnHwYE+Lsx22b5ow p5Ff1flHgOEZ2i55vA//3s7PUNujpFsgZNpguiJ+0296FBElciwQFxHE63Vw3Z4w pGlzG0KxzQ+P7nYf0qg1z0VhsgoxZcHgnpSfeKY8/+gsBwmi9OSwS74bS4sTsUG0 GP4tol2qYJ0cAjBD9bFR9bA8zoKs6PPyPB/yEg== -----END CERTIFICATE-----Generated at Tue May 12 23:27:36 2026 by rpki-client