$ rpki-client -vvf rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313336383733.roa File: 3135372e36362e3132382e302f32332d3234203d3e20313336383733.roa (raw, json) Hash identifier: ABmryXvmIdMzipy18c184WGStC1rvjxbGuTrZ93+HFk= Subject key identifier: B2:E0:94:1D:21:A1:AF:80:E8:46:26:8F:90:2B:68:1C:0B:C7:38:84 Certificate issuer: /CN=77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86 Certificate serial: 3FB3575F15A84C84B505B296F04F1EF8B7DD006A Authority key identifier: 77:BE:1A:4F:34:7F:A3:1A:5C:FC:46:1F:6A:5D:3C:19:E4:15:8F:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313336383733.roa Signing time: Sun 03 May 2026 02:47:12 +0000 ROA not before: Sun 03 May 2026 02:42:12 +0000 ROA not after: Sun 02 May 2027 02:47:12 +0000 asID: 136873 IP address blocks: 157.66.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.crl rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b3:57:5f:15:a8:4c:84:b5:05:b2:96:f0:4f:1e:f8:b7:dd:00:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86 Validity Not Before: May 3 02:42:12 2026 GMT Not After : May 2 02:47:12 2027 GMT Subject: CN=B2E0941D21A1AF80E846268F902B681C0BC73884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ae:3e:8a:92:42:d5:f6:7e:c4:9e:d8:89:80: 42:e0:fe:ff:76:36:01:6f:2b:6a:ad:97:35:63:d9: 89:9f:6b:47:55:47:ad:8f:28:2b:fc:4f:47:26:2a: d4:2a:d6:51:70:4b:6d:31:1a:b8:e7:78:56:d5:56: 5e:a7:b9:3c:9b:5e:23:0b:c3:f5:68:eb:f7:12:d4: 41:a5:32:4e:bb:41:56:5f:8b:38:70:d0:7a:06:c7: 00:86:33:a2:e0:9c:7a:47:02:e5:87:04:05:6e:aa: 88:77:30:bb:7a:d6:5b:21:6e:f7:0e:da:32:c8:23: 1b:35:9c:6c:b9:19:6f:d1:80:54:a7:1c:1e:bf:82: d0:bf:c7:db:73:f0:33:bc:c7:c6:95:e3:b3:16:e5: 30:5c:53:96:d2:d1:53:0d:c1:16:cf:ad:2f:1d:6a: f8:e1:d5:fd:bc:d0:b5:2a:14:b7:f2:87:11:31:b8: 31:65:da:bf:db:7c:22:84:1f:60:54:5e:6d:72:45: be:b9:79:24:6a:e9:04:48:13:d0:d0:f7:d9:c0:be: 5c:0d:53:39:27:67:01:4c:0b:88:b6:93:84:52:bd: f6:76:88:88:46:5e:08:ae:3e:ed:63:7e:61:d5:e5: b9:82:95:a7:cf:fe:10:c2:f2:df:c1:ca:93:fb:af: 6c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E0:94:1D:21:A1:AF:80:E8:46:26:8F:90:2B:68:1C:0B:C7:38:84 X509v3 Authority Key Identifier: keyid:77:BE:1A:4F:34:7F:A3:1A:5C:FC:46:1F:6A:5D:3C:19:E4:15:8F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32332d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.128.0/23 Signature Algorithm: sha256WithRSAEncryption b5:4c:9d:af:ca:96:42:6a:8b:d8:5a:99:2c:66:f2:db:9e:4a: 1f:b3:a7:a5:9e:a6:37:7c:9a:6f:f0:34:e9:36:84:2d:b0:fd: f7:c8:71:ef:17:b4:c7:9b:6c:41:a9:dd:fc:b6:0d:a3:02:bc: 5e:c6:d3:53:63:db:04:1e:7f:fc:9c:e6:7e:0a:9d:74:96:00: fd:70:af:1c:63:63:4d:bb:e9:53:b1:73:a7:d9:c6:7d:47:b2: 5b:01:95:15:09:17:0c:4c:d0:4a:2e:85:ed:15:05:d0:54:23: 9b:49:4d:37:ce:ab:b5:9c:aa:4c:54:a0:9f:9a:f5:4b:4e:c0: 68:e4:6e:81:ec:7d:1b:02:ec:f2:04:6e:82:d6:68:20:91:99: 63:a4:e5:20:20:15:a3:a6:f8:ff:2a:62:d4:5f:cd:e4:09:23: c3:39:43:e8:3d:ce:90:f1:15:1a:36:60:94:9a:51:ac:ef:75: d3:a9:cf:50:fa:15:75:3b:01:e6:bb:79:e2:18:0e:9b:be:8f: 44:98:0a:44:9f:f9:ad:34:cc:af:2a:47:55:38:05:f2:18:dc: 47:94:7e:1e:b6:bf:03:f6:29:a6:24:33:69:54:c6:f4:42:a7: a9:7e:41:86:6a:11:f6:9f:38:ad:2c:fc:3e:f6:d7:49:2a:62: 5d:b3:94:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP7NXXxWoTIS1BbKW8E8e+LfdAGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdCRTFBNEYzNDdGQTMxQTVDRkM0NjFGNkE1RDNDMTlF NDE1OEY4NjAeFw0yNjA1MDMwMjQyMTJaFw0yNzA1MDIwMjQ3MTJaMDMxMTAvBgNV BAMTKEIyRTA5NDFEMjFBMUFGODBFODQ2MjY4RjkwMkI2ODFDMEJDNzM4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMrj6KkkLV9n7EntiJgELg/v92 NgFvK2qtlzVj2Ymfa0dVR62PKCv8T0cmKtQq1lFwS20xGrjneFbVVl6nuTybXiML w/Vo6/cS1EGlMk67QVZfizhw0HoGxwCGM6LgnHpHAuWHBAVuqoh3MLt61lshbvcO 2jLIIxs1nGy5GW/RgFSnHB6/gtC/x9tz8DO8x8aV47MW5TBcU5bS0VMNwRbPrS8d avjh1f280LUqFLfyhxExuDFl2r/bfCKEH2BUXm1yRb65eSRq6QRIE9DQ99nAvlwN UzknZwFMC4i2k4RSvfZ2iIhGXgiuPu1jfmHV5bmClafP/hDC8t/BypP7r2xrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsuCUHSGhr4DoRiaPkCtoHAvHOIQwHwYDVR0j BBgwFoAUd74aTzR/oxpc/EYfal08GeQVj4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODI0ZDFlYmItYWVlYi00OTQ1LTllZjItMzJhZDliZmRlYjE5LzAvNzdCRTFBNEYz NDdGQTMxQTVDRkM0NjFGNkE1RDNDMTlFNDE1OEY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83N0JFMUE0RjM0N0ZBMzFBNUNGQzQ2MUY2QTVEM0MxOUU0MTU4 Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnUKAMA0GCSqG SIb3DQEBCwUAA4IBAQC1TJ2vypZCaovYWpksZvLbnkofs6elnqY3fJpv8DTpNoQt sP33yHHvF7THm2xBqd38tg2jArxextNTY9sEHn/8nOZ+Cp10lgD9cK8cY2NNu+lT sXOn2cZ9R7JbAZUVCRcMTNBKLoXtFQXQVCObSU03zqu1nKpMVKCfmvVLTsBo5G6B 7H0bAuzyBG6C1mggkZljpOUgIBWjpvj/KmLUX83kCSPDOUPoPc6Q8RUaNmCUmlGs 73XTqc9Q+hV1OwHmu3niGA6bvo9EmApEn/mtNMyvKkdVOAXyGNxHlH4etr8D9imm JDNpVMb0QqepfkGGahH2nzitLPw+9tdJKmJds5R7 -----END CERTIFICATE-----Generated at Tue May 5 13:26:54 2026 by rpki-client