$ rpki-client -vvf rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32342d3234203d3e20313336383733.roa File: 3135372e36362e3132382e302f32342d3234203d3e20313336383733.roa (raw, json) Hash identifier: /9AogUvejmnVzcfr/q/VgL8VHV8KOFXHgU8d/ZsRjs4= Subject key identifier: 74:89:4D:66:0D:8D:A7:D6:09:9E:15:86:67:40:FD:91:EB:C9:42:68 Certificate issuer: /CN=77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86 Certificate serial: 35A900509360FACB8182F3F1D9AAE4AB76DA9ECA Authority key identifier: 77:BE:1A:4F:34:7F:A3:1A:5C:FC:46:1F:6A:5D:3C:19:E4:15:8F:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32342d3234203d3e20313336383733.roa Signing time: Sun 03 May 2026 02:47:11 +0000 ROA not before: Sun 03 May 2026 02:42:11 +0000 ROA not after: Sun 02 May 2027 02:47:11 +0000 asID: 136873 IP address blocks: 157.66.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.crl rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a9:00:50:93:60:fa:cb:81:82:f3:f1:d9:aa:e4:ab:76:da:9e:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86 Validity Not Before: May 3 02:42:11 2026 GMT Not After : May 2 02:47:11 2027 GMT Subject: CN=74894D660D8DA7D6099E15866740FD91EBC94268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:18:18:bb:a3:b0:6d:b0:73:c7:98:80:4c:0b: 73:2b:48:f3:84:84:a0:5b:20:40:9f:11:41:ad:6c: 40:fe:ca:0f:d5:71:63:75:1b:98:01:32:15:6b:4f: e1:77:62:ee:c7:3d:0f:14:a7:83:a6:cb:ce:dc:9e: e1:d7:0d:d6:01:7c:74:14:c2:78:55:82:0b:77:4b: 29:16:98:74:99:b2:4a:63:4f:c2:27:3c:8f:4e:69: b9:5e:c4:28:24:b0:08:40:e9:e8:bd:be:33:12:0f: 30:c2:88:56:20:da:34:15:ea:9a:d1:bf:ee:48:97: 93:a4:56:6c:e8:58:ab:1c:ce:55:2b:b8:bb:cf:88: 77:fd:4d:fd:43:b5:14:6e:9d:85:24:9f:91:ed:a4: ed:f6:35:86:10:3d:a5:b3:7a:29:83:bb:d5:92:6b: 49:34:a3:a8:ec:1c:e0:7d:48:ca:ff:02:f1:32:1a: 9e:f8:bb:f9:42:e3:68:72:2f:51:48:5e:20:08:6e: 02:3b:d5:ee:36:7d:88:ed:13:36:77:ce:b4:51:cc: 11:70:e6:48:f9:80:9e:b6:e0:a6:1e:06:c5:f9:92: a5:75:ee:d0:3b:f0:d6:0d:4c:91:d9:5f:1a:c1:dc: 51:df:f8:9d:83:6c:da:66:9f:d0:cf:ea:8a:f6:b1: 8d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:89:4D:66:0D:8D:A7:D6:09:9E:15:86:67:40:FD:91:EB:C9:42:68 X509v3 Authority Key Identifier: keyid:77:BE:1A:4F:34:7F:A3:1A:5C:FC:46:1F:6A:5D:3C:19:E4:15:8F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/77BE1A4F347FA31A5CFC461F6A5D3C19E4158F86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132382e302f32342d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.128.0/24 Signature Algorithm: sha256WithRSAEncryption a0:0a:c3:a9:ff:01:73:5f:24:99:54:3b:3d:36:81:d4:b2:48: c5:94:ae:7c:ad:53:46:64:7e:94:cf:5a:0a:30:e7:66:39:80: c0:54:5a:85:b6:66:50:14:e8:b9:8d:3d:1f:7c:9c:76:18:5c: cd:3e:17:11:8e:0d:3c:33:47:bc:1f:fa:dd:ac:63:8c:c8:f9: 9f:75:a9:a3:69:d9:09:ef:ee:58:31:86:f1:3c:f1:28:8b:5f: fc:7f:c6:7e:be:bf:0a:b1:8d:26:09:a3:81:06:00:f9:46:0b: 9f:de:ac:bb:39:71:d5:43:1d:71:47:e3:4c:fc:cc:e0:38:94: ca:47:98:ca:15:fc:c9:d4:67:32:c3:8b:22:6b:17:47:35:06: 82:d1:f1:f5:76:e3:15:7c:68:13:02:20:6d:59:13:bf:d8:4d: 66:b6:d5:06:ae:69:5d:e1:79:00:21:c6:f3:27:2c:b1:9e:49: 4e:0f:5a:5a:ba:c6:04:f0:2d:2f:e4:9a:f8:93:74:90:3c:f3: 47:8c:7a:3d:8d:88:20:cf:e9:3f:6c:63:3b:6e:a7:24:cc:64: ef:4c:23:a7:f6:33:1b:86:8f:05:65:bd:3e:a1:8c:ec:ab:40: 52:4c:be:51:94:c1:39:fc:57:fc:6d:ee:bd:ce:3e:9f:92:a4: 29:c2:36:04 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNakAUJNg+suBgvPx2arkq3bansowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdCRTFBNEYzNDdGQTMxQTVDRkM0NjFGNkE1RDNDMTlF NDE1OEY4NjAeFw0yNjA1MDMwMjQyMTFaFw0yNzA1MDIwMjQ3MTFaMDMxMTAvBgNV BAMTKDc0ODk0RDY2MEQ4REE3RDYwOTlFMTU4NjY3NDBGRDkxRUJDOTQyNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUGBi7o7BtsHPHmIBMC3MrSPOE hKBbIECfEUGtbED+yg/VcWN1G5gBMhVrT+F3Yu7HPQ8Up4Omy87cnuHXDdYBfHQU wnhVggt3SykWmHSZskpjT8InPI9OablexCgksAhA6ei9vjMSDzDCiFYg2jQV6prR v+5Il5OkVmzoWKsczlUruLvPiHf9Tf1DtRRunYUkn5HtpO32NYYQPaWzeimDu9WS a0k0o6jsHOB9SMr/AvEyGp74u/lC42hyL1FIXiAIbgI71e42fYjtEzZ3zrRRzBFw 5kj5gJ624KYeBsX5kqV17tA78NYNTJHZXxrB3FHf+J2DbNpmn9DP6or2sY19AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdIlNZg2Np9YJnhWGZ0D9kevJQmgwHwYDVR0j BBgwFoAUd74aTzR/oxpc/EYfal08GeQVj4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODI0ZDFlYmItYWVlYi00OTQ1LTllZjItMzJhZDliZmRlYjE5LzAvNzdCRTFBNEYz NDdGQTMxQTVDRkM0NjFGNkE1RDNDMTlFNDE1OEY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83N0JFMUE0RjM0N0ZBMzFBNUNGQzQ2MUY2QTVEM0MxOUU0MTU4 Rjg2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKAMA0GCSqG SIb3DQEBCwUAA4IBAQCgCsOp/wFzXySZVDs9NoHUskjFlK58rVNGZH6Uz1oKMOdm OYDAVFqFtmZQFOi5jT0ffJx2GFzNPhcRjg08M0e8H/rdrGOMyPmfdamjadkJ7+5Y MYbxPPEoi1/8f8Z+vr8KsY0mCaOBBgD5Rguf3qy7OXHVQx1xR+NM/MzgOJTKR5jK FfzJ1Gcyw4siaxdHNQaC0fH1duMVfGgTAiBtWRO/2E1mttUGrmld4XkAIcbzJyyx nklOD1pausYE8C0v5Jr4k3SQPPNHjHo9jYggz+k/bGM7bqckzGTvTCOn9jMbho8F Zb0+oYzsq0BSTL5RlME5/Ff8be69zj6fkqQpwjYE -----END CERTIFICATE-----Generated at Tue May 5 13:27:26 2026 by rpki-client