$ rpki-client -vvf repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136362e302f32342d3234203d3e20313338313135.roa File: 3136302e31392e3136362e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: GS37UgKoAc3KvOEONc+556OFtKgxYxE3OI9Ca5fmaDA= Subject key identifier: 97:BE:94:48:C6:7E:6D:AA:A2:3B:43:E2:BB:83:C9:6A:01:31:65:98 Certificate issuer: /CN=566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1 Certificate serial: 673A84EAB215D3230F0809246FB8B49596213D34 Authority key identifier: 56:6A:7E:C3:EF:CD:EB:4A:BF:A2:A9:6A:BE:93:EC:33:17:A0:D2:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136362e302f32342d3234203d3e20313338313135.roa Signing time: Mon 23 Mar 2026 07:02:41 +0000 ROA not before: Mon 23 Mar 2026 06:57:41 +0000 ROA not after: Mon 22 Mar 2027 07:02:41 +0000 asID: 138115 IP address blocks: 160.19.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.crl rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 20:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3a:84:ea:b2:15:d3:23:0f:08:09:24:6f:b8:b4:95:96:21:3d:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1 Validity Not Before: Mar 23 06:57:41 2026 GMT Not After : Mar 22 07:02:41 2027 GMT Subject: CN=97BE9448C67E6DAAA23B43E2BB83C96A01316598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:a8:1e:71:e3:44:aa:85:36:39:43:e4:94: 37:02:1f:2a:2b:9d:64:f2:67:39:63:ba:06:2b:a6: 45:12:89:4d:3a:c1:b1:a5:64:1e:ae:9c:2e:c7:5a: ab:08:0d:6d:1a:82:10:9f:aa:5e:09:d5:ae:45:56: e5:47:1d:73:8c:20:78:e9:c7:8d:ce:50:f0:99:5b: 33:f9:39:e6:cd:42:8e:10:1b:12:e0:02:4a:82:b9: 71:42:fb:0e:82:b6:21:87:6c:fb:91:7f:e1:6e:b5: 3b:08:94:ab:3d:34:8a:8c:2b:5f:53:3b:f2:ff:59: fe:d7:d3:3c:69:7f:32:cd:f6:51:81:6d:58:ed:99: e7:36:30:1b:c5:12:8d:96:64:d7:10:54:7f:df:44: c5:4c:fc:26:07:83:ee:1a:ab:c1:78:d2:35:01:a1: 27:29:37:93:9a:22:40:26:bd:2c:23:64:b8:9d:6f: bf:b1:f5:a6:0f:2b:1d:72:30:b4:28:93:d6:72:e9: 01:ea:cb:14:01:b4:c8:82:f4:75:e4:92:e4:9c:95: e5:f5:e8:d3:1f:c1:cb:d6:3a:e5:10:04:c3:ae:cf: 89:8d:0f:55:8a:c6:a2:ca:92:29:7c:20:6d:fd:4a: 7b:dc:9d:0e:bd:62:3f:c6:6b:18:e2:51:a4:c7:2c: f7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BE:94:48:C6:7E:6D:AA:A2:3B:43:E2:BB:83:C9:6A:01:31:65:98 X509v3 Authority Key Identifier: keyid:56:6A:7E:C3:EF:CD:EB:4A:BF:A2:A9:6A:BE:93:EC:33:17:A0:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/566A7EC3EFCDEB4ABFA2A96ABE93EC3317A0D2E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5582fca9-3222-45b6-b422-ff2c6a9fd247/0/3136302e31392e3136362e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.166.0/24 Signature Algorithm: sha256WithRSAEncryption b2:16:f9:76:3f:95:7f:57:77:b6:49:d7:00:e7:05:df:11:dd: c2:d1:5d:9c:dc:ef:cd:1c:84:1e:7a:8e:92:44:2f:4b:b0:4a: af:9e:1f:3a:de:84:be:ce:db:98:a3:95:a6:1e:18:07:bb:fb: 10:a9:4e:13:3e:3f:f5:a8:78:10:6b:c2:f8:2e:e5:26:ce:e2: 0d:91:af:f1:e6:fa:1f:6b:08:24:7a:39:ed:3c:5f:48:3a:11: 9c:f1:ff:92:90:82:ec:5b:13:34:f1:be:86:75:97:a2:5d:e9: c1:d8:b4:8f:ca:3c:ee:57:76:da:cc:21:7a:c4:db:dc:d9:3e: a2:6d:d2:0e:d1:06:13:ca:19:64:4d:f4:2f:5f:c9:f0:4c:17: bc:c5:ab:27:db:a1:e5:4d:6f:b5:20:1e:e0:43:bd:b2:7f:43: 01:bb:44:d5:0b:dc:39:9f:02:08:98:77:df:6f:38:4b:4c:12: 51:84:a0:26:3b:d3:8a:f0:52:db:59:63:b9:43:cc:22:05:2d: 82:b0:1c:d3:41:ac:96:cf:97:da:a5:1b:ac:77:ea:12:d6:f6: b2:eb:c2:42:a9:be:4b:13:96:19:ad:f4:5c:92:17:3e:ef:a5: dc:92:a5:72:1b:03:12:2b:9f:82:e8:50:4a:10:4a:bd:ab:b8: 5c:4f:4b:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZzqE6rIV0yMPCAkkb7i0lZYhPTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2QTdFQzNFRkNERUI0QUJGQTJBOTZBQkU5M0VDMzMx N0EwRDJFMTAeFw0yNjAzMjMwNjU3NDFaFw0yNzAzMjIwNzAyNDFaMDMxMTAvBgNV BAMTKDk3QkU5NDQ4QzY3RTZEQUFBMjNCNDNFMkJCODNDOTZBMDEzMTY1OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO86geceNEqoU2OUPklDcCHyor nWTyZzljugYrpkUSiU06wbGlZB6unC7HWqsIDW0aghCfql4J1a5FVuVHHXOMIHjp x43OUPCZWzP5OebNQo4QGxLgAkqCuXFC+w6CtiGHbPuRf+FutTsIlKs9NIqMK19T O/L/Wf7X0zxpfzLN9lGBbVjtmec2MBvFEo2WZNcQVH/fRMVM/CYHg+4aq8F40jUB oScpN5OaIkAmvSwjZLidb7+x9aYPKx1yMLQok9Zy6QHqyxQBtMiC9HXkkuScleX1 6NMfwcvWOuUQBMOuz4mND1WKxqLKkil8IG39SnvcnQ69Yj/GaxjiUaTHLPctAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl76USMZ+baqiO0Piu4PJagExZZgwHwYDVR0j BBgwFoAUVmp+w+/N60q/oqlqvpPsMxeg0uEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTgyZmNhOS0zMjIyLTQ1YjYtYjQyMi1mZjJjNmE5ZmQyNDcvMC81NjZBN0VDM0VG Q0RFQjRBQkZBMkE5NkFCRTkzRUMzMzE3QTBEMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTY2QTdFQzNFRkNERUI0QUJGQTJBOTZBQkU5M0VDMzMxN0Ew RDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1ODJmY2E5LTMyMjItNDViNi1i NDIyLWZmMmM2YTlmZDI0Ny8wLzMxMzYzMDJlMzEzOTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBOmMA0GCSqG SIb3DQEBCwUAA4IBAQCyFvl2P5V/V3e2SdcA5wXfEd3C0V2c3O/NHIQeeo6SRC9L sEqvnh863oS+ztuYo5WmHhgHu/sQqU4TPj/1qHgQa8L4LuUmzuINka/x5vofawgk ejntPF9IOhGc8f+SkILsWxM08b6GdZeiXenB2LSPyjzuV3bazCF6xNvc2T6ibdIO 0QYTyhlkTfQvX8nwTBe8xasn26HlTW+1IB7gQ72yf0MBu0TVC9w5nwIImHffbzhL TBJRhKAmO9OK8FLbWWO5Q8wiBS2CsBzTQayWz5fapRusd+oS1vay68JCqb5LE5YZ rfRckhc+76XckqVyGwMSK5+C6FBKEEq9q7hcT0vk -----END CERTIFICATE-----Generated at Thu Mar 26 17:56:56 2026 by rpki-client