$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: bSChIDo0CglmTqFSV6p630tLNxr15ZtjkZahOcEGfmY= Subject key identifier: 84:72:22:D5:BB:93:EE:91:EE:2E:AE:D6:F2:B0:BE:FF:B8:9E:75:D9 Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 21738EA8719A5ADD055F6D143067483D7D0C7275 Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Sun 22 Mar 2026 05:00:03 +0000 ROA not before: Sun 22 Mar 2026 04:55:03 +0000 ROA not after: Sun 21 Mar 2027 05:00:03 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 23:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:73:8e:a8:71:9a:5a:dd:05:5f:6d:14:30:67:48:3d:7d:0c:72:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: Mar 22 04:55:03 2026 GMT Not After : Mar 21 05:00:03 2027 GMT Subject: CN=847222D5BB93EE91EE2EAED6F2B0BEFFB89E75D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b9:d4:d0:1c:7c:52:22:11:4c:3f:79:7f:ef: c4:64:a5:57:b5:67:8a:79:9e:fb:89:b5:77:de:ff: 2c:bf:59:5a:09:e1:c7:7d:d8:08:99:b8:f5:5f:61: 9c:b8:cb:6a:e4:8a:8a:9f:4c:77:d3:09:f1:3c:57: 24:cf:27:9e:f1:be:c5:9f:61:32:22:22:fd:a0:ee: af:b2:ea:92:39:85:8f:96:81:65:c2:1c:eb:e6:c0: 64:76:37:e5:71:c6:b7:50:ca:47:b5:e9:18:2d:06: 96:de:53:6b:9f:7f:93:1c:59:f6:b1:44:4e:cf:e3: 5d:88:9a:40:30:1c:6e:a1:0b:33:51:41:12:08:c1: 30:a4:c0:f8:6f:55:17:ec:f4:02:c8:d7:0b:12:e2: da:4a:fa:13:eb:d4:39:e7:43:1c:70:db:16:09:f5: 1e:c0:a9:2d:2f:5c:b9:ee:b6:2b:43:04:d8:cc:84: de:13:9d:0b:0c:44:7a:70:53:96:b0:b9:58:06:56: ca:2f:be:a0:b7:2d:15:3b:2b:97:04:a9:cf:a0:6f: 86:1e:05:af:64:93:55:76:b9:b3:21:41:27:3d:e9: fb:ee:dd:00:ed:e3:83:dc:24:58:03:42:83:6d:fd: 00:54:03:ba:64:cc:8e:fe:ef:2d:f0:e7:72:55:15: 71:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:72:22:D5:BB:93:EE:91:EE:2E:AE:D6:F2:B0:BE:FF:B8:9E:75:D9 X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:01:b3:da:30:80:17:7d:63:1c:76:3e:66:cc:e2:23:3d:a4: 6f:cd:8f:d7:a5:27:80:0a:3f:01:04:b1:9c:ad:43:c2:3a:98: 08:0e:c8:bb:1e:4f:1d:6f:2b:e7:73:fe:28:7f:0a:6a:51:bc: 53:7c:13:78:56:48:c3:79:c8:53:9e:92:50:44:13:5e:38:81: 13:ca:05:82:99:b5:cc:80:3e:76:ff:9e:89:a5:62:e6:49:9f: 05:b7:94:3f:6b:79:47:34:7b:cf:05:4b:b4:3c:a3:40:82:0d: 1c:14:06:4a:b9:34:58:d8:ca:21:52:01:a4:6d:ea:9a:b7:bd: c0:4e:72:9f:7f:4d:21:c1:72:2e:60:b1:21:bf:a1:60:20:a6: 37:1c:98:ed:5d:09:fe:41:e5:91:2d:43:37:c2:31:28:96:37: 18:16:6f:bd:62:b7:56:d6:bb:87:b7:2a:4e:4e:2d:88:e7:75: a3:40:e8:a6:2f:ea:ba:bb:88:e6:6f:4c:7a:a1:3a:70:8f:bd: 67:18:ca:0b:23:67:15:93:54:f2:ca:cf:6b:4e:c6:e6:57:8b: bd:22:ed:f8:35:8c:a0:e5:67:15:b7:a7:1f:12:98:63:74:26: 0f:c4:dc:39:7f:e9:61:3c:dc:6e:63:a2:1c:d7:50:a9:0a:f6: 76:9b:00:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIXOOqHGaWt0FX20UMGdIPX0McnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNjAzMjIwNDU1MDNaFw0yNzAzMjEwNTAwMDNaMDMxMTAvBgNV BAMTKDg0NzIyMkQ1QkI5M0VFOTFFRTJFQUVENkYyQjBCRUZGQjg5RTc1RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuudTQHHxSIhFMP3l/78RkpVe1 Z4p5nvuJtXfe/yy/WVoJ4cd92AiZuPVfYZy4y2rkioqfTHfTCfE8VyTPJ57xvsWf YTIiIv2g7q+y6pI5hY+WgWXCHOvmwGR2N+VxxrdQyke16RgtBpbeU2uff5McWfax RE7P412ImkAwHG6hCzNRQRIIwTCkwPhvVRfs9ALI1wsS4tpK+hPr1DnnQxxw2xYJ 9R7AqS0vXLnutitDBNjMhN4TnQsMRHpwU5awuVgGVsovvqC3LRU7K5cEqc+gb4Ye Ba9kk1V2ubMhQSc96fvu3QDt44PcJFgDQoNt/QBUA7pkzI7+7y3w53JVFXF3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhHIi1buT7pHuLq7W8rC+/7ieddkwHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEAPQGz2jCAF31jHHY+ZsziIz2kb82P16UngAo/AQSxnK1DwjqY CA7Iux5PHW8r53P+KH8KalG8U3wTeFZIw3nIU56SUEQTXjiBE8oFgpm1zIA+dv+e iaVi5kmfBbeUP2t5RzR7zwVLtDyjQIINHBQGSrk0WNjKIVIBpG3qmre9wE5yn39N IcFyLmCxIb+hYCCmNxyY7V0J/kHlkS1DN8IxKJY3GBZvvWK3Vta7h7cqTk4tiOd1 o0Dopi/quruI5m9MeqE6cI+9ZxjKCyNnFZNU8srPa07G5leLvSLt+DWMoOVnFben HxKYY3QmD8TcOX/pYTzcbmOiHNdQqQr2dpsAsQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:43:52 2026 by rpki-client