$ rpki-client -vvf rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json) Hash identifier: 3UOM8UDtVFC5aJl4SyODxeYJx4Ly/eZGmLZa4XYvNvA= Subject key identifier: 37:B7:8E:E3:87:58:0A:BE:6B:B0:33:3D:5D:53:F4:F5:86:D3:CD:54 Certificate issuer: /CN=A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F Certificate serial: 5121E0C9128555129FA456796B78028ABE829E98 Authority key identifier: A4:EA:D1:0A:EF:C1:61:57:43:BF:0E:F5:F6:AB:C8:3C:07:A2:E1:7F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa Signing time: Sun 03 May 2026 02:10:20 +0000 ROA not before: Sun 03 May 2026 02:05:20 +0000 ROA not after: Sun 02 May 2027 02:10:20 +0000 asID: 153091 IP address blocks: 160.25.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.crl rsync://rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:21:e0:c9:12:85:55:12:9f:a4:56:79:6b:78:02:8a:be:82:9e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F Validity Not Before: May 3 02:05:20 2026 GMT Not After : May 2 02:10:20 2027 GMT Subject: CN=37B78EE387580ABE6BB0333D5D53F4F586D3CD54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:79:08:45:16:5f:96:71:67:1e:07:2e:03:e9: d5:9a:af:ac:bf:c5:21:97:ce:0f:40:42:04:5d:a8: 48:c4:05:1b:73:8a:78:68:4c:c3:da:7f:39:a9:ba: c1:1e:ed:ca:84:ca:63:c1:99:13:4c:a2:3b:4b:ef: 51:87:11:f0:77:06:04:f6:80:d2:d1:42:0c:2a:50: 31:88:ba:14:04:9c:05:15:1f:f1:58:cd:23:c0:e7: 49:13:dc:a0:13:a1:78:2f:7a:40:f5:64:1b:ac:91: f2:3f:b3:cb:b5:6e:b7:0e:62:6d:4b:df:00:f8:f1: 85:c1:6b:42:88:cd:84:ea:c6:aa:6a:be:79:3b:fd: 22:17:3c:b4:60:00:6e:8d:a3:ff:32:fb:b4:29:28: 80:39:56:cc:a1:c4:55:a2:5c:8a:03:6a:71:14:31: 0b:25:e2:88:3f:c8:a6:ed:1e:eb:14:6b:eb:e9:f9: 12:87:ed:28:50:1e:66:56:99:23:7a:6d:94:73:8a: d4:ca:65:bd:a8:2b:87:29:6e:ac:1f:38:3c:b1:b2: 8d:40:d8:94:3a:af:62:de:39:a5:c9:a2:00:a5:30: 98:96:65:16:17:1f:cd:92:cb:f6:b9:e8:9d:6a:6b: f1:a1:22:04:2c:94:5d:8f:de:be:9e:a5:3c:02:2c: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B7:8E:E3:87:58:0A:BE:6B:B0:33:3D:5D:53:F4:F5:86:D3:CD:54 X509v3 Authority Key Identifier: keyid:A4:EA:D1:0A:EF:C1:61:57:43:BF:0E:F5:F6:AB:C8:3C:07:A2:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A4EAD10AEFC1615743BF0EF5F6ABC83C07A2E17F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0279ee9c-ad2b-4bed-8641-23bf2d3b16db/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.248.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:10:a8:e2:ca:66:b5:15:b1:9f:99:2f:ea:bf:bd:e2:4d:03: 64:5a:9f:69:81:9b:c7:8d:16:fe:30:c0:4f:f8:28:7e:99:df: b6:1d:10:ca:e9:ca:7d:8f:fb:0f:30:ad:3f:1c:68:d4:12:0d: c3:60:8d:56:75:75:01:ae:7e:6f:9a:51:99:c1:44:21:62:91: 09:ed:b1:ce:e0:5e:2e:f4:4c:63:50:3a:5a:51:9c:e9:0a:59: 24:7b:2b:8f:fc:13:61:d8:cf:82:df:8c:ca:2e:22:84:6b:7f: 95:62:a5:8e:e9:97:4d:5f:89:94:ca:e7:6f:0d:86:66:af:d1: 0a:a9:75:cc:9e:d5:2a:33:81:61:21:a6:a6:6d:09:18:05:ea: 2e:2a:7d:c5:62:c4:dd:dd:29:9e:e7:b2:e2:be:05:68:e7:e4: 07:38:99:fd:54:a8:98:7a:6f:92:9f:f9:c5:03:31:1b:39:c9: 15:9e:2e:bb:ea:68:f0:e2:bb:1a:73:20:76:d9:a1:b7:d2:c7: 6b:96:f6:44:72:d9:67:ca:45:4e:9f:0f:5d:d8:e0:6a:b5:90: 29:02:9b:bd:66:15:ac:02:e3:dd:3b:81:20:53:5a:77:f3:85: 04:87:ee:ff:e3:23:e0:a3:09:cc:91:1e:40:7b:6d:48:45:34: ea:45:73:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUSHgyRKFVRKfpFZ5a3gCir6CnpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRFQUQxMEFFRkMxNjE1NzQzQkYwRUY1RjZBQkM4M0Mw N0EyRTE3RjAeFw0yNjA1MDMwMjA1MjBaFw0yNzA1MDIwMjEwMjBaMDMxMTAvBgNV BAMTKDM3Qjc4RUUzODc1ODBBQkU2QkIwMzMzRDVENTNGNEY1ODZEM0NENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfeQhFFl+WcWceBy4D6dWar6y/ xSGXzg9AQgRdqEjEBRtzinhoTMPafzmpusEe7cqEymPBmRNMojtL71GHEfB3BgT2 gNLRQgwqUDGIuhQEnAUVH/FYzSPA50kT3KAToXgvekD1ZBuskfI/s8u1brcOYm1L 3wD48YXBa0KIzYTqxqpqvnk7/SIXPLRgAG6No/8y+7QpKIA5VsyhxFWiXIoDanEU MQsl4og/yKbtHusUa+vp+RKH7ShQHmZWmSN6bZRzitTKZb2oK4cpbqwfODyxso1A 2JQ6r2LeOaXJogClMJiWZRYXH82Sy/a56J1qa/GhIgQslF2P3r6epTwCLPqfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN7eO44dYCr5rsDM9XVP09YbTzVQwHwYDVR0j BBgwFoAUpOrRCu/BYVdDvw719qvIPAei4X8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDI3OWVlOWMtYWQyYi00YmVkLTg2NDEtMjNiZjJkM2IxNmRiLzAvQTRFQUQxMEFF RkMxNjE1NzQzQkYwRUY1RjZBQkM4M0MwN0EyRTE3Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BNEVBRDEwQUVGQzE2MTU3NDNCRjBFRjVGNkFCQzgzQzA3QTJF MTdGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzAyNzllZTljLWFkMmItNGJlZC04 NjQxLTIzYmYyZDNiMTZkYi8wLzMxMzYzMDJlMzIzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn4MA0GCSqG SIb3DQEBCwUAA4IBAQB6EKjiyma1FbGfmS/qv73iTQNkWp9pgZvHjRb+MMBP+Ch+ md+2HRDK6cp9j/sPMK0/HGjUEg3DYI1WdXUBrn5vmlGZwUQhYpEJ7bHO4F4u9Exj UDpaUZzpClkkeyuP/BNh2M+C34zKLiKEa3+VYqWO6ZdNX4mUyudvDYZmr9EKqXXM ntUqM4FhIaambQkYBeouKn3FYsTd3Sme57LivgVo5+QHOJn9VKiYem+Sn/nFAzEb OckVni676mjw4rsacyB22aG30sdrlvZEctlnykVOnw9d2OBqtZApApu9ZhWsAuPd O4EgU1p384UEh+7/4yPgownMkR5Ae21IRTTqRXNL -----END CERTIFICATE-----Generated at Wed May 13 07:45:15 2026 by rpki-client