$ rpki-client -vvf rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa File: 3136302e32322e32382e302f32332d3234203d3e20313532383031.roa (raw, json) Hash identifier: f1FXgBK/PW38aWirSx5H2UEdveWzaZdr1flS6u5hn50= Subject key identifier: 3A:23:79:C9:A3:8D:EF:E6:FE:00:18:D2:46:21:A6:56:23:F5:2E:81 Certificate issuer: /CN=921F400C4C46F802E9ABB17F291DC57058C8535E Certificate serial: 0CD7D994E742901B26A9EC0A0AB1CC4D428B3844 Authority key identifier: 92:1F:40:0C:4C:46:F8:02:E9:AB:B1:7F:29:1D:C5:70:58:C8:53:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/921F400C4C46F802E9ABB17F291DC57058C8535E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa Signing time: Sun 03 May 2026 02:12:20 +0000 ROA not before: Sun 03 May 2026 02:07:20 +0000 ROA not after: Sun 02 May 2027 02:12:20 +0000 asID: 152801 IP address blocks: 160.22.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/921F400C4C46F802E9ABB17F291DC57058C8535E.crl rsync://rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/921F400C4C46F802E9ABB17F291DC57058C8535E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/921F400C4C46F802E9ABB17F291DC57058C8535E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d7:d9:94:e7:42:90:1b:26:a9:ec:0a:0a:b1:cc:4d:42:8b:38:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921F400C4C46F802E9ABB17F291DC57058C8535E Validity Not Before: May 3 02:07:20 2026 GMT Not After : May 2 02:12:20 2027 GMT Subject: CN=3A2379C9A38DEFE6FE0018D24621A65623F52E81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:c6:90:bb:7b:6c:50:a4:d0:e6:3a:27:c3: 8d:5e:f6:04:7b:74:8f:62:a5:01:c6:f8:07:7e:9e: bc:ce:29:7f:fd:fc:08:aa:62:66:1c:52:24:db:45: 51:0f:84:8a:6b:73:f8:8e:0c:ab:a0:83:33:a2:67: 27:78:cd:0d:93:ac:43:72:4f:06:0e:04:8b:9e:16: 2a:64:93:f8:43:70:eb:24:42:d8:ad:bb:70:22:4d: ac:d9:91:d0:ba:cf:64:b6:da:b8:7f:c6:1e:c8:a0: e9:68:7a:09:0c:56:0d:d4:03:9a:cc:5e:b5:72:39: 15:58:91:fb:11:51:cb:7d:40:d7:02:62:53:43:41: 7f:e1:36:ae:9d:a6:4e:01:9f:82:60:a6:b5:35:b6: 0d:3b:95:39:df:53:9e:20:c5:7e:73:5c:62:ea:38: df:4e:29:ed:5b:87:eb:73:51:17:a9:79:16:3a:f3: d9:f8:9a:ea:ee:85:15:56:dd:47:ec:24:69:67:af: 72:8f:f1:ec:e4:4b:78:77:df:43:26:84:49:24:eb: 8e:1c:b5:ee:4e:36:6d:9a:4e:5d:a2:0f:15:4a:e1: c8:0c:08:ec:b8:e7:98:99:39:60:5d:9f:33:9a:df: 9e:9c:66:e9:97:c4:21:fa:bf:15:2e:15:d1:d0:9e: 17:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:23:79:C9:A3:8D:EF:E6:FE:00:18:D2:46:21:A6:56:23:F5:2E:81 X509v3 Authority Key Identifier: keyid:92:1F:40:0C:4C:46:F8:02:E9:AB:B1:7F:29:1D:C5:70:58:C8:53:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/921F400C4C46F802E9ABB17F291DC57058C8535E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/921F400C4C46F802E9ABB17F291DC57058C8535E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/3136302e32322e32382e302f32332d3234203d3e20313532383031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.28.0/23 Signature Algorithm: sha256WithRSAEncryption 94:33:5d:fa:b0:c4:1b:77:91:29:b1:89:b7:1a:eb:a7:b3:fe: d9:80:0f:24:80:aa:a6:ac:36:da:ec:98:8f:5e:69:57:9c:dc: 4f:ac:40:66:78:4f:0f:73:3d:0f:6c:b9:da:c3:dc:c0:92:87: 9c:e8:81:36:35:f2:ff:45:0c:98:c9:b6:df:04:3d:49:d5:ae: 5e:27:ed:11:59:85:b0:28:62:08:27:8e:e7:1c:49:8b:68:24: 23:79:50:d6:98:7e:45:ca:f5:bb:e3:c7:be:c2:5d:82:5a:bf: 05:ec:7e:6f:e0:b1:97:e7:e8:cd:35:ed:88:44:4d:11:fb:49: 01:df:e2:e4:0d:37:47:e2:0d:36:3d:32:45:8d:a2:4d:5d:7a: 8c:59:19:be:87:b2:a8:45:af:41:44:52:1d:e4:c5:09:fe:fb: ab:78:b5:fa:8b:44:39:c5:e8:cf:2f:13:27:d4:25:df:7b:8c: 00:49:37:8e:62:43:82:66:8e:f0:2f:5e:9e:4d:39:7e:69:6a: ce:5e:1d:46:a7:1c:e0:cb:fd:f0:4f:76:c4:d0:15:e8:c8:25: f2:86:f8:ed:be:d1:ea:58:ae:fc:11:13:c5:5f:74:ba:1b:1a: d0:d8:f7:3a:2e:1c:48:b4:f5:75:f7:f6:8a:ec:43:f4:28:79: 0d:c1:a9:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDNfZlOdCkBsmqewKCrHMTUKLOEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIxRjQwMEM0QzQ2RjgwMkU5QUJCMTdGMjkxREM1NzA1 OEM4NTM1RTAeFw0yNjA1MDMwMjA3MjBaFw0yNzA1MDIwMjEyMjBaMDMxMTAvBgNV BAMTKDNBMjM3OUM5QTM4REVGRTZGRTAwMThEMjQ2MjFBNjU2MjNGNTJFODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLcMaQu3tsUKTQ5jonw41e9gR7 dI9ipQHG+Ad+nrzOKX/9/AiqYmYcUiTbRVEPhIprc/iODKuggzOiZyd4zQ2TrENy TwYOBIueFipkk/hDcOskQtitu3AiTazZkdC6z2S22rh/xh7IoOloegkMVg3UA5rM XrVyORVYkfsRUct9QNcCYlNDQX/hNq6dpk4Bn4JgprU1tg07lTnfU54gxX5zXGLq ON9OKe1bh+tzURepeRY689n4muruhRVW3UfsJGlnr3KP8ezkS3h330MmhEkk644c te5ONm2aTl2iDxVK4cgMCOy455iZOWBdnzOa356cZumXxCH6vxUuFdHQnhdrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOiN5yaON7+b+ABjSRiGmViP1LoEwHwYDVR0j BBgwFoAUkh9ADExG+ALpq7F/KR3FcFjIU14wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDkxNDJjODItYjA0My00NmViLWIwYTEtOGUxNWZkNWRhYTc5LzAvOTIxRjQwMEM0 QzQ2RjgwMkU5QUJCMTdGMjkxREM1NzA1OEM4NTM1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC85MjFGNDAwQzRDNDZGODAyRTlBQkIxN0YyOTFEQzU3MDU4Qzg1 MzVFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA5MTQyYzgyLWIwNDMtNDZlYi1i MGExLThlMTVmZDVkYWE3OS8wLzMxMzYzMDJlMzIzMjJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWHDANBgkqhkiG 9w0BAQsFAAOCAQEAlDNd+rDEG3eRKbGJtxrrp7P+2YAPJICqpqw22uyYj15pV5zc T6xAZnhPD3M9D2y52sPcwJKHnOiBNjXy/0UMmMm23wQ9SdWuXiftEVmFsChiCCeO 5xxJi2gkI3lQ1ph+Rcr1u+PHvsJdglq/Bex+b+Cxl+fozTXtiERNEftJAd/i5A03 R+INNj0yRY2iTV16jFkZvoeyqEWvQURSHeTFCf77q3i1+otEOcXozy8TJ9Ql33uM AEk3jmJDgmaO8C9enk05fmlqzl4dRqcc4Mv98E92xNAV6Mgl8ob47b7R6liu/BET xV90uhsa0Nj3Oi4cSLT1dff2iuxD9Ch5DcGpbA== -----END CERTIFICATE-----Generated at Wed May 13 03:58:50 2026 by rpki-client