$ rpki-client -vvf rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa File: 3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa (raw, json) Hash identifier: oPEV3GoG11/9kafNNq98qHKy4plDR+S9as/d1BUxyc8= Subject key identifier: A4:0C:07:EB:C7:77:98:1D:84:9B:F0:AB:9C:00:6C:D8:2E:B1:70:BD Certificate issuer: /CN=13E54012E6F655E86F06520A89313738550A03EF Certificate serial: 6D41EA14DA8911ABCD18BAAEB596C37074A6E14C Authority key identifier: 13:E5:40:12:E6:F6:55:E8:6F:06:52:0A:89:31:37:38:55:0A:03:EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/13E54012E6F655E86F06520A89313738550A03EF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa Signing time: Sun 03 May 2026 02:14:21 +0000 ROA not before: Sun 03 May 2026 02:09:21 +0000 ROA not after: Sun 02 May 2027 02:14:21 +0000 asID: 152768 IP address blocks: 160.19.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/13E54012E6F655E86F06520A89313738550A03EF.crl rsync://rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/13E54012E6F655E86F06520A89313738550A03EF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/13E54012E6F655E86F06520A89313738550A03EF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:41:ea:14:da:89:11:ab:cd:18:ba:ae:b5:96:c3:70:74:a6:e1:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13E54012E6F655E86F06520A89313738550A03EF Validity Not Before: May 3 02:09:21 2026 GMT Not After : May 2 02:14:21 2027 GMT Subject: CN=A40C07EBC777981D849BF0AB9C006CD82EB170BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:16:be:ec:10:79:8a:ca:4e:73:b7:d6:ab: b1:71:8f:c3:6e:72:82:f5:2c:00:07:0c:63:5a:6f: 09:c6:95:d0:93:51:7a:f1:5c:88:95:d8:b7:29:30: 31:ea:c6:74:0f:42:6c:c6:be:46:7b:79:66:74:a0: 66:35:3e:ac:f9:23:9d:d6:a6:a1:be:e1:10:e2:eb: 45:39:0d:70:18:e3:4b:07:94:6f:13:e3:6e:e7:37: d1:db:f7:81:ab:96:0d:4d:fe:e2:f5:31:9a:14:bd: 7d:e2:96:8e:5b:88:88:bf:76:38:14:a6:1e:6a:ff: ca:3b:e3:a3:31:4a:44:cc:69:7f:11:7d:31:5a:35: d5:6c:7f:f4:d0:be:c9:8d:71:af:e7:3f:14:a3:01: ea:5c:f0:f8:4c:52:58:85:fc:71:b8:f0:72:bf:0a: 1c:5c:1a:00:d5:48:af:0f:3f:d2:97:7a:cd:66:cc: 02:27:60:3d:8b:91:54:05:4b:62:0f:e2:27:96:1c: e5:8b:83:22:d6:17:86:a4:43:fb:aa:e2:59:cc:c9: dd:4b:ad:94:81:61:bc:67:cd:88:a5:43:1e:8b:27: 50:a3:e0:91:b7:15:cb:ee:1f:18:35:d3:9c:f1:c8: e2:79:67:79:f3:ad:ad:25:ea:7d:89:66:07:83:5a: 7a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0C:07:EB:C7:77:98:1D:84:9B:F0:AB:9C:00:6C:D8:2E:B1:70:BD X509v3 Authority Key Identifier: keyid:13:E5:40:12:E6:F6:55:E8:6F:06:52:0A:89:31:37:38:55:0A:03:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/13E54012E6F655E86F06520A89313738550A03EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/13E54012E6F655E86F06520A89313738550A03EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/12f808a4-9db3-4698-a07b-4769dce18ec7/0/3136302e31392e3135362e302f32332d3233203d3e20313532373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.156.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:35:d8:82:9c:9e:45:3b:89:8c:89:39:02:cf:37:38:77:9c: b1:e8:11:df:00:fa:49:a8:16:1d:95:f0:e3:10:bd:7d:b5:3f: 79:c0:a6:d5:97:57:0d:e1:f6:a7:4d:b7:c0:72:ab:4c:05:63: b1:54:bc:0b:24:3a:e8:2c:4c:5b:a2:3b:c6:52:4e:5c:70:65: e9:54:8f:83:8c:31:58:33:25:2d:e9:a0:4a:31:59:2e:66:e8: 0b:d4:94:bd:a0:3c:26:ff:9e:79:45:0f:26:0a:71:52:6c:a4: 44:a4:e7:8c:82:31:6f:2a:6f:04:1d:ca:0f:b5:03:d1:2b:7f: 03:a8:36:1d:97:96:1d:27:25:76:3f:4c:12:53:a2:73:47:10: b3:54:3b:d5:ec:a2:46:f9:8a:d2:a4:c2:70:00:dc:8f:8d:3c: 53:35:dc:55:0b:7c:ab:44:56:90:49:f6:79:85:bb:92:16:8d: fc:df:7c:f9:21:53:da:22:06:a3:b8:38:b7:81:e3:b5:d7:50: 00:46:87:10:12:1f:f7:d3:e0:c4:65:08:30:b4:d7:99:5b:d9: 34:ca:32:63:90:ce:08:0e:0e:2a:d1:a0:5c:1a:4c:58:f4:c7: 9a:a2:b5:cb:6e:f9:42:1f:27:94:cc:0c:35:e5:a4:c3:1c:71: 75:3b:d9:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbUHqFNqJEavNGLqutZbDcHSm4UwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTNFNTQwMTJFNkY2NTVFODZGMDY1MjBBODkzMTM3Mzg1 NTBBMDNFRjAeFw0yNjA1MDMwMjA5MjFaFw0yNzA1MDIwMjE0MjFaMDMxMTAvBgNV BAMTKEE0MEMwN0VCQzc3Nzk4MUQ4NDlCRjBBQjlDMDA2Q0Q4MkVCMTcwQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6kxa+7BB5ispOc7fWq7Fxj8Nu coL1LAAHDGNabwnGldCTUXrxXIiV2LcpMDHqxnQPQmzGvkZ7eWZ0oGY1Pqz5I53W pqG+4RDi60U5DXAY40sHlG8T427nN9Hb94Grlg1N/uL1MZoUvX3ilo5biIi/djgU ph5q/8o746MxSkTMaX8RfTFaNdVsf/TQvsmNca/nPxSjAepc8PhMUliF/HG48HK/ ChxcGgDVSK8PP9KXes1mzAInYD2LkVQFS2IP4ieWHOWLgyLWF4akQ/uq4lnMyd1L rZSBYbxnzYilQx6LJ1Cj4JG3FcvuHxg105zxyOJ5Z3nzra0l6n2JZgeDWnpVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpAwH68d3mB2Em/CrnABs2C6xcL0wHwYDVR0j BBgwFoAUE+VAEub2VehvBlIKiTE3OFUKA+8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTJmODA4YTQtOWRiMy00Njk4LWEwN2ItNDc2OWRjZTE4ZWM3LzAvMTNFNTQwMTJF NkY2NTVFODZGMDY1MjBBODkzMTM3Mzg1NTBBMDNFRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8xM0U1NDAxMkU2RjY1NUU4NkYwNjUyMEE4OTMxMzczODU1MEEw M0VGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzEyZjgwOGE0LTlkYjMtNDY5OC1h MDdiLTQ3NjlkY2UxOGVjNy8wLzMxMzYzMDJlMzEzOTJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBOcMA0GCSqG SIb3DQEBCwUAA4IBAQAeNdiCnJ5FO4mMiTkCzzc4d5yx6BHfAPpJqBYdlfDjEL19 tT95wKbVl1cN4fanTbfAcqtMBWOxVLwLJDroLExbojvGUk5ccGXpVI+DjDFYMyUt 6aBKMVkuZugL1JS9oDwm/555RQ8mCnFSbKREpOeMgjFvKm8EHcoPtQPRK38DqDYd l5YdJyV2P0wSU6JzRxCzVDvV7KJG+YrSpMJwANyPjTxTNdxVC3yrRFaQSfZ5hbuS Fo3833z5IVPaIgajuDi3geO111AARocQEh/30+DEZQgwtNeZW9k0yjJjkM4IDg4q 0aBcGkxY9MeaorXLbvlCHyeUzAw15aTDHHF1O9kf -----END CERTIFICATE-----Generated at Wed May 13 06:08:14 2026 by rpki-client