$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32362e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: UjtgXUBXiX2ZPtfdD6mcZP4pu2sdT+yFrlQ9rDupqgk= Subject key identifier: DE:FB:D7:16:5F:D0:AF:C3:7D:53:80:19:32:41:BE:C3:0D:AF:9E:A2 Certificate issuer: /CN=40843A77AEE521660751DBF1A013A810ECDA68CB Certificate serial: 194AB865514D4627E7CBAC34B0E451943328BEC3 Authority key identifier: 40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa Signing time: Sun 03 May 2026 02:17:18 +0000 ROA not before: Sun 03 May 2026 02:12:18 +0000 ROA not after: Sun 02 May 2027 02:17:18 +0000 asID: 152806 IP address blocks: 160.22.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:4a:b8:65:51:4d:46:27:e7:cb:ac:34:b0:e4:51:94:33:28:be:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40843A77AEE521660751DBF1A013A810ECDA68CB Validity Not Before: May 3 02:12:18 2026 GMT Not After : May 2 02:17:18 2027 GMT Subject: CN=DEFBD7165FD0AFC37D5380193241BEC30DAF9EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dc:11:6b:79:8b:2d:5d:fa:dd:51:20:5d:b2: e0:ca:75:61:e5:f9:69:a2:6e:46:6c:89:23:e3:2e: 32:2a:f3:ff:15:a0:92:e8:e1:27:2e:e7:ed:83:e6: e2:80:8d:34:92:b3:b4:33:99:47:cb:9b:c3:74:9e: 94:13:9e:4c:91:db:49:fe:95:d4:c1:61:dc:f1:93: d8:62:62:1c:a8:43:b9:51:8b:ba:22:3a:32:88:22: da:48:29:90:3c:1d:43:f5:68:0e:76:df:31:c0:9f: 24:96:53:a7:6f:61:0f:da:30:fd:14:4e:74:00:6a: 9d:66:a1:b8:f9:98:fc:41:df:17:d0:6b:31:a4:c1: d7:b0:5f:c8:29:18:34:38:d5:14:ce:57:fd:28:da: 97:18:e9:20:38:a4:10:49:29:3e:47:93:6c:ec:a1: aa:fc:68:43:63:c6:9e:cb:da:ed:03:ca:c3:45:d0: 65:1b:3f:5d:3e:4e:48:20:c3:1d:ab:a8:4b:62:a1: 4b:d1:b6:7d:13:b4:b4:e8:8a:5c:91:7e:e6:17:af: c6:5a:c1:e0:ae:3c:87:65:70:93:71:50:7c:9b:3d: ff:eb:6a:6a:78:11:2d:a0:ff:0f:cb:f0:b3:37:68: 87:8a:f7:fe:df:bc:90:dd:f3:d8:57:92:c3:b9:3a: f2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FB:D7:16:5F:D0:AF:C3:7D:53:80:19:32:41:BE:C3:0D:AF:9E:A2 X509v3 Authority Key Identifier: keyid:40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32362e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.26.0/24 Signature Algorithm: sha256WithRSAEncryption 24:b7:0f:0c:56:db:55:d3:3b:d8:b8:d9:c6:18:fb:77:bb:9e: 1e:e9:84:25:04:bd:a9:cd:7c:35:db:fb:5d:f1:2b:bf:00:3b: 11:9a:e7:f0:c6:d9:c8:3b:de:fa:87:fb:ed:4c:8e:36:40:24: 3b:14:39:a4:a5:08:77:81:66:ca:25:19:c1:d5:f2:9b:4b:13: e8:95:fc:62:8a:04:94:7b:71:a2:0f:75:9b:51:72:21:50:e1: 18:33:a9:3b:72:49:d2:4a:b7:ba:ce:45:06:36:6b:b1:1b:14: bb:51:f9:19:36:94:c8:fe:ac:0f:27:c6:d7:0e:77:e5:f8:ce: 9e:8e:03:70:d7:ce:7f:90:2a:49:0e:0d:92:fe:de:36:4a:4b: 27:cc:e6:26:bc:1b:41:d2:2e:93:0e:51:c4:fb:a6:f9:77:b6: fd:4c:e2:25:a4:c5:74:fc:ef:3a:cd:27:65:d3:ea:4b:f7:e4: 89:b8:ac:d8:54:c0:8b:d6:33:d5:ff:98:a5:e6:82:9f:cb:76: 43:ae:a4:f8:20:10:02:82:63:fc:0d:19:5c:7e:59:9d:41:9c: 73:dc:43:d1:50:d2:13:17:55:bb:3e:0b:d9:72:df:84:5e:09: 02:5e:a5:57:a5:8c:08:30:1d:cd:0d:80:90:b8:9d:15:5d:5c: 8f:72:c7:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGUq4ZVFNRifny6w0sORRlDMovsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NDNBNzdBRUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBF Q0RBNjhDQjAeFw0yNjA1MDMwMjEyMThaFw0yNzA1MDIwMjE3MThaMDMxMTAvBgNV BAMTKERFRkJENzE2NUZEMEFGQzM3RDUzODAxOTMyNDFCRUMzMERBRjlFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg3BFreYstXfrdUSBdsuDKdWHl +WmibkZsiSPjLjIq8/8VoJLo4Scu5+2D5uKAjTSSs7QzmUfLm8N0npQTnkyR20n+ ldTBYdzxk9hiYhyoQ7lRi7oiOjKIItpIKZA8HUP1aA523zHAnySWU6dvYQ/aMP0U TnQAap1mobj5mPxB3xfQazGkwdewX8gpGDQ41RTOV/0o2pcY6SA4pBBJKT5Hk2zs oar8aENjxp7L2u0DysNF0GUbP10+Tkggwx2rqEtioUvRtn0TtLToilyRfuYXr8Za weCuPIdlcJNxUHybPf/ramp4ES2g/w/L8LM3aIeK9/7fvJDd89hXksO5OvJbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3vvXFl/Qr8N9U4AZMkG+ww2vnqIwHwYDVR0j BBgwFoAUQIQ6d67lIWYHUdvxoBOoEOzaaMswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkY2UzOTEtYTVkMy00MTFiLWE5N2ItZTg2MmZiZjU2MzFjLzAvNDA4NDNBNzdB RUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBFQ0RBNjhDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80MDg0M0E3N0FFRTUyMTY2MDc1MURCRjFBMDEzQTgxMEVDREE2 OENCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGjANBgkqhkiG 9w0BAQsFAAOCAQEAJLcPDFbbVdM72LjZxhj7d7ueHumEJQS9qc18Ndv7XfErvwA7 EZrn8MbZyDve+of77UyONkAkOxQ5pKUId4FmyiUZwdXym0sT6JX8YooElHtxog91 m1FyIVDhGDOpO3JJ0kq3us5FBjZrsRsUu1H5GTaUyP6sDyfG1w535fjOno4DcNfO f5AqSQ4Nkv7eNkpLJ8zmJrwbQdIukw5RxPum+Xe2/UziJaTFdPzvOs0nZdPqS/fk ibis2FTAi9Yz1f+YpeaCn8t2Q66k+CAQAoJj/A0ZXH5ZnUGcc9xD0VDSExdVuz4L 2XLfhF4JAl6lV6WMCDAdzQ2AkLidFV1cj3LHAA== -----END CERTIFICATE-----Generated at Wed May 13 01:40:53 2026 by rpki-client