$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa File: 3136302e32322e32372e302f32342d3234203d3e20313532383036.roa (raw, json) Hash identifier: S0T+hyOCAghiRygWu6d42hM+XDbg7JBg+vTQkNSgMn4= Subject key identifier: DB:29:16:1D:11:1E:F1:63:73:F6:74:BD:1C:30:16:5D:3C:F7:E8:39 Certificate issuer: /CN=40843A77AEE521660751DBF1A013A810ECDA68CB Certificate serial: 582BFB740B5E2C3F296A6DCBECA63FD9C8544EA3 Authority key identifier: 40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa Signing time: Sun 03 May 2026 02:17:18 +0000 ROA not before: Sun 03 May 2026 02:12:18 +0000 ROA not after: Sun 02 May 2027 02:17:18 +0000 asID: 152806 IP address blocks: 160.22.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:2b:fb:74:0b:5e:2c:3f:29:6a:6d:cb:ec:a6:3f:d9:c8:54:4e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40843A77AEE521660751DBF1A013A810ECDA68CB Validity Not Before: May 3 02:12:18 2026 GMT Not After : May 2 02:17:18 2027 GMT Subject: CN=DB29161D111EF16373F674BD1C30165D3CF7E839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:f8:70:e4:bd:ee:13:7a:6d:b5:2c:41:87: 27:7a:8c:f7:a4:d5:05:6c:d3:06:33:05:30:fe:ef: 43:bc:aa:23:1d:a8:99:d3:d8:04:7f:91:cd:1c:aa: 64:04:8c:06:59:35:03:91:6a:25:29:72:0b:57:57: 5a:05:da:3f:f3:21:7d:71:83:89:44:87:52:2e:1b: 25:cd:8c:e3:fd:da:89:be:94:f6:0d:20:fa:b2:a1: 3e:8f:9c:cc:67:e9:e5:f9:37:61:49:7d:3c:b9:78: 4e:2e:49:50:2e:ce:29:8c:73:23:d1:ed:d0:e9:50: 29:cc:8e:a7:80:33:6f:71:41:29:96:dc:b3:4c:cf: 24:d1:7f:c7:d7:4c:79:60:90:cc:83:e8:1d:06:44: bc:4d:bd:df:d3:ac:ad:1a:3e:10:20:cf:3d:21:d3: f2:91:85:b0:ec:ab:57:43:0e:16:25:41:06:e9:b9: 59:3a:ef:c1:a5:b9:ca:66:89:8c:cf:3e:dd:18:0b: 2c:28:aa:59:86:98:77:83:36:cc:9a:ee:f1:37:93: 97:b5:2a:65:ff:a3:e0:1d:48:9c:ff:de:2a:0f:b7: f9:d7:cf:fb:d7:3f:41:ab:e5:23:f6:ca:eb:9d:2f: 53:b2:ec:8a:3a:bb:b7:b8:72:46:f4:13:7a:0f:03: 98:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:29:16:1D:11:1E:F1:63:73:F6:74:BD:1C:30:16:5D:3C:F7:E8:39 X509v3 Authority Key Identifier: keyid:40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/3136302e32322e32372e302f32342d3234203d3e20313532383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.27.0/24 Signature Algorithm: sha256WithRSAEncryption 27:73:f0:88:43:1b:77:58:97:d8:fe:a9:97:5c:5d:f8:3d:cf: 2b:bf:a3:cd:0e:d3:2e:3f:85:a9:c8:76:4b:ae:92:94:e1:cb: bf:a1:77:46:fd:21:5c:b8:28:04:05:1d:4b:7c:f7:71:6c:ff: 3f:f2:4b:04:07:99:89:c3:14:13:89:fa:1c:3a:d0:b7:70:b4: 58:a8:f3:94:26:e7:06:13:5c:92:49:37:f1:46:5c:c1:03:93: 39:a9:23:84:4c:81:19:c9:74:c3:ea:07:6f:64:f9:56:8d:50: c9:18:3a:92:0c:5b:1a:70:e2:ff:69:2c:87:f1:05:63:bd:62: ce:ec:d8:56:e2:ae:0d:5d:7b:09:03:52:39:4c:dc:ed:73:f0: e8:2c:76:bb:03:40:98:4b:fe:5f:98:d8:75:c3:74:ac:83:a4: 39:b8:e4:1d:91:58:03:33:71:27:49:46:ee:a1:03:92:78:48: 54:a6:29:21:cf:e9:53:c4:50:1d:d6:ff:68:09:04:3a:35:b5: e2:6d:15:b9:e2:7c:0b:2b:07:47:9c:b2:e4:4b:a0:d5:d8:83: 87:9a:d8:6f:94:62:be:59:93:c4:81:2d:31:60:6d:7f:26:a8: 35:af:22:4f:9b:4d:d4:b9:35:48:92:13:62:4d:72:e7:7b:83: 19:fd:72:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWCv7dAteLD8pam3L7KY/2chUTqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NDNBNzdBRUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBF Q0RBNjhDQjAeFw0yNjA1MDMwMjEyMThaFw0yNzA1MDIwMjE3MThaMDMxMTAvBgNV BAMTKERCMjkxNjFEMTExRUYxNjM3M0Y2NzRCRDFDMzAxNjVEM0NGN0U4MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqZfhw5L3uE3pttSxBhyd6jPek 1QVs0wYzBTD+70O8qiMdqJnT2AR/kc0cqmQEjAZZNQORaiUpcgtXV1oF2j/zIX1x g4lEh1IuGyXNjOP92om+lPYNIPqyoT6PnMxn6eX5N2FJfTy5eE4uSVAuzimMcyPR 7dDpUCnMjqeAM29xQSmW3LNMzyTRf8fXTHlgkMyD6B0GRLxNvd/TrK0aPhAgzz0h 0/KRhbDsq1dDDhYlQQbpuVk678GlucpmiYzPPt0YCywoqlmGmHeDNsya7vE3k5e1 KmX/o+AdSJz/3ioPt/nXz/vXP0Gr5SP2yuudL1Oy7Io6u7e4ckb0E3oPA5h7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2ykWHREe8WNz9nS9HDAWXTz36DkwHwYDVR0j BBgwFoAUQIQ6d67lIWYHUdvxoBOoEOzaaMswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkY2UzOTEtYTVkMy00MTFiLWE5N2ItZTg2MmZiZjU2MzFjLzAvNDA4NDNBNzdB RUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBFQ0RBNjhDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80MDg0M0E3N0FFRTUyMTY2MDc1MURCRjFBMDEzQTgxMEVDREE2 OENCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiZGNlMzkxLWE1ZDMtNDExYi1h OTdiLWU4NjJmYmY1NjMxYy8wLzMxMzYzMDJlMzIzMjJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGzANBgkqhkiG 9w0BAQsFAAOCAQEAJ3PwiEMbd1iX2P6pl1xd+D3PK7+jzQ7TLj+Fqch2S66SlOHL v6F3Rv0hXLgoBAUdS3z3cWz/P/JLBAeZicMUE4n6HDrQt3C0WKjzlCbnBhNckkk3 8UZcwQOTOakjhEyBGcl0w+oHb2T5Vo1QyRg6kgxbGnDi/2ksh/EFY71izuzYVuKu DV17CQNSOUzc7XPw6Cx2uwNAmEv+X5jYdcN0rIOkObjkHZFYAzNxJ0lG7qEDknhI VKYpIc/pU8RQHdb/aAkEOjW14m0VueJ8CysHR5yy5Eug1diDh5rYb5RivlmTxIEt MWBtfyaoNa8iT5tN1Lk1SJITYk1y53uDGf1yVw== -----END CERTIFICATE-----Generated at Wed May 13 00:13:33 2026 by rpki-client