$ rpki-client -vvf rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa File: 3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa (raw, json) Hash identifier: vd1S4Z6+zmIZSCdC4Qdy1PZIz8w97xUXmpTWkwwvVQE= Subject key identifier: 0B:CD:B6:AD:35:66:35:BE:68:5C:C3:E1:AA:E3:D6:32:8B:C6:42:20 Certificate issuer: /CN=73AC68F9F57E709948037DADDAC8DC88616BF980 Certificate serial: 5C65B67A4FB0DD6985CC2F166C7B3EED48D51908 Authority key identifier: 73:AC:68:F9:F5:7E:70:99:48:03:7D:AD:DA:C8:DC:88:61:6B:F9:80 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/73AC68F9F57E709948037DADDAC8DC88616BF980.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa Signing time: Sun 03 May 2026 02:18:21 +0000 ROA not before: Sun 03 May 2026 02:13:21 +0000 ROA not after: Sun 02 May 2027 02:18:21 +0000 asID: 153143 IP address blocks: 160.191.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/73AC68F9F57E709948037DADDAC8DC88616BF980.crl rsync://rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/73AC68F9F57E709948037DADDAC8DC88616BF980.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/73AC68F9F57E709948037DADDAC8DC88616BF980.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:65:b6:7a:4f:b0:dd:69:85:cc:2f:16:6c:7b:3e:ed:48:d5:19:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73AC68F9F57E709948037DADDAC8DC88616BF980 Validity Not Before: May 3 02:13:21 2026 GMT Not After : May 2 02:18:21 2027 GMT Subject: CN=0BCDB6AD356635BE685CC3E1AAE3D6328BC64220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2c:ae:7f:9d:3c:27:41:dd:7a:b1:aa:3c:b7: b9:78:4c:a2:1c:da:a0:2c:67:ca:c0:8c:6e:3c:97: 52:a2:e4:37:03:1e:0f:f9:84:be:42:b9:b5:f8:bb: 96:ad:be:e7:fb:b4:b4:4d:50:b1:e3:1d:01:cf:13: d4:0a:6a:a5:7d:92:53:d2:4e:da:c9:c1:b7:14:85: d6:3b:18:e3:fa:26:f9:a2:d2:c6:d0:57:70:db:6d: 4e:a8:57:5b:d4:2c:8b:3d:23:f0:b4:59:66:7b:21: c0:e6:f9:e5:cd:6b:b7:90:33:46:96:a8:c2:43:0f: 19:43:3a:ba:64:6a:45:96:68:ec:33:62:49:e0:44: f0:23:aa:c6:a7:ee:3f:df:3b:9c:cd:09:b1:1d:f8: ec:e8:10:c8:25:3a:6c:9f:79:0d:fd:fe:f7:e9:8d: 28:36:d8:02:8e:03:6c:ba:a6:f7:b1:59:9b:2f:69: ac:b9:58:25:53:9c:fd:4e:c5:e5:3d:99:b8:91:e2: ec:7e:b5:8d:74:97:2c:57:5b:10:e1:de:31:ce:f6: f6:bf:e4:bc:8f:9f:b5:0f:d4:8b:a0:1e:ae:01:88: 64:29:78:2a:fd:57:e2:17:aa:e1:e5:0e:5f:8a:2c: 41:a2:8e:03:cf:e1:5d:d9:08:47:ef:c9:08:1d:cd: 99:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:CD:B6:AD:35:66:35:BE:68:5C:C3:E1:AA:E3:D6:32:8B:C6:42:20 X509v3 Authority Key Identifier: keyid:73:AC:68:F9:F5:7E:70:99:48:03:7D:AD:DA:C8:DC:88:61:6B:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/73AC68F9F57E709948037DADDAC8DC88616BF980.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/73AC68F9F57E709948037DADDAC8DC88616BF980.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1e855e8a-3ff8-47ff-aaec-48d8b380a904/0/3136302e3139312e3130362e302f32332d3234203d3e20313533313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.106.0/23 Signature Algorithm: sha256WithRSAEncryption 85:98:a9:fc:15:fc:13:49:b0:51:9b:fb:9d:0d:7e:9f:17:94: f1:71:01:94:83:87:3c:81:73:6a:4d:f2:18:03:4c:73:5c:54: 26:16:d2:cb:71:1e:6c:aa:06:6a:41:af:2d:b3:e2:6a:fe:48: c3:23:86:f1:47:13:0a:96:85:a3:70:9e:29:4b:50:38:8e:b1: 91:60:e1:65:ed:af:7a:54:6a:70:6e:fa:07:c5:50:7d:ad:3d: 22:8a:df:34:66:59:a1:50:d6:65:b8:8a:cb:10:c4:f8:9c:10: 60:55:83:05:21:d8:79:58:df:f6:b9:90:4c:f5:b3:b1:91:9b: 45:3e:06:2b:b7:3d:93:12:b9:e8:18:01:d5:e8:91:0e:d3:b8: 71:95:f5:52:12:7d:79:fb:25:44:f5:36:57:7f:ad:bf:93:6c: f1:b5:38:88:05:b5:ee:86:b4:20:57:ff:eb:5f:b8:98:ac:74: fc:fe:34:cb:c5:42:f5:aa:cd:85:04:02:6a:d1:06:e9:16:61: 49:4c:d0:f1:54:41:5f:f5:b5:44:e2:67:fc:22:82:be:33:9e: f1:aa:43:5a:2d:b1:ab:93:8f:bc:bf:77:2f:d2:8c:fb:af:d0: 34:49:4e:6d:9f:67:16:54:57:49:e0:c0:49:4c:50:0a:e7:4f: 3e:2d:e4:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXGW2ek+w3WmFzC8WbHs+7UjVGQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNBQzY4RjlGNTdFNzA5OTQ4MDM3REFEREFDOERDODg2 MTZCRjk4MDAeFw0yNjA1MDMwMjEzMjFaFw0yNzA1MDIwMjE4MjFaMDMxMTAvBgNV BAMTKDBCQ0RCNkFEMzU2NjM1QkU2ODVDQzNFMUFBRTNENjMyOEJDNjQyMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtLK5/nTwnQd16sao8t7l4TKIc 2qAsZ8rAjG48l1Ki5DcDHg/5hL5CubX4u5atvuf7tLRNULHjHQHPE9QKaqV9klPS TtrJwbcUhdY7GOP6Jvmi0sbQV3DbbU6oV1vULIs9I/C0WWZ7IcDm+eXNa7eQM0aW qMJDDxlDOrpkakWWaOwzYkngRPAjqsan7j/fO5zNCbEd+OzoEMglOmyfeQ39/vfp jSg22AKOA2y6pvexWZsvaay5WCVTnP1OxeU9mbiR4ux+tY10lyxXWxDh3jHO9va/ 5LyPn7UP1IugHq4BiGQpeCr9V+IXquHlDl+KLEGijgPP4V3ZCEfvyQgdzZnFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUC822rTVmNb5oXMPhquPWMovGQiAwHwYDVR0j BBgwFoAUc6xo+fV+cJlIA32t2sjciGFr+YAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWU4NTVlOGEtM2ZmOC00N2ZmLWFhZWMtNDhkOGIzODBhOTA0LzAvNzNBQzY4RjlG NTdFNzA5OTQ4MDM3REFEREFDOERDODg2MTZCRjk4MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83M0FDNjhGOUY1N0U3MDk5NDgwMzdEQUREQUM4REM4ODYxNkJG OTgwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFlODU1ZThhLTNmZjgtNDdmZi1h YWVjLTQ4ZDhiMzgwYTkwNC8wLzMxMzYzMDJlMzEzOTMxMmUzMTMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMTM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgv2owDQYJ KoZIhvcNAQELBQADggEBAIWYqfwV/BNJsFGb+50Nfp8XlPFxAZSDhzyBc2pN8hgD THNcVCYW0stxHmyqBmpBry2z4mr+SMMjhvFHEwqWhaNwnilLUDiOsZFg4WXtr3pU anBu+gfFUH2tPSKK3zRmWaFQ1mW4issQxPicEGBVgwUh2HlY3/a5kEz1s7GRm0U+ Biu3PZMSuegYAdXokQ7TuHGV9VISfXn7JUT1Nld/rb+TbPG1OIgFte6GtCBX/+tf uJisdPz+NMvFQvWqzYUEAmrRBukWYUlM0PFUQV/1tUTiZ/wigr4znvGqQ1otsauT j7y/dy/SjPuv0DRJTm2fZxZUV0ngwElMUArnTz4t5DI= -----END CERTIFICATE-----Generated at Wed May 13 02:16:15 2026 by rpki-client