$ rpki-client -vvf rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa File: 3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa (raw, json) Hash identifier: JFK4m68zG0lJAd7+KDHHharwdbO7qzWlnuoWt7ljQFI= Subject key identifier: CE:3C:67:96:BB:1A:C8:A8:7F:87:11:0E:83:E8:C7:2B:84:9D:64:BE Certificate issuer: /CN=D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3 Certificate serial: 228C09666434BB89469815829DC1C4FDB56F07C5 Authority key identifier: D8:BF:75:90:C4:0D:E7:31:6F:52:A1:DE:E7:CE:7B:ED:A4:30:82:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa Signing time: Sun 03 May 2026 02:19:05 +0000 ROA not before: Sun 03 May 2026 02:14:05 +0000 ROA not after: Sun 02 May 2027 02:19:05 +0000 asID: 153129 IP address blocks: 160.191.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.crl rsync://rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:8c:09:66:64:34:bb:89:46:98:15:82:9d:c1:c4:fd:b5:6f:07:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3 Validity Not Before: May 3 02:14:05 2026 GMT Not After : May 2 02:19:05 2027 GMT Subject: CN=CE3C6796BB1AC8A87F87110E83E8C72B849D64BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:30:99:28:4f:35:9b:c0:51:52:e1:5c:07: 1a:05:2c:4f:67:bf:ae:df:07:4f:9a:7c:72:26:aa: 53:ec:3d:45:47:0c:ea:1f:47:69:da:3c:0a:75:54: 50:e1:ec:6d:0b:1a:e2:c6:c1:13:87:58:a7:13:b5: 11:5a:5c:e1:05:67:3f:e8:39:f0:34:70:40:96:54: 5d:12:3f:8b:37:59:fb:ff:e6:89:83:81:58:87:a1: 81:bc:40:38:ff:79:c1:ab:3e:a4:85:a1:f8:a2:57: 1d:ab:6a:0c:15:b1:8d:bc:30:a8:29:db:71:2c:c8: 63:41:1b:fa:89:21:0b:0e:0d:a5:23:2d:ad:af:e3: 04:cb:51:6e:45:c9:4c:6d:0f:43:ab:57:49:86:2f: 2d:c4:f9:fe:c6:fc:0e:fc:0f:51:e0:12:de:ae:83: 74:0c:7d:14:03:00:04:11:bd:fd:f9:5f:93:05:52: ee:fd:a7:94:30:86:f3:1b:8b:de:f3:34:59:6c:6a: b2:ec:61:9e:24:18:d2:cb:3a:f7:80:83:71:31:9f: ba:86:07:10:9f:ec:86:0f:31:9f:1b:fe:db:ab:88: 65:77:25:80:ff:08:70:63:74:83:d5:83:49:c7:d6: 14:5d:ad:fc:f2:68:fa:ab:e2:6c:eb:3a:3b:f3:9e: 40:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3C:67:96:BB:1A:C8:A8:7F:87:11:0E:83:E8:C7:2B:84:9D:64:BE X509v3 Authority Key Identifier: keyid:D8:BF:75:90:C4:0D:E7:31:6F:52:A1:DE:E7:CE:7B:ED:A4:30:82:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D8BF7590C40DE7316F52A1DEE7CE7BEDA43082C3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/0/3136302e3139312e32362e302f32332d3234203d3e20313533313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.26.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:72:9c:4f:b4:b0:8a:8b:ee:00:d6:fb:b0:a0:df:49:f0:65: 1e:e5:6c:b7:b4:c6:e9:d7:c7:b1:01:80:40:56:26:d0:b3:51: 2c:7e:61:f6:65:59:d0:53:7c:bd:14:8a:31:62:44:2c:69:3a: 16:70:49:05:24:8e:1b:c1:d9:d3:98:8f:c4:03:12:17:ac:51: 2e:b8:7f:09:e1:ab:6c:a2:48:ee:21:17:bc:67:8d:ba:e4:e5: c8:36:89:f5:20:bc:9b:a9:64:85:60:f2:a2:cf:29:9f:c4:7c: f4:91:11:f6:6e:4e:6b:82:92:b6:6b:ab:ed:4a:dd:b9:ab:4e: c2:63:e1:15:64:91:57:01:b9:be:4a:f4:20:28:a8:78:92:3e: 18:30:2e:03:8b:11:11:e7:55:e7:35:0d:da:98:6e:a4:33:00: 00:9f:0d:65:b7:9d:5e:bc:0a:3e:1d:9b:11:31:3b:fc:86:a4: 62:20:06:e8:07:1f:c0:48:12:8f:9f:56:e5:66:a1:20:af:1b: 2f:50:48:55:b0:d5:0d:27:c9:95:cf:48:47:42:b1:db:ee:c2: 33:86:61:8a:6d:83:ac:18:5e:eb:4e:d1:74:58:af:57:a6:fb: c3:64:f8:36:3a:c9:6d:8d:96:14:17:92:86:27:7f:3b:5f:be: c4:8b:9c:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIowJZmQ0u4lGmBWCncHE/bVvB8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhCRjc1OTBDNDBERTczMTZGNTJBMURFRTdDRTdCRURB NDMwODJDMzAeFw0yNjA1MDMwMjE0MDVaFw0yNzA1MDIwMjE5MDVaMDMxMTAvBgNV BAMTKENFM0M2Nzk2QkIxQUM4QTg3Rjg3MTEwRTgzRThDNzJCODQ5RDY0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3vzCZKE81m8BRUuFcBxoFLE9n v67fB0+afHImqlPsPUVHDOofR2naPAp1VFDh7G0LGuLGwROHWKcTtRFaXOEFZz/o OfA0cECWVF0SP4s3Wfv/5omDgViHoYG8QDj/ecGrPqSFofiiVx2ragwVsY28MKgp 23EsyGNBG/qJIQsODaUjLa2v4wTLUW5FyUxtD0OrV0mGLy3E+f7G/A78D1HgEt6u g3QMfRQDAAQRvf35X5MFUu79p5QwhvMbi97zNFlsarLsYZ4kGNLLOveAg3Exn7qG BxCf7IYPMZ8b/turiGV3JYD/CHBjdIPVg0nH1hRdrfzyaPqr4mzrOjvznkBDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzjxnlrsayKh/hxEOg+jHK4SdZL4wHwYDVR0j BBgwFoAU2L91kMQN5zFvUqHe58577aQwgsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAzOTYzODgtMmQ2Yi00NzZlLTk2M2QtMWNjMzgxMzc0YjFjLzAvRDhCRjc1OTBD NDBERTczMTZGNTJBMURFRTdDRTdCRURBNDMwODJDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EOEJGNzU5MEM0MERFNzMxNkY1MkExREVFN0NFN0JFREE0MzA4 MkMzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4LTJkNmItNDc2ZS05 NjNkLTFjYzM4MTM3NGIxYy8wLzMxMzYzMDJlMzEzOTMxMmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoL8aMA0GCSqG SIb3DQEBCwUAA4IBAQAscpxPtLCKi+4A1vuwoN9J8GUe5Wy3tMbp18exAYBAVibQ s1EsfmH2ZVnQU3y9FIoxYkQsaToWcEkFJI4bwdnTmI/EAxIXrFEuuH8J4atsokju IRe8Z4265OXINon1ILybqWSFYPKizymfxHz0kRH2bk5rgpK2a6vtSt25q07CY+EV ZJFXAbm+SvQgKKh4kj4YMC4DixER51XnNQ3amG6kMwAAnw1lt51evAo+HZsRMTv8 hqRiIAboBx/ASBKPn1blZqEgrxsvUEhVsNUNJ8mVz0hHQrHb7sIzhmGKbYOsGF7r TtF0WK9XpvvDZPg2OsltjZYUF5KGJ387X77Ei5xT -----END CERTIFICATE-----Generated at Wed May 13 10:22:47 2026 by rpki-client