$ rpki-client -vvf rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa File: 3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa (raw, json) Hash identifier: MOL2ae8rUjuxcgs3avsNvyuD8S+QfiOggevD7CfKMcE= Subject key identifier: C2:13:08:30:49:18:23:56:8C:B6:04:F3:77:2B:1F:B8:E4:50:59:F6 Certificate issuer: /CN=BFD6A628A7E3273D48388984344C37C51116C61B Certificate serial: 447B30AE8C87E61BA755965C31D22946708C3311 Authority key identifier: BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa Signing time: Sun 03 May 2026 02:19:34 +0000 ROA not before: Sun 03 May 2026 02:14:34 +0000 ROA not after: Sun 02 May 2027 02:19:34 +0000 asID: 153127 IP address blocks: 160.187.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7b:30:ae:8c:87:e6:1b:a7:55:96:5c:31:d2:29:46:70:8c:33:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFD6A628A7E3273D48388984344C37C51116C61B Validity Not Before: May 3 02:14:34 2026 GMT Not After : May 2 02:19:34 2027 GMT Subject: CN=C2130830491823568CB604F3772B1FB8E45059F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:d2:25:64:c1:5f:ab:a8:77:d9:3c:3a:9a: f7:0e:53:98:dc:f5:e9:85:95:bc:07:9e:94:c6:d9: e9:08:78:f9:9b:70:dd:3e:8e:ff:da:d7:fd:5f:eb: b2:c6:a0:d6:c4:e1:17:e2:b4:3e:a1:9a:bf:ad:02: 8a:a2:3d:a7:91:ff:54:30:98:ab:cf:9b:7b:8e:4b: 50:5a:b9:a1:af:1b:b4:be:81:83:21:09:0a:6a:b8: 76:77:3e:0c:d4:23:6a:b5:ea:95:33:9a:03:4d:57: b8:67:d5:9f:36:fd:17:47:16:6f:40:6b:79:2f:bf: 5e:a2:ce:75:c1:d4:67:96:eb:64:06:2e:78:36:32: d7:61:73:39:a7:b4:c2:13:97:67:20:6b:2d:0e:5c: d6:b2:ec:a8:cf:2f:a8:b5:a5:63:64:c2:91:7e:f1: 14:58:89:b3:27:98:73:22:7b:25:0a:51:63:06:4d: 75:27:c1:0a:14:ec:a7:f6:dc:7d:da:f6:88:85:bd: eb:15:c1:c2:98:e4:97:a2:a1:fd:e2:bc:33:a8:ed: e5:72:2b:e0:4d:ec:41:bb:ea:02:40:ed:66:f6:90: 41:33:e2:bd:4a:89:6b:97:c9:a1:ed:9c:db:7e:41: 6a:e7:11:32:35:e6:ba:59:c8:56:fb:e3:94:e0:b7: 9f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:13:08:30:49:18:23:56:8C:B6:04:F3:77:2B:1F:B8:E4:50:59:F6 X509v3 Authority Key Identifier: keyid:BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.150.0/23 Signature Algorithm: sha256WithRSAEncryption 68:b2:65:ca:91:d1:8f:ee:f4:83:78:9f:73:c5:47:32:0f:b9: f9:2f:6a:dd:b4:fc:96:e9:74:4c:76:16:60:ee:c4:4e:c3:aa: 92:76:29:9f:b1:f1:80:08:9a:33:dd:fd:f1:7e:55:90:0d:6a: 86:2e:c3:cb:5c:3c:aa:03:0a:59:99:aa:f9:31:3a:fd:f2:25: 72:fc:c9:e1:d2:8f:dc:bf:b6:26:a6:91:9a:f6:ea:27:cd:8b: 1d:2a:73:65:1c:02:af:48:78:99:39:3c:6d:ff:40:94:d8:b6: 35:ff:ed:7e:bb:d0:7c:a4:16:8d:37:00:88:67:4a:4a:fa:12: cf:5a:93:1a:b3:26:7d:f8:1f:e7:0f:cf:5e:ce:71:1e:ad:fa: e4:50:ff:a8:40:c4:a5:c7:8a:c8:8e:61:58:31:fe:2e:ba:c6: e0:cc:c3:ee:70:16:21:58:30:eb:82:25:a8:92:0c:17:e8:67: 4e:cf:5f:51:5e:51:1d:94:21:31:3f:76:eb:e9:6b:9e:fd:b8: 52:ba:99:c7:0f:12:11:c8:55:0e:93:17:df:1a:65:33:70:2f: ef:a3:a0:aa:f3:78:e6:88:25:da:dc:13:0e:8e:cd:0a:c6:bd: 6d:0e:99:b6:a4:fc:1e:99:ef:c6:56:57:01:c4:50:2b:ea:64: 16:bb:c5:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURHswroyH5hunVZZcMdIpRnCMMxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZENkE2MjhBN0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUx MTE2QzYxQjAeFw0yNjA1MDMwMjE0MzRaFw0yNzA1MDIwMjE5MzRaMDMxMTAvBgNV BAMTKEMyMTMwODMwNDkxODIzNTY4Q0I2MDRGMzc3MkIxRkI4RTQ1MDU5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3MtIlZMFfq6h32Tw6mvcOU5jc 9emFlbwHnpTG2ekIePmbcN0+jv/a1/1f67LGoNbE4RfitD6hmr+tAoqiPaeR/1Qw mKvPm3uOS1BauaGvG7S+gYMhCQpquHZ3PgzUI2q16pUzmgNNV7hn1Z82/RdHFm9A a3kvv16iznXB1GeW62QGLng2MtdhczmntMITl2cgay0OXNay7KjPL6i1pWNkwpF+ 8RRYibMnmHMieyUKUWMGTXUnwQoU7Kf23H3a9oiFvesVwcKY5Jeiof3ivDOo7eVy K+BN7EG76gJA7Wb2kEEz4r1KiWuXyaHtnNt+QWrnETI15rpZyFb745Tgt59vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwhMIMEkYI1aMtgTzdysfuORQWfYwHwYDVR0j BBgwFoAUv9amKKfjJz1IOImENEw3xREWxhswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjFkOTdiNDAtYzAzMS00ZTViLTliNDItZDJhZTFjOWNmOTg3LzAvQkZENkE2MjhB N0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUxMTE2QzYxQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRkQ2QTYyOEE3RTMyNzNENDgzODg5ODQzNDRDMzdDNTExMTZD NjFCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIxZDk3YjQwLWMwMzEtNGU1Yi05 YjQyLWQyYWUxYzljZjk4Ny8wLzMxMzYzMDJlMzEzODM3MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu5YwDQYJ KoZIhvcNAQELBQADggEBAGiyZcqR0Y/u9IN4n3PFRzIPufkvat20/JbpdEx2FmDu xE7DqpJ2KZ+x8YAImjPd/fF+VZANaoYuw8tcPKoDClmZqvkxOv3yJXL8yeHSj9y/ tiamkZr26ifNix0qc2UcAq9IeJk5PG3/QJTYtjX/7X670HykFo03AIhnSkr6Es9a kxqzJn34H+cPz17OcR6t+uRQ/6hAxKXHisiOYVgx/i66xuDMw+5wFiFYMOuCJaiS DBfoZ07PX1FeUR2UITE/duvpa579uFK6mccPEhHIVQ6TF98aZTNwL++joKrzeOaI JdrcEw6OzQrGvW0Ombak/B6Z78ZWVwHEUCvqZBa7xZk= -----END CERTIFICATE-----Generated at Wed May 13 04:09:01 2026 by rpki-client