$ rpki-client -vvf rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa File: 3136302e32352e34352e302f32342d3234203d3e20313533303639.roa (raw, json) Hash identifier: RmMN8NhmM0RZ6Enalsn3xwEVvbhkE3C1i1JWeXv+gOw= Subject key identifier: 65:05:D0:F9:00:F9:DD:CF:C2:D9:6D:52:FC:B2:22:32:35:98:F2:D3 Certificate issuer: /CN=3F1A2D1D4B4536302A505977B78F5F9F1C7F651E Certificate serial: 3AB3A1EA27E42A454583A3010EDE7DBDA26C81AC Authority key identifier: 3F:1A:2D:1D:4B:45:36:30:2A:50:59:77:B7:8F:5F:9F:1C:7F:65:1E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa Signing time: Sun 03 May 2026 02:20:05 +0000 ROA not before: Sun 03 May 2026 02:15:05 +0000 ROA not after: Sun 02 May 2027 02:20:05 +0000 asID: 153069 IP address blocks: 160.25.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.crl rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b3:a1:ea:27:e4:2a:45:45:83:a3:01:0e:de:7d:bd:a2:6c:81:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F1A2D1D4B4536302A505977B78F5F9F1C7F651E Validity Not Before: May 3 02:15:05 2026 GMT Not After : May 2 02:20:05 2027 GMT Subject: CN=6505D0F900F9DDCFC2D96D52FCB222323598F2D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:55:c4:16:51:91:a1:2a:2d:81:1e:81:5b: 2a:34:33:59:51:03:ca:dd:bf:6b:42:64:fe:b0:e0: a4:91:64:11:2d:e6:96:de:86:8f:50:95:91:1b:f5: 70:70:3e:f6:99:dc:54:63:ac:21:ef:40:97:ea:87: 20:68:c2:8d:f1:d7:28:14:13:25:c3:65:72:97:0b: 8d:82:d0:59:25:c7:84:db:c2:aa:2e:16:06:04:59: 31:fa:70:d4:82:4d:36:1d:b8:27:6b:1d:0c:99:e4: c5:0a:27:87:25:51:7e:3e:53:63:c6:b1:81:f0:03: 7b:91:c8:06:05:2e:73:c3:75:15:7c:22:5f:ee:83: ca:fd:d1:1e:78:a1:67:9a:f3:be:7d:6c:e6:95:f1: 67:1b:c4:26:42:ef:7b:f7:78:c7:8a:ad:09:94:1c: 25:50:90:1c:45:16:db:ae:c9:37:dc:b2:63:eb:31: f6:e0:9f:aa:de:44:22:c7:be:82:ef:60:f5:f2:1d: b9:e3:87:0d:05:7d:fb:93:38:3f:02:6b:84:2a:c7: d8:69:07:33:c4:6e:cf:d5:9a:6f:fb:f9:2c:22:b8: 30:7d:eb:e7:52:f9:8d:ca:60:46:19:29:95:ed:bc: 42:d4:09:10:b4:d2:87:9e:0b:60:40:c8:6e:eb:67: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:05:D0:F9:00:F9:DD:CF:C2:D9:6D:52:FC:B2:22:32:35:98:F2:D3 X509v3 Authority Key Identifier: keyid:3F:1A:2D:1D:4B:45:36:30:2A:50:59:77:B7:8F:5F:9F:1C:7F:65:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3F1A2D1D4B4536302A505977B78F5F9F1C7F651E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/0/3136302e32352e34352e302f32342d3234203d3e20313533303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.45.0/24 Signature Algorithm: sha256WithRSAEncryption b3:2c:c8:d4:87:9c:2d:83:07:22:a7:ba:eb:7c:fd:06:44:5c: 0e:97:49:9d:2d:87:fb:37:8b:81:fc:be:f3:fd:c1:f4:a6:9e: 43:7b:0e:0e:15:6d:7c:90:77:29:e5:89:b8:41:cb:55:a4:66: 01:2b:43:a9:26:88:7a:02:b5:97:23:3f:bb:51:c5:d8:d4:86: 13:8e:a6:29:e3:54:81:86:40:be:f6:67:20:7f:51:01:35:63: 39:da:65:3b:88:b6:39:2c:66:ff:fe:c7:72:55:40:e1:23:7a: f6:be:09:38:06:fd:03:7b:45:14:ca:0f:f9:be:e3:64:d5:ac: 84:01:aa:81:1b:f3:cc:ad:f8:6b:e6:7a:ee:33:c6:91:4f:d4: ff:be:66:20:95:58:2a:d1:5a:90:7a:0e:1c:fb:e7:67:a0:9b: 42:35:72:cd:ad:33:9e:24:be:02:6e:86:c1:62:aa:c8:37:68: c7:e6:87:fe:d5:a9:d3:74:54:9d:e3:dc:89:72:e1:83:0c:1b: a0:d7:6f:59:c1:c3:3c:2a:4a:9a:0d:33:f6:b8:ef:74:29:5d: 91:cf:d8:4c:d2:ff:dd:32:43:11:a1:27:ec:c2:80:16:56:98: 8a:28:b3:73:ce:4b:06:56:ee:1c:91:d3:4f:20:8a:32:0e:c9: 7e:9a:74:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOrOh6ifkKkVFg6MBDt59vaJsgawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YxQTJEMUQ0QjQ1MzYzMDJBNTA1OTc3Qjc4RjVGOUYx QzdGNjUxRTAeFw0yNjA1MDMwMjE1MDVaFw0yNzA1MDIwMjIwMDVaMDMxMTAvBgNV BAMTKDY1MDVEMEY5MDBGOUREQ0ZDMkQ5NkQ1MkZDQjIyMjMyMzU5OEYyRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXVXEFlGRoSotgR6BWyo0M1lR A8rdv2tCZP6w4KSRZBEt5pbeho9QlZEb9XBwPvaZ3FRjrCHvQJfqhyBowo3x1ygU EyXDZXKXC42C0Fklx4TbwqouFgYEWTH6cNSCTTYduCdrHQyZ5MUKJ4clUX4+U2PG sYHwA3uRyAYFLnPDdRV8Il/ug8r90R54oWea8759bOaV8WcbxCZC73v3eMeKrQmU HCVQkBxFFtuuyTfcsmPrMfbgn6reRCLHvoLvYPXyHbnjhw0FffuTOD8Ca4Qqx9hp BzPEbs/Vmm/7+SwiuDB96+dS+Y3KYEYZKZXtvELUCRC00oeeC2BAyG7rZ4uLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZQXQ+QD53c/C2W1S/LIiMjWY8tMwHwYDVR0j BBgwFoAUPxotHUtFNjAqUFl3t49fnxx/ZR4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjM2NTYxZDQtMjNjOC00YzliLTg5MGUtNGYyNjMyZTUyYzk3LzAvM0YxQTJEMUQ0 QjQ1MzYzMDJBNTA1OTc3Qjc4RjVGOUYxQzdGNjUxRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zRjFBMkQxRDRCNDUzNjMwMkE1MDU5NzdCNzhGNUY5RjFDN0Y2 NTFFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIzNjU2MWQ0LTIzYzgtNGM5Yi04 OTBlLTRmMjYzMmU1MmM5Ny8wLzMxMzYzMDJlMzIzNTJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZLTANBgkqhkiG 9w0BAQsFAAOCAQEAsyzI1IecLYMHIqe663z9BkRcDpdJnS2H+zeLgfy+8/3B9Kae Q3sODhVtfJB3KeWJuEHLVaRmAStDqSaIegK1lyM/u1HF2NSGE46mKeNUgYZAvvZn IH9RATVjOdplO4i2OSxm//7HclVA4SN69r4JOAb9A3tFFMoP+b7jZNWshAGqgRvz zK34a+Z67jPGkU/U/75mIJVYKtFakHoOHPvnZ6CbQjVyza0zniS+Am6GwWKqyDdo x+aH/tWp03RUnePciXLhgwwboNdvWcHDPCpKmg0z9rjvdCldkc/YTNL/3TJDEaEn 7MKAFlaYiiizc85LBlbuHJHTTyCKMg7Jfpp0vw== -----END CERTIFICATE-----Generated at Wed May 13 04:03:04 2026 by rpki-client