$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa File: 3136302e32352e33342e302f32342d3234203d3e20313532383331.roa (raw, json) Hash identifier: 0ItKo7pfjpZI0s8bxO3lP1RQyHIW5V6nxU1oQqBDP+k= Subject key identifier: A5:6A:13:84:EC:20:C0:52:06:C8:23:DA:C5:D6:DE:CB:37:D0:44:22 Certificate issuer: /CN=72B17A79879EF6757A1AF958307849AC03D91209 Certificate serial: 2EF2259D6DB7FBC6004C17DB3773BBF99B211D76 Authority key identifier: 72:B1:7A:79:87:9E:F6:75:7A:1A:F9:58:30:78:49:AC:03:D9:12:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa Signing time: Sun 03 May 2026 02:22:44 +0000 ROA not before: Sun 03 May 2026 02:17:44 +0000 ROA not after: Sun 02 May 2027 02:22:44 +0000 asID: 152831 IP address blocks: 160.25.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.crl rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f2:25:9d:6d:b7:fb:c6:00:4c:17:db:37:73:bb:f9:9b:21:1d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72B17A79879EF6757A1AF958307849AC03D91209 Validity Not Before: May 3 02:17:44 2026 GMT Not After : May 2 02:22:44 2027 GMT Subject: CN=A56A1384EC20C05206C823DAC5D6DECB37D04422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:dd:72:3b:34:df:2e:a2:d8:0d:04:a6:00:89: b0:83:fc:73:37:19:af:a2:e6:29:46:40:85:26:10: 12:bf:c8:db:aa:e6:e8:90:ab:03:88:e0:47:bd:cb: 8e:32:9c:e5:76:33:d3:ea:ed:f2:53:bc:3b:e5:5a: 62:05:fa:8f:8f:c6:79:1b:98:fa:ae:93:74:9a:f3: 0f:89:87:c8:36:eb:d6:d1:2d:84:ab:f4:f6:3c:67: 36:63:9f:b4:04:2c:c5:10:1a:ed:6f:1f:c7:5b:a6: 9f:d8:97:e0:c6:d4:89:de:f8:ce:07:69:1b:88:ba: 15:a4:7b:50:c8:74:8d:9e:5a:bc:4e:71:b1:0d:01: 81:9f:f4:a5:90:68:1d:39:3e:14:88:4c:4f:ed:02: 7c:56:cd:75:7c:66:4e:a4:cd:d5:5e:99:00:13:83: ad:ed:9f:e2:1b:f4:dc:8d:f2:59:25:53:41:d3:14: f4:d3:b2:de:d1:5c:ed:11:35:3a:68:50:59:f6:31: f6:3a:8b:a8:10:37:1b:48:40:c7:3a:60:64:d6:04: 34:ba:77:c0:9b:2c:87:66:6b:5e:6a:97:45:be:b9: a6:b6:11:2e:95:c9:56:b8:b9:f8:dd:4a:f6:92:43: 81:da:7a:47:34:21:11:b1:ee:28:ae:7a:03:a9:5c: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6A:13:84:EC:20:C0:52:06:C8:23:DA:C5:D6:DE:CB:37:D0:44:22 X509v3 Authority Key Identifier: keyid:72:B1:7A:79:87:9E:F6:75:7A:1A:F9:58:30:78:49:AC:03:D9:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32342d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/24 Signature Algorithm: sha256WithRSAEncryption 82:5c:87:b9:d0:8e:62:41:40:d5:f6:22:b2:2a:c2:c5:5f:62: 08:8c:20:b0:6b:91:fc:ca:18:83:d6:d0:3e:c0:ca:ee:d4:6d: 09:28:b5:98:51:cf:4a:ab:57:ae:23:ef:02:3a:d6:7b:7e:59: b0:99:73:71:62:fc:ad:d9:1d:5c:bb:a2:34:c3:33:53:54:e0: ce:09:dc:cb:00:26:d7:a7:28:a9:85:85:86:c2:42:24:44:b4: a9:d9:0d:48:f7:c2:97:8c:c7:47:35:d5:cd:6f:21:ed:a7:a1: fd:c9:cf:26:af:0b:c3:78:b7:77:09:77:0c:13:d9:53:8e:2a: 81:20:57:f4:13:9a:97:ec:be:4d:6d:f4:43:e7:da:c5:e2:d4: 05:e7:fc:2a:c1:da:b4:dc:64:8f:f3:ff:0c:6d:4f:b9:cf:a8: a0:d6:e4:1a:56:d7:8e:8b:6f:21:f4:91:ae:4c:2c:27:c3:e2: 49:04:7f:3b:f5:12:df:04:3b:e9:e6:ac:95:0c:63:6f:37:1e: c2:ac:b1:6b:03:79:db:f8:2d:31:3a:75:02:98:81:51:19:27: ab:69:42:bd:55:f1:d2:57:b7:4e:78:b9:31:d0:80:54:c2:b7: 84:e1:52:32:39:85:16:d1:08:e2:66:66:20:3c:4d:d1:34:99: df:73:21:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULvIlnW23+8YATBfbN3O7+ZshHXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJCMTdBNzk4NzlFRjY3NTdBMUFGOTU4MzA3ODQ5QUMw M0Q5MTIwOTAeFw0yNjA1MDMwMjE3NDRaFw0yNzA1MDIwMjIyNDRaMDMxMTAvBgNV BAMTKEE1NkExMzg0RUMyMEMwNTIwNkM4MjNEQUM1RDZERUNCMzdEMDQ0MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm3XI7NN8uotgNBKYAibCD/HM3 Ga+i5ilGQIUmEBK/yNuq5uiQqwOI4Ee9y44ynOV2M9Pq7fJTvDvlWmIF+o+Pxnkb mPquk3Sa8w+Jh8g269bRLYSr9PY8ZzZjn7QELMUQGu1vH8dbpp/Yl+DG1Ine+M4H aRuIuhWke1DIdI2eWrxOcbENAYGf9KWQaB05PhSITE/tAnxWzXV8Zk6kzdVemQAT g63tn+Ib9NyN8lklU0HTFPTTst7RXO0RNTpoUFn2MfY6i6gQNxtIQMc6YGTWBDS6 d8CbLIdma15ql0W+uaa2ES6VyVa4ufjdSvaSQ4Haekc0IRGx7iiuegOpXARhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpWoThOwgwFIGyCPaxdbeyzfQRCIwHwYDVR0j BBgwFoAUcrF6eYee9nV6GvlYMHhJrAPZEgkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ2YzliOGMtM2JlNy00YzAyLTk1NTEtZmJjNmZmYzQwNzBmLzAvNzJCMTdBNzk4 NzlFRjY3NTdBMUFGOTU4MzA3ODQ5QUMwM0Q5MTIwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83MkIxN0E3OTg3OUVGNjc1N0ExQUY5NTgzMDc4NDlBQzAzRDkx MjA5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZIjANBgkqhkiG 9w0BAQsFAAOCAQEAglyHudCOYkFA1fYisirCxV9iCIwgsGuR/MoYg9bQPsDK7tRt CSi1mFHPSqtXriPvAjrWe35ZsJlzcWL8rdkdXLuiNMMzU1TgzgncywAm16coqYWF hsJCJES0qdkNSPfCl4zHRzXVzW8h7aeh/cnPJq8Lw3i3dwl3DBPZU44qgSBX9BOa l+y+TW30Q+faxeLUBef8KsHatNxkj/P/DG1Puc+ooNbkGlbXjotvIfSRrkwsJ8Pi SQR/O/US3wQ76easlQxjbzcewqyxawN52/gtMTp1ApiBURknq2lCvVXx0le3Tni5 MdCAVMK3hOFSMjmFFtEI4mZmIDxN0TSZ33MhrA== -----END CERTIFICATE-----Generated at Wed May 13 08:29:12 2026 by rpki-client