$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa File: 3136302e32352e33352e302f32342d3234203d3e20313532383331.roa (raw, json) Hash identifier: BMGU1TeDy3t68eWZIXBo45El4fFtS3/+kJQ2U/OLtRg= Subject key identifier: 5D:92:16:79:5E:01:E3:EC:14:D9:41:6C:FA:27:B7:07:75:94:67:6B Certificate issuer: /CN=72B17A79879EF6757A1AF958307849AC03D91209 Certificate serial: 38FD4EEBD1902670CDFE053E1146AE03916BADF7 Authority key identifier: 72:B1:7A:79:87:9E:F6:75:7A:1A:F9:58:30:78:49:AC:03:D9:12:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa Signing time: Sun 03 May 2026 02:22:44 +0000 ROA not before: Sun 03 May 2026 02:17:44 +0000 ROA not after: Sun 02 May 2027 02:22:44 +0000 asID: 152831 IP address blocks: 160.25.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.crl rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:fd:4e:eb:d1:90:26:70:cd:fe:05:3e:11:46:ae:03:91:6b:ad:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72B17A79879EF6757A1AF958307849AC03D91209 Validity Not Before: May 3 02:17:44 2026 GMT Not After : May 2 02:22:44 2027 GMT Subject: CN=5D9216795E01E3EC14D9416CFA27B7077594676B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3c:40:e7:df:0e:9f:c3:6d:3d:53:ed:41:41: 9b:f8:69:cb:de:76:96:0c:6c:13:27:97:b7:b1:35: 71:80:84:81:2b:e4:cc:f9:a4:af:f5:c0:c5:03:b0: 2c:04:80:a0:60:30:1d:25:76:ad:fd:e3:fe:5f:6e: 64:ed:8e:36:b8:be:b3:73:8a:01:02:75:29:d1:f1: 90:5b:c0:86:f6:4b:2b:90:30:20:43:b7:75:3f:12: 53:83:17:f7:3d:eb:a7:9c:73:2f:50:3a:1c:34:b4: 0d:88:40:10:56:ab:5b:d6:18:d7:65:e9:6e:df:13: d3:e3:11:a3:b5:39:f7:be:35:c5:0f:41:f6:56:5c: 1f:a9:ee:c7:9f:89:e2:9d:b4:cd:9a:9c:42:20:c7: 5f:d3:11:43:32:6b:d8:14:3d:5d:63:c3:f5:eb:60: d5:7a:01:96:23:b8:4e:9d:8e:9a:d7:17:47:0d:89: 3f:e5:6f:44:d8:96:99:dd:92:b2:a8:ae:5b:0e:f0: da:12:7b:47:99:fa:63:4a:cc:00:ef:da:30:aa:2c: 6c:73:f2:62:9f:71:e7:9c:6c:16:e8:b9:6b:2a:50: a4:ba:4d:a3:9c:fa:95:ee:c0:9d:ad:97:3d:6b:6f: 8e:67:92:92:ce:25:53:34:5b:a4:d8:f6:89:e9:3e: bf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:92:16:79:5E:01:E3:EC:14:D9:41:6C:FA:27:B7:07:75:94:67:6B X509v3 Authority Key Identifier: keyid:72:B1:7A:79:87:9E:F6:75:7A:1A:F9:58:30:78:49:AC:03:D9:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/72B17A79879EF6757A1AF958307849AC03D91209.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/72B17A79879EF6757A1AF958307849AC03D91209.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33352e302f32342d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.35.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:2c:b0:4f:6e:bf:21:38:67:20:84:91:dc:59:6f:8f:06:21: 91:3c:05:f0:0c:ca:fe:a5:96:16:ef:5d:89:8b:fe:40:90:36: 75:78:f7:85:52:98:99:d1:9a:aa:13:7d:06:c7:7b:09:87:a4: 69:71:76:33:5a:e3:e3:38:ed:c9:72:25:1c:08:48:0b:51:53: ca:9e:e5:af:55:e3:aa:08:9a:33:0d:95:c0:f0:ce:16:e0:3f: 3e:33:d0:b3:83:b3:4e:18:2b:63:69:08:17:7c:bd:de:f7:3a: bf:a9:3f:55:81:ee:05:e4:5c:88:91:29:f7:09:4b:08:f5:ba: e9:e6:83:a7:8b:f9:bd:98:a0:8e:b7:73:b1:1d:c8:8c:cb:a5: fb:d0:92:1c:70:eb:35:68:bf:a1:8f:d9:f4:fb:f0:1b:aa:c8: be:27:92:f6:2e:1d:a2:dc:40:c5:96:d8:06:4c:3f:b0:70:66: 06:0c:76:61:fe:c4:22:14:28:80:6f:8c:fa:c6:3a:74:f2:0e: a5:21:5d:ed:10:62:7e:48:fd:bf:90:9a:9a:4b:82:6b:a2:ce: fa:ce:19:d1:79:3f:d0:e2:6b:c9:b4:10:9a:08:c9:42:85:25: f8:e7:29:2a:d1:00:89:41:82:3e:15:af:85:17:ce:ca:6f:be: 7d:0b:d3:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOP1O69GQJnDN/gU+EUauA5FrrfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJCMTdBNzk4NzlFRjY3NTdBMUFGOTU4MzA3ODQ5QUMw M0Q5MTIwOTAeFw0yNjA1MDMwMjE3NDRaFw0yNzA1MDIwMjIyNDRaMDMxMTAvBgNV BAMTKDVEOTIxNjc5NUUwMUUzRUMxNEQ5NDE2Q0ZBMjdCNzA3NzU5NDY3NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPEDn3w6fw209U+1BQZv4acve dpYMbBMnl7exNXGAhIEr5Mz5pK/1wMUDsCwEgKBgMB0ldq394/5fbmTtjja4vrNz igECdSnR8ZBbwIb2SyuQMCBDt3U/ElODF/c966eccy9QOhw0tA2IQBBWq1vWGNdl 6W7fE9PjEaO1Ofe+NcUPQfZWXB+p7sefieKdtM2anEIgx1/TEUMya9gUPV1jw/Xr YNV6AZYjuE6djprXF0cNiT/lb0TYlpndkrKorlsO8NoSe0eZ+mNKzADv2jCqLGxz 8mKfceecbBbouWsqUKS6TaOc+pXuwJ2tlz1rb45nkpLOJVM0W6TY9onpPr8lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXZIWeV4B4+wU2UFs+ie3B3WUZ2swHwYDVR0j BBgwFoAUcrF6eYee9nV6GvlYMHhJrAPZEgkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ2YzliOGMtM2JlNy00YzAyLTk1NTEtZmJjNmZmYzQwNzBmLzAvNzJCMTdBNzk4 NzlFRjY3NTdBMUFGOTU4MzA3ODQ5QUMwM0Q5MTIwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83MkIxN0E3OTg3OUVGNjc1N0ExQUY5NTgzMDc4NDlBQzAzRDkx MjA5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZIzANBgkqhkiG 9w0BAQsFAAOCAQEAPiywT26/IThnIISR3FlvjwYhkTwF8AzK/qWWFu9diYv+QJA2 dXj3hVKYmdGaqhN9Bsd7CYekaXF2M1rj4zjtyXIlHAhIC1FTyp7lr1XjqgiaMw2V wPDOFuA/PjPQs4OzThgrY2kIF3y93vc6v6k/VYHuBeRciJEp9wlLCPW66eaDp4v5 vZigjrdzsR3IjMul+9CSHHDrNWi/oY/Z9PvwG6rIvieS9i4dotxAxZbYBkw/sHBm Bgx2Yf7EIhQogG+M+sY6dPIOpSFd7RBifkj9v5CamkuCa6LO+s4Z0Xk/0OJrybQQ mgjJQoUl+OcpKtEAiUGCPhWvhRfOym++fQvT0Q== -----END CERTIFICATE-----Generated at Wed May 13 08:29:12 2026 by rpki-client