$ rpki-client -vvf rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa File: 3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa (raw, json) Hash identifier: pm5lc2pPh20VaJkO7gnMT5lqQn2oTUSeSm20aGO4Zc0= Subject key identifier: 1B:F5:AF:EF:8C:38:0C:E0:25:C6:E4:59:77:A9:90:1A:3A:02:93:57 Certificate issuer: /CN=866375A97D591695797C70B6303365FDB8CBF531 Certificate serial: 3258DDF5AE8E3F566748BF4C734DA4E0F739E88D Authority key identifier: 86:63:75:A9:7D:59:16:95:79:7C:70:B6:30:33:65:FD:B8:CB:F5:31 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa Signing time: Sun 03 May 2026 02:23:47 +0000 ROA not before: Sun 03 May 2026 02:18:47 +0000 ROA not after: Sun 02 May 2027 02:23:47 +0000 asID: 152818 IP address blocks: 160.22.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.crl rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:58:dd:f5:ae:8e:3f:56:67:48:bf:4c:73:4d:a4:e0:f7:39:e8:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866375A97D591695797C70B6303365FDB8CBF531 Validity Not Before: May 3 02:18:47 2026 GMT Not After : May 2 02:23:47 2027 GMT Subject: CN=1BF5AFEF8C380CE025C6E45977A9901A3A029357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:b1:71:2d:a0:6b:27:c8:20:09:95:ef:5b: 0f:49:5d:1f:de:db:11:c1:f1:06:21:04:12:c3:7d: 37:d6:f8:f3:70:64:d4:83:19:b7:b8:c0:f6:00:a8: 0a:7a:6a:28:c2:39:54:dc:96:bb:3e:0c:7a:3d:7b: 94:06:fb:79:98:0b:f3:8a:68:3f:f9:55:e4:76:c8: a3:82:55:d3:20:f5:9c:73:f2:0f:08:5e:ed:84:b3: c5:80:64:11:92:d8:66:2c:43:a4:37:41:df:ea:86: 0e:35:1f:12:11:f1:c1:98:2e:c7:95:df:a6:eb:fc: 83:7e:6e:e3:b8:23:fd:07:d1:a1:56:7e:40:23:29: 6f:80:95:98:c4:85:0d:5f:8f:ee:fb:7f:59:24:62: 2b:14:1c:82:fa:ec:38:0b:1c:53:5e:1b:1c:c8:70: 2f:d6:31:a2:ed:a4:4b:aa:d4:a7:f0:f0:50:11:20: 83:0f:11:f2:04:56:f2:4b:c1:7b:bc:0a:95:47:e2: db:02:1b:cb:f6:be:2f:73:b3:7c:3e:71:ea:70:0c: 7a:86:ba:85:b9:d7:e3:dd:e6:be:1a:2f:50:da:58: 35:f8:92:b7:ca:a0:d0:b8:0e:6f:ea:70:ed:6f:e1: ae:99:82:de:10:ad:78:0d:b2:a7:03:c9:8a:bb:91: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F5:AF:EF:8C:38:0C:E0:25:C6:E4:59:77:A9:90:1A:3A:02:93:57 X509v3 Authority Key Identifier: keyid:86:63:75:A9:7D:59:16:95:79:7C:70:B6:30:33:65:FD:B8:CB:F5:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.128.0/23 Signature Algorithm: sha256WithRSAEncryption 09:3c:6d:63:b4:9a:0a:0c:0f:c6:84:2c:8d:b4:a6:c6:0a:62: bb:67:c6:6b:a8:4f:d0:dd:04:98:d2:4c:f2:13:2f:8b:25:8c: d2:6a:0f:a4:a4:30:20:fa:b0:0a:6d:26:99:f6:25:f7:96:ad: c6:50:ef:54:d9:65:a9:3b:a2:be:4a:87:6c:97:4a:b5:ee:ce: 22:32:0c:5e:ce:a2:eb:7e:06:aa:1d:59:c1:c0:ed:2c:5e:f3: f0:90:fe:98:c9:9d:90:ac:11:cc:20:71:72:69:04:91:fc:d4: b9:bf:3b:e6:89:df:dc:ee:3e:b1:0e:15:2b:68:de:3d:b0:a1: 2e:43:91:22:e8:10:27:c6:ef:5b:e0:cd:7b:75:2b:a0:1a:a7: 40:85:c4:e6:5f:f4:09:6d:38:b1:1b:7a:55:6e:71:a4:54:1d: 8b:bc:1b:02:64:d4:2c:17:d0:13:e7:1b:b8:2c:34:ec:7f:b3: cd:ce:73:b6:dc:66:03:79:6f:47:18:d1:5e:2a:b3:f8:1e:d5: fd:c7:60:6b:43:4d:22:b1:4c:cb:49:07:51:a3:30:f2:92:88: 14:f1:2a:c2:48:c2:d7:52:df:c1:66:87:4d:a0:7a:f5:d0:c3: 9e:cf:7c:3a:91:bb:8a:12:2e:ff:f2:15:69:64:c6:30:b6:ed: e7:07:4e:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMljd9a6OP1ZnSL9Mc02k4Pc56I0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2Mzc1QTk3RDU5MTY5NTc5N0M3MEI2MzAzMzY1RkRC OENCRjUzMTAeFw0yNjA1MDMwMjE4NDdaFw0yNzA1MDIwMjIzNDdaMDMxMTAvBgNV BAMTKDFCRjVBRkVGOEMzODBDRTAyNUM2RTQ1OTc3QTk5MDFBM0EwMjkzNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqZbFxLaBrJ8ggCZXvWw9JXR/e 2xHB8QYhBBLDfTfW+PNwZNSDGbe4wPYAqAp6aijCOVTclrs+DHo9e5QG+3mYC/OK aD/5VeR2yKOCVdMg9Zxz8g8IXu2Es8WAZBGS2GYsQ6Q3Qd/qhg41HxIR8cGYLseV 36br/IN+buO4I/0H0aFWfkAjKW+AlZjEhQ1fj+77f1kkYisUHIL67DgLHFNeGxzI cC/WMaLtpEuq1Kfw8FARIIMPEfIEVvJLwXu8CpVH4tsCG8v2vi9zs3w+cepwDHqG uoW51+Pd5r4aL1DaWDX4krfKoNC4Dm/qcO1v4a6Zgt4QrXgNsqcDyYq7kT11AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG/Wv74w4DOAlxuRZd6mQGjoCk1cwHwYDVR0j BBgwFoAUhmN1qX1ZFpV5fHC2MDNl/bjL9TEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzBmYjc4YTktY2Q2OC00NGZkLTg1YWEtNmM2YjA4Y2IyMzQ2LzAvODY2Mzc1QTk3 RDU5MTY5NTc5N0M3MEI2MzAzMzY1RkRCOENCRjUzMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84NjYzNzVBOTdENTkxNjk1Nzk3QzcwQjYzMDMzNjVGREI4Q0JG NTMxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaAMA0GCSqG SIb3DQEBCwUAA4IBAQAJPG1jtJoKDA/GhCyNtKbGCmK7Z8ZrqE/Q3QSY0kzyEy+L JYzSag+kpDAg+rAKbSaZ9iX3lq3GUO9U2WWpO6K+Sodsl0q17s4iMgxezqLrfgaq HVnBwO0sXvPwkP6YyZ2QrBHMIHFyaQSR/NS5vzvmid/c7j6xDhUraN49sKEuQ5Ei 6BAnxu9b4M17dSugGqdAhcTmX/QJbTixG3pVbnGkVB2LvBsCZNQsF9AT5xu4LDTs f7PNznO23GYDeW9HGNFeKrP4HtX9x2BrQ00isUzLSQdRozDykogU8SrCSMLXUt/B ZodNoHr10MOez3w6kbuKEi7/8hVpZMYwtu3nB050 -----END CERTIFICATE-----Generated at Wed May 13 04:26:27 2026 by rpki-client