$ rpki-client -vvf rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa File: 3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa (raw, json) Hash identifier: 0JfcxRs89jWuHwbiQgEITYiO/dmgXLf1qIo/2cgUcn8= Subject key identifier: B9:41:38:23:B7:41:AB:E3:D0:51:1B:52:A1:0E:73:1A:7C:5A:EE:4E Certificate issuer: /CN=866375A97D591695797C70B6303365FDB8CBF531 Certificate serial: 6413539E9044AB3F575D9F201A1A1A41430E2CEC Authority key identifier: 86:63:75:A9:7D:59:16:95:79:7C:70:B6:30:33:65:FD:B8:CB:F5:31 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa Signing time: Sun 03 May 2026 02:23:48 +0000 ROA not before: Sun 03 May 2026 02:18:48 +0000 ROA not after: Sun 02 May 2027 02:23:48 +0000 asID: 152818 IP address blocks: 160.22.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.crl rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:13:53:9e:90:44:ab:3f:57:5d:9f:20:1a:1a:1a:41:43:0e:2c:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866375A97D591695797C70B6303365FDB8CBF531 Validity Not Before: May 3 02:18:48 2026 GMT Not After : May 2 02:23:48 2027 GMT Subject: CN=B9413823B741ABE3D0511B52A10E731A7C5AEE4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:9d:5c:4d:b6:4f:d5:c8:09:da:5d:90:41: 73:ae:27:ca:e9:d5:b7:1f:0f:53:3d:7d:96:24:2c: 88:04:fc:d4:e3:4c:c0:14:b2:95:3c:8c:e3:93:6c: 7c:69:b0:85:2b:11:43:23:64:4f:f4:e1:b6:43:5c: cb:03:b7:4f:8b:92:5c:db:57:60:f2:8c:51:1c:f1: c4:30:64:af:c0:5c:c6:25:21:5a:17:66:2f:74:e7: 0d:e3:49:11:27:45:48:27:b3:99:6b:a1:fe:5f:71: ff:cd:6d:5a:52:59:67:8c:a0:c3:90:ed:51:55:77: 89:ab:b7:f6:29:9b:6a:9d:cc:a1:a7:8f:a8:dc:e7: 32:93:3e:83:6c:3a:32:3c:73:3a:36:30:de:b9:fc: af:cb:6e:f9:a2:6d:8f:33:8a:d4:ed:08:ba:e2:f6: de:3e:0c:6a:30:2c:d4:ed:de:d8:bb:fb:ed:4b:6c: bd:7a:b6:41:62:23:3d:bd:5b:ad:0e:06:fe:56:e6: 48:d5:c8:c5:12:22:90:4e:d5:c3:92:00:70:98:aa: 74:d8:e1:1a:4f:3b:da:de:71:82:c1:1b:0f:5b:78: 9f:68:8f:e7:46:a7:77:03:90:f6:4c:33:2d:8c:37: b9:04:68:5e:09:83:29:0f:fa:e6:c8:ac:64:93:42: 8f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:41:38:23:B7:41:AB:E3:D0:51:1B:52:A1:0E:73:1A:7C:5A:EE:4E X509v3 Authority Key Identifier: keyid:86:63:75:A9:7D:59:16:95:79:7C:70:B6:30:33:65:FD:B8:CB:F5:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/866375A97D591695797C70B6303365FDB8CBF531.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866375A97D591695797C70B6303365FDB8CBF531.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.129.0/24 Signature Algorithm: sha256WithRSAEncryption 05:90:66:e5:54:ca:38:1d:55:1f:ea:2e:45:e0:70:b9:b4:9e: d3:e4:5d:da:63:ee:24:6c:b8:74:5d:8f:c0:7a:aa:ed:57:1f: 4c:61:fc:05:1a:1c:85:24:2e:84:51:a3:86:98:5a:83:ef:ca: 89:04:df:37:e0:1d:e7:7d:51:cb:5b:c7:e7:87:41:66:40:57: 51:7c:dd:8d:03:25:a1:e2:ce:8b:f6:29:4c:53:88:a1:4a:4e: db:70:54:a8:04:11:3e:0a:84:06:4e:ea:f2:17:38:3b:10:33: 75:a1:32:5a:f6:f6:ee:e4:b9:94:cb:32:dc:1a:b5:ba:f1:8f: 57:53:58:ff:98:7d:8f:10:ed:1f:09:d0:52:5f:ef:c9:3c:5f: 50:c3:f6:7e:be:b8:a3:2b:7c:bc:6c:72:fe:fe:aa:56:5b:cd: fb:20:92:77:be:38:ca:64:d6:77:6f:a4:98:74:7b:61:68:d5: 79:2a:b4:26:f1:7f:26:1a:73:9b:38:56:2a:70:c5:57:8c:f9: 42:b7:bb:ca:d4:a8:cc:b9:64:06:93:e1:43:85:80:95:50:82: 17:13:38:c2:de:a3:e6:ae:00:31:d8:41:b7:81:a0:e8:49:b7: 4f:65:e9:67:d6:53:2e:a3:57:f2:06:cc:a2:83:50:bd:50:49: ef:cb:e2:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZBNTnpBEqz9XXZ8gGhoaQUMOLOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2Mzc1QTk3RDU5MTY5NTc5N0M3MEI2MzAzMzY1RkRC OENCRjUzMTAeFw0yNjA1MDMwMjE4NDhaFw0yNzA1MDIwMjIzNDhaMDMxMTAvBgNV BAMTKEI5NDEzODIzQjc0MUFCRTNEMDUxMUI1MkExMEU3MzFBN0M1QUVFNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTuZ1cTbZP1cgJ2l2QQXOuJ8rp 1bcfD1M9fZYkLIgE/NTjTMAUspU8jOOTbHxpsIUrEUMjZE/04bZDXMsDt0+Lklzb V2DyjFEc8cQwZK/AXMYlIVoXZi905w3jSREnRUgns5lrof5fcf/NbVpSWWeMoMOQ 7VFVd4mrt/Ypm2qdzKGnj6jc5zKTPoNsOjI8czo2MN65/K/LbvmibY8zitTtCLri 9t4+DGowLNTt3ti7++1LbL16tkFiIz29W60OBv5W5kjVyMUSIpBO1cOSAHCYqnTY 4RpPO9recYLBGw9beJ9oj+dGp3cDkPZMMy2MN7kEaF4JgykP+ubIrGSTQo/PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuUE4I7dBq+PQURtSoQ5zGnxa7k4wHwYDVR0j BBgwFoAUhmN1qX1ZFpV5fHC2MDNl/bjL9TEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzBmYjc4YTktY2Q2OC00NGZkLTg1YWEtNmM2YjA4Y2IyMzQ2LzAvODY2Mzc1QTk3 RDU5MTY5NTc5N0M3MEI2MzAzMzY1RkRCOENCRjUzMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84NjYzNzVBOTdENTkxNjk1Nzk3QzcwQjYzMDMzNjVGREI4Q0JG NTMxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwZmI3OGE5LWNkNjgtNDRmZC04 NWFhLTZjNmIwOGNiMjM0Ni8wLzMxMzYzMDJlMzIzMjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaBMA0GCSqG SIb3DQEBCwUAA4IBAQAFkGblVMo4HVUf6i5F4HC5tJ7T5F3aY+4kbLh0XY/Aeqrt Vx9MYfwFGhyFJC6EUaOGmFqD78qJBN834B3nfVHLW8fnh0FmQFdRfN2NAyWh4s6L 9ilMU4ihSk7bcFSoBBE+CoQGTuryFzg7EDN1oTJa9vbu5LmUyzLcGrW68Y9XU1j/ mH2PEO0fCdBSX+/JPF9Qw/Z+vrijK3y8bHL+/qpWW837IJJ3vjjKZNZ3b6SYdHth aNV5KrQm8X8mGnObOFYqcMVXjPlCt7vK1KjMuWQGk+FDhYCVUIIXEzjC3qPmrgAx 2EG3gaDoSbdPZeln1lMuo1fyBsyig1C9UEnvy+L8 -----END CERTIFICATE-----Generated at Wed May 13 06:19:20 2026 by rpki-client