$ rpki-client -vvf rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa File: 3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa (raw, json) Hash identifier: qwKrohM8yd0iJN/MCZ42zzEDzwWYAIoaAZk2ayeImcw= Subject key identifier: 36:88:5F:E8:48:7E:1C:E5:7E:30:3C:A2:63:CA:08:0D:24:04:B6:DD Certificate issuer: /CN=4D687A8309B055D62F3035664A59E96297B81009 Certificate serial: 1BBFEF4B19895477A159B01B59AA662B7399889C Authority key identifier: 4D:68:7A:83:09:B0:55:D6:2F:30:35:66:4A:59:E9:62:97:B8:10:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4D687A8309B055D62F3035664A59E96297B81009.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa Signing time: Sun 03 May 2026 02:26:04 +0000 ROA not before: Sun 03 May 2026 02:21:04 +0000 ROA not after: Sun 02 May 2027 02:26:04 +0000 asID: 153327 IP address blocks: 160.187.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/4D687A8309B055D62F3035664A59E96297B81009.crl rsync://rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/4D687A8309B055D62F3035664A59E96297B81009.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4D687A8309B055D62F3035664A59E96297B81009.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bf:ef:4b:19:89:54:77:a1:59:b0:1b:59:aa:66:2b:73:99:88:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D687A8309B055D62F3035664A59E96297B81009 Validity Not Before: May 3 02:21:04 2026 GMT Not After : May 2 02:26:04 2027 GMT Subject: CN=36885FE8487E1CE57E303CA263CA080D2404B6DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0a:10:97:49:f8:3d:86:8f:2b:c8:fe:1f:ea: 3e:31:b3:c2:56:07:40:63:b3:be:37:46:95:65:0c: 02:0e:33:1d:e4:34:b8:f6:9d:d5:dd:9c:08:c0:bc: 25:27:53:58:ff:82:c0:81:d9:0d:9b:00:e1:42:8d: c7:e4:4a:32:61:ac:7a:ad:02:79:d5:9a:c1:45:0a: 74:34:ba:06:8a:91:60:bd:2d:6e:68:77:39:69:c0: 14:ea:9e:24:c5:03:e1:5c:b4:e3:19:4b:04:c1:dc: 4e:f5:b9:e4:92:af:fd:61:50:e5:2c:e3:72:5e:c4: 3d:68:4a:fa:6b:60:0f:21:8b:25:01:57:06:7d:fc: fd:9a:bb:d3:ca:7a:04:c9:85:32:56:b4:8f:b3:bc: 60:ed:2e:ff:a6:29:e9:05:f7:6f:75:eb:f4:d7:3d: 02:d6:81:79:22:fd:95:f9:ad:ae:c7:ca:72:58:5c: f9:17:fc:fe:d6:55:83:d2:1d:1c:17:58:c3:05:a5: 45:8b:e1:7d:cd:d3:47:4e:f7:a6:80:20:16:54:86: 5b:07:86:60:64:04:cf:4e:55:cd:3d:39:06:89:36: 97:14:ea:2b:9e:72:5d:2f:95:7e:02:49:b7:0f:20: a9:37:4c:23:d7:39:b1:66:8a:40:83:cb:2a:71:0b: f7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:88:5F:E8:48:7E:1C:E5:7E:30:3C:A2:63:CA:08:0D:24:04:B6:DD X509v3 Authority Key Identifier: keyid:4D:68:7A:83:09:B0:55:D6:2F:30:35:66:4A:59:E9:62:97:B8:10:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/4D687A8309B055D62F3035664A59E96297B81009.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4D687A8309B055D62F3035664A59E96297B81009.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38913893-5f64-4a5e-a8d2-5d51ebde473f/0/3136302e3138372e33372e302f32342d3234203d3e20313533333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.37.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:5f:9e:1d:24:92:35:80:58:5e:35:7f:a0:29:b1:f2:c2:52: aa:a4:b4:6d:b1:39:d7:5d:83:59:2b:0f:7e:d9:97:fb:d9:68: 5c:88:96:a2:9a:89:a1:27:1b:44:6a:ce:1f:20:50:27:88:ce: 62:27:61:59:96:f0:ce:01:74:5f:6c:04:f2:e4:a5:92:e9:b0: 3d:3f:3f:f2:bb:52:2a:eb:71:01:10:45:d4:73:88:15:40:9e: d0:68:81:fe:e0:6c:0a:4d:38:1f:0a:e2:46:2a:5d:56:a4:66: 21:e0:59:4d:40:5f:ea:53:c3:ad:40:73:d9:c1:62:2c:b0:fb: 75:26:0f:30:76:75:2b:5b:cb:fe:a5:b9:6d:26:7c:5d:e4:bc: 3f:41:5f:05:38:6d:2d:92:f9:fd:b1:8d:6b:91:45:e6:64:cd: a8:f2:d3:e6:ee:69:c2:39:e9:e5:68:44:02:20:e6:56:5b:17: 4c:8c:e7:cc:34:98:56:18:7d:1f:f7:18:1f:14:1c:c0:56:a3: 7a:c4:af:9e:00:cf:09:bd:aa:31:18:fd:eb:00:e2:92:6b:76: 69:74:24:dd:5b:02:a4:78:ff:c6:ba:d5:1b:5c:fa:cf:fe:b8: 37:73:cd:ae:5a:2b:56:3f:6e:86:7f:67:dc:a0:72:21:de:d1: c2:b0:3d:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG7/vSxmJVHehWbAbWapmK3OZiJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ2ODdBODMwOUIwNTVENjJGMzAzNTY2NEE1OUU5NjI5 N0I4MTAwOTAeFw0yNjA1MDMwMjIxMDRaFw0yNzA1MDIwMjI2MDRaMDMxMTAvBgNV BAMTKDM2ODg1RkU4NDg3RTFDRTU3RTMwM0NBMjYzQ0EwODBEMjQwNEI2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ChCXSfg9ho8ryP4f6j4xs8JW B0Bjs743RpVlDAIOMx3kNLj2ndXdnAjAvCUnU1j/gsCB2Q2bAOFCjcfkSjJhrHqt AnnVmsFFCnQ0ugaKkWC9LW5odzlpwBTqniTFA+FctOMZSwTB3E71ueSSr/1hUOUs 43JexD1oSvprYA8hiyUBVwZ9/P2au9PKegTJhTJWtI+zvGDtLv+mKekF92916/TX PQLWgXki/ZX5ra7HynJYXPkX/P7WVYPSHRwXWMMFpUWL4X3N00dO96aAIBZUhlsH hmBkBM9OVc09OQaJNpcU6iuecl0vlX4CSbcPIKk3TCPXObFmikCDyypxC/cdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNohf6Eh+HOV+MDyiY8oIDSQEtt0wHwYDVR0j BBgwFoAUTWh6gwmwVdYvMDVmSlnpYpe4EAkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg5MTM4OTMtNWY2NC00YTVlLWE4ZDItNWQ1MWViZGU0NzNmLzAvNEQ2ODdBODMw OUIwNTVENjJGMzAzNTY2NEE1OUU5NjI5N0I4MTAwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80RDY4N0E4MzA5QjA1NUQ2MkYzMDM1NjY0QTU5RTk2Mjk3Qjgx MDA5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4OTEzODkzLTVmNjQtNGE1ZS1h OGQyLTVkNTFlYmRlNDczZi8wLzMxMzYzMDJlMzEzODM3MmUzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoLslMA0GCSqG SIb3DQEBCwUAA4IBAQA7X54dJJI1gFheNX+gKbHywlKqpLRtsTnXXYNZKw9+2Zf7 2WhciJaimomhJxtEas4fIFAniM5iJ2FZlvDOAXRfbATy5KWS6bA9Pz/yu1Iq63EB EEXUc4gVQJ7QaIH+4GwKTTgfCuJGKl1WpGYh4FlNQF/qU8OtQHPZwWIssPt1Jg8w dnUrW8v+pbltJnxd5Lw/QV8FOG0tkvn9sY1rkUXmZM2o8tPm7mnCOenlaEQCIOZW WxdMjOfMNJhWGH0f9xgfFBzAVqN6xK+eAM8JvaoxGP3rAOKSa3ZpdCTdWwKkeP/G utUbXPrP/rg3c82uWitWP26Gf2fcoHIh3tHCsD0s -----END CERTIFICATE-----Generated at Wed May 13 04:16:07 2026 by rpki-client