$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: pKqoxMsSkditfNdNVlJUD8CXoWKgYLrnWsbXljXhF2g= Subject key identifier: D1:B0:6B:E2:EF:F6:8A:01:B1:07:66:FA:94:DF:AA:D9:F4:A3:BC:55 Certificate issuer: /CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Certificate serial: 21C14CB27520E59F8E3475D8F8BF2AAA8305B497 Authority key identifier: F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa Signing time: Sun 03 May 2026 02:26:48 +0000 ROA not before: Sun 03 May 2026 02:21:48 +0000 ROA not after: Sun 02 May 2027 02:26:48 +0000 asID: 153123 IP address blocks: 160.187.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c1:4c:b2:75:20:e5:9f:8e:34:75:d8:f8:bf:2a:aa:83:05:b4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Validity Not Before: May 3 02:21:48 2026 GMT Not After : May 2 02:26:48 2027 GMT Subject: CN=D1B06BE2EFF68A01B10766FA94DFAAD9F4A3BC55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7a:04:da:20:6e:84:43:29:74:32:e5:f5:d2: af:d3:9f:99:12:8e:12:5a:1d:f3:0d:e8:0f:14:2f: 70:7a:77:9e:a1:c3:0b:74:f7:db:ed:65:ab:29:83: 13:04:0d:78:73:29:e0:ef:d9:31:b8:48:94:00:8a: 55:c1:d7:a7:61:67:c6:e9:64:55:67:ce:0f:6e:8c: b9:eb:d5:1b:6c:df:fa:85:8f:9f:3d:32:d8:df:d3: db:28:52:2a:d2:96:36:41:82:4f:8f:87:54:f6:6d: 79:89:f0:c0:1b:59:14:1d:4a:4a:eb:8f:be:51:df: 13:43:78:57:03:c1:8d:da:4e:63:ec:2f:f6:0c:4c: df:92:d0:86:8b:cc:68:28:ce:3b:6b:ff:42:59:96: 7f:a8:15:7c:07:53:ea:aa:6a:c3:2f:b3:d0:1e:9d: 6f:00:8e:ad:12:33:10:31:df:1d:7f:b5:3b:ee:ba: 13:f0:00:c7:6d:ef:4a:63:84:cd:c6:ed:97:95:23: e0:1d:7a:b2:3c:5e:4e:95:2f:08:71:aa:36:e0:b6: 7c:09:76:64:93:92:8d:94:f0:35:18:12:a5:bc:81: 74:e5:72:ba:12:34:81:d3:ac:3f:3c:c7:4f:0b:fa: 63:de:64:6f:50:e3:d2:21:bd:6a:8a:34:9c:97:d8: 7a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B0:6B:E2:EF:F6:8A:01:B1:07:66:FA:94:DF:AA:D9:F4:A3:BC:55 X509v3 Authority Key Identifier: keyid:F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.136.0/24 Signature Algorithm: sha256WithRSAEncryption 12:18:bd:3d:13:92:b7:82:dd:5c:be:81:93:b1:3a:68:66:0d: 5b:a0:fe:23:a9:77:95:09:bf:9c:2b:96:fa:b3:f3:d5:a5:1d: 89:1b:27:0c:06:a8:f9:bc:73:a9:4a:62:4d:3d:86:cb:0a:0e: 01:b0:7b:66:5d:a8:e0:6e:c6:e0:99:ce:8e:fe:42:0e:0e:b3: fa:e3:73:b9:ba:0b:29:80:81:fb:75:eb:14:3d:0b:71:f6:65: 01:7e:ff:7c:5a:96:39:db:70:ab:fa:bc:c9:fa:c8:f6:40:61: 71:21:3b:e3:b6:df:c3:21:72:04:ae:c0:62:21:1b:49:e8:5d: b4:d4:98:38:b8:0e:15:d3:74:b7:38:07:d0:73:05:b8:78:aa: d7:37:c6:53:22:d7:d3:8c:08:8c:39:b6:5a:d4:4e:bf:29:e6: c4:b9:11:1e:aa:3d:7b:a4:1d:bf:40:31:b2:79:b7:aa:a8:f0: 7d:c0:0b:df:f8:88:16:7e:bf:46:5d:91:87:c3:66:10:5f:e6: 71:dc:54:38:a4:ea:25:b0:9d:18:8a:10:5b:a0:b3:09:fd:a3: 0b:bc:ff:7f:36:d0:b8:91:a3:f2:21:6b:35:94:55:52:fb:04: 44:4a:aa:e6:ba:c3:c4:c2:dc:15:88:59:50:6b:fd:e0:a0:bc: 88:76:c1:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIcFMsnUg5Z+ONHXY+L8qqoMFtJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBMkIyMzQ3Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1 NERGRDFFOTAeFw0yNjA1MDMwMjIxNDhaFw0yNzA1MDIwMjI2NDhaMDMxMTAvBgNV BAMTKEQxQjA2QkUyRUZGNjhBMDFCMTA3NjZGQTk0REZBQUQ5RjRBM0JDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdegTaIG6EQyl0MuX10q/Tn5kS jhJaHfMN6A8UL3B6d56hwwt099vtZaspgxMEDXhzKeDv2TG4SJQAilXB16dhZ8bp ZFVnzg9ujLnr1Rts3/qFj589Mtjf09soUirSljZBgk+Ph1T2bXmJ8MAbWRQdSkrr j75R3xNDeFcDwY3aTmPsL/YMTN+S0IaLzGgozjtr/0JZln+oFXwHU+qqasMvs9Ae nW8Ajq0SMxAx3x1/tTvuuhPwAMdt70pjhM3G7ZeVI+AderI8Xk6VLwhxqjbgtnwJ dmSTko2U8DUYEqW8gXTlcroSNIHTrD88x08L+mPeZG9Q49IhvWqKNJyX2HopAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0bBr4u/2igGxB2b6lN+q2fSjvFUwHwYDVR0j BBgwFoAU86KyNHaFii8h/JGCu6ktw1Tf0ekwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E5MjMzOTctOGNmOC00Y2VmLTg4NTYtMGQyNjhkNzNlZGIxLzAvRjNBMkIyMzQ3 Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1NERGRDFFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GM0EyQjIzNDc2ODU4QTJGMjFGQzkxODJCQkE5MkRDMzU0REZE MUU5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4gwDQYJ KoZIhvcNAQELBQADggEBABIYvT0TkreC3Vy+gZOxOmhmDVug/iOpd5UJv5wrlvqz 89WlHYkbJwwGqPm8c6lKYk09hssKDgGwe2ZdqOBuxuCZzo7+Qg4Os/rjc7m6CymA gft16xQ9C3H2ZQF+/3xaljnbcKv6vMn6yPZAYXEhO+O238MhcgSuwGIhG0noXbTU mDi4DhXTdLc4B9BzBbh4qtc3xlMi19OMCIw5tlrUTr8p5sS5ER6qPXukHb9AMbJ5 t6qo8H3AC9/4iBZ+v0ZdkYfDZhBf5nHcVDik6iWwnRiKEFugswn9owu8/3820LiR o/IhazWUVVL7BERKqua6w8TC3BWIWVBr/eCgvIh2wW4= -----END CERTIFICATE-----Generated at Wed May 13 09:37:38 2026 by rpki-client