$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: ZARDKeLuUjv0/uwtpRdqxRMtS+4kniX7e0CY2G2q/tM= Subject key identifier: EF:F9:03:84:6E:D7:CA:6D:5A:F1:E1:75:B9:CA:CE:F5:BD:75:C2:02 Certificate issuer: /CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Certificate serial: 6918D5FEFC04BDFAFEDCB5CD8DD83558D0910AE5 Authority key identifier: F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa Signing time: Sun 03 May 2026 02:26:48 +0000 ROA not before: Sun 03 May 2026 02:21:48 +0000 ROA not after: Sun 02 May 2027 02:26:48 +0000 asID: 153123 IP address blocks: 160.187.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:18:d5:fe:fc:04:bd:fa:fe:dc:b5:cd:8d:d8:35:58:d0:91:0a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Validity Not Before: May 3 02:21:48 2026 GMT Not After : May 2 02:26:48 2027 GMT Subject: CN=EFF903846ED7CA6D5AF1E175B9CACEF5BD75C202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:00:b7:16:b4:bc:ba:b7:36:b4:0e:07:95:bc: 22:0f:34:54:2f:0f:8c:44:e9:71:9e:d5:c6:ab:6a: b5:e0:68:ea:bc:f7:d4:5b:0f:23:66:eb:22:24:f6: f4:d4:33:47:e2:b9:d5:30:d9:73:02:05:42:9f:d0: 04:b6:0c:90:25:a2:f3:1b:cb:db:8f:96:95:03:2c: 93:a7:6b:70:37:35:a2:d0:d3:c6:ca:a7:3c:59:df: 02:bb:45:06:e5:bf:e5:92:8e:0e:ae:b6:c0:9f:0b: c4:16:38:06:e0:80:35:b9:aa:b9:b2:2d:25:4e:b6: 49:ff:17:d2:46:9d:1a:c3:6e:26:73:99:52:3f:e3: 02:22:d7:a9:4e:32:93:87:b5:72:f0:4e:e9:3f:c0: 54:f2:d7:45:52:86:81:31:ed:7e:5d:18:09:ac:46: 13:c4:7d:00:4a:61:51:ce:64:57:52:94:0c:48:14: 7f:31:c0:84:d4:88:b0:c9:98:a8:87:80:c0:90:cd: 2d:68:d8:0c:74:99:81:d6:1b:16:15:10:7f:36:f3: 2a:26:d9:71:f1:80:8b:d6:ff:22:bb:b0:67:bb:9c: 5e:ac:ef:7a:d4:47:fb:e5:6a:26:6f:2f:9a:7f:0d: 5b:84:d7:64:c9:87:cd:53:30:13:aa:71:2a:9d:ca: a4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F9:03:84:6E:D7:CA:6D:5A:F1:E1:75:B9:CA:CE:F5:BD:75:C2:02 X509v3 Authority Key Identifier: keyid:F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.137.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7a:c8:31:0f:2b:b3:43:15:f8:d0:f3:b6:c4:91:0a:57:bd: 95:f6:d0:97:a8:5d:50:17:50:72:39:5f:18:0f:02:54:e7:d3: 80:db:a4:73:f5:80:2f:28:c8:c7:cb:08:99:6c:82:4f:d8:10: 1c:bf:dd:c4:8e:c3:73:c8:b9:63:ff:fa:45:d7:87:fd:73:8a: fb:4f:f4:fb:2a:ea:01:ec:d0:57:20:f8:af:53:47:e4:cd:9e: 71:4b:22:5c:f9:ee:6e:48:16:bb:53:1b:d4:05:e4:fa:ab:ca: 92:a1:0a:05:08:d3:bb:33:6c:71:3d:34:88:04:6d:2f:e5:41: 72:1a:7a:8d:96:f0:9c:53:4a:ff:df:51:c5:ed:1f:11:1a:fa: 26:c7:b4:93:7d:b6:d0:ed:98:da:3f:6d:c9:fc:e9:6f:d4:de: 98:4e:d9:a5:52:02:70:fc:7c:77:da:26:1d:95:13:84:6c:06: f9:04:6e:19:c9:88:b6:c4:1f:bc:80:d1:21:d1:38:54:cd:80: 2d:3e:57:d5:96:38:24:53:c9:eb:3f:be:17:30:07:3c:51:70: da:88:a3:a4:92:fd:d9:31:92:63:2c:55:96:0d:37:5b:6e:ca: 17:95:05:5e:d8:70:eb:35:82:ad:3e:3b:e6:a2:68:4e:d6:ad: 87:ed:0b:7c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaRjV/vwEvfr+3LXNjdg1WNCRCuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBMkIyMzQ3Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1 NERGRDFFOTAeFw0yNjA1MDMwMjIxNDhaFw0yNzA1MDIwMjI2NDhaMDMxMTAvBgNV BAMTKEVGRjkwMzg0NkVEN0NBNkQ1QUYxRTE3NUI5Q0FDRUY1QkQ3NUMyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzALcWtLy6tza0DgeVvCIPNFQv D4xE6XGe1cararXgaOq899RbDyNm6yIk9vTUM0fiudUw2XMCBUKf0AS2DJAlovMb y9uPlpUDLJOna3A3NaLQ08bKpzxZ3wK7RQblv+WSjg6utsCfC8QWOAbggDW5qrmy LSVOtkn/F9JGnRrDbiZzmVI/4wIi16lOMpOHtXLwTuk/wFTy10VShoEx7X5dGAms RhPEfQBKYVHOZFdSlAxIFH8xwITUiLDJmKiHgMCQzS1o2Ax0mYHWGxYVEH828yom 2XHxgIvW/yK7sGe7nF6s73rUR/vlaiZvL5p/DVuE12TJh81TMBOqcSqdyqTxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7/kDhG7Xym1a8eF1ucrO9b11wgIwHwYDVR0j BBgwFoAU86KyNHaFii8h/JGCu6ktw1Tf0ekwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E5MjMzOTctOGNmOC00Y2VmLTg4NTYtMGQyNjhkNzNlZGIxLzAvRjNBMkIyMzQ3 Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1NERGRDFFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GM0EyQjIzNDc2ODU4QTJGMjFGQzkxODJCQkE5MkRDMzU0REZE MUU5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4kwDQYJ KoZIhvcNAQELBQADggEBACh6yDEPK7NDFfjQ87bEkQpXvZX20JeoXVAXUHI5XxgP AlTn04DbpHP1gC8oyMfLCJlsgk/YEBy/3cSOw3PIuWP/+kXXh/1zivtP9Psq6gHs 0Fcg+K9TR+TNnnFLIlz57m5IFrtTG9QF5PqrypKhCgUI07szbHE9NIgEbS/lQXIa eo2W8JxTSv/fUcXtHxEa+ibHtJN9ttDtmNo/bcn86W/U3phO2aVSAnD8fHfaJh2V E4RsBvkEbhnJiLbEH7yA0SHROFTNgC0+V9WWOCRTyes/vhcwBzxRcNqIo6SS/dkx kmMsVZYNN1tuyheVBV7YcOs1gq0+O+aiaE7WrYftC3w= -----END CERTIFICATE-----Generated at Wed May 13 09:54:33 2026 by rpki-client