$ rpki-client -vvf rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa File: 3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa (raw, json) Hash identifier: jKcMmkxCrjthwE2DnIqjL6jc1f5PWi5F1NKZnZH2qVE= Subject key identifier: AD:A3:63:0D:4F:BF:21:56:D8:70:39:98:13:94:0A:DF:2F:D6:94:B8 Certificate issuer: /CN=C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA Certificate serial: 71E8E36F51F2F20E76B97DD6B7B9C3E7D1D6A0CE Authority key identifier: C6:CB:B3:A9:8D:D4:74:C4:49:70:B8:B4:F0:6C:19:44:C3:BA:05:EA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa Signing time: Sun 03 May 2026 02:26:57 +0000 ROA not before: Sun 03 May 2026 02:21:57 +0000 ROA not after: Sun 02 May 2027 02:26:57 +0000 asID: 153086 IP address blocks: 160.25.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.crl rsync://rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e8:e3:6f:51:f2:f2:0e:76:b9:7d:d6:b7:b9:c3:e7:d1:d6:a0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA Validity Not Before: May 3 02:21:57 2026 GMT Not After : May 2 02:26:57 2027 GMT Subject: CN=ADA3630D4FBF2156D870399813940ADF2FD694B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:8f:f8:8c:0c:ff:9b:aa:e6:34:5e:74:9c: f4:11:37:55:55:eb:c4:8d:20:75:17:c7:63:6c:22: 5f:b7:c4:8c:16:df:ca:d0:18:34:95:a0:dd:70:70: 53:23:1d:fc:45:1a:06:62:e0:79:18:dd:e2:9b:d8: 43:65:fe:4f:37:5c:98:08:2b:41:99:9b:d7:e8:d1: 69:ee:ed:c6:43:3a:c2:ba:d9:95:68:1f:9f:f0:7f: 68:ec:72:25:30:12:5c:cc:6c:50:91:62:d0:db:46: ab:24:a1:f3:cb:55:07:98:92:2b:ba:9a:75:19:93: 73:7b:c8:8c:2b:c3:d5:1d:56:9c:e6:78:50:d5:41: d2:4b:f8:6c:c4:d7:c7:f7:64:e9:b0:5d:8b:83:bf: 96:f3:44:77:80:f7:5b:3a:c5:15:3c:5e:07:cd:53: b3:9f:57:0a:a4:b0:d9:c5:0c:7c:0d:3e:70:41:8f: 7b:32:0f:22:e7:7f:d9:38:b5:27:34:ad:dd:87:14: b9:1c:83:35:c9:ef:51:d6:18:a5:bd:ab:c8:4c:0b: 8b:82:3b:fd:26:cf:54:fd:2a:b3:64:04:69:eb:18: ce:60:65:33:9c:16:1a:85:37:33:e9:d9:a5:50:0e: 96:a6:8f:0b:17:31:80:d9:34:0a:5c:09:3c:b5:8f: ad:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A3:63:0D:4F:BF:21:56:D8:70:39:98:13:94:0A:DF:2F:D6:94:B8 X509v3 Authority Key Identifier: keyid:C6:CB:B3:A9:8D:D4:74:C4:49:70:B8:B4:F0:6C:19:44:C3:BA:05:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/C6CBB3A98DD474C44970B8B4F06C1944C3BA05EA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.219.0/24 Signature Algorithm: sha256WithRSAEncryption a3:d9:f0:98:b7:88:b9:6c:e3:66:a9:b3:cb:ae:6b:aa:4b:94: b9:ce:9b:b8:15:e3:38:31:e7:00:c8:cd:6c:9a:92:fb:86:80: a0:36:b7:cd:b4:e6:7c:49:7c:f8:00:86:53:c1:e0:8e:de:83: cf:05:b7:dc:fa:3e:6c:3e:65:66:23:e2:db:0e:1b:8b:c0:9e: 03:bb:85:e9:9c:06:e3:c5:84:04:dc:0c:49:18:6d:35:1a:14: 1e:2d:89:e1:2d:e5:f1:ef:4f:a9:e2:4c:39:dd:68:45:d9:2e: fc:01:65:7c:1c:51:74:ea:18:48:9f:44:17:3d:99:a0:51:7f: 7a:0b:58:30:fa:b1:1f:2f:b4:27:db:d8:29:70:60:f8:3f:a0: 43:44:00:5d:fd:ab:72:d3:a9:f6:00:77:dc:a6:d8:00:95:8a: 60:14:5f:48:9a:cc:51:fe:a1:5a:8c:ec:3e:e1:e1:0e:d4:17: 19:c0:a5:2d:25:f2:1b:bf:88:55:66:df:3b:ae:d6:c8:55:53: 97:52:bb:bd:42:25:8d:94:01:40:52:7d:11:0f:41:1c:fd:13: df:32:a6:0a:be:f9:1b:39:cc:4b:4a:54:4c:e5:c4:04:f0:e6: e6:65:cd:ce:68:6c:5b:6b:69:29:f1:eb:e9:0e:66:43:c4:e7: 88:f0:ba:c9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcejjb1Hy8g52uX3Wt7nD59HWoM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZDQkIzQTk4REQ0NzRDNDQ5NzBCOEI0RjA2QzE5NDRD M0JBMDVFQTAeFw0yNjA1MDMwMjIxNTdaFw0yNzA1MDIwMjI2NTdaMDMxMTAvBgNV BAMTKEFEQTM2MzBENEZCRjIxNTZEODcwMzk5ODEzOTQwQURGMkZENjk0QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNUY/4jAz/m6rmNF50nPQRN1VV 68SNIHUXx2NsIl+3xIwW38rQGDSVoN1wcFMjHfxFGgZi4HkY3eKb2ENl/k83XJgI K0GZm9fo0Wnu7cZDOsK62ZVoH5/wf2jsciUwElzMbFCRYtDbRqskofPLVQeYkiu6 mnUZk3N7yIwrw9UdVpzmeFDVQdJL+GzE18f3ZOmwXYuDv5bzRHeA91s6xRU8XgfN U7OfVwqksNnFDHwNPnBBj3syDyLnf9k4tSc0rd2HFLkcgzXJ71HWGKW9q8hMC4uC O/0mz1T9KrNkBGnrGM5gZTOcFhqFNzPp2aVQDpamjwsXMYDZNApcCTy1j61jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUraNjDU+/IVbYcDmYE5QK3y/WlLgwHwYDVR0j BBgwFoAUxsuzqY3UdMRJcLi08GwZRMO6BeowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2FmMDdmMTgtNWM0OS00MTI5LWFhNTMtNzA4NWNjZDU3YjYzLzAvQzZDQkIzQTk4 REQ0NzRDNDQ5NzBCOEI0RjA2QzE5NDRDM0JBMDVFQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9DNkNCQjNBOThERDQ3NEM0NDk3MEI4QjRGMDZDMTk0NEMzQkEw NUVBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhZjA3ZjE4LTVjNDktNDEyOS1h YTUzLTcwODVjY2Q1N2I2My8wLzMxMzYzMDJlMzIzNTJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnbMA0GCSqG SIb3DQEBCwUAA4IBAQCj2fCYt4i5bONmqbPLrmuqS5S5zpu4FeM4MecAyM1smpL7 hoCgNrfNtOZ8SXz4AIZTweCO3oPPBbfc+j5sPmVmI+LbDhuLwJ4Du4XpnAbjxYQE 3AxJGG01GhQeLYnhLeXx70+p4kw53WhF2S78AWV8HFF06hhIn0QXPZmgUX96C1gw +rEfL7Qn29gpcGD4P6BDRABd/aty06n2AHfcptgAlYpgFF9ImsxR/qFajOw+4eEO 1BcZwKUtJfIbv4hVZt87rtbIVVOXUru9QiWNlAFAUn0RD0Ec/RPfMqYKvvkbOcxL SlRM5cQE8ObmZc3OaGxba2kp8evpDmZDxOeI8LrJ -----END CERTIFICATE-----Generated at Wed May 13 09:18:00 2026 by rpki-client