$ rpki-client -vvf rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa File: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (raw, json) Hash identifier: U0YPo5BGNsV6sfhS2oiy7oPSHdSgcRKevuF2NKX91Xo= Subject key identifier: 3B:9C:94:1A:B7:FA:1D:2E:49:41:08:13:58:6C:20:01:1D:13:A3:ED Certificate issuer: /CN=9FFB791C09C2A2BF53CF54174A8CA1AD677B3564 Certificate serial: 6CE58E086857D3E648B8F491F85689A82E8DBEF5 Authority key identifier: 9F:FB:79:1C:09:C2:A2:BF:53:CF:54:17:4A:8C:A1:AD:67:7B:35:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa Signing time: Sun 03 May 2026 02:28:59 +0000 ROA not before: Sun 03 May 2026 02:23:59 +0000 ROA not after: Sun 02 May 2027 02:28:59 +0000 asID: 136099 IP address blocks: 160.25.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.crl rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e5:8e:08:68:57:d3:e6:48:b8:f4:91:f8:56:89:a8:2e:8d:be:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFB791C09C2A2BF53CF54174A8CA1AD677B3564 Validity Not Before: May 3 02:23:59 2026 GMT Not After : May 2 02:28:59 2027 GMT Subject: CN=3B9C941AB7FA1D2E49410813586C20011D13A3ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:58:d2:b4:10:e8:8b:c0:ee:79:c4:6e:99:74: 84:93:eb:24:ce:42:2c:ed:b8:75:f7:fc:fc:ff:91: d9:b6:82:38:53:a5:45:d9:e2:f7:7e:b7:b4:02:75: de:08:cd:06:f7:25:bd:30:c1:2f:b2:f1:69:a1:cb: 74:26:90:69:b9:06:04:55:a3:16:15:0d:f2:cb:e0: 2c:99:5b:5f:e3:76:0e:68:f2:bb:dc:50:a9:08:ed: ce:60:0c:d7:ff:8e:f1:69:3a:e3:0a:d1:b4:a8:fa: 25:cc:45:5a:ca:c0:de:94:2c:3e:82:58:88:5a:9f: 0a:00:81:05:50:84:d0:7c:57:05:d6:cd:52:c0:7a: b5:24:9d:33:eb:34:ef:23:41:48:b1:cf:54:e4:d1: 59:f7:7d:da:f5:37:4a:86:7f:72:c9:62:a3:1c:13: 33:25:3a:ac:7e:07:f8:32:d4:34:6c:fc:91:1f:85: 7a:c7:90:03:41:7d:9e:f6:04:7c:96:46:4d:f5:9f: 53:15:75:6c:2f:54:10:17:d3:37:7b:ab:36:d4:f4: 84:17:20:52:33:1c:5d:30:eb:00:82:3e:78:a9:1b: 4c:b6:8a:f9:44:89:79:d6:59:ae:9e:81:e9:8e:a1: 72:e9:da:19:2f:0b:b1:e8:94:0a:1f:9c:e3:3f:2e: 21:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9C:94:1A:B7:FA:1D:2E:49:41:08:13:58:6C:20:01:1D:13:A3:ED X509v3 Authority Key Identifier: keyid:9F:FB:79:1C:09:C2:A2:BF:53:CF:54:17:4A:8C:A1:AD:67:7B:35:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9FFB791C09C2A2BF53CF54174A8CA1AD677B3564.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/0/3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.249.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:26:10:33:7b:2c:da:f8:2a:c2:64:c9:e2:99:83:ed:92:76: 78:86:da:90:6f:40:72:8f:74:08:9b:fb:c1:d9:03:ab:c8:d9: 93:1e:2a:eb:32:9c:1d:86:40:ad:24:df:30:50:dd:70:90:14: e9:b7:65:1d:98:53:55:16:65:fb:a0:41:fc:bc:09:c1:c8:c7: 56:53:bd:67:26:d3:43:2e:05:f1:03:c8:80:1c:81:68:73:74: 90:62:42:d5:9b:8e:cc:4d:74:6f:bb:9d:ba:2d:ee:97:b9:7d: 8d:af:9f:32:b1:ae:ad:0a:48:ee:25:19:67:fb:b5:98:c8:42: 41:fa:e5:fd:5e:c7:49:de:b6:76:c8:4b:f1:52:ba:b0:a4:20: ef:5e:45:53:dd:c3:5f:91:4a:e2:63:7c:88:5f:6f:e8:94:9b: a4:c2:6f:d8:68:71:b7:c4:e8:46:bc:85:59:fa:68:49:38:9d: d0:c2:ce:1f:e4:74:57:9d:1e:53:3b:1b:50:f5:47:5e:5c:32: 66:98:3d:4c:32:7c:95:e2:ab:25:45:2e:c7:56:e5:f7:6d:42: ff:09:5f:de:40:eb:4a:1d:ff:e4:ac:96:bc:89:0f:c0:a8:be: e6:8e:f4:56:cf:93:cb:39:ea:a8:8c:99:f9:45:3f:b3:e3:62: d6:0b:f1:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbOWOCGhX0+ZIuPSR+FaJqC6NvvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQjc5MUMwOUMyQTJCRjUzQ0Y1NDE3NEE4Q0ExQUQ2 NzdCMzU2NDAeFw0yNjA1MDMwMjIzNTlaFw0yNzA1MDIwMjI4NTlaMDMxMTAvBgNV BAMTKDNCOUM5NDFBQjdGQTFEMkU0OTQxMDgxMzU4NkMyMDAxMUQxM0EzRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFWNK0EOiLwO55xG6ZdIST6yTO QiztuHX3/Pz/kdm2gjhTpUXZ4vd+t7QCdd4IzQb3Jb0wwS+y8Wmhy3QmkGm5BgRV oxYVDfLL4CyZW1/jdg5o8rvcUKkI7c5gDNf/jvFpOuMK0bSo+iXMRVrKwN6ULD6C WIhanwoAgQVQhNB8VwXWzVLAerUknTPrNO8jQUixz1Tk0Vn3fdr1N0qGf3LJYqMc EzMlOqx+B/gy1DRs/JEfhXrHkANBfZ72BHyWRk31n1MVdWwvVBAX0zd7qzbU9IQX IFIzHF0w6wCCPnipG0y2ivlEiXnWWa6egemOoXLp2hkvC7HolAofnOM/LiGHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO5yUGrf6HS5JQQgTWGwgAR0To+0wHwYDVR0j BBgwFoAUn/t5HAnCor9Tz1QXSoyhrWd7NWQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDE0MDU1NDUtYzM1ZC00ZGUxLTk2MTgtNDRiNWY0MTdhMzAzLzAvOUZGQjc5MUMw OUMyQTJCRjUzQ0Y1NDE3NEE4Q0ExQUQ2NzdCMzU2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC85RkZCNzkxQzA5QzJBMkJGNTNDRjU0MTc0QThDQTFBRDY3N0Iz NTY0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxNDA1NTQ1LWMzNWQtNGRlMS05 NjE4LTQ0YjVmNDE3YTMwMy8wLzMxMzYzMDJlMzIzNTJlMzIzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn5MA0GCSqG SIb3DQEBCwUAA4IBAQA6JhAzeyza+CrCZMnimYPtknZ4htqQb0Byj3QIm/vB2QOr yNmTHirrMpwdhkCtJN8wUN1wkBTpt2UdmFNVFmX7oEH8vAnByMdWU71nJtNDLgXx A8iAHIFoc3SQYkLVm47MTXRvu526Le6XuX2Nr58ysa6tCkjuJRln+7WYyEJB+uX9 XsdJ3rZ2yEvxUrqwpCDvXkVT3cNfkUriY3yIX2/olJukwm/YaHG3xOhGvIVZ+mhJ OJ3Qws4f5HRXnR5TOxtQ9UdeXDJmmD1MMnyV4qslRS7HVuX3bUL/CV/eQOtKHf/k rJa8iQ/AqL7mjvRWz5PLOeqojJn5RT+z42LWC/HP -----END CERTIFICATE-----Generated at Wed May 13 13:25:08 2026 by rpki-client