$ rpki-client -vvf rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/3136302e32352e35382e302f32332d3234203d3e20313532383333.roa File: 3136302e32352e35382e302f32332d3234203d3e20313532383333.roa (raw, json) Hash identifier: C70wRs8+D3qa05IzuPgxi0Gg8OUanZPuCF0j6nRzOxs= Subject key identifier: 8F:64:93:41:BD:61:21:6C:7A:3B:22:C2:CC:8E:60:39:3B:F3:42:A1 Certificate issuer: /CN=A2CABC2E52BF7E65FC501F07AC4834AC7772EE86 Certificate serial: 125CDDA503B171784ACCD7A91948F41E8327A3B6 Authority key identifier: A2:CA:BC:2E:52:BF:7E:65:FC:50:1F:07:AC:48:34:AC:77:72:EE:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/3136302e32352e35382e302f32332d3234203d3e20313532383333.roa Signing time: Sun 03 May 2026 02:29:21 +0000 ROA not before: Sun 03 May 2026 02:24:21 +0000 ROA not after: Sun 02 May 2027 02:29:21 +0000 asID: 152833 IP address blocks: 160.25.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.crl rsync://rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:5c:dd:a5:03:b1:71:78:4a:cc:d7:a9:19:48:f4:1e:83:27:a3:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2CABC2E52BF7E65FC501F07AC4834AC7772EE86 Validity Not Before: May 3 02:24:21 2026 GMT Not After : May 2 02:29:21 2027 GMT Subject: CN=8F649341BD61216C7A3B22C2CC8E60393BF342A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:91:79:cf:27:3c:06:fe:2a:44:f6:4e:74:68: 11:2e:ba:3b:e0:8b:5a:c8:33:c2:63:b0:20:ac:55: dc:80:f7:77:17:8c:f2:6c:c3:b7:30:9f:27:25:fa: 2b:59:93:bc:3c:4c:f3:88:c0:ac:10:34:a1:ee:1c: 5b:2f:ba:1a:b0:34:98:ad:16:d4:39:19:b6:4a:41: 88:1a:e5:8b:c8:6c:4e:cc:56:21:eb:b6:34:59:48: d6:c1:3b:75:bc:9a:0a:2f:e1:91:40:61:bb:d9:f3: ba:8c:04:fa:57:b3:8e:bc:a4:14:07:4f:30:0e:7c: cc:a9:e7:fa:9b:c0:6f:e3:b1:d4:00:5a:1d:ba:ae: e3:b7:4b:29:04:a5:b1:31:e1:b6:b2:df:40:29:3c: 4e:67:a6:d9:d3:9d:c1:7e:ee:11:c7:01:85:19:68: e1:78:d6:b0:04:71:0c:ac:ea:3c:24:06:74:db:98: f9:b6:6a:a4:8b:d4:c7:85:b8:7f:e2:02:fd:ef:c2: da:a2:be:24:aa:70:5d:4b:6b:11:19:c0:3d:7a:78: 52:5c:a7:50:16:98:dc:97:c2:d6:42:a5:c4:e6:c4: f5:7a:88:09:9f:cd:d8:a5:56:7e:e3:6f:80:86:72: f7:d2:98:1d:cd:07:88:97:9c:2e:7f:50:50:cc:c6: 4a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:64:93:41:BD:61:21:6C:7A:3B:22:C2:CC:8E:60:39:3B:F3:42:A1 X509v3 Authority Key Identifier: keyid:A2:CA:BC:2E:52:BF:7E:65:FC:50:1F:07:AC:48:34:AC:77:72:EE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2CABC2E52BF7E65FC501F07AC4834AC7772EE86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/42dab46a-085e-4432-9833-71b8db144d94/0/3136302e32352e35382e302f32332d3234203d3e20313532383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.58.0/23 Signature Algorithm: sha256WithRSAEncryption 72:f6:58:87:b2:00:58:dc:b3:7e:cd:33:b3:31:af:c2:a4:21: 31:78:89:82:29:a6:5d:1f:9f:49:b6:89:cc:cd:58:b6:9e:57: 99:7d:80:24:49:c9:d3:e4:ab:19:c1:14:3d:6c:50:96:2f:65: d1:17:85:a0:1d:14:db:b5:26:da:fd:11:de:96:d4:5d:6c:58: ad:4c:e9:70:5a:f7:1a:db:60:8e:b5:f3:21:01:4f:00:02:ef: a8:28:7e:30:45:0b:61:95:2b:81:4d:b5:84:a1:b4:de:90:d9: d5:bc:e8:5a:3e:8a:22:d8:c2:d0:97:41:e9:ba:88:8d:da:52: 56:b1:01:cf:47:91:4d:fc:2a:6b:38:b0:d5:9e:f8:cb:fa:be: b1:f4:12:38:a1:62:79:5f:9d:e4:b6:10:17:c3:37:68:2f:6f: 5e:36:8a:5e:65:92:fe:46:0a:50:27:17:8d:7b:a3:43:69:6a: 2d:fc:1f:84:db:68:7a:9b:60:6c:5e:79:f2:29:26:28:e3:68: 40:48:27:c1:51:9c:7d:9e:6d:2d:7e:76:69:9b:bf:ef:8d:d1: ae:8c:4d:31:cf:9c:7a:48:2b:34:62:41:89:81:d3:83:5c:15: cc:59:f3:5f:59:27:a7:01:ea:b4:dc:c6:e8:81:39:91:03:50: 92:c6:98:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUElzdpQOxcXhKzNepGUj0HoMno7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJDQUJDMkU1MkJGN0U2NUZDNTAxRjA3QUM0ODM0QUM3 NzcyRUU4NjAeFw0yNjA1MDMwMjI0MjFaFw0yNzA1MDIwMjI5MjFaMDMxMTAvBgNV BAMTKDhGNjQ5MzQxQkQ2MTIxNkM3QTNCMjJDMkNDOEU2MDM5M0JGMzQyQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEkXnPJzwG/ipE9k50aBEuujvg i1rIM8JjsCCsVdyA93cXjPJsw7cwnycl+itZk7w8TPOIwKwQNKHuHFsvuhqwNJit FtQ5GbZKQYga5YvIbE7MViHrtjRZSNbBO3W8mgov4ZFAYbvZ87qMBPpXs468pBQH TzAOfMyp5/qbwG/jsdQAWh26ruO3SykEpbEx4bay30ApPE5nptnTncF+7hHHAYUZ aOF41rAEcQys6jwkBnTbmPm2aqSL1MeFuH/iAv3vwtqiviSqcF1LaxEZwD16eFJc p1AWmNyXwtZCpcTmxPV6iAmfzdilVn7jb4CGcvfSmB3NB4iXnC5/UFDMxkopAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj2STQb1hIWx6OyLCzI5gOTvzQqEwHwYDVR0j BBgwFoAUosq8LlK/fmX8UB8HrEg0rHdy7oYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDJkYWI0NmEtMDg1ZS00NDMyLTk4MzMtNzFiOGRiMTQ0ZDk0LzAvQTJDQUJDMkU1 MkJGN0U2NUZDNTAxRjA3QUM0ODM0QUM3NzcyRUU4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BMkNBQkMyRTUyQkY3RTY1RkM1MDFGMDdBQzQ4MzRBQzc3NzJF RTg2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQyZGFiNDZhLTA4NWUtNDQzMi05 ODMzLTcxYjhkYjE0NGQ5NC8wLzMxMzYzMDJlMzIzNTJlMzUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZOjANBgkqhkiG 9w0BAQsFAAOCAQEAcvZYh7IAWNyzfs0zszGvwqQhMXiJgimmXR+fSbaJzM1Ytp5X mX2AJEnJ0+SrGcEUPWxQli9l0ReFoB0U27Um2v0R3pbUXWxYrUzpcFr3GttgjrXz IQFPAALvqCh+MEULYZUrgU21hKG03pDZ1bzoWj6KItjC0JdB6bqIjdpSVrEBz0eR Tfwqaziw1Z74y/q+sfQSOKFieV+d5LYQF8M3aC9vXjaKXmWS/kYKUCcXjXujQ2lq LfwfhNtoeptgbF558ikmKONoQEgnwVGcfZ5tLX52aZu/743RroxNMc+cekgrNGJB iYHTg1wVzFnzX1knpwHqtNzG6IE5kQNQksaY4Q== -----END CERTIFICATE-----Generated at Wed May 13 07:38:55 2026 by rpki-client