$ rpki-client -vvf rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/3136302e32352e3131362e302f32342d3234203d3e20313533303739.roa File: 3136302e32352e3131362e302f32342d3234203d3e20313533303739.roa (raw, json) Hash identifier: jxc7vQHdOIHycwiO9oNFG6v0dLybRsunkkDru5UJgoI= Subject key identifier: D6:FD:E0:0A:1C:F3:24:08:2F:33:E9:06:52:25:E6:8A:05:7E:A3:36 Certificate issuer: /CN=40BEDF113EC28F27A4735C81592F01A9D8F44EF8 Certificate serial: 4F60898A3FDE27165FAE23D6C4B176BB177D52D6 Authority key identifier: 40:BE:DF:11:3E:C2:8F:27:A4:73:5C:81:59:2F:01:A9:D8:F4:4E:F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/3136302e32352e3131362e302f32342d3234203d3e20313533303739.roa Signing time: Sun 03 May 2026 02:30:34 +0000 ROA not before: Sun 03 May 2026 02:25:34 +0000 ROA not after: Sun 02 May 2027 02:30:34 +0000 asID: 153079 IP address blocks: 160.25.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.crl rsync://rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:60:89:8a:3f:de:27:16:5f:ae:23:d6:c4:b1:76:bb:17:7d:52:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40BEDF113EC28F27A4735C81592F01A9D8F44EF8 Validity Not Before: May 3 02:25:34 2026 GMT Not After : May 2 02:30:34 2027 GMT Subject: CN=D6FDE00A1CF324082F33E9065225E68A057EA336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5b:66:32:22:8a:82:3e:d3:dd:c3:78:d8:0d: e8:c8:e5:f4:47:8e:30:bd:c5:48:21:e2:54:89:76: 08:b1:a8:72:88:c7:27:b0:60:69:0a:9c:bf:02:3a: 73:46:cd:f5:d4:64:30:3e:5b:f6:6c:5b:2d:e4:ea: bb:a9:df:08:b0:8b:aa:d9:89:ab:64:f4:5c:5e:ae: 8b:2d:3c:ef:e2:d3:71:7c:e4:66:af:d3:28:d4:af: af:9c:ad:26:4b:ff:53:c6:1c:9d:01:6d:36:e9:76: f0:14:71:d2:b8:a3:31:de:8d:b2:e2:8a:7d:b5:4a: ef:87:fc:74:fb:64:00:36:93:a5:ef:2f:00:d4:57: f3:39:71:df:a0:f9:34:f1:23:e7:8e:b1:5a:e0:2e: 8b:a9:37:8a:a7:3e:8c:6d:6b:02:73:d2:74:4f:09: 19:b6:6c:70:70:5a:03:5f:c5:d0:46:32:0d:12:56: 96:8e:b9:5c:14:35:1b:5a:fc:40:68:53:26:0a:d7: 48:3f:97:ce:25:07:44:f5:98:f4:d0:1f:3b:32:c7: d3:cb:ae:89:80:60:ed:12:e8:75:e8:91:fe:a5:ef: 68:38:86:65:35:ab:22:f3:63:57:03:d8:68:5f:1d: 1f:b0:79:43:8b:b3:05:d7:84:23:51:d9:a6:ca:cf: 64:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FD:E0:0A:1C:F3:24:08:2F:33:E9:06:52:25:E6:8A:05:7E:A3:36 X509v3 Authority Key Identifier: keyid:40:BE:DF:11:3E:C2:8F:27:A4:73:5C:81:59:2F:01:A9:D8:F4:4E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40BEDF113EC28F27A4735C81592F01A9D8F44EF8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/478259d6-2655-4417-bec4-83ef6644f57e/0/3136302e32352e3131362e302f32342d3234203d3e20313533303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.116.0/24 Signature Algorithm: sha256WithRSAEncryption 51:3c:db:f7:a5:f4:05:5e:4d:ef:6d:94:f2:24:2f:64:ea:73: a4:07:40:17:72:af:85:0e:54:6a:fd:52:ec:17:94:23:cf:21: 3f:86:9c:ff:16:7d:68:34:36:b6:6f:b3:04:d8:e0:8a:4c:26: f5:57:41:d4:f2:42:55:1e:5e:c9:24:52:d1:b6:f7:50:1a:61: 1f:6e:df:5e:a0:88:0e:0a:39:54:ec:39:54:b2:55:82:99:28: a8:a1:6b:93:cd:70:c4:1d:c7:bc:4e:3d:d2:79:ec:17:18:bf: 81:15:2a:d5:06:c8:91:74:02:41:9e:d8:86:db:f0:e5:43:b0: 69:c3:f2:c2:ea:93:af:50:d3:5a:48:a9:38:be:09:98:e3:d6: 56:b9:ed:61:e5:94:61:7e:e4:21:12:4c:29:f5:12:c3:03:fe: ab:b8:4c:41:36:14:9a:d7:3a:f4:ab:cf:14:74:cf:c4:3f:f1: 05:a8:fd:75:7b:77:d4:ce:97:14:e3:cc:16:d4:cc:52:5a:a3: 7e:ec:77:c5:4f:00:ed:36:c1:d5:c5:47:99:1e:02:7d:8b:f5: f5:ff:8f:4a:9a:4b:c9:61:11:42:90:c5:de:53:0c:cb:d0:dd: 82:7a:69:d5:66:90:07:da:ba:52:b9:e3:71:d0:f1:a2:9c:d6: 45:56:dc:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT2CJij/eJxZfriPWxLF2uxd9UtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBCRURGMTEzRUMyOEYyN0E0NzM1QzgxNTkyRjAxQTlE OEY0NEVGODAeFw0yNjA1MDMwMjI1MzRaFw0yNzA1MDIwMjMwMzRaMDMxMTAvBgNV BAMTKEQ2RkRFMDBBMUNGMzI0MDgyRjMzRTkwNjUyMjVFNjhBMDU3RUEzMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuW2YyIoqCPtPdw3jYDejI5fRH jjC9xUgh4lSJdgixqHKIxyewYGkKnL8COnNGzfXUZDA+W/ZsWy3k6rup3wiwi6rZ iatk9FxerostPO/i03F85Gav0yjUr6+crSZL/1PGHJ0BbTbpdvAUcdK4ozHejbLi in21Su+H/HT7ZAA2k6XvLwDUV/M5cd+g+TTxI+eOsVrgLoupN4qnPoxtawJz0nRP CRm2bHBwWgNfxdBGMg0SVpaOuVwUNRta/EBoUyYK10g/l84lB0T1mPTQHzsyx9PL romAYO0S6HXokf6l72g4hmU1qyLzY1cD2GhfHR+weUOLswXXhCNR2abKz2R/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1v3gChzzJAgvM+kGUiXmigV+ozYwHwYDVR0j BBgwFoAUQL7fET7Cjyekc1yBWS8Bqdj0TvgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDc4MjU5ZDYtMjY1NS00NDE3LWJlYzQtODNlZjY2NDRmNTdlLzAvNDBCRURGMTEz RUMyOEYyN0E0NzM1QzgxNTkyRjAxQTlEOEY0NEVGOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80MEJFREYxMTNFQzI4RjI3QTQ3MzVDODE1OTJGMDFBOUQ4RjQ0 RUY4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ3ODI1OWQ2LTI2NTUtNDQxNy1i ZWM0LTgzZWY2NjQ0ZjU3ZS8wLzMxMzYzMDJlMzIzNTJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl0MA0GCSqG SIb3DQEBCwUAA4IBAQBRPNv3pfQFXk3vbZTyJC9k6nOkB0AXcq+FDlRq/VLsF5Qj zyE/hpz/Fn1oNDa2b7ME2OCKTCb1V0HU8kJVHl7JJFLRtvdQGmEfbt9eoIgOCjlU 7DlUslWCmSiooWuTzXDEHce8Tj3SeewXGL+BFSrVBsiRdAJBntiG2/DlQ7Bpw/LC 6pOvUNNaSKk4vgmY49ZWue1h5ZRhfuQhEkwp9RLDA/6ruExBNhSa1zr0q88UdM/E P/EFqP11e3fUzpcU48wW1MxSWqN+7HfFTwDtNsHVxUeZHgJ9i/X1/49KmkvJYRFC kMXeUwzL0N2CemnVZpAH2rpSueNx0PGinNZFVtw3 -----END CERTIFICATE-----Generated at Wed May 13 13:28:04 2026 by rpki-client