$ rpki-client -vvf rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa File: 3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa (raw, json) Hash identifier: lknjz+xGrn74yDQTZoQhv/KjNKL2zVYWd4Swco59gWA= Subject key identifier: B8:A6:1D:A3:06:28:68:2D:0A:04:36:62:B1:54:C9:F5:06:0B:A1:29 Certificate issuer: /CN=A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F Certificate serial: 12AA50310A1D44F666B8E86778B612BECB53BA7E Authority key identifier: A9:E8:D2:C4:5D:82:0C:1F:C4:0B:CF:03:B9:B1:06:99:99:2D:8B:2F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa Signing time: Sun 03 May 2026 02:30:50 +0000 ROA not before: Sun 03 May 2026 02:25:50 +0000 ROA not after: Sun 02 May 2027 02:30:50 +0000 asID: 153132 IP address blocks: 160.187.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.crl rsync://rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:aa:50:31:0a:1d:44:f6:66:b8:e8:67:78:b6:12:be:cb:53:ba:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F Validity Not Before: May 3 02:25:50 2026 GMT Not After : May 2 02:30:50 2027 GMT Subject: CN=B8A61DA30628682D0A043662B154C9F5060BA129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3d:80:fb:d8:8e:fd:26:b2:87:a6:17:9c:c7: 8d:d6:5c:cd:d6:ac:b9:c4:dc:da:c7:ac:37:09:f5: c0:d3:d0:47:c4:26:26:36:b8:50:73:86:e5:08:99: a4:29:97:ae:9b:db:3d:48:d1:2d:d2:a8:49:7c:cb: 7c:75:c7:74:72:9d:e5:1c:da:e1:f5:23:bc:2e:85: 4b:e6:40:e1:d7:b3:60:f9:f9:21:b0:34:96:e7:2f: 93:11:2b:09:3e:11:7b:8c:73:12:81:bd:d2:18:5a: b1:55:67:a2:c5:03:f9:a1:45:f2:f6:42:c9:fa:6a: 61:78:2a:f0:4b:fd:b6:12:f0:47:3c:27:a4:c3:3e: f2:ae:84:c2:dc:7a:39:f1:75:5d:40:d9:2a:c8:f7: 45:31:4a:13:70:aa:b8:2e:f4:88:13:e4:0d:f6:36: 5c:f1:db:90:3f:bb:77:79:35:d5:2a:fc:d7:ab:21: 5d:95:b5:5a:d0:fa:f3:68:fa:d8:4e:89:57:21:8f: cb:31:c4:3c:ce:af:b4:15:82:35:23:21:48:8f:74: 97:06:7b:50:92:f7:f4:62:7e:9f:4b:8f:1b:92:32: 10:44:37:46:45:37:30:73:8e:88:23:20:fd:65:d7: 7b:a8:ab:b7:8b:0f:ca:9a:bf:a7:6d:4c:84:11:a9: ba:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A6:1D:A3:06:28:68:2D:0A:04:36:62:B1:54:C9:F5:06:0B:A1:29 X509v3 Authority Key Identifier: keyid:A9:E8:D2:C4:5D:82:0C:1F:C4:0B:CF:03:B9:B1:06:99:99:2D:8B:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A9E8D2C45D820C1FC40BCF03B9B10699992D8B2F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/481d54cb-57a9-4a16-a70e-c5f6024e139d/0/3136302e3138372e3231392e302f32342d3234203d3e20313533313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.219.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:26:e2:8f:94:b6:e5:00:39:e1:f6:78:c2:18:5b:2d:c0:6d: ad:37:67:61:e0:ba:78:c5:c1:ec:a1:23:f1:2a:5c:7a:ea:1b: c4:a0:f4:10:5f:20:8e:74:05:a7:bd:7f:c7:82:5e:27:74:f1: f3:05:17:21:0d:e2:c2:e3:25:ae:c7:d3:f2:a1:4e:c5:b8:22: 53:7f:41:34:f6:f4:c6:6d:81:f4:8c:10:aa:2f:18:9a:a7:89: 49:bc:28:48:df:1c:d6:28:c5:0c:cc:34:56:81:9c:4c:43:cc: 49:8a:01:0e:03:dc:9e:fa:6c:a1:98:08:00:a2:fb:74:97:52: 92:45:67:76:18:c7:99:65:07:71:18:b6:f4:14:89:11:b2:29: 9a:89:2c:cb:24:9a:64:14:10:9c:ed:f5:c6:9b:8d:ed:4c:a2: 9a:4e:1b:48:96:4b:64:94:b3:cc:c3:ed:7d:a2:b6:c9:e4:1f: 17:25:16:40:f3:8b:0f:58:e8:5a:4b:3f:89:66:49:26:da:9a: e6:60:f0:2c:c3:2e:8e:ee:cf:62:db:67:a2:d3:26:fa:c5:81: 4d:65:04:80:ba:7a:20:b4:e5:bb:f4:3f:16:67:2e:3f:02:6e: f9:c0:2b:b2:f3:80:79:86:79:f3:b1:01:6b:e3:41:98:fe:6c: b5:bb:cd:b5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEqpQMQodRPZmuOhneLYSvstTun4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOEQyQzQ1RDgyMEMxRkM0MEJDRjAzQjlCMTA2OTk5 OTJEOEIyRjAeFw0yNjA1MDMwMjI1NTBaFw0yNzA1MDIwMjMwNTBaMDMxMTAvBgNV BAMTKEI4QTYxREEzMDYyODY4MkQwQTA0MzY2MkIxNTRDOUY1MDYwQkExMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfPYD72I79JrKHphecx43WXM3W rLnE3NrHrDcJ9cDT0EfEJiY2uFBzhuUImaQpl66b2z1I0S3SqEl8y3x1x3RyneUc 2uH1I7wuhUvmQOHXs2D5+SGwNJbnL5MRKwk+EXuMcxKBvdIYWrFVZ6LFA/mhRfL2 Qsn6amF4KvBL/bYS8Ec8J6TDPvKuhMLcejnxdV1A2SrI90UxShNwqrgu9IgT5A32 Nlzx25A/u3d5NdUq/NerIV2VtVrQ+vNo+thOiVchj8sxxDzOr7QVgjUjIUiPdJcG e1CS9/Rifp9LjxuSMhBEN0ZFNzBzjogjIP1l13uoq7eLD8qav6dtTIQRqbpRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuKYdowYoaC0KBDZisVTJ9QYLoSkwHwYDVR0j BBgwFoAUqejSxF2CDB/EC88DubEGmZktiy8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDgxZDU0Y2ItNTdhOS00YTE2LWE3MGUtYzVmNjAyNGUxMzlkLzAvQTlFOEQyQzQ1 RDgyMEMxRkM0MEJDRjAzQjlCMTA2OTk5OTJEOEIyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BOUU4RDJDNDVEODIwQzFGQzQwQkNGMDNCOUIxMDY5OTk5MkQ4 QjJGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ4MWQ1NGNiLTU3YTktNGExNi1h NzBlLWM1ZjYwMjRlMTM5ZC8wLzMxMzYzMDJlMzEzODM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu9swDQYJ KoZIhvcNAQELBQADggEBAA4m4o+UtuUAOeH2eMIYWy3Aba03Z2HgunjFweyhI/Eq XHrqG8Sg9BBfII50Bae9f8eCXid08fMFFyEN4sLjJa7H0/KhTsW4IlN/QTT29MZt gfSMEKovGJqniUm8KEjfHNYoxQzMNFaBnExDzEmKAQ4D3J76bKGYCACi+3SXUpJF Z3YYx5llB3EYtvQUiRGyKZqJLMskmmQUEJzt9cabje1MoppOG0iWS2SUs8zD7X2i tsnkHxclFkDziw9Y6FpLP4lmSSbamuZg8CzDLo7uz2LbZ6LTJvrFgU1lBIC6eiC0 5bv0PxZnLj8CbvnAK7LzgHmGefOxAWvjQZj+bLW7zbU= -----END CERTIFICATE-----Generated at Wed May 13 13:04:20 2026 by rpki-client