$ rpki-client -vvf rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa File: 3136302e32352e35312e302f32342d3234203d3e20313533303831.roa (raw, json) Hash identifier: xnLexvfVVhCVbKeAWwrGqbTG74y7g6OtFXMau20Rt9I= Subject key identifier: 4C:F2:62:D6:E7:E5:D6:ED:BE:91:2D:B7:D7:22:80:1A:1B:83:AA:69 Certificate issuer: /CN=9C7034B698C7FF4F82CC082FF9330FF137728D54 Certificate serial: 7B357F9FED43DFBE50353401732DB9EADEE72AEC Authority key identifier: 9C:70:34:B6:98:C7:FF:4F:82:CC:08:2F:F9:33:0F:F1:37:72:8D:54 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa Signing time: Sun 03 May 2026 02:31:07 +0000 ROA not before: Sun 03 May 2026 02:26:07 +0000 ROA not after: Sun 02 May 2027 02:31:07 +0000 asID: 153081 IP address blocks: 160.25.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.crl rsync://rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:35:7f:9f:ed:43:df:be:50:35:34:01:73:2d:b9:ea:de:e7:2a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C7034B698C7FF4F82CC082FF9330FF137728D54 Validity Not Before: May 3 02:26:07 2026 GMT Not After : May 2 02:31:07 2027 GMT Subject: CN=4CF262D6E7E5D6EDBE912DB7D722801A1B83AA69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:b1:82:31:78:00:07:a4:39:67:de:74:30: 03:52:b7:70:21:cf:7e:9c:9f:00:65:57:66:ce:b1: b8:a8:86:fc:07:67:7b:b4:8a:e6:2d:e0:41:bc:4e: 0d:05:59:8e:4a:d6:8c:fe:31:f1:28:95:8d:6c:66: ef:71:c8:01:2a:d8:59:4b:ff:40:0e:c3:87:04:64: 81:1c:cf:b2:8f:48:8d:05:6d:68:52:25:ef:04:cf: 24:fc:fc:f6:70:fb:aa:4f:44:b0:18:bf:51:65:cb: 90:cc:76:30:d0:3b:0f:af:58:72:88:b5:26:f1:27: 3a:82:cf:03:f5:d2:eb:36:43:96:37:fd:25:72:b3: 07:d8:68:26:5a:ed:30:18:25:a8:4f:ac:05:3e:43: 59:b0:69:a8:d9:44:29:f3:9e:80:c3:6d:c9:52:9b: 57:41:d3:24:d1:1b:08:e5:ad:17:6d:ed:c5:a7:dd: 74:1b:30:aa:bf:23:cc:4d:1d:32:46:e8:2f:15:45: c1:76:27:a8:0c:aa:e9:1e:75:5e:10:c6:a5:57:3f: d4:ef:16:9d:f4:0f:31:e5:75:d2:9c:88:5b:06:d1: 17:e6:c8:d2:ac:2d:09:ef:d9:c2:8e:c7:a8:68:64: 01:2b:26:ba:df:0a:5f:5f:cb:35:fa:94:0b:ce:6b: 8f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F2:62:D6:E7:E5:D6:ED:BE:91:2D:B7:D7:22:80:1A:1B:83:AA:69 X509v3 Authority Key Identifier: keyid:9C:70:34:B6:98:C7:FF:4F:82:CC:08:2F:F9:33:0F:F1:37:72:8D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C7034B698C7FF4F82CC082FF9330FF137728D54.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/49eca50b-5722-4918-8314-859d3c1f55a2/0/3136302e32352e35312e302f32342d3234203d3e20313533303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.51.0/24 Signature Algorithm: sha256WithRSAEncryption 79:1b:27:96:83:fd:6e:6c:27:dc:16:e8:8a:f2:c2:58:da:0a: 94:1a:4d:18:67:70:6f:98:17:01:6d:7f:84:5b:e0:81:e3:90: 1d:c9:40:6d:d6:c1:a8:e1:70:9e:05:4b:df:19:11:f6:bc:4f: e6:5d:9d:d3:68:2d:04:90:00:fb:30:7d:0c:b5:47:91:6e:ad: c5:b0:dc:15:52:d1:6a:1f:f7:04:09:0d:8e:2b:b0:11:1b:c2: 91:04:0b:32:fb:f5:56:c1:d5:c1:d5:5c:fe:15:c3:c1:32:66: fe:e6:25:43:ab:8e:22:52:b9:62:a5:85:fa:e2:f7:65:c8:5f: 98:dc:64:3f:5c:98:f6:64:a5:d3:9e:70:04:ba:7b:86:9f:65: a5:70:58:a5:f0:3a:6b:47:3f:77:12:35:37:3b:f5:c8:d6:b9: 0a:52:96:ff:7e:bc:9d:1b:69:0a:71:11:09:95:b9:8c:39:8a: dd:d1:c1:5a:ee:41:fd:bf:f8:f7:7b:b2:2b:67:2e:6e:7c:60: 2a:0c:77:aa:c4:9f:94:7d:91:e0:3b:21:2d:48:22:12:88:da: 07:53:71:1b:fb:8e:fe:79:06:ac:7b:81:dd:ca:12:a8:ee:61: dd:e1:91:d2:d6:70:ad:8b:12:9c:31:a8:58:44:75:47:7b:ab: fc:a3:ed:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUezV/n+1D375QNTQBcy256t7nKuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM3MDM0QjY5OEM3RkY0RjgyQ0MwODJGRjkzMzBGRjEz NzcyOEQ1NDAeFw0yNjA1MDMwMjI2MDdaFw0yNzA1MDIwMjMxMDdaMDMxMTAvBgNV BAMTKDRDRjI2MkQ2RTdFNUQ2RURCRTkxMkRCN0Q3MjI4MDFBMUI4M0FBNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K7GCMXgAB6Q5Z950MANSt3Ah z36cnwBlV2bOsbiohvwHZ3u0iuYt4EG8Tg0FWY5K1oz+MfEolY1sZu9xyAEq2FlL /0AOw4cEZIEcz7KPSI0FbWhSJe8EzyT8/PZw+6pPRLAYv1Fly5DMdjDQOw+vWHKI tSbxJzqCzwP10us2Q5Y3/SVyswfYaCZa7TAYJahPrAU+Q1mwaajZRCnznoDDbclS m1dB0yTRGwjlrRdt7cWn3XQbMKq/I8xNHTJG6C8VRcF2J6gMqukedV4QxqVXP9Tv Fp30DzHlddKciFsG0RfmyNKsLQnv2cKOx6hoZAErJrrfCl9fyzX6lAvOa4/1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTPJi1ufl1u2+kS231yKAGhuDqmkwHwYDVR0j BBgwFoAUnHA0tpjH/0+CzAgv+TMP8TdyjVQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDllY2E1MGItNTcyMi00OTE4LTgzMTQtODU5ZDNjMWY1NWEyLzAvOUM3MDM0QjY5 OEM3RkY0RjgyQ0MwODJGRjkzMzBGRjEzNzcyOEQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC85QzcwMzRCNjk4QzdGRjRGODJDQzA4MkZGOTMzMEZGMTM3NzI4 RDU0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ5ZWNhNTBiLTU3MjItNDkxOC04 MzE0LTg1OWQzYzFmNTVhMi8wLzMxMzYzMDJlMzIzNTJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMwMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZMzANBgkqhkiG 9w0BAQsFAAOCAQEAeRsnloP9bmwn3BboivLCWNoKlBpNGGdwb5gXAW1/hFvggeOQ HclAbdbBqOFwngVL3xkR9rxP5l2d02gtBJAA+zB9DLVHkW6txbDcFVLRah/3BAkN jiuwERvCkQQLMvv1VsHVwdVc/hXDwTJm/uYlQ6uOIlK5YqWF+uL3ZchfmNxkP1yY 9mSl055wBLp7hp9lpXBYpfA6a0c/dxI1Nzv1yNa5ClKW/368nRtpCnERCZW5jDmK 3dHBWu5B/b/493uyK2cubnxgKgx3qsSflH2R4DshLUgiEojaB1NxG/uO/nkGrHuB 3coSqO5h3eGR0tZwrYsSnDGoWER1R3ur/KPt0A== -----END CERTIFICATE-----Generated at Wed May 13 11:46:31 2026 by rpki-client