$ rpki-client -vvf rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: PZ7lOFKqUMwR2D2Tglk0+36W1k5KKwpsrA3YAIXAdvU= Subject key identifier: D3:97:72:AD:EB:22:ED:E5:19:44:59:D8:73:EB:E6:29:14:9D:9A:62 Certificate issuer: /CN=20B75971A03105CC77AE06D20D23D95EBAFC11D2 Certificate serial: 264180CB08A3EBAC09600C4292E29A74AA547B20 Authority key identifier: 20:B7:59:71:A0:31:05:CC:77:AE:06:D2:0D:23:D9:5E:BA:FC:11:D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Sun 03 May 2026 02:32:10 +0000 ROA not before: Sun 03 May 2026 02:27:10 +0000 ROA not after: Sun 02 May 2027 02:32:10 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.crl rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:41:80:cb:08:a3:eb:ac:09:60:0c:42:92:e2:9a:74:aa:54:7b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B75971A03105CC77AE06D20D23D95EBAFC11D2 Validity Not Before: May 3 02:27:10 2026 GMT Not After : May 2 02:32:10 2027 GMT Subject: CN=D39772ADEB22EDE5194459D873EBE629149D9A62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:27:bf:96:15:a3:ec:4e:04:4c:d3:ba:10: cd:6b:2b:d7:e5:b0:1f:a7:44:98:0b:dd:ae:c3:39: 03:dc:ac:a1:a4:e3:90:94:97:6f:41:28:ee:e7:e8: 30:0a:1e:22:96:3c:ba:03:54:f7:0f:f5:09:4b:71: db:50:6a:a9:c5:7b:f3:1a:a8:ea:30:7a:46:e4:ff: 10:9d:5d:7b:7a:8b:a3:cc:93:cb:6d:10:a3:c2:23: 95:f0:d9:bb:95:d4:e7:d8:02:17:f6:fe:7e:f9:d8: ef:6b:c9:fd:3a:af:d8:65:8d:46:61:8d:e6:29:35: 11:2c:bd:8e:aa:6f:7c:f1:84:75:c9:85:e5:6d:41: 52:45:82:8a:0b:c8:41:cf:37:43:90:30:ee:bd:12: 63:14:ed:ce:5a:8c:ad:ea:7d:3b:25:b3:c1:85:e5: 47:21:96:28:82:a5:20:9e:1a:d4:57:ae:28:32:46: 94:8c:06:bb:36:c7:55:6b:02:4a:ac:82:f8:ff:66: ef:04:8a:09:2f:d8:e9:0f:07:17:29:97:dc:40:a3: 86:dd:72:48:03:19:f3:46:85:56:09:5b:93:9f:cc: bd:82:ea:ff:2c:76:61:fd:9a:26:93:e2:5d:92:31: cd:6c:3b:ae:b4:04:d2:cc:16:55:d0:19:c7:d5:54: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:97:72:AD:EB:22:ED:E5:19:44:59:D8:73:EB:E6:29:14:9D:9A:62 X509v3 Authority Key Identifier: keyid:20:B7:59:71:A0:31:05:CC:77:AE:06:D2:0D:23:D9:5E:BA:FC:11:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 32:dd:20:7a:93:a9:12:ad:c2:28:fd:5b:ae:87:e7:ee:2c:63: 6c:bc:85:39:5e:28:a6:db:77:62:70:97:67:25:ef:9a:69:7f: f5:a1:de:21:31:de:5b:a8:12:1f:1d:ff:a6:22:9c:20:3d:d8: 14:44:2e:06:1c:ee:fb:fc:d3:22:3f:c2:ed:5f:94:d9:7d:56: 72:ed:49:6c:26:fd:06:8d:a1:f6:fa:45:67:0c:9e:f8:06:12: 54:e5:54:0f:52:a8:e8:b2:32:8b:84:2c:cf:de:16:5f:2f:81: e3:64:0b:d3:09:af:26:3b:4d:d3:0c:49:88:e6:f5:10:88:bc: 25:92:ad:c2:8f:eb:bc:23:3b:77:0d:00:82:75:65:0f:85:d2: 05:09:d2:6e:e3:98:58:75:9c:2b:29:63:dd:f7:38:be:ce:8a: b0:9b:48:23:89:37:12:f2:1d:02:04:d9:ab:71:83:51:cd:3f: ee:bc:17:72:b5:00:c2:54:8d:62:4d:cf:25:b7:4c:d2:c1:cb: dc:75:ac:1c:c6:a3:12:84:e7:4e:d0:e8:b0:62:68:cc:9e:e3: 4b:56:b2:08:6b:a8:bc:53:af:33:9a:70:2b:b9:bf:30:c8:8c: 90:6c:25:a9:9f:70:05:86:43:b2:61:b4:0a:3f:df:3f:1e:91: 83:5f:57:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJkGAywij66wJYAxCkuKadKpUeyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCNzU5NzFBMDMxMDVDQzc3QUUwNkQyMEQyM0Q5NUVC QUZDMTFEMjAeFw0yNjA1MDMwMjI3MTBaFw0yNzA1MDIwMjMyMTBaMDMxMTAvBgNV BAMTKEQzOTc3MkFERUIyMkVERTUxOTQ0NTlEODczRUJFNjI5MTQ5RDlBNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbNie/lhWj7E4ETNO6EM1rK9fl sB+nRJgL3a7DOQPcrKGk45CUl29BKO7n6DAKHiKWPLoDVPcP9QlLcdtQaqnFe/Ma qOowekbk/xCdXXt6i6PMk8ttEKPCI5Xw2buV1OfYAhf2/n752O9ryf06r9hljUZh jeYpNREsvY6qb3zxhHXJheVtQVJFgooLyEHPN0OQMO69EmMU7c5ajK3qfTsls8GF 5UchliiCpSCeGtRXrigyRpSMBrs2x1VrAkqsgvj/Zu8Eigkv2OkPBxcpl9xAo4bd ckgDGfNGhVYJW5OfzL2C6v8sdmH9miaT4l2SMc1sO660BNLMFlXQGcfVVB7VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU05dyresi7eUZRFnYc+vmKRSdmmIwHwYDVR0j BBgwFoAUILdZcaAxBcx3rgbSDSPZXrr8EdIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGUzNzRkNDgtNWE3MC00YzdmLWJkZmQtZDgwNTJlYmFmMGFiLzAvMjBCNzU5NzFB MDMxMDVDQzc3QUUwNkQyMEQyM0Q5NUVCQUZDMTFEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yMEI3NTk3MUEwMzEwNUNDNzdBRTA2RDIwRDIzRDk1RUJBRkMx MUQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRlMzc0ZDQ4LTVhNzAtNGM3Zi1i ZGZkLWQ4MDUyZWJhZjBhYi8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEAMt0gepOpEq3CKP1brofn7ixjbLyFOV4optt3YnCXZyXvmml/ 9aHeITHeW6gSHx3/piKcID3YFEQuBhzu+/zTIj/C7V+U2X1Wcu1JbCb9Bo2h9vpF Zwye+AYSVOVUD1Ko6LIyi4Qsz94WXy+B42QL0wmvJjtN0wxJiOb1EIi8JZKtwo/r vCM7dw0AgnVlD4XSBQnSbuOYWHWcKylj3fc4vs6KsJtII4k3EvIdAgTZq3GDUc0/ 7rwXcrUAwlSNYk3PJbdM0sHL3HWsHMajEoTnTtDosGJozJ7jS1ayCGuovFOvM5pw K7m/MMiMkGwlqZ9wBYZDsmG0Cj/fPx6Rg19XLQ== -----END CERTIFICATE-----Generated at Wed May 13 01:38:29 2026 by rpki-client