$ rpki-client -vvf rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa File: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (raw, json) Hash identifier: 1OPKoVTIZ4FhDqdn69u56tbHHs8Rhg6o9IgAaKOf1j4= Subject key identifier: 3C:E4:C8:72:87:D8:B1:E5:88:6E:14:CA:3C:D1:75:67:7A:79:88:E6 Certificate issuer: /CN=B78CE4D8A632D181FCC23251B7CF41141DBE1467 Certificate serial: 2AEB1FBD69444B9C9BFAF9C2D56048886A909AF5 Authority key identifier: B7:8C:E4:D8:A6:32:D1:81:FC:C2:32:51:B7:CF:41:14:1D:BE:14:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa Signing time: Sun 03 May 2026 02:38:01 +0000 ROA not before: Sun 03 May 2026 02:33:01 +0000 ROA not after: Sun 02 May 2027 02:38:01 +0000 asID: 153096 IP address blocks: 160.25.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.crl rsync://rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:eb:1f:bd:69:44:4b:9c:9b:fa:f9:c2:d5:60:48:88:6a:90:9a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B78CE4D8A632D181FCC23251B7CF41141DBE1467 Validity Not Before: May 3 02:33:01 2026 GMT Not After : May 2 02:38:01 2027 GMT Subject: CN=3CE4C87287D8B1E5886E14CA3CD175677A7988E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0a:44:83:e9:40:03:26:cf:c9:eb:e1:3a:a6: 99:99:94:c6:ec:22:e3:00:d2:5a:ba:98:56:c9:33: da:8d:d9:9b:04:bc:5f:85:46:90:61:3c:91:b7:b0: ce:09:32:5b:9d:14:8f:f8:49:88:ff:ed:ad:4d:7b: e6:61:90:23:eb:46:e8:99:d4:cc:82:b0:c7:67:ec: b6:19:c8:c2:22:74:7a:62:9e:8b:f7:87:7c:e8:1a: 72:94:6a:9e:64:5c:92:21:b9:75:8b:b0:27:0f:72: 31:19:ff:0a:48:22:3f:b9:5b:e9:67:e9:bb:13:b8: b2:74:8c:b2:10:7b:33:11:0d:2f:51:4b:ef:bd:5a: 3e:32:c7:89:7e:7d:18:0e:9d:85:d4:ca:88:48:45: 1a:37:2c:1e:fe:6b:54:ac:84:ac:b1:dd:74:a1:c1: 23:f6:19:50:3c:63:d0:3a:61:a1:9e:73:53:e2:33: 66:39:a9:8a:ff:99:5b:bb:57:7a:d2:64:15:28:04: b6:db:b3:f6:74:4a:f6:01:16:de:2c:7c:94:e0:78: fe:91:fa:bc:0b:c9:8b:52:7e:59:ff:b3:cf:f0:0c: ea:ca:2a:12:d3:b6:5b:3c:8b:84:c9:ae:99:7a:94: 56:bf:4a:f6:1d:41:e7:22:b2:fd:d5:2f:1e:c4:bc: 45:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E4:C8:72:87:D8:B1:E5:88:6E:14:CA:3C:D1:75:67:7A:79:88:E6 X509v3 Authority Key Identifier: keyid:B7:8C:E4:D8:A6:32:D1:81:FC:C2:32:51:B7:CF:41:14:1D:BE:14:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B78CE4D8A632D181FCC23251B7CF41141DBE1467.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.118.0/23 Signature Algorithm: sha256WithRSAEncryption 26:4b:2f:06:14:52:83:b3:d7:4d:88:d0:2d:5c:0f:7d:b7:56: 0c:65:77:2d:bc:bd:f2:40:18:4b:e0:4e:d1:af:38:92:b8:b2: 6f:fe:1a:7e:c9:86:5c:05:dc:4d:66:69:ae:82:48:26:1d:f8: 4d:c3:e4:c4:8e:a1:4b:3e:32:52:93:e1:f2:10:4f:f3:9e:59: ab:93:80:2d:96:6b:79:37:0d:1e:51:d8:b0:14:be:bf:f0:ae: fb:01:5f:38:6f:0d:ea:ad:0b:90:84:87:52:a2:3a:0c:c6:ce: c8:b5:46:06:d3:68:06:d6:bf:d1:99:8d:47:98:c6:89:86:d0: 1c:21:d7:7e:b1:de:cd:49:ca:44:80:46:e2:53:4a:30:c5:fc: a5:aa:31:07:97:04:6d:6a:98:55:de:70:2b:08:f2:1a:61:ed: 89:4b:7a:3e:80:06:76:cd:35:a7:3a:21:ad:7b:a3:da:ea:d1: f0:ed:89:32:4a:ad:e4:83:a9:55:e7:3a:ba:05:fe:7e:62:d9: 93:e5:b4:78:2f:f3:e3:bf:a1:e3:17:f4:da:0d:94:8b:41:65: 73:17:e1:04:54:93:ee:6f:a5:89:a5:05:4b:97:71:3a:76:5e: ab:fd:df:97:12:8d:91:b9:3f:a3:82:5c:36:d3:9f:03:32:d2: 22:f6:ad:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKusfvWlES5yb+vnC1WBIiGqQmvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc4Q0U0RDhBNjMyRDE4MUZDQzIzMjUxQjdDRjQxMTQx REJFMTQ2NzAeFw0yNjA1MDMwMjMzMDFaFw0yNzA1MDIwMjM4MDFaMDMxMTAvBgNV BAMTKDNDRTRDODcyODdEOEIxRTU4ODZFMTRDQTNDRDE3NTY3N0E3OTg4RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVCkSD6UADJs/J6+E6ppmZlMbs IuMA0lq6mFbJM9qN2ZsEvF+FRpBhPJG3sM4JMludFI/4SYj/7a1Ne+ZhkCPrRuiZ 1MyCsMdn7LYZyMIidHpinov3h3zoGnKUap5kXJIhuXWLsCcPcjEZ/wpIIj+5W+ln 6bsTuLJ0jLIQezMRDS9RS++9Wj4yx4l+fRgOnYXUyohIRRo3LB7+a1SshKyx3XSh wSP2GVA8Y9A6YaGec1PiM2Y5qYr/mVu7V3rSZBUoBLbbs/Z0SvYBFt4sfJTgeP6R +rwLyYtSfln/s8/wDOrKKhLTtls8i4TJrpl6lFa/SvYdQecisv3VLx7EvEVVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPOTIcofYseWIbhTKPNF1Z3p5iOYwHwYDVR0j BBgwFoAUt4zk2KYy0YH8wjJRt89BFB2+FGcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjFlNDQ2NjUtZTg0Ni00NTViLWFhMWEtZDVhYjA3ZGVlZGYzLzAvQjc4Q0U0RDhB NjMyRDE4MUZDQzIzMjUxQjdDRjQxMTQxREJFMTQ2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CNzhDRTREOEE2MzJEMTgxRkNDMjMyNTFCN0NGNDExNDFEQkUx NDY3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYxZTQ0NjY1LWU4NDYtNDU1Yi1h YTFhLWQ1YWIwN2RlZWRmMy8wLzMxMzYzMDJlMzIzNTJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBl2MA0GCSqG SIb3DQEBCwUAA4IBAQAmSy8GFFKDs9dNiNAtXA99t1YMZXctvL3yQBhL4E7RrziS uLJv/hp+yYZcBdxNZmmugkgmHfhNw+TEjqFLPjJSk+HyEE/znlmrk4Atlmt5Nw0e UdiwFL6/8K77AV84bw3qrQuQhIdSojoMxs7ItUYG02gG1r/RmY1HmMaJhtAcIdd+ sd7NScpEgEbiU0owxfylqjEHlwRtaphV3nArCPIaYe2JS3o+gAZ2zTWnOiGte6Pa 6tHw7YkySq3kg6lV5zq6Bf5+YtmT5bR4L/Pjv6HjF/TaDZSLQWVzF+EEVJPub6WJ pQVLl3E6dl6r/d+XEo2RuT+jglw2058DMtIi9q2n -----END CERTIFICATE-----Generated at Wed May 13 02:13:39 2026 by rpki-client