$ rpki-client -vvf rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa File: 3136302e31392e31362e302f32342d3234203d3e20313532303733.roa (raw, json) Hash identifier: opRYiyX8Gzxcov3p6XrBWNKwC4F/IpDzv8/YLsBUDfE= Subject key identifier: D2:1C:2A:9B:AA:3F:9E:C5:95:86:96:24:B4:CC:E2:86:8E:18:FE:67 Certificate issuer: /CN=6D171A25D57FF823724FB6208343D200F64CBBB9 Certificate serial: 3533238A1C3CD3B010C3A35658CD773CD5742994 Authority key identifier: 6D:17:1A:25:D5:7F:F8:23:72:4F:B6:20:83:43:D2:00:F6:4C:BB:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa Signing time: Sun 03 May 2026 02:42:37 +0000 ROA not before: Sun 03 May 2026 02:37:37 +0000 ROA not after: Sun 02 May 2027 02:42:37 +0000 asID: 152073 IP address blocks: 160.19.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.crl rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:33:23:8a:1c:3c:d3:b0:10:c3:a3:56:58:cd:77:3c:d5:74:29:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D171A25D57FF823724FB6208343D200F64CBBB9 Validity Not Before: May 3 02:37:37 2026 GMT Not After : May 2 02:42:37 2027 GMT Subject: CN=D21C2A9BAA3F9EC595869624B4CCE2868E18FE67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3e:5f:7c:f0:8b:10:95:0c:d4:fc:10:eb:d5: 16:95:0b:0c:17:9d:39:8f:19:19:21:82:1b:24:8b: 9f:b2:83:05:5d:44:61:9e:04:2d:79:92:12:f0:9a: c9:d9:f8:0d:b5:87:60:fb:90:7a:c5:11:38:dc:9f: 90:e7:d4:b8:3a:68:e5:0c:95:67:7a:ba:6a:e1:46: 56:97:96:56:d8:92:ee:fc:7e:36:8e:b8:f0:49:0b: 76:12:38:29:57:d9:49:4f:5e:e8:fa:81:65:7a:f1: ee:74:27:f9:1f:4d:7f:15:5f:68:2b:11:11:8a:19: 61:f2:8c:cf:bf:f5:1c:5c:70:9b:15:09:a5:d7:c3: cf:f8:6c:21:1e:00:b3:4a:3d:13:e0:00:57:cc:fa: c9:d1:73:27:ba:93:4c:ca:80:f5:c8:dc:09:2d:f6: ae:a6:09:7c:57:69:c8:7b:34:77:b8:e4:60:e4:4b: 26:be:35:42:aa:5c:6c:4c:4d:ca:80:9d:b2:c9:1d: 8c:08:c7:e6:6f:a8:03:6a:81:74:f9:82:6a:75:82: e5:da:d2:7b:f5:0e:aa:ff:12:c9:40:25:09:b8:c2: 25:bf:3b:2a:f5:ae:c9:4c:70:db:b6:32:5b:82:ca: 25:62:7b:c5:9c:a9:06:e4:5f:02:5d:49:75:0d:88: a5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1C:2A:9B:AA:3F:9E:C5:95:86:96:24:B4:CC:E2:86:8E:18:FE:67 X509v3 Authority Key Identifier: keyid:6D:17:1A:25:D5:7F:F8:23:72:4F:B6:20:83:43:D2:00:F6:4C:BB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31362e302f32342d3234203d3e20313532303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:62:b1:b1:5f:42:9b:4c:fc:50:9d:95:31:e0:c8:12:a8:3c: 88:17:99:fd:05:56:14:e3:28:3d:c5:4b:3e:46:be:d7:0d:6b: a2:c7:e2:db:e0:32:7b:c2:cd:00:3a:a7:e6:67:04:0c:57:5f: 7b:a3:a6:d4:db:54:71:9c:05:5b:14:e1:ca:c1:85:c2:bb:9e: 69:02:18:17:c3:a2:44:d2:ae:4e:7f:3a:b5:17:40:62:11:2d: fe:e1:cb:92:0d:3c:d4:c9:7d:7a:db:a0:90:c8:f0:17:e1:00: 38:a0:69:b7:9e:e2:ec:73:71:36:d3:76:6a:69:df:69:03:32: d0:60:35:d8:60:92:b9:27:2a:bc:f5:9f:d0:30:d9:c6:24:b5: b8:d7:c4:5c:65:63:c2:ba:a5:46:00:71:2e:2a:42:66:69:95: 80:cb:1d:3c:28:60:f0:93:8f:8f:7b:cf:a8:51:46:0c:8c:b8: 79:79:51:81:8b:a1:7e:08:10:1b:7a:c5:52:d3:f2:91:13:34: c1:7e:de:7a:cd:a8:a5:b3:3a:73:e1:44:94:bc:77:90:49:5d: b5:9d:f6:5a:49:ba:f4:c4:3c:47:c4:91:24:64:d1:ea:fa:7a: 10:73:cb:25:90:4f:12:9f:93:95:fd:de:8a:65:3f:c2:80:61: b5:04:7a:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNTMjihw807AQw6NWWM13PNV0KZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxNzFBMjVENTdGRjgyMzcyNEZCNjIwODM0M0QyMDBG NjRDQkJCOTAeFw0yNjA1MDMwMjM3MzdaFw0yNzA1MDIwMjQyMzdaMDMxMTAvBgNV BAMTKEQyMUMyQTlCQUEzRjlFQzU5NTg2OTYyNEI0Q0NFMjg2OEUxOEZFNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtPl988IsQlQzU/BDr1RaVCwwX nTmPGRkhghski5+ygwVdRGGeBC15khLwmsnZ+A21h2D7kHrFETjcn5Dn1Lg6aOUM lWd6umrhRlaXllbYku78fjaOuPBJC3YSOClX2UlPXuj6gWV68e50J/kfTX8VX2gr ERGKGWHyjM+/9RxccJsVCaXXw8/4bCEeALNKPRPgAFfM+snRcye6k0zKgPXI3Akt 9q6mCXxXach7NHe45GDkSya+NUKqXGxMTcqAnbLJHYwIx+ZvqANqgXT5gmp1guXa 0nv1Dqr/EslAJQm4wiW/Oyr1rslMcNu2MluCyiVie8WcqQbkXwJdSXUNiKWLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0hwqm6o/nsWVhpYktMziho4Y/mcwHwYDVR0j BBgwFoAUbRcaJdV/+CNyT7Ygg0PSAPZMu7kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzE0MDM0MDktYmYwNC00MmU5LTk1NjctYjA2ZWM4MjNkOTAxLzAvNkQxNzFBMjVE NTdGRjgyMzcyNEZCNjIwODM0M0QyMDBGNjRDQkJCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82RDE3MUEyNUQ1N0ZGODIzNzI0RkI2MjA4MzQzRDIwMEY2NENC QkI5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcxNDAzNDA5LWJmMDQtNDJlOS05 NTY3LWIwNmVjODIzZDkwMS8wLzMxMzYzMDJlMzEzOTJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATEDANBgkqhkiG 9w0BAQsFAAOCAQEAWmKxsV9Cm0z8UJ2VMeDIEqg8iBeZ/QVWFOMoPcVLPka+1w1r osfi2+Aye8LNADqn5mcEDFdfe6Om1NtUcZwFWxThysGFwrueaQIYF8OiRNKuTn86 tRdAYhEt/uHLkg081Ml9etugkMjwF+EAOKBpt57i7HNxNtN2amnfaQMy0GA12GCS uScqvPWf0DDZxiS1uNfEXGVjwrqlRgBxLipCZmmVgMsdPChg8JOPj3vPqFFGDIy4 eXlRgYuhfggQG3rFUtPykRM0wX7ees2opbM6c+FElLx3kEldtZ32Wkm69MQ8R8SR JGTR6vp6EHPLJZBPEp+Tlf3eimU/woBhtQR6qw== -----END CERTIFICATE-----Generated at Wed May 13 04:17:20 2026 by rpki-client