$ rpki-client -vvf rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa File: 3136302e31392e31372e302f32342d3234203d3e20313532303733.roa (raw, json) Hash identifier: 2UjxxTGC1nNXBGbq1J0Vw32Q3bb9jyytfhNHGdS8EJk= Subject key identifier: 49:FD:D6:7D:10:CC:69:36:92:24:A8:92:9A:86:71:54:F2:42:FC:F5 Certificate issuer: /CN=6D171A25D57FF823724FB6208343D200F64CBBB9 Certificate serial: 1BE9F5D54D6F63CABCC7143B155E72025DA12514 Authority key identifier: 6D:17:1A:25:D5:7F:F8:23:72:4F:B6:20:83:43:D2:00:F6:4C:BB:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa Signing time: Sun 03 May 2026 02:42:38 +0000 ROA not before: Sun 03 May 2026 02:37:38 +0000 ROA not after: Sun 02 May 2027 02:42:38 +0000 asID: 152073 IP address blocks: 160.19.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.crl rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e9:f5:d5:4d:6f:63:ca:bc:c7:14:3b:15:5e:72:02:5d:a1:25:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D171A25D57FF823724FB6208343D200F64CBBB9 Validity Not Before: May 3 02:37:38 2026 GMT Not After : May 2 02:42:38 2027 GMT Subject: CN=49FDD67D10CC69369224A8929A867154F242FCF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:77:32:84:5f:15:c9:bd:81:be:79:2e:9f:c0: f8:04:80:ee:64:8f:01:de:da:be:75:12:21:41:0f: c7:46:6e:31:75:71:78:56:cd:aa:cd:9a:92:a1:b4: cb:c9:b4:fc:57:19:9b:5a:1d:c9:f0:00:eb:80:e5: 96:61:b7:0b:8a:8a:81:ee:c1:65:90:a4:f1:92:52: c4:94:9c:d2:80:c3:04:57:69:4f:0e:50:8c:fc:55: 35:08:35:9c:6e:10:39:41:fb:02:a8:a5:01:90:98: 5a:e6:e5:44:c5:95:3f:03:52:76:f7:87:80:cf:59: 42:41:17:a0:8c:f6:4b:ed:29:16:fa:4c:e5:ea:1d: 10:c0:97:05:97:53:7f:c1:b0:b1:a0:cf:92:af:04: 2a:c5:3a:d7:d1:50:5e:17:48:06:60:e9:5d:c0:92: 7f:4c:e9:ec:65:79:b1:fa:78:3d:32:46:a3:84:5d: 13:6d:22:34:50:d9:8c:3f:8c:62:21:94:9d:26:aa: da:de:5b:aa:cc:87:bf:68:0a:8c:eb:4a:c2:b5:b0: 2d:38:e5:2a:71:c6:b3:e6:1a:36:e3:29:25:78:bc: ac:8e:1f:38:f0:bf:b8:22:ba:61:92:fd:b2:23:14: 88:b6:54:d3:0b:e5:e3:ad:8c:85:21:24:f2:33:cf: 0a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FD:D6:7D:10:CC:69:36:92:24:A8:92:9A:86:71:54:F2:42:FC:F5 X509v3 Authority Key Identifier: keyid:6D:17:1A:25:D5:7F:F8:23:72:4F:B6:20:83:43:D2:00:F6:4C:BB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/6D171A25D57FF823724FB6208343D200F64CBBB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/6D171A25D57FF823724FB6208343D200F64CBBB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/71403409-bf04-42e9-9567-b06ec823d901/0/3136302e31392e31372e302f32342d3234203d3e20313532303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.17.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:1d:12:90:f2:fb:36:c5:ca:b1:3e:9e:ee:ee:fa:1e:fb:64: c1:b8:a6:e7:7b:b5:1e:f9:bb:75:06:32:a9:1a:be:a8:00:85: 6a:c9:b6:c7:3b:33:00:58:22:8c:64:7d:84:01:d3:0e:51:a8: c2:8c:57:99:11:4c:24:fd:70:ad:de:0d:74:40:00:68:e5:78: f7:e2:a8:51:c6:ea:1b:91:5e:fd:74:16:bc:b3:d5:68:43:d6: 79:2f:92:a7:9f:d1:49:1b:ff:00:cd:49:d1:3b:8e:6c:e5:d6: b0:f3:ff:54:60:e4:28:48:a8:06:4e:38:5b:2c:b8:01:ed:b1: 4c:26:5b:71:41:d4:25:30:ef:fd:69:c6:ef:02:c1:07:8b:e6: 34:c6:f0:89:59:d1:7e:6f:68:3f:f2:f3:8a:99:83:ab:46:b0: 5f:e4:3d:7c:75:4d:be:29:2e:db:e6:96:35:89:2b:b7:1f:47: eb:30:2d:a2:46:47:98:c5:14:2a:b6:75:1e:8a:b9:f5:69:61: fc:df:54:77:17:b0:0d:18:c0:68:61:c8:af:ec:2b:81:8b:59: d2:de:00:2b:c3:68:65:51:d3:d8:ad:a7:93:10:dd:b2:91:69: fc:85:09:f4:af:4c:01:c0:66:0f:44:a7:eb:7b:72:f4:1a:25: 9a:ce:c3:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG+n11U1vY8q8xxQ7FV5yAl2hJRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxNzFBMjVENTdGRjgyMzcyNEZCNjIwODM0M0QyMDBG NjRDQkJCOTAeFw0yNjA1MDMwMjM3MzhaFw0yNzA1MDIwMjQyMzhaMDMxMTAvBgNV BAMTKDQ5RkRENjdEMTBDQzY5MzY5MjI0QTg5MjlBODY3MTU0RjI0MkZDRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/dzKEXxXJvYG+eS6fwPgEgO5k jwHe2r51EiFBD8dGbjF1cXhWzarNmpKhtMvJtPxXGZtaHcnwAOuA5ZZhtwuKioHu wWWQpPGSUsSUnNKAwwRXaU8OUIz8VTUINZxuEDlB+wKopQGQmFrm5UTFlT8DUnb3 h4DPWUJBF6CM9kvtKRb6TOXqHRDAlwWXU3/BsLGgz5KvBCrFOtfRUF4XSAZg6V3A kn9M6exlebH6eD0yRqOEXRNtIjRQ2Yw/jGIhlJ0mqtreW6rMh79oCozrSsK1sC04 5SpxxrPmGjbjKSV4vKyOHzjwv7giumGS/bIjFIi2VNML5eOtjIUhJPIzzwqrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSf3WfRDMaTaSJKiSmoZxVPJC/PUwHwYDVR0j BBgwFoAUbRcaJdV/+CNyT7Ygg0PSAPZMu7kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzE0MDM0MDktYmYwNC00MmU5LTk1NjctYjA2ZWM4MjNkOTAxLzAvNkQxNzFBMjVE NTdGRjgyMzcyNEZCNjIwODM0M0QyMDBGNjRDQkJCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82RDE3MUEyNUQ1N0ZGODIzNzI0RkI2MjA4MzQzRDIwMEY2NENC QkI5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcxNDAzNDA5LWJmMDQtNDJlOS05 NTY3LWIwNmVjODIzZDkwMS8wLzMxMzYzMDJlMzEzOTJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATETANBgkqhkiG 9w0BAQsFAAOCAQEAfh0SkPL7NsXKsT6e7u76Hvtkwbim53u1Hvm7dQYyqRq+qACF asm2xzszAFgijGR9hAHTDlGowoxXmRFMJP1wrd4NdEAAaOV49+KoUcbqG5Fe/XQW vLPVaEPWeS+Sp5/RSRv/AM1J0TuObOXWsPP/VGDkKEioBk44Wyy4Ae2xTCZbcUHU JTDv/WnG7wLBB4vmNMbwiVnRfm9oP/LzipmDq0awX+Q9fHVNviku2+aWNYkrtx9H 6zAtokZHmMUUKrZ1Hoq59Wlh/N9UdxewDRjAaGHIr+wrgYtZ0t4AK8NoZVHT2K2n kxDdspFp/IUJ9K9MAcBmD0Sn63ty9Bolms7Deg== -----END CERTIFICATE-----Generated at Wed May 13 04:17:20 2026 by rpki-client