$ rpki-client -vvf rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa File: 3136302e32322e37322e302f32342d3234203d3e20313532383033.roa (raw, json) Hash identifier: mw+kJTa3z1YCgtqDlv4vZF49RM+szfoPadKH4QNVzN8= Subject key identifier: FF:9F:02:AC:5F:FC:BD:1C:9C:42:76:3F:30:62:6B:DF:C7:02:1A:A3 Certificate issuer: /CN=866437E32B464B1B5AC613B7B05DF39BA8B220F2 Certificate serial: 11CC3B8F492F4A24C924416DE74D02EDBD30C627 Authority key identifier: 86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa Signing time: Sun 03 May 2026 02:42:48 +0000 ROA not before: Sun 03 May 2026 02:37:48 +0000 ROA not after: Sun 02 May 2027 02:42:48 +0000 asID: 152803 IP address blocks: 160.22.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.crl rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:cc:3b:8f:49:2f:4a:24:c9:24:41:6d:e7:4d:02:ed:bd:30:c6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866437E32B464B1B5AC613B7B05DF39BA8B220F2 Validity Not Before: May 3 02:37:48 2026 GMT Not After : May 2 02:42:48 2027 GMT Subject: CN=FF9F02AC5FFCBD1C9C42763F30626BDFC7021AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f0:a9:e9:cb:13:cc:7a:26:dc:e7:70:b9:69: c3:16:e3:43:ab:b1:03:d7:1a:8e:26:22:3b:09:fe: 34:c6:89:99:31:6a:28:be:85:97:0a:ef:41:1d:0e: bd:83:da:c4:86:21:d0:d1:15:bc:f9:fe:99:79:85: c5:93:84:2a:e4:1e:b9:28:92:56:30:44:55:cf:99: 72:15:50:f3:d2:0d:e6:5b:1c:37:10:ef:81:36:18: a4:41:37:e8:50:92:5c:24:b1:4d:c9:00:f1:3f:1c: 17:16:8b:a2:8a:b5:1b:a0:36:11:89:60:f2:2d:c7: 3b:38:05:e7:be:7d:4c:41:3e:ed:02:f6:47:d4:66: 2d:97:59:69:46:85:32:16:c4:b4:6e:51:9a:46:3b: 38:df:76:0e:dd:20:b9:c5:d6:8a:ec:e1:d6:ce:8c: be:5f:75:4a:fc:f0:f4:8b:f1:71:68:f6:5d:14:35: 03:3c:92:d3:5a:03:e8:26:6e:e8:9b:66:5c:5c:93: db:3e:0c:6f:57:d6:11:8f:c8:65:77:23:c1:36:ef: af:db:6d:21:17:b9:ec:ee:cb:21:f8:c5:9f:c3:c1: 5f:f5:a3:c3:86:b2:d8:be:76:77:22:67:d3:f4:e5: 19:22:06:75:e9:e4:4d:83:70:fb:35:63:87:61:66: b5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:9F:02:AC:5F:FC:BD:1C:9C:42:76:3F:30:62:6B:DF:C7:02:1A:A3 X509v3 Authority Key Identifier: keyid:86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.72.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:6f:87:b4:48:63:24:83:56:b9:c8:f1:3d:54:a9:f3:38:d8: 19:66:43:e0:cf:b8:eb:0d:78:9d:c6:35:8c:83:d6:95:00:42: 24:5a:62:4e:57:54:76:63:63:9f:d7:50:df:24:5f:63:c9:02: cb:8c:a0:96:4a:d5:de:14:87:cc:7f:e8:35:dc:43:36:b8:e8: 39:53:76:5f:ff:cc:f5:77:94:86:ff:1f:bd:b2:fd:f9:d2:73: 5d:3c:a7:2e:92:c5:e7:c4:43:3a:02:35:f9:79:77:99:aa:4b: 4e:de:45:ad:6c:b4:12:39:0e:27:4f:e1:d0:66:a7:14:f9:00: a7:48:69:e4:ba:0b:49:be:72:5a:d2:25:cb:25:2e:ad:15:46: 8b:ad:15:c9:e9:71:30:0d:18:8d:6f:cb:ad:79:40:63:d0:f6: 5c:b9:d8:c4:61:5a:59:e5:ad:70:a8:35:ea:53:3f:93:ca:92: 54:17:15:e2:8d:6e:50:ca:e3:66:ae:0e:e3:c9:c2:ce:af:b8: 40:09:a8:6b:2a:e5:f8:1f:1d:85:66:33:a9:07:ca:1b:77:21: 13:eb:a4:c9:e8:f1:7a:4e:82:ca:34:9f:59:49:7c:67:73:ee: 4d:9b:ad:16:51:d3:3f:01:49:8f:3a:83:73:56:4d:04:92:c5: 1a:b6:49:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEcw7j0kvSiTJJEFt500C7b0wxicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2NDM3RTMyQjQ2NEIxQjVBQzYxM0I3QjA1REYzOUJB OEIyMjBGMjAeFw0yNjA1MDMwMjM3NDhaFw0yNzA1MDIwMjQyNDhaMDMxMTAvBgNV BAMTKEZGOUYwMkFDNUZGQ0JEMUM5QzQyNzYzRjMwNjI2QkRGQzcwMjFBQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo8KnpyxPMeibc53C5acMW40Or sQPXGo4mIjsJ/jTGiZkxaii+hZcK70EdDr2D2sSGIdDRFbz5/pl5hcWThCrkHrko klYwRFXPmXIVUPPSDeZbHDcQ74E2GKRBN+hQklwksU3JAPE/HBcWi6KKtRugNhGJ YPItxzs4Bee+fUxBPu0C9kfUZi2XWWlGhTIWxLRuUZpGOzjfdg7dILnF1ors4dbO jL5fdUr88PSL8XFo9l0UNQM8ktNaA+gmbuibZlxck9s+DG9X1hGPyGV3I8E276/b bSEXuezuyyH4xZ/DwV/1o8OGsti+dnciZ9P05RkiBnXp5E2DcPs1Y4dhZrWxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/58CrF/8vRycQnY/MGJr38cCGqMwHwYDVR0j BBgwFoAUhmQ34ytGSxtaxhO3sF3zm6iyIPIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzJmMjYwY2UtMjNmNS00MDk1LTgyZGItZWY3MTE0ZTQ3MWIyLzAvODY2NDM3RTMy QjQ2NEIxQjVBQzYxM0I3QjA1REYzOUJBOEIyMjBGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84NjY0MzdFMzJCNDY0QjFCNUFDNjEzQjdCMDVERjM5QkE4QjIy MEYyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcyZjI2MGNlLTIzZjUtNDA5NS04 MmRiLWVmNzExNGU0NzFiMi8wLzMxMzYzMDJlMzIzMjJlMzczMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWSDANBgkqhkiG 9w0BAQsFAAOCAQEAf2+HtEhjJINWucjxPVSp8zjYGWZD4M+46w14ncY1jIPWlQBC JFpiTldUdmNjn9dQ3yRfY8kCy4yglkrV3hSHzH/oNdxDNrjoOVN2X//M9XeUhv8f vbL9+dJzXTynLpLF58RDOgI1+Xl3mapLTt5FrWy0EjkOJ0/h0GanFPkAp0hp5LoL Sb5yWtIlyyUurRVGi60VyelxMA0YjW/LrXlAY9D2XLnYxGFaWeWtcKg16lM/k8qS VBcV4o1uUMrjZq4O48nCzq+4QAmoayrl+B8dhWYzqQfKG3chE+ukyejxek6CyjSf WUl8Z3PuTZutFlHTPwFJjzqDc1ZNBJLFGrZJ+A== -----END CERTIFICATE-----Generated at Wed May 13 06:37:22 2026 by rpki-client