$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: xFfth544qMvDawFqjY1oWbMZQMZwR8ATU9ANAJM8pNM= Subject key identifier: D9:11:B1:FE:BE:99:A0:6C:B8:04:B7:FF:06:A8:0C:42:0F:AB:D4:E6 Certificate issuer: /CN=D88E006D219730C52DDDCBD6EB05C09A2F815C03 Certificate serial: 28913EA5796FF12C61D22BA040F08BF15083B47A Authority key identifier: D8:8E:00:6D:21:97:30:C5:2D:DD:CB:D6:EB:05:C0:9A:2F:81:5C:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa Signing time: Sun 03 May 2026 02:44:44 +0000 ROA not before: Sun 03 May 2026 02:39:44 +0000 ROA not after: Sun 02 May 2027 02:44:44 +0000 asID: 152830 IP address blocks: 160.22.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.crl rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:91:3e:a5:79:6f:f1:2c:61:d2:2b:a0:40:f0:8b:f1:50:83:b4:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D88E006D219730C52DDDCBD6EB05C09A2F815C03 Validity Not Before: May 3 02:39:44 2026 GMT Not After : May 2 02:44:44 2027 GMT Subject: CN=D911B1FEBE99A06CB804B7FF06A80C420FABD4E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5a:c3:8e:5f:18:e6:f6:2e:60:37:f3:38:2b: 4b:d0:f6:56:2e:b1:26:32:39:6f:59:52:23:a0:63: 12:77:34:e5:9e:eb:45:f8:d5:41:88:cd:c7:30:bd: 8c:2e:55:18:dc:65:29:ab:d6:71:7d:3c:e9:ae:e0: 89:83:eb:94:6a:69:0c:f8:9b:15:8e:a5:73:1e:99: 6a:b8:84:23:5b:83:81:78:f6:b8:29:2c:09:9d:1c: 28:70:d1:cf:8f:ef:e1:96:93:38:43:a9:82:c9:b2: e6:ee:59:8c:c4:d7:60:7e:a5:91:76:2e:7c:c4:01: 07:82:bf:70:96:c1:61:b6:c5:70:d3:53:5c:27:06: 56:53:76:b1:10:e4:2c:c8:b1:41:35:fa:91:83:1a: 2b:01:66:17:c4:ac:d8:1e:f7:4e:a8:d4:a7:98:c2: fc:e9:ad:bc:98:ba:e4:1a:e8:cb:15:40:ad:b0:33: 16:b9:67:a4:c1:dd:fc:c9:31:4a:f8:a7:1b:cd:6f: d2:fa:59:56:fb:04:f1:6f:d2:2c:14:77:56:1e:13: bf:1c:a9:72:14:b1:ff:56:e2:90:6a:05:ff:a3:32: 3b:d1:f0:05:33:10:17:f4:af:fe:b2:c0:5b:0d:a2: bf:69:49:ec:ce:42:59:b9:26:6d:e7:b6:10:38:f7: 9d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:11:B1:FE:BE:99:A0:6C:B8:04:B7:FF:06:A8:0C:42:0F:AB:D4:E6 X509v3 Authority Key Identifier: keyid:D8:8E:00:6D:21:97:30:C5:2D:DD:CB:D6:EB:05:C0:9A:2F:81:5C:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139322e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.192.0/24 Signature Algorithm: sha256WithRSAEncryption 68:fd:35:87:9c:b6:3b:91:61:83:ec:35:9e:9f:58:97:15:c5: ed:6a:d8:87:8d:e2:12:aa:c1:8a:d0:6f:97:6e:1b:64:a7:fc: a1:8f:cb:b3:eb:52:99:0b:5c:d3:6a:e6:81:38:ef:05:00:09: 01:e1:25:8f:f6:5c:38:84:62:88:5a:b0:0e:b2:2e:10:9b:2d: eb:2e:65:aa:01:5f:c6:cc:15:9a:6a:2e:dd:92:b2:8f:4f:82: 08:15:24:28:10:b7:37:f6:84:5b:9c:66:f7:ec:7d:06:b5:a0: b0:a8:86:2d:43:7b:e4:10:2b:35:8d:53:e7:19:f5:ce:51:32: e5:77:aa:ef:0a:75:04:17:98:cf:b7:0f:bb:68:17:55:60:87: 33:64:5d:fe:b6:09:08:1d:d6:65:33:a6:55:1e:c2:e9:00:75: bc:25:ef:61:ca:0f:f6:ca:7b:5a:30:bc:51:22:bd:32:b2:ea: 13:77:3a:fd:1d:c9:c9:e7:a5:bf:54:8c:0e:5d:be:39:f0:7e: 52:17:bb:91:5b:1d:0b:13:60:54:53:c3:6c:e9:2d:2c:39:53: b4:52:29:62:96:00:a3:88:b2:f6:b6:43:b5:b7:42:07:dd:5f: 1a:24:34:56:3d:6b:65:20:63:cc:13:6a:c7:c7:20:35:33:68: 54:60:39:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKJE+pXlv8Sxh0iugQPCL8VCDtHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg4RTAwNkQyMTk3MzBDNTJERERDQkQ2RUIwNUMwOUEy RjgxNUMwMzAeFw0yNjA1MDMwMjM5NDRaFw0yNzA1MDIwMjQ0NDRaMDMxMTAvBgNV BAMTKEQ5MTFCMUZFQkU5OUEwNkNCODA0QjdGRjA2QTgwQzQyMEZBQkQ0RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNWsOOXxjm9i5gN/M4K0vQ9lYu sSYyOW9ZUiOgYxJ3NOWe60X41UGIzccwvYwuVRjcZSmr1nF9POmu4ImD65RqaQz4 mxWOpXMemWq4hCNbg4F49rgpLAmdHChw0c+P7+GWkzhDqYLJsubuWYzE12B+pZF2 LnzEAQeCv3CWwWG2xXDTU1wnBlZTdrEQ5CzIsUE1+pGDGisBZhfErNge906o1KeY wvzprbyYuuQa6MsVQK2wMxa5Z6TB3fzJMUr4pxvNb9L6WVb7BPFv0iwUd1YeE78c qXIUsf9W4pBqBf+jMjvR8AUzEBf0r/6ywFsNor9pSezOQlm5Jm3nthA49515AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2RGx/r6ZoGy4BLf/BqgMQg+r1OYwHwYDVR0j BBgwFoAU2I4AbSGXMMUt3cvW6wXAmi+BXAMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2EwMjEwYjMtY2NhMi00M2M1LTg5ZjktNWE5MDg2YTYwNzAzLzAvRDg4RTAwNkQy MTk3MzBDNTJERERDQkQ2RUIwNUMwOUEyRjgxNUMwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EODhFMDA2RDIxOTczMEM1MkRERENCRDZFQjA1QzA5QTJGODE1 QzAzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbAMA0GCSqG SIb3DQEBCwUAA4IBAQBo/TWHnLY7kWGD7DWen1iXFcXtatiHjeISqsGK0G+Xbhtk p/yhj8uz61KZC1zTauaBOO8FAAkB4SWP9lw4hGKIWrAOsi4Qmy3rLmWqAV/GzBWa ai7dkrKPT4IIFSQoELc39oRbnGb37H0GtaCwqIYtQ3vkECs1jVPnGfXOUTLld6rv CnUEF5jPtw+7aBdVYIczZF3+tgkIHdZlM6ZVHsLpAHW8Je9hyg/2yntaMLxRIr0y suoTdzr9HcnJ56W/VIwOXb458H5SF7uRWx0LE2BUU8Ns6S0sOVO0UililgCjiLL2 tkO1t0IH3V8aJDRWPWtlIGPME2rHxyA1M2hUYDll -----END CERTIFICATE-----Generated at Wed May 13 08:00:22 2026 by rpki-client