$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa File: 3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa (raw, json) Hash identifier: IaAf1+vjln5sceJpZ1s3ScYLsPQRM51r/bqMTajLuUs= Subject key identifier: D6:25:E0:EA:80:95:FB:69:66:7E:5F:4A:C3:C4:9B:56:E1:D5:3D:C5 Certificate issuer: /CN=D88E006D219730C52DDDCBD6EB05C09A2F815C03 Certificate serial: 428513D781ED25F29DE3728B98F8232804CCD9EF Authority key identifier: D8:8E:00:6D:21:97:30:C5:2D:DD:CB:D6:EB:05:C0:9A:2F:81:5C:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa Signing time: Sun 03 May 2026 02:44:45 +0000 ROA not before: Sun 03 May 2026 02:39:45 +0000 ROA not after: Sun 02 May 2027 02:44:45 +0000 asID: 152830 IP address blocks: 160.22.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.crl rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:85:13:d7:81:ed:25:f2:9d:e3:72:8b:98:f8:23:28:04:cc:d9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D88E006D219730C52DDDCBD6EB05C09A2F815C03 Validity Not Before: May 3 02:39:45 2026 GMT Not After : May 2 02:44:45 2027 GMT Subject: CN=D625E0EA8095FB69667E5F4AC3C49B56E1D53DC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:89:13:64:8c:94:ba:87:b3:cc:ce:cc:cb:27: f1:ee:d1:6a:6f:8e:a7:9c:74:9e:a6:ce:26:be:15: 3f:10:19:94:03:0e:48:c7:91:61:33:72:25:93:7b: 4e:22:62:78:c5:ea:b4:2d:e0:97:c0:3f:d3:2d:4f: e5:83:ff:98:90:7a:68:a1:57:81:b8:68:c2:b3:d0: fe:54:ed:a0:62:88:17:b2:98:5b:b1:fe:e8:1c:d4: 20:00:31:be:7f:72:b3:e3:e2:13:38:3d:69:08:e8: 9b:b3:14:0f:9d:7c:d7:79:81:a2:24:a8:cc:06:2d: ce:0a:d5:16:fb:07:1d:01:b7:c1:c6:96:27:eb:ea: ff:66:f6:08:83:f0:b5:55:10:bf:b7:d4:d7:85:16: 7c:d6:3d:3a:ee:a5:65:8d:32:84:6e:3e:10:81:34: 7a:f7:1e:54:7c:66:ce:8c:46:a0:70:9d:13:95:ff: be:c3:7a:21:b9:58:eb:55:03:c0:09:8f:8f:6c:74: 6b:09:e5:05:36:db:2d:00:49:df:d1:68:4c:ff:51: e4:90:32:b4:ac:fa:7c:2a:5f:fc:23:a4:c5:70:74: 33:24:4e:43:fb:7f:33:01:29:8f:28:17:79:c4:14: cb:0f:66:aa:cb:02:a6:f4:8a:97:34:a5:c2:00:44: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:25:E0:EA:80:95:FB:69:66:7E:5F:4A:C3:C4:9B:56:E1:D5:3D:C5 X509v3 Authority Key Identifier: keyid:D8:8E:00:6D:21:97:30:C5:2D:DD:CB:D6:EB:05:C0:9A:2F:81:5C:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D88E006D219730C52DDDCBD6EB05C09A2F815C03.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/0/3136302e32322e3139332e302f32342d3234203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.193.0/24 Signature Algorithm: sha256WithRSAEncryption 84:3b:a3:fe:db:1c:be:4a:41:b3:fd:54:e0:de:eb:fc:cd:59: ac:57:24:6f:42:8d:13:b4:42:f0:6e:3e:b1:97:b1:ac:d5:c1: 21:ef:f7:cc:fd:35:26:6b:2c:df:e3:2d:53:8b:da:f8:09:23: f8:1d:4e:60:e5:b0:db:ac:0d:29:87:9a:99:f5:d9:8e:ba:ef: 9f:c4:e0:84:80:82:b8:2f:71:8d:55:bf:8d:8e:72:5f:a9:77: ff:91:f8:96:94:50:2a:72:c6:50:e5:e6:77:08:9a:57:28:85: ba:eb:cc:48:de:73:f3:49:27:8f:42:63:cd:dc:e5:50:e6:d2: 09:51:df:42:ed:69:b1:21:bf:7f:5a:e1:b9:54:32:f3:d8:3a: 31:12:dc:8b:27:f8:9f:b8:09:2e:23:48:af:dd:60:76:4f:23: 25:8b:c4:9d:e0:7f:3c:c6:6d:a5:68:a7:ee:20:8f:de:1b:5c: b4:ce:f2:f6:66:ec:cd:6d:e5:57:39:68:b1:e5:eb:f0:21:65: cc:05:33:0b:c6:83:5c:13:87:f6:a2:43:9a:a8:6c:99:58:a8: ed:07:93:71:66:2d:45:70:c3:98:11:0b:be:f2:0e:33:37:44: 5c:2b:da:f3:a0:92:f5:17:14:f3:29:20:6e:cb:48:14:3a:9c: a6:c0:d9:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQoUT14HtJfKd43KLmPgjKATM2e8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg4RTAwNkQyMTk3MzBDNTJERERDQkQ2RUIwNUMwOUEy RjgxNUMwMzAeFw0yNjA1MDMwMjM5NDVaFw0yNzA1MDIwMjQ0NDVaMDMxMTAvBgNV BAMTKEQ2MjVFMEVBODA5NUZCNjk2NjdFNUY0QUMzQzQ5QjU2RTFENTNEQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4iRNkjJS6h7PMzszLJ/Hu0Wpv jqecdJ6mzia+FT8QGZQDDkjHkWEzciWTe04iYnjF6rQt4JfAP9MtT+WD/5iQemih V4G4aMKz0P5U7aBiiBeymFux/ugc1CAAMb5/crPj4hM4PWkI6JuzFA+dfNd5gaIk qMwGLc4K1Rb7Bx0Bt8HGlifr6v9m9giD8LVVEL+31NeFFnzWPTrupWWNMoRuPhCB NHr3HlR8Zs6MRqBwnROV/77DeiG5WOtVA8AJj49sdGsJ5QU22y0ASd/RaEz/UeSQ MrSs+nwqX/wjpMVwdDMkTkP7fzMBKY8oF3nEFMsPZqrLAqb0ipc0pcIARPlLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1iXg6oCV+2lmfl9Kw8SbVuHVPcUwHwYDVR0j BBgwFoAU2I4AbSGXMMUt3cvW6wXAmi+BXAMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2EwMjEwYjMtY2NhMi00M2M1LTg5ZjktNWE5MDg2YTYwNzAzLzAvRDg4RTAwNkQy MTk3MzBDNTJERERDQkQ2RUIwNUMwOUEyRjgxNUMwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EODhFMDA2RDIxOTczMEM1MkRERENCRDZFQjA1QzA5QTJGODE1 QzAzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8wLzMxMzYzMDJlMzIzMjJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbBMA0GCSqG SIb3DQEBCwUAA4IBAQCEO6P+2xy+SkGz/VTg3uv8zVmsVyRvQo0TtELwbj6xl7Gs 1cEh7/fM/TUmayzf4y1Ti9r4CSP4HU5g5bDbrA0ph5qZ9dmOuu+fxOCEgIK4L3GN Vb+NjnJfqXf/kfiWlFAqcsZQ5eZ3CJpXKIW668xI3nPzSSePQmPN3OVQ5tIJUd9C 7WmxIb9/WuG5VDLz2DoxEtyLJ/ifuAkuI0iv3WB2TyMli8Sd4H88xm2laKfuII/e G1y0zvL2ZuzNbeVXOWix5evwIWXMBTMLxoNcE4f2okOaqGyZWKjtB5NxZi1FcMOY EQu+8g4zN0RcK9rzoJL1FxTzKSBuy0gUOpymwNnw -----END CERTIFICATE-----Generated at Wed May 13 09:12:26 2026 by rpki-client