$ rpki-client -vvf rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa File: 3136302e32352e33362e302f32342d3234203d3e20313532383332.roa (raw, json) Hash identifier: vwfxZYWrk/RSmMQGBZC+p6lAwrY6bWIJ0nylVMAf2ng= Subject key identifier: C3:28:3E:9B:98:76:16:DE:5D:AA:4D:50:92:80:FD:87:42:44:89:A7 Certificate issuer: /CN=AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB Certificate serial: 4566F4AA55B3C8038E8B538A40D1548C04D599EF Authority key identifier: AC:96:19:8C:9E:15:9F:FA:EE:BD:01:EE:DB:4D:EC:D2:D1:25:B4:FB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa Signing time: Sun 03 May 2026 02:46:18 +0000 ROA not before: Sun 03 May 2026 02:41:18 +0000 ROA not after: Sun 02 May 2027 02:46:18 +0000 asID: 152832 IP address blocks: 160.25.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.crl rsync://rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:66:f4:aa:55:b3:c8:03:8e:8b:53:8a:40:d1:54:8c:04:d5:99:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB Validity Not Before: May 3 02:41:18 2026 GMT Not After : May 2 02:46:18 2027 GMT Subject: CN=C3283E9B987616DE5DAA4D509280FD87424489A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:76:9d:25:de:96:f8:af:6f:94:05:80:93: 1e:df:74:3f:41:aa:86:e7:20:8b:0d:12:18:2a:f3: 82:ee:a2:46:1f:86:cc:29:f2:e8:a2:b8:04:bf:cd: 5b:34:da:0c:70:7a:af:f7:7a:3b:8a:39:4d:a7:ba: 28:a2:d6:9c:4f:13:47:5d:59:f3:8b:22:96:48:1a: 54:a7:db:89:b1:d5:15:3b:2a:d7:df:d2:64:5b:3e: f6:9e:e6:2b:15:f0:4f:22:79:c2:eb:cb:5e:2a:9b: ff:66:a0:27:b1:f8:31:21:9b:dd:b2:ae:53:78:b8: c8:a9:8e:66:ed:e2:62:f6:29:2a:79:de:e2:de:83: 99:07:c6:fa:35:0e:8b:c8:b7:bd:bd:ea:a6:5a:f4: 62:cf:13:2e:e1:fd:db:aa:7e:ac:04:75:27:98:fe: 30:ab:2e:2b:e8:40:71:b1:ce:fc:aa:ad:db:65:8b: 9f:b1:ec:e4:18:a4:de:86:e6:a2:e0:7e:e1:40:62: c7:9f:1d:39:74:ba:94:40:11:48:80:c1:5d:eb:4b: b5:78:0a:89:18:86:99:1f:ea:a4:d1:be:45:c7:74: 91:0a:78:cd:03:36:50:93:3d:c7:dc:80:56:8c:c0: c5:c5:53:68:fa:fa:5a:2f:ef:18:4d:b2:03:f9:8c: 73:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:28:3E:9B:98:76:16:DE:5D:AA:4D:50:92:80:FD:87:42:44:89:A7 X509v3 Authority Key Identifier: keyid:AC:96:19:8C:9E:15:9F:FA:EE:BD:01:EE:DB:4D:EC:D2:D1:25:B4:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AC96198C9E159FFAEEBD01EEDB4DECD2D125B4FB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/3136302e32352e33362e302f32342d3234203d3e20313532383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/24 Signature Algorithm: sha256WithRSAEncryption 42:fe:71:16:3b:40:ae:27:ad:48:6f:4f:4f:8a:d3:27:a5:04: 68:69:9d:de:19:0c:62:24:5f:b8:77:c1:1c:1e:43:32:98:e6: 50:60:06:f0:19:ac:0a:d5:69:3a:01:2c:99:d2:6b:86:ae:ac: 58:34:57:30:4e:69:40:a5:a7:4a:06:9f:49:00:24:2b:dd:78: bf:b7:f0:df:f5:77:d2:23:b3:b4:49:e4:09:36:8d:38:35:98: 87:65:4e:0c:85:20:2c:a7:5d:72:fb:cf:f0:e5:14:13:20:6a: 2b:14:c3:8d:f3:03:c6:95:32:76:a9:5e:3d:05:77:20:01:93: 2a:8a:97:04:dc:47:33:49:1f:0d:f1:44:4d:fc:1e:2d:2b:76: 49:25:79:e7:15:d8:96:4a:c7:a1:b3:bc:b9:ce:c4:23:a2:f9: e7:9b:5f:99:2a:fa:ec:82:39:d3:77:32:fa:42:a8:ff:d3:5f: 4d:94:91:05:44:13:4a:3a:88:b8:6b:f0:69:67:de:b8:6c:02: 52:c0:0c:9b:aa:0a:f0:5d:9d:c3:0a:cb:fa:a7:e0:4a:63:22: c8:72:1d:22:18:f3:c8:91:34:c9:83:39:bb:d1:55:02:2c:2b: 01:9d:7b:9b:36:5f:df:7c:b3:98:fb:05:9e:80:bf:7a:cc:40: 66:76:c1:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURWb0qlWzyAOOi1OKQNFUjATVme8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUM5NjE5OEM5RTE1OUZGQUVFQkQwMUVFREI0REVDRDJE MTI1QjRGQjAeFw0yNjA1MDMwMjQxMThaFw0yNzA1MDIwMjQ2MThaMDMxMTAvBgNV BAMTKEMzMjgzRTlCOTg3NjE2REU1REFBNEQ1MDkyODBGRDg3NDI0NDg5QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ZHadJd6W+K9vlAWAkx7fdD9B qobnIIsNEhgq84LuokYfhswp8uiiuAS/zVs02gxweq/3ejuKOU2nuiii1pxPE0dd WfOLIpZIGlSn24mx1RU7Ktff0mRbPvae5isV8E8iecLry14qm/9moCex+DEhm92y rlN4uMipjmbt4mL2KSp53uLeg5kHxvo1DovIt7296qZa9GLPEy7h/duqfqwEdSeY /jCrLivoQHGxzvyqrdtli5+x7OQYpN6G5qLgfuFAYsefHTl0upRAEUiAwV3rS7V4 CokYhpkf6qTRvkXHdJEKeM0DNlCTPcfcgFaMwMXFU2j6+lov7xhNsgP5jHMBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwyg+m5h2Ft5dqk1QkoD9h0JEiacwHwYDVR0j BBgwFoAUrJYZjJ4Vn/ruvQHu203s0tEltPswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2Y0YjUzZDgtYjJmZi00OTczLWIxYWMtNmY4NWZhZWFkYmU1LzAvQUM5NjE5OEM5 RTE1OUZGQUVFQkQwMUVFREI0REVDRDJEMTI1QjRGQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BQzk2MTk4QzlFMTU5RkZBRUVCRDAxRUVEQjRERUNEMkQxMjVC NEZCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4LWIyZmYtNDk3My1i MWFjLTZmODVmYWVhZGJlNS8wLzMxMzYzMDJlMzIzNTJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZJDANBgkqhkiG 9w0BAQsFAAOCAQEAQv5xFjtArietSG9PT4rTJ6UEaGmd3hkMYiRfuHfBHB5DMpjm UGAG8BmsCtVpOgEsmdJrhq6sWDRXME5pQKWnSgafSQAkK914v7fw3/V30iOztEnk CTaNODWYh2VODIUgLKddcvvP8OUUEyBqKxTDjfMDxpUydqlePQV3IAGTKoqXBNxH M0kfDfFETfweLSt2SSV55xXYlkrHobO8uc7EI6L555tfmSr67II503cy+kKo/9Nf TZSRBUQTSjqIuGvwaWfeuGwCUsAMm6oK8F2dwwrL+qfgSmMiyHIdIhjzyJE0yYM5 u9FVAiwrAZ17mzZf33yzmPsFnoC/esxAZnbB1g== -----END CERTIFICATE-----Generated at Wed May 13 03:56:09 2026 by rpki-client