$ rpki-client -vvf rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa File: 3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa (raw, json) Hash identifier: xkIsUOsvhzcBh2sD2rCI6s5EqakfkJ/T7bTiJ7H33iA= Subject key identifier: 09:6E:50:52:08:16:0E:6B:D2:96:35:EB:6E:DA:FD:33:A7:89:2B:FA Certificate issuer: /CN=70F7AA4EDB6C457B5D02D66762DDD8EE4B411781 Certificate serial: 3DB0A5D6D60C9ADB73A95CEB21A4B8A698A73934 Authority key identifier: 70:F7:AA:4E:DB:6C:45:7B:5D:02:D6:67:62:DD:D8:EE:4B:41:17:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa Signing time: Sun 03 May 2026 02:46:20 +0000 ROA not before: Sun 03 May 2026 02:41:20 +0000 ROA not after: Sun 02 May 2027 02:46:20 +0000 asID: 152805 IP address blocks: 160.20.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.crl rsync://rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b0:a5:d6:d6:0c:9a:db:73:a9:5c:eb:21:a4:b8:a6:98:a7:39:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70F7AA4EDB6C457B5D02D66762DDD8EE4B411781 Validity Not Before: May 3 02:41:20 2026 GMT Not After : May 2 02:46:20 2027 GMT Subject: CN=096E505208160E6BD29635EB6EDAFD33A7892BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c9:86:f0:c5:70:4a:f8:ae:97:3c:86:f0:79: 29:76:bf:2c:3d:e2:3a:2e:0d:0f:dc:1b:90:84:86: 39:a2:b2:4c:7a:a6:d7:ac:a1:3e:96:cf:77:7a:5e: cf:ac:c4:51:1a:94:f1:e1:e6:d2:68:0e:71:f0:d4: c6:03:8b:2e:2d:18:12:a8:b4:fe:60:3f:55:11:4f: 01:fa:59:18:ca:09:3d:9e:a3:13:e2:9b:99:2c:c0: c9:29:0b:9d:fd:95:24:e3:b3:41:5a:4a:9a:8a:af: 76:e6:2e:5b:2b:0d:21:73:9c:75:5b:c9:1c:2c:7d: 80:67:9d:3e:7a:26:84:d2:e3:5e:3a:d8:2f:84:62: 6f:9d:00:f4:42:42:72:96:80:ee:bf:76:d3:37:c8: 84:54:dc:25:0b:b0:6f:15:ed:25:84:83:06:b9:43: aa:ac:19:7c:3b:92:94:7e:0a:22:ee:66:26:ec:30: 74:ad:11:e0:04:de:74:c5:6b:d1:02:37:8b:87:7c: 42:7c:79:ff:9b:74:06:dd:cb:9d:2c:02:a4:18:bc: 63:89:fb:46:72:8d:06:a4:25:77:f8:cd:70:13:92: 1a:61:d6:11:32:1e:d4:69:4a:3d:19:b7:15:6a:c0: 90:d6:48:a1:b6:2b:8d:f3:e6:a7:6d:e4:ff:d6:f3: 93:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6E:50:52:08:16:0E:6B:D2:96:35:EB:6E:DA:FD:33:A7:89:2B:FA X509v3 Authority Key Identifier: keyid:70:F7:AA:4E:DB:6C:45:7B:5D:02:D6:67:62:DD:D8:EE:4B:41:17:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/70F7AA4EDB6C457B5D02D66762DDD8EE4B411781.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/3136302e32302e3234302e302f32342d3234203d3e20313532383035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.240.0/24 Signature Algorithm: sha256WithRSAEncryption 44:a0:4c:60:e7:d1:a0:bf:8d:73:45:21:12:bb:bf:ab:e5:7f: 55:39:ba:3a:49:df:3f:ba:51:59:f9:0b:fb:4f:32:dc:cd:46: bc:85:16:23:e2:a2:5a:29:9b:b4:80:2c:5c:1c:fd:4c:f4:c7: f3:74:14:14:ca:78:ad:92:c6:87:5f:ce:33:78:0f:29:bf:0b: b4:50:f7:fd:92:66:e8:d1:8b:ea:4c:31:9f:65:f3:0e:60:8b: 0e:95:fa:ca:40:be:43:4e:2b:8f:9a:5d:2a:3c:3f:e6:39:18: 22:5d:92:8f:58:ed:fd:9b:ec:8d:7b:29:e2:e3:20:68:7c:95: 8a:c1:72:8b:6c:9a:6f:b3:8d:a6:25:d1:83:80:b4:11:15:d6: ba:86:44:a7:57:97:85:37:a2:6e:72:e8:f1:31:09:e1:1b:d8: 3c:b3:c6:2c:eb:f1:1a:f0:c0:d0:b8:54:9a:aa:7e:6f:20:62: 4a:3f:ac:ac:d9:d5:30:83:eb:91:4d:00:af:6a:ef:1a:e8:09: a5:30:c8:5e:9d:df:60:a6:6c:42:fa:46:8e:c4:a1:3e:48:05: 2a:32:74:68:04:d3:ae:0b:de:35:85:24:e9:11:dd:19:ce:3e: 00:86:2f:e7:f3:5b:27:9d:8f:a2:6d:6f:60:10:fb:11:9e:b0: ad:c6:d6:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPbCl1tYMmttzqVzrIaS4ppinOTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGN0FBNEVEQjZDNDU3QjVEMDJENjY3NjJEREQ4RUU0 QjQxMTc4MTAeFw0yNjA1MDMwMjQxMjBaFw0yNzA1MDIwMjQ2MjBaMDMxMTAvBgNV BAMTKDA5NkU1MDUyMDgxNjBFNkJEMjk2MzVFQjZFREFGRDMzQTc4OTJCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRyYbwxXBK+K6XPIbweSl2vyw9 4jouDQ/cG5CEhjmiskx6ptesoT6Wz3d6Xs+sxFEalPHh5tJoDnHw1MYDiy4tGBKo tP5gP1URTwH6WRjKCT2eoxPim5kswMkpC539lSTjs0FaSpqKr3bmLlsrDSFznHVb yRwsfYBnnT56JoTS41462C+EYm+dAPRCQnKWgO6/dtM3yIRU3CULsG8V7SWEgwa5 Q6qsGXw7kpR+CiLuZibsMHStEeAE3nTFa9ECN4uHfEJ8ef+bdAbdy50sAqQYvGOJ +0ZyjQakJXf4zXATkhph1hEyHtRpSj0ZtxVqwJDWSKG2K43z5qdt5P/W85M3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCW5QUggWDmvSljXrbtr9M6eJK/owHwYDVR0j BBgwFoAUcPeqTttsRXtdAtZnYt3Y7ktBF4EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZjNWExY2MtY2M1ZS00ZTU4LThkZjQtZjg4NjcxODMxM2FhLzAvNzBGN0FBNEVE QjZDNDU3QjVEMDJENjY3NjJEREQ4RUU0QjQxMTc4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83MEY3QUE0RURCNkM0NTdCNUQwMkQ2Njc2MkRERDhFRTRCNDEx NzgxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdmYzVhMWNjLWNjNWUtNGU1OC04 ZGY0LWY4ODY3MTgzMTNhYS8wLzMxMzYzMDJlMzIzMDJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBTwMA0GCSqG SIb3DQEBCwUAA4IBAQBEoExg59Ggv41zRSESu7+r5X9VObo6Sd8/ulFZ+Qv7TzLc zUa8hRYj4qJaKZu0gCxcHP1M9MfzdBQUynitksaHX84zeA8pvwu0UPf9kmbo0Yvq TDGfZfMOYIsOlfrKQL5DTiuPml0qPD/mORgiXZKPWO39m+yNeyni4yBofJWKwXKL bJpvs42mJdGDgLQRFda6hkSnV5eFN6JucujxMQnhG9g8s8Ys6/Ea8MDQuFSaqn5v IGJKP6ys2dUwg+uRTQCvau8a6AmlMMhend9gpmxC+kaOxKE+SAUqMnRoBNOuC941 hSTpEd0Zzj4Ahi/n81snnY+ibW9gEPsRnrCtxtZE -----END CERTIFICATE-----Generated at Wed May 13 06:25:49 2026 by rpki-client