$ rpki-client -vvf rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa File: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (raw, json) Hash identifier: vnC+Tp+yt/9nwnboVLS+akmr5GJGP+dBJLMu3nh/zV0= Subject key identifier: 22:6C:22:EA:B5:B2:48:F2:15:34:81:C3:81:0C:A3:E5:45:8C:EF:8E Certificate issuer: /CN=5F61C10A56FB0A38DADA17E57F585D59C03BBEBF Certificate serial: 21BFE340B812070844229F1D3E98D54F93A3C5A8 Authority key identifier: 5F:61:C1:0A:56:FB:0A:38:DA:DA:17:E5:7F:58:5D:59:C0:3B:BE:BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa Signing time: Sun 03 May 2026 02:47:43 +0000 ROA not before: Sun 03 May 2026 02:42:43 +0000 ROA not after: Sun 02 May 2027 02:47:43 +0000 asID: 147088 IP address blocks: 160.19.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.crl rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:bf:e3:40:b8:12:07:08:44:22:9f:1d:3e:98:d5:4f:93:a3:c5:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F61C10A56FB0A38DADA17E57F585D59C03BBEBF Validity Not Before: May 3 02:42:43 2026 GMT Not After : May 2 02:47:43 2027 GMT Subject: CN=226C22EAB5B248F2153481C3810CA3E5458CEF8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:26:d7:18:ee:15:1a:b7:3d:cf:72:ec:fe:73: 1d:56:05:10:47:d5:ca:fe:52:37:16:50:1d:57:d3: b7:b9:06:8a:cf:22:20:89:19:2d:31:89:77:e0:d6: 5e:de:8b:c8:d3:64:e8:23:32:31:fc:be:00:fa:b7: 2d:98:d0:34:92:56:cb:b3:81:9d:32:e2:2a:c8:58: 42:83:c9:fc:2f:3e:d6:03:bc:f3:1f:76:ed:f5:8e: 35:80:6d:18:b3:4b:1c:21:54:a6:af:07:d7:f9:69: 1a:30:57:1e:51:97:79:aa:c3:57:a6:23:02:91:03: e2:57:86:f4:5f:49:72:bc:54:a7:72:8f:65:54:e3: 7d:19:4f:9f:9d:de:00:c2:90:17:cb:45:d9:22:54: f7:90:58:8b:87:db:a4:bc:51:5f:a0:0b:f5:c6:b4: 94:29:ab:f7:76:73:e0:ca:1b:b1:6d:b6:70:b6:30: 4f:2d:9d:c6:80:a0:fa:08:87:05:93:75:ef:d9:66: 77:99:8f:d2:8d:f8:f3:94:57:d8:a4:39:31:78:a4: 5e:ae:10:f8:13:8e:f4:fd:09:8e:28:ad:1b:dc:e2: 7f:d8:72:46:26:48:6e:20:5c:40:71:32:75:80:92: f6:cf:1a:c2:a1:94:e4:60:46:0f:d7:91:13:8e:b3: 38:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6C:22:EA:B5:B2:48:F2:15:34:81:C3:81:0C:A3:E5:45:8C:EF:8E X509v3 Authority Key Identifier: keyid:5F:61:C1:0A:56:FB:0A:38:DA:DA:17:E5:7F:58:5D:59:C0:3B:BE:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5F61C10A56FB0A38DADA17E57F585D59C03BBEBF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.88.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:37:c4:01:88:01:28:97:67:9b:4e:14:12:43:08:7c:56:a7: 11:9e:4c:85:fc:74:3f:bd:05:9f:3a:aa:c9:0e:08:c5:5e:e5: 2b:5a:c1:59:58:ae:3f:7c:1e:e4:a4:32:68:3f:b5:93:c0:ef: b4:d9:47:4b:c4:f0:73:e0:5a:36:9a:c5:5e:f4:52:ed:fc:13: 43:40:03:45:30:ad:53:da:2d:da:6a:25:0c:5d:32:7a:3e:1e: 45:69:1f:50:50:c3:28:90:11:33:d8:51:26:83:cb:2b:85:4f: 83:d9:c0:22:3f:34:aa:35:36:7f:46:94:b8:43:22:ad:2c:0b: 40:5a:df:e8:be:31:01:55:57:ba:1f:59:d7:e2:c9:3a:be:c1: 7d:65:cf:40:6c:cb:8f:ed:d9:77:e3:f6:e1:1b:80:f2:be:3a: 5d:b5:59:3a:17:e9:68:de:d8:59:23:36:38:f2:25:a7:1a:c2: fd:74:45:fd:41:ea:65:38:09:89:35:49:35:10:21:7a:8a:86: 42:db:65:cd:b3:a2:dd:28:64:52:4c:db:7a:98:0b:9d:ed:26: be:f7:ab:23:cd:b8:56:59:cb:c6:ec:c2:81:26:3e:4a:f2:78: 63:70:25:f3:20:4f:36:93:82:2a:aa:b1:28:8b:dd:76:2d:e7: 21:72:e3:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIb/jQLgSBwhEIp8dPpjVT5OjxagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUY2MUMxMEE1NkZCMEEzOERBREExN0U1N0Y1ODVENTlD MDNCQkVCRjAeFw0yNjA1MDMwMjQyNDNaFw0yNzA1MDIwMjQ3NDNaMDMxMTAvBgNV BAMTKDIyNkMyMkVBQjVCMjQ4RjIxNTM0ODFDMzgxMENBM0U1NDU4Q0VGOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1JtcY7hUatz3Pcuz+cx1WBRBH 1cr+UjcWUB1X07e5BorPIiCJGS0xiXfg1l7ei8jTZOgjMjH8vgD6ty2Y0DSSVsuz gZ0y4irIWEKDyfwvPtYDvPMfdu31jjWAbRizSxwhVKavB9f5aRowVx5Rl3mqw1em IwKRA+JXhvRfSXK8VKdyj2VU430ZT5+d3gDCkBfLRdkiVPeQWIuH26S8UV+gC/XG tJQpq/d2c+DKG7FttnC2ME8tncaAoPoIhwWTde/ZZneZj9KN+POUV9ikOTF4pF6u EPgTjvT9CY4orRvc4n/YckYmSG4gXEBxMnWAkvbPGsKhlORgRg/XkROOszgBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUImwi6rWySPIVNIHDgQyj5UWM744wHwYDVR0j BBgwFoAUX2HBClb7Cjja2hflf1hdWcA7vr8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODRkYTQxNWItNWYxNy00NjAyLTliZDktZmQ4NGFjMmNhZTg2LzAvNUY2MUMxMEE1 NkZCMEEzOERBREExN0U1N0Y1ODVENTlDMDNCQkVCRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81RjYxQzEwQTU2RkIwQTM4REFEQTE3RTU3RjU4NUQ1OUMwM0JC RUJGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg0ZGE0MTViLTVmMTctNDYwMi05 YmQ5LWZkODRhYzJjYWU4Ni8wLzMxMzYzMDJlMzEzOTJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATWDANBgkqhkiG 9w0BAQsFAAOCAQEATjfEAYgBKJdnm04UEkMIfFanEZ5Mhfx0P70FnzqqyQ4IxV7l K1rBWViuP3we5KQyaD+1k8DvtNlHS8Twc+BaNprFXvRS7fwTQ0ADRTCtU9ot2mol DF0yej4eRWkfUFDDKJARM9hRJoPLK4VPg9nAIj80qjU2f0aUuEMirSwLQFrf6L4x AVVXuh9Z1+LJOr7BfWXPQGzLj+3Zd+P24RuA8r46XbVZOhfpaN7YWSM2OPIlpxrC /XRF/UHqZTgJiTVJNRAheoqGQttlzbOi3ShkUkzbepgLne0mvverI824VlnLxuzC gSY+SvJ4Y3Al8yBPNpOCKqqxKIvddi3nIXLjMg== -----END CERTIFICATE-----Generated at Wed May 13 06:27:12 2026 by rpki-client