$ rpki-client -vvf rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa File: 3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa (raw, json) Hash identifier: 38K5sAQjb+p+j0jaQg6iZ50hxbINutZm4v5XssXTvIk= Subject key identifier: 90:67:53:B9:9E:6F:11:77:54:2E:9E:0A:A2:8F:36:BC:07:FC:83:87 Certificate issuer: /CN=BAA973B32B2177C10441FFA1198AD30A3ACABB9C Certificate serial: 6214200EF96415C9405D5B5C0C34A4100720CA14 Authority key identifier: BA:A9:73:B3:2B:21:77:C1:04:41:FF:A1:19:8A:D3:0A:3A:CA:BB:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa Signing time: Sun 03 May 2026 02:48:37 +0000 ROA not before: Sun 03 May 2026 02:43:37 +0000 ROA not after: Sun 02 May 2027 02:48:37 +0000 asID: 153075 IP address blocks: 160.25.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.crl rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:14:20:0e:f9:64:15:c9:40:5d:5b:5c:0c:34:a4:10:07:20:ca:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA973B32B2177C10441FFA1198AD30A3ACABB9C Validity Not Before: May 3 02:43:37 2026 GMT Not After : May 2 02:48:37 2027 GMT Subject: CN=906753B99E6F1177542E9E0AA28F36BC07FC8387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:91:a5:ab:12:d2:e6:fa:c7:8a:99:90:f5:2d: 90:72:1d:a1:f3:35:28:93:80:5b:36:b4:19:3b:97: c0:2a:5d:43:c1:11:fd:f4:8c:28:49:15:73:53:01: 92:04:40:0d:1f:de:2b:b0:48:16:da:01:27:4a:93: 88:3d:3b:af:68:93:82:e6:7c:d2:bf:53:25:b8:5d: c4:a3:61:e7:8b:2a:aa:2b:45:45:29:a2:24:c6:05: 9d:ab:8a:77:61:e8:d0:a2:73:e2:c3:18:d0:0e:d8: dd:7d:3d:07:1f:89:fc:2a:19:38:2a:c7:47:58:bd: bd:b3:06:af:a3:5a:7a:93:bb:b6:ba:98:f9:a5:95: d8:47:e4:38:06:98:84:b0:0d:04:b8:e6:8a:63:c6: b7:61:15:a3:e9:ef:61:9d:ca:82:c7:0e:2d:f4:04: c8:b1:22:6e:5c:56:06:4d:10:46:6d:45:46:da:3e: 06:e2:00:b8:d8:60:e5:c7:38:93:ef:89:33:22:65: 9f:48:f7:ca:3c:58:89:60:80:ae:41:68:3a:c2:67: c5:c6:d6:16:7d:26:d8:fb:80:79:82:06:52:01:34: 27:8e:10:9c:49:b9:a7:fa:2a:14:8a:0c:85:b5:cf: a3:aa:a7:bc:07:9b:f6:b9:88:95:df:4c:9d:91:0a: b0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:67:53:B9:9E:6F:11:77:54:2E:9E:0A:A2:8F:36:BC:07:FC:83:87 X509v3 Authority Key Identifier: keyid:BA:A9:73:B3:2B:21:77:C1:04:41:FF:A1:19:8A:D3:0A:3A:CA:BB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137382e302f32342d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.178.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:e0:83:1c:0f:d6:7c:b6:e0:a1:b2:34:49:aa:f6:48:1a:dd: ad:17:d5:03:52:f8:ca:c7:a9:37:79:e8:37:3e:f6:fe:3d:6a: 80:8a:c7:5b:b9:d5:46:97:c2:91:47:a1:39:f9:ed:21:dd:c9: ed:c7:e8:c0:ce:9d:a3:9e:27:c3:ce:ce:57:20:f0:b6:de:67: c4:57:dc:f8:be:28:60:88:a2:30:b6:0d:18:21:da:a6:13:5a: e8:7c:01:8b:10:eb:0d:b8:c8:5b:6c:4d:8b:aa:20:2b:24:d1: ab:24:9a:3f:6e:bf:7b:7d:32:6c:b3:19:2e:3f:cd:c3:7a:37: 6e:8f:d0:66:8c:b9:d2:e7:b4:24:33:08:e2:f8:46:10:f6:87: 36:7d:c8:32:6c:e4:ba:39:14:70:02:a1:8e:cb:c5:a1:62:75: a6:db:63:ff:bf:8c:7f:52:f5:9b:bc:8b:53:47:50:7a:0a:de: 83:2b:25:5f:fa:d7:10:59:e5:80:a3:cc:5e:1b:34:24:d2:b1: 35:ff:9d:d7:54:71:89:0e:f1:6a:4f:60:1f:df:0a:3f:33:0d: 30:92:db:6f:5d:66:aa:49:30:66:14:b6:5f:b9:0b:b5:15:58: 61:09:05:81:ca:71:80:b3:1b:04:05:53:d3:8e:e0:21:de:ec: 98:2d:6b:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYhQgDvlkFclAXVtcDDSkEAcgyhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOTczQjMyQjIxNzdDMTA0NDFGRkExMTk4QUQzMEEz QUNBQkI5QzAeFw0yNjA1MDMwMjQzMzdaFw0yNzA1MDIwMjQ4MzdaMDMxMTAvBgNV BAMTKDkwNjc1M0I5OUU2RjExNzc1NDJFOUUwQUEyOEYzNkJDMDdGQzgzODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVkaWrEtLm+seKmZD1LZByHaHz NSiTgFs2tBk7l8AqXUPBEf30jChJFXNTAZIEQA0f3iuwSBbaASdKk4g9O69ok4Lm fNK/UyW4XcSjYeeLKqorRUUpoiTGBZ2rindh6NCic+LDGNAO2N19PQcfifwqGTgq x0dYvb2zBq+jWnqTu7a6mPmlldhH5DgGmISwDQS45opjxrdhFaPp72GdyoLHDi30 BMixIm5cVgZNEEZtRUbaPgbiALjYYOXHOJPviTMiZZ9I98o8WIlggK5BaDrCZ8XG 1hZ9Jtj7gHmCBlIBNCeOEJxJuaf6KhSKDIW1z6Oqp7wHm/a5iJXfTJ2RCrABAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkGdTuZ5vEXdULp4Koo82vAf8g4cwHwYDVR0j BBgwFoAUuqlzsyshd8EEQf+hGYrTCjrKu5wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODdjNDMyZTAtZGMzZS00MmNjLWJjYzAtNjI5YjE2MjA2YzlhLzAvQkFBOTczQjMy QjIxNzdDMTA0NDFGRkExMTk4QUQzMEEzQUNBQkI5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CQUE5NzNCMzJCMjE3N0MxMDQ0MUZGQTExOThBRDMwQTNBQ0FC QjlDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmyMA0GCSqG SIb3DQEBCwUAA4IBAQAc4IMcD9Z8tuChsjRJqvZIGt2tF9UDUvjKx6k3eeg3Pvb+ PWqAisdbudVGl8KRR6E5+e0h3cntx+jAzp2jnifDzs5XIPC23mfEV9z4vihgiKIw tg0YIdqmE1rofAGLEOsNuMhbbE2LqiArJNGrJJo/br97fTJssxkuP83Dejduj9Bm jLnS57QkMwji+EYQ9oc2fcgybOS6ORRwAqGOy8WhYnWm22P/v4x/UvWbvItTR1B6 Ct6DKyVf+tcQWeWAo8xeGzQk0rE1/53XVHGJDvFqT2Af3wo/Mw0wkttvXWaqSTBm FLZfuQu1FVhhCQWBynGAsxsEBVPTjuAh3uyYLWsb -----END CERTIFICATE-----Generated at Wed May 13 10:16:50 2026 by rpki-client