$ rpki-client -vvf rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa File: 3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa (raw, json) Hash identifier: P41vY0hE4/fOxPq6Kkw/xasNl7gj2h7Qpzh5dZmTPvY= Subject key identifier: 0A:78:9D:DE:17:95:0A:94:5D:BA:D4:95:F9:DE:65:B4:29:A9:54:1F Certificate issuer: /CN=BAA973B32B2177C10441FFA1198AD30A3ACABB9C Certificate serial: 6931C63F90BAE383C32006552E944DCB7B25021D Authority key identifier: BA:A9:73:B3:2B:21:77:C1:04:41:FF:A1:19:8A:D3:0A:3A:CA:BB:9C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa Signing time: Sun 03 May 2026 02:48:37 +0000 ROA not before: Sun 03 May 2026 02:43:37 +0000 ROA not after: Sun 02 May 2027 02:48:37 +0000 asID: 153075 IP address blocks: 160.25.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.crl rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:31:c6:3f:90:ba:e3:83:c3:20:06:55:2e:94:4d:cb:7b:25:02:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA973B32B2177C10441FFA1198AD30A3ACABB9C Validity Not Before: May 3 02:43:37 2026 GMT Not After : May 2 02:48:37 2027 GMT Subject: CN=0A789DDE17950A945DBAD495F9DE65B429A9541F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:9d:69:a3:5f:73:7b:6f:7f:cb:31:46:ef: 3a:0b:77:4e:c8:da:38:50:db:39:7a:20:62:66:d5: 85:9c:a6:4a:02:9e:2e:5a:1e:ad:ce:4f:66:66:97: 13:ea:98:46:db:ee:5b:02:57:1e:0e:8e:2d:e2:f0: 25:8e:88:63:b3:29:12:9d:ce:49:85:b4:49:e4:c8: 5c:fe:16:50:68:db:69:61:84:49:0e:6c:84:6a:24: 08:c7:54:7c:c9:a7:9b:2a:82:84:2d:5b:98:c3:e6: b4:e0:5d:5b:24:4f:34:32:00:e4:a1:c2:57:1e:4b: 12:2d:2c:88:70:a9:96:44:0c:dc:3b:d3:4b:cd:bb: d4:4f:90:30:33:e5:ae:34:35:f4:a1:20:2a:08:07: 69:4e:8d:75:86:eb:ec:57:65:fe:60:fb:f5:68:cf: c8:bd:67:78:f3:e5:07:2c:e0:9f:ce:e9:b2:6e:05: a5:84:b4:cf:6b:39:4e:3b:64:7c:de:e6:3e:e6:23: 94:bd:68:77:a4:03:32:33:d8:8d:6b:20:af:06:27: 11:d8:20:75:85:a6:bb:69:35:f3:fd:8e:97:f8:06: 3b:78:be:cd:0e:d4:ec:8e:d1:20:00:62:40:50:11: 9e:93:64:9b:c4:ef:02:1f:a1:7c:df:bc:76:ad:0f: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:78:9D:DE:17:95:0A:94:5D:BA:D4:95:F9:DE:65:B4:29:A9:54:1F X509v3 Authority Key Identifier: keyid:BA:A9:73:B3:2B:21:77:C1:04:41:FF:A1:19:8A:D3:0A:3A:CA:BB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BAA973B32B2177C10441FFA1198AD30A3ACABB9C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/3136302e32352e3137392e302f32342d3234203d3e20313533303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.179.0/24 Signature Algorithm: sha256WithRSAEncryption 38:4a:e4:3d:0d:12:4d:75:f1:de:bd:4e:c3:b8:11:4e:97:a7: 0c:dd:6e:a1:c7:5a:b7:9d:59:11:f2:e5:b6:aa:49:15:a1:dc: 32:99:87:ca:fd:75:12:eb:bb:c1:66:ef:cd:1d:9f:4a:fe:04: cb:ef:96:e3:c7:28:9e:46:84:bb:5e:3e:f9:28:78:6e:4f:42: 5a:43:bb:e6:d5:54:00:61:7f:41:74:b5:5a:ae:e4:d1:23:31: 32:94:c4:aa:e6:f2:fb:50:a5:a1:b0:1e:de:87:c9:9e:93:56: 26:66:e1:18:8b:82:ea:1d:5e:3a:f7:57:78:89:50:65:cf:97: f0:e6:e3:a2:aa:18:0f:16:6c:51:d7:4a:8a:83:54:85:02:41: 6b:95:e1:92:14:26:7f:30:bd:9b:92:0b:bb:8b:6f:38:4a:54: fa:db:97:38:91:47:36:a5:5e:47:43:d3:82:01:da:64:ae:65: 6e:c2:b5:12:70:07:d9:51:65:ff:38:c2:e1:72:ad:e9:e2:25: 06:d9:2b:d7:db:3a:7c:ad:96:9e:07:e4:97:b6:56:9e:60:75: a0:32:6f:6f:4a:27:c2:7b:ce:ef:2b:1b:19:61:40:b4:69:e0: 8c:e7:fd:ea:4f:86:86:2d:92:37:35:f9:25:9e:a9:c1:05:27: ae:7b:9d:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaTHGP5C644PDIAZVLpRNy3slAh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOTczQjMyQjIxNzdDMTA0NDFGRkExMTk4QUQzMEEz QUNBQkI5QzAeFw0yNjA1MDMwMjQzMzdaFw0yNzA1MDIwMjQ4MzdaMDMxMTAvBgNV BAMTKDBBNzg5RERFMTc5NTBBOTQ1REJBRDQ5NUY5REU2NUI0MjlBOTU0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEep1po19ze29/yzFG7zoLd07I 2jhQ2zl6IGJm1YWcpkoCni5aHq3OT2ZmlxPqmEbb7lsCVx4Oji3i8CWOiGOzKRKd zkmFtEnkyFz+FlBo22lhhEkObIRqJAjHVHzJp5sqgoQtW5jD5rTgXVskTzQyAOSh wlceSxItLIhwqZZEDNw700vNu9RPkDAz5a40NfShICoIB2lOjXWG6+xXZf5g+/Vo z8i9Z3jz5Qcs4J/O6bJuBaWEtM9rOU47ZHze5j7mI5S9aHekAzIz2I1rIK8GJxHY IHWFprtpNfP9jpf4Bjt4vs0O1OyO0SAAYkBQEZ6TZJvE7wIfoXzfvHatD7g9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCnid3heVCpRdutSV+d5ltCmpVB8wHwYDVR0j BBgwFoAUuqlzsyshd8EEQf+hGYrTCjrKu5wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODdjNDMyZTAtZGMzZS00MmNjLWJjYzAtNjI5YjE2MjA2YzlhLzAvQkFBOTczQjMy QjIxNzdDMTA0NDFGRkExMTk4QUQzMEEzQUNBQkI5Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CQUE5NzNCMzJCMjE3N0MxMDQ0MUZGQTExOThBRDMwQTNBQ0FC QjlDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUwLWRjM2UtNDJjYy1i Y2MwLTYyOWIxNjIwNmM5YS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmzMA0GCSqG SIb3DQEBCwUAA4IBAQA4SuQ9DRJNdfHevU7DuBFOl6cM3W6hx1q3nVkR8uW2qkkV odwymYfK/XUS67vBZu/NHZ9K/gTL75bjxyieRoS7Xj75KHhuT0JaQ7vm1VQAYX9B dLVaruTRIzEylMSq5vL7UKWhsB7eh8mek1YmZuEYi4LqHV4691d4iVBlz5fw5uOi qhgPFmxR10qKg1SFAkFrleGSFCZ/ML2bkgu7i284SlT625c4kUc2pV5HQ9OCAdpk rmVuwrUScAfZUWX/OMLhcq3p4iUG2SvX2zp8rZaeB+SXtlaeYHWgMm9vSifCe87v KxsZYUC0aeCM5/3qT4aGLZI3NfklnqnBBSeue50u -----END CERTIFICATE-----Generated at Wed May 13 10:43:13 2026 by rpki-client