$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa File: 3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa (raw, json) Hash identifier: FD6DZLAD82J53Et9EbV2Xq3/qHjpIsW18vTg4xSoVFM= Subject key identifier: CC:05:02:01:1E:C3:98:1A:71:40:E1:81:76:BB:2F:2D:DE:7C:A4:4A Certificate issuer: /CN=04019B19845760AEBFFA4B3395DCC30F1C6D7AF5 Certificate serial: 15F10FA80CCD9E33956D7EFD6490DD621568FF40 Authority key identifier: 04:01:9B:19:84:57:60:AE:BF:FA:4B:33:95:DC:C3:0F:1C:6D:7A:F5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa Signing time: Sun 03 May 2026 02:49:31 +0000 ROA not before: Sun 03 May 2026 02:44:31 +0000 ROA not after: Sun 02 May 2027 02:49:31 +0000 asID: 153063 IP address blocks: 160.22.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.crl rsync://rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:f1:0f:a8:0c:cd:9e:33:95:6d:7e:fd:64:90:dd:62:15:68:ff:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04019B19845760AEBFFA4B3395DCC30F1C6D7AF5 Validity Not Before: May 3 02:44:31 2026 GMT Not After : May 2 02:49:31 2027 GMT Subject: CN=CC0502011EC3981A7140E18176BB2F2DDE7CA44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:41:39:5a:da:52:b0:c3:48:50:7a:a3:b3: 2e:17:32:0a:5a:eb:73:f9:d1:72:d1:04:d2:70:69: 29:f5:06:cb:ec:4d:8b:00:22:0a:b1:42:f0:d3:86: 81:c6:28:a9:ad:ab:ec:d7:11:d6:4a:2f:0d:d6:91: f8:64:79:56:f1:80:13:0e:6b:26:c4:f4:47:cb:6e: f4:cd:7a:f2:05:70:16:da:d3:00:86:8a:6d:43:35: d9:1f:d4:ac:8a:fe:f5:e6:8c:46:94:98:8e:95:52: 52:a9:70:e2:a4:d0:5c:78:21:ac:62:91:a9:d3:7a: 12:ac:23:e3:52:71:3a:59:5d:5e:02:da:59:77:6d: 75:0b:90:b8:31:d5:3e:66:35:4e:07:eb:f1:19:2b: 53:2c:e7:60:ea:20:bf:45:07:25:4f:d5:6b:d7:5d: 22:ef:1d:95:f0:a8:87:77:86:40:8f:f2:f0:d8:99: 98:bc:00:c1:21:94:22:16:eb:23:4e:5d:be:e7:cb: 88:f7:4f:4d:b9:2e:55:55:c1:41:34:e1:be:be:f7: 99:5c:e3:75:d5:a8:5a:ca:58:b0:34:ae:a5:84:4b: c4:f6:41:35:ae:16:1c:c7:77:af:b1:28:08:e0:01: 86:4c:5b:42:de:3b:2e:de:1d:ec:30:06:ea:2c:b4: 32:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:05:02:01:1E:C3:98:1A:71:40:E1:81:76:BB:2F:2D:DE:7C:A4:4A X509v3 Authority Key Identifier: keyid:04:01:9B:19:84:57:60:AE:BF:FA:4B:33:95:DC:C3:0F:1C:6D:7A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/04019B19845760AEBFFA4B3395DCC30F1C6D7AF5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b29e912-35c6-480f-b869-2a0f8aef30d2/0/3136302e32322e3232322e302f32342d3234203d3e20313533303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.222.0/24 Signature Algorithm: sha256WithRSAEncryption a5:eb:dc:0a:04:05:3a:61:a2:b6:04:dd:8c:fb:3a:6c:c5:3e: 7d:dd:3b:86:6d:bc:30:ec:89:03:e0:a1:f2:9e:cf:56:26:b3: e7:cb:6c:0f:82:14:f2:04:f0:61:cb:7b:3c:1d:d2:78:fb:94: 9e:54:12:57:14:19:b8:6e:7b:74:8f:4f:57:b2:3d:4b:7c:ed: 3a:e0:ef:8d:c8:89:5c:8c:60:b9:00:01:d3:51:a4:e1:22:65: 50:b7:2f:d0:62:49:21:e0:07:a8:5a:5b:33:d4:de:84:4a:2a: 4d:b6:d3:03:e1:e5:7c:04:dd:ed:00:70:ee:9d:ee:51:3b:f6: a6:a4:f7:ca:ce:f7:3b:76:de:0d:8b:12:9c:8a:a9:88:55:d9: 5b:fe:d6:0c:c0:c1:34:3f:61:51:7f:b0:d2:9f:f0:42:fe:10: 38:ee:27:63:72:3d:c0:e0:19:74:28:84:67:63:0e:87:08:5f: 06:4f:38:78:74:ff:cb:22:67:c5:dd:93:1e:77:86:af:e1:95: 2d:ac:ea:16:ff:fb:e5:72:da:d6:89:c3:21:67:8a:94:63:9f: 4c:a6:a5:14:6d:99:8b:a4:8e:f7:f6:84:4a:b2:bb:28:29:ab: 56:ed:3d:e4:45:c0:5d:f3:5f:02:52:6f:bf:25:de:a1:13:88: 60:a5:50:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFfEPqAzNnjOVbX79ZJDdYhVo/0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQwMTlCMTk4NDU3NjBBRUJGRkE0QjMzOTVEQ0MzMEYx QzZEN0FGNTAeFw0yNjA1MDMwMjQ0MzFaFw0yNzA1MDIwMjQ5MzFaMDMxMTAvBgNV BAMTKENDMDUwMjAxMUVDMzk4MUE3MTQwRTE4MTc2QkIyRjJEREU3Q0E0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOkEE5WtpSsMNIUHqjsy4XMgpa 63P50XLRBNJwaSn1BsvsTYsAIgqxQvDThoHGKKmtq+zXEdZKLw3WkfhkeVbxgBMO aybE9EfLbvTNevIFcBba0wCGim1DNdkf1KyK/vXmjEaUmI6VUlKpcOKk0Fx4Iaxi kanTehKsI+NScTpZXV4C2ll3bXULkLgx1T5mNU4H6/EZK1Ms52DqIL9FByVP1WvX XSLvHZXwqId3hkCP8vDYmZi8AMEhlCIW6yNOXb7ny4j3T025LlVVwUE04b6+95lc 43XVqFrKWLA0rqWES8T2QTWuFhzHd6+xKAjgAYZMW0LeOy7eHewwBuostDIpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzAUCAR7DmBpxQOGBdrsvLd58pEowHwYDVR0j BBgwFoAUBAGbGYRXYK6/+kszldzDDxxtevUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGIyOWU5MTItMzVjNi00ODBmLWI4NjktMmEwZjhhZWYzMGQyLzAvMDQwMTlCMTk4 NDU3NjBBRUJGRkE0QjMzOTVEQ0MzMEYxQzZEN0FGNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wNDAxOUIxOTg0NTc2MEFFQkZGQTRCMzM5NURDQzMwRjFDNkQ3 QUY1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiMjllOTEyLTM1YzYtNDgwZi1i ODY5LTJhMGY4YWVmMzBkMi8wLzMxMzYzMDJlMzIzMjJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbeMA0GCSqG SIb3DQEBCwUAA4IBAQCl69wKBAU6YaK2BN2M+zpsxT593TuGbbww7IkD4KHyns9W JrPny2wPghTyBPBhy3s8HdJ4+5SeVBJXFBm4bnt0j09Xsj1LfO064O+NyIlcjGC5 AAHTUaThImVQty/QYkkh4AeoWlsz1N6ESipNttMD4eV8BN3tAHDune5RO/ampPfK zvc7dt4NixKciqmIVdlb/tYMwME0P2FRf7DSn/BC/hA47idjcj3A4Bl0KIRnYw6H CF8GTzh4dP/LImfF3ZMed4av4ZUtrOoW//vlctrWicMhZ4qUY59MpqUUbZmLpI73 9oRKsrsoKatW7T3kRcBd818CUm+/Jd6hE4hgpVBx -----END CERTIFICATE-----Generated at Wed May 13 05:55:50 2026 by rpki-client