$ rpki-client -vvf rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa File: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: i/0I209EPRIUokXIhiN66Jf089MpyqUmHHFbT6/zLLE= Subject key identifier: 93:8E:72:62:23:46:59:34:53:32:2F:8A:13:C7:84:A5:19:10:08:89 Certificate issuer: /CN=3A3AAC87AB4378730C3C8CFD373E558E1273053C Certificate serial: 4DBDC8BD7C47CD73997A468025E52ACE90F326F7 Authority key identifier: 3A:3A:AC:87:AB:43:78:73:0C:3C:8C:FD:37:3E:55:8E:12:73:05:3C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa Signing time: Sun 03 May 2026 02:51:35 +0000 ROA not before: Sun 03 May 2026 02:46:35 +0000 ROA not after: Sun 02 May 2027 02:51:35 +0000 asID: 140456 IP address blocks: 160.22.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.crl rsync://rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:bd:c8:bd:7c:47:cd:73:99:7a:46:80:25:e5:2a:ce:90:f3:26:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A3AAC87AB4378730C3C8CFD373E558E1273053C Validity Not Before: May 3 02:46:35 2026 GMT Not After : May 2 02:51:35 2027 GMT Subject: CN=938E72622346593453322F8A13C784A519100889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c1:83:2a:83:1a:b1:9a:b2:28:29:d1:0f:da: bc:a9:57:8c:91:6e:06:48:52:f3:77:8f:7b:e4:67: af:ae:10:a2:c3:d3:2f:8a:9b:c0:3a:18:fb:47:4c: 77:dd:23:2c:8c:c3:08:64:21:0b:da:8e:24:8d:a8: a7:d9:1c:d3:46:ab:6a:64:c0:97:d3:64:f2:a3:a2: 9b:7e:6f:50:43:c0:47:74:8f:ba:62:43:e8:cb:4b: 65:a1:29:7b:b5:91:39:a3:99:ec:90:21:dd:70:32: 3e:12:88:10:e4:bc:67:58:f5:3a:a4:aa:6c:c8:38: d0:5d:35:29:5e:53:fc:d4:19:da:83:f7:bb:ed:37: 13:8e:e9:8e:59:41:e2:c8:31:0c:d0:6c:d2:36:92: 94:7b:b2:28:36:26:6a:6a:32:fb:17:34:f0:31:9f: b6:8e:3e:26:d8:66:61:76:2d:28:30:0d:28:52:0e: ea:e2:fa:40:05:71:07:ca:cf:48:58:25:de:fc:51: 4f:01:38:12:16:08:7b:e8:02:0c:2a:d8:90:32:53: 1f:b7:2c:f0:fe:68:51:92:ff:6b:da:e6:8a:a2:b5: 81:e5:25:7f:ff:71:b9:9a:f4:35:20:46:20:8b:33: 84:04:e5:e2:62:22:c5:79:ce:c0:20:40:73:39:ce: 52:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:8E:72:62:23:46:59:34:53:32:2F:8A:13:C7:84:A5:19:10:08:89 X509v3 Authority Key Identifier: keyid:3A:3A:AC:87:AB:43:78:73:0C:3C:8C:FD:37:3E:55:8E:12:73:05:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3A3AAC87AB4378730C3C8CFD373E558E1273053C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.250.0/24 Signature Algorithm: sha256WithRSAEncryption 66:4c:75:74:1d:6a:16:ba:32:13:a1:31:40:44:de:5f:f6:c4: db:45:ae:73:2c:fc:81:c3:a4:be:85:73:95:c1:fd:b9:cb:4b: 50:fd:df:bf:cb:2c:32:ed:dc:ac:a1:fe:45:b3:ed:df:2a:7b: a4:9f:e7:51:25:68:39:c7:80:ec:f0:14:40:c9:f9:3d:0f:70: c9:c4:78:5b:79:e1:0a:0a:6b:79:59:80:5a:17:a4:e1:b0:56: ed:4e:f8:f3:2a:40:35:32:49:a8:f4:b1:b3:6b:8d:07:a8:a0: 1f:3f:ce:2a:17:41:ff:98:4d:d8:c4:fe:f3:23:22:11:96:f5: 0a:7b:3f:45:19:d8:85:db:e7:1a:a6:3d:7c:34:15:bd:62:f7: c5:6b:5c:be:99:24:3c:a3:00:e5:1b:b3:70:76:31:04:e5:c7: c9:24:5d:c6:3f:ee:4a:f3:35:ed:13:93:ba:8e:53:a9:99:a2: 4b:d1:e2:eb:b3:45:bb:c0:8f:0e:c5:f4:67:e0:18:bd:25:28: 21:c6:fe:94:d0:1f:64:b0:a9:c5:ec:25:30:da:8a:e2:9e:ac: e9:19:08:55:2a:34:45:94:dc:86:83:a5:7b:ca:66:11:21:30: 13:fb:9f:a2:13:82:91:97:a6:a7:c6:ac:aa:91:16:1a:42:06: ce:1d:a4:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTb3IvXxHzXOZekaAJeUqzpDzJvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0EzQUFDODdBQjQzNzg3MzBDM0M4Q0ZEMzczRTU1OEUx MjczMDUzQzAeFw0yNjA1MDMwMjQ2MzVaFw0yNzA1MDIwMjUxMzVaMDMxMTAvBgNV BAMTKDkzOEU3MjYyMjM0NjU5MzQ1MzMyMkY4QTEzQzc4NEE1MTkxMDA4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJwYMqgxqxmrIoKdEP2rypV4yR bgZIUvN3j3vkZ6+uEKLD0y+Km8A6GPtHTHfdIyyMwwhkIQvajiSNqKfZHNNGq2pk wJfTZPKjopt+b1BDwEd0j7piQ+jLS2WhKXu1kTmjmeyQId1wMj4SiBDkvGdY9Tqk qmzIONBdNSleU/zUGdqD97vtNxOO6Y5ZQeLIMQzQbNI2kpR7sig2JmpqMvsXNPAx n7aOPibYZmF2LSgwDShSDuri+kAFcQfKz0hYJd78UU8BOBIWCHvoAgwq2JAyUx+3 LPD+aFGS/2va5oqitYHlJX//cbma9DUgRiCLM4QE5eJiIsV5zsAgQHM5zlKRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk45yYiNGWTRTMi+KE8eEpRkQCIkwHwYDVR0j BBgwFoAUOjqsh6tDeHMMPIz9Nz5VjhJzBTwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTA4YWIxNTctZDgyNy00OWE4LWJiODYtMjhiZTEzMWMzZDI2LzAvM0EzQUFDODdB QjQzNzg3MzBDM0M4Q0ZEMzczRTU1OEUxMjczMDUzQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zQTNBQUM4N0FCNDM3ODczMEMzQzhDRkQzNzNFNTU4RTEyNzMw NTNDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkwOGFiMTU3LWQ4MjctNDlhOC1i Yjg2LTI4YmUxMzFjM2QyNi8wLzMxMzYzMDJlMzIzMjJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBb6MA0GCSqG SIb3DQEBCwUAA4IBAQBmTHV0HWoWujIToTFARN5f9sTbRa5zLPyBw6S+hXOVwf25 y0tQ/d+/yywy7dysof5Fs+3fKnukn+dRJWg5x4Ds8BRAyfk9D3DJxHhbeeEKCmt5 WYBaF6ThsFbtTvjzKkA1Mkmo9LGza40HqKAfP84qF0H/mE3YxP7zIyIRlvUKez9F GdiF2+capj18NBW9YvfFa1y+mSQ8owDlG7NwdjEE5cfJJF3GP+5K8zXtE5O6jlOp maJL0eLrs0W7wI8OxfRn4Bi9JSghxv6U0B9ksKnF7CUw2orinqzpGQhVKjRFlNyG g6V7ymYRITAT+5+iE4KRl6anxqyqkRYaQgbOHaRl -----END CERTIFICATE-----Generated at Wed May 13 09:17:37 2026 by rpki-client