$ rpki-client -vvf rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa File: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (raw, json) Hash identifier: AzEesec/wW/jUzz4Ncr2O6WcaEHSrbHmG+60SsLvoz8= Subject key identifier: 56:E6:26:AA:DB:C1:F9:FD:7E:EE:3F:56:DD:20:D0:7B:80:F5:36:BA Certificate issuer: /CN=B848BDBDF9F9967C010EDF6D8A365737C16E07E5 Certificate serial: 45A3FAEA55F35D83515FDEAF57EBFA07D744696B Authority key identifier: B8:48:BD:BD:F9:F9:96:7C:01:0E:DF:6D:8A:36:57:37:C1:6E:07:E5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa Signing time: Sun 03 May 2026 02:53:18 +0000 ROA not before: Sun 03 May 2026 02:48:18 +0000 ROA not after: Sun 02 May 2027 02:53:18 +0000 asID: 153101 IP address blocks: 160.25.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.crl rsync://rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a3:fa:ea:55:f3:5d:83:51:5f:de:af:57:eb:fa:07:d7:44:69:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B848BDBDF9F9967C010EDF6D8A365737C16E07E5 Validity Not Before: May 3 02:48:18 2026 GMT Not After : May 2 02:53:18 2027 GMT Subject: CN=56E626AADBC1F9FD7EEE3F56DD20D07B80F536BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:75:dc:88:e4:a6:d4:92:97:26:91:bb:aa:9f: 9a:99:11:6f:a1:7e:8b:8a:79:fc:17:0e:59:ba:d5: 66:de:a8:0a:4f:17:af:1d:40:bf:b2:cc:df:b7:29: 18:cc:18:eb:a9:fb:6d:1f:4f:70:ff:72:ad:0a:c8: ee:46:85:cd:ce:fc:80:f3:06:00:de:98:62:4b:73: 51:c8:50:47:1e:68:c9:50:f4:ef:c7:80:7d:48:11: bc:78:93:81:be:70:27:07:3e:4e:af:2f:39:a5:34: 96:32:2c:09:5a:f7:f0:1a:89:24:cc:dc:ea:03:19: 3b:f6:b3:58:43:1f:56:10:03:e6:7f:44:0c:9d:54: a9:02:63:39:42:5b:bf:2a:db:e0:6d:33:fb:e8:1f: 10:a5:50:1a:dc:96:06:a6:72:80:19:b8:b3:40:34: 1d:3f:f6:f4:7f:46:ec:f4:0e:f6:aa:dc:61:45:bc: 52:38:39:d7:be:a4:84:03:ae:78:4d:39:97:1d:bf: bd:78:a0:de:48:98:7e:b7:f6:26:1d:d9:c9:c5:5c: 05:a4:cf:92:81:b1:40:d7:03:bd:73:98:50:46:34: d0:3f:3f:4a:45:f8:0e:dc:0b:d5:04:e9:4b:b5:68: fd:7c:e6:fc:07:86:93:3d:8b:d0:95:7a:ef:12:9b: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E6:26:AA:DB:C1:F9:FD:7E:EE:3F:56:DD:20:D0:7B:80:F5:36:BA X509v3 Authority Key Identifier: keyid:B8:48:BD:BD:F9:F9:96:7C:01:0E:DF:6D:8A:36:57:37:C1:6E:07:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B848BDBDF9F9967C010EDF6D8A365737C16E07E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.152.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:8a:25:3c:d3:6c:ad:ae:0c:3d:ea:5e:ae:5b:24:b7:16:48: ae:74:91:48:38:0a:6b:25:d8:fa:c2:66:f2:a0:c7:ee:07:60: 1a:0f:3e:0d:e1:c3:8f:25:be:13:5a:35:70:03:0e:33:69:da: ca:af:8f:2a:6d:e9:4b:f4:db:ed:61:b7:39:da:32:93:ec:e3: 70:52:e1:8a:76:e4:95:b2:29:6b:1e:b3:77:cd:16:95:fe:42: 1d:b9:b1:a3:9d:c2:b0:4d:e0:c2:a3:44:63:08:47:9d:30:6b: 43:51:4c:b0:56:87:35:3f:4b:85:cb:b9:da:0b:0e:f9:3f:22: 8f:82:18:15:ee:cd:a5:e5:38:be:f2:14:ab:e1:76:eb:d6:6e: 9a:8a:a1:a6:ec:81:bb:91:47:7b:59:bc:0e:d8:cc:50:93:b0: d5:a4:07:29:75:cd:5b:7e:ec:cf:88:88:f6:8c:8b:1e:73:fd: 88:34:ed:a4:09:93:4b:30:ee:20:99:90:06:61:44:93:1e:0c: 50:b8:64:bd:77:32:f6:eb:fd:ea:19:e8:c1:ad:41:44:19:df: 3a:ee:b6:71:ef:e7:18:53:40:bd:56:13:6a:3f:14:3a:7c:37: 1a:50:c7:70:ea:55:7a:ed:83:3c:48:99:e5:1d:9b:5e:ac:ed: 59:59:9d:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURaP66lXzXYNRX96vV+v6B9dEaWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0OEJEQkRGOUY5OTY3QzAxMEVERjZEOEEzNjU3MzdD MTZFMDdFNTAeFw0yNjA1MDMwMjQ4MThaFw0yNzA1MDIwMjUzMThaMDMxMTAvBgNV BAMTKDU2RTYyNkFBREJDMUY5RkQ3RUVFM0Y1NkREMjBEMDdCODBGNTM2QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgddyI5KbUkpcmkbuqn5qZEW+h fouKefwXDlm61WbeqApPF68dQL+yzN+3KRjMGOup+20fT3D/cq0KyO5Ghc3O/IDz BgDemGJLc1HIUEceaMlQ9O/HgH1IEbx4k4G+cCcHPk6vLzmlNJYyLAla9/AaiSTM 3OoDGTv2s1hDH1YQA+Z/RAydVKkCYzlCW78q2+BtM/voHxClUBrclgamcoAZuLNA NB0/9vR/Ruz0Dvaq3GFFvFI4Ode+pIQDrnhNOZcdv714oN5ImH639iYd2cnFXAWk z5KBsUDXA71zmFBGNNA/P0pF+A7cC9UE6Uu1aP185vwHhpM9i9CVeu8SmyXDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVuYmqtvB+f1+7j9W3SDQe4D1NrowHwYDVR0j BBgwFoAUuEi9vfn5lnwBDt9tijZXN8FuB+UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTZjZDAzMjUtMzFhZi00ZmZlLThiZWItZTc3OTk3ZTZjM2UxLzAvQjg0OEJEQkRG OUY5OTY3QzAxMEVERjZEOEEzNjU3MzdDMTZFMDdFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CODQ4QkRCREY5Rjk5NjdDMDEwRURGNkQ4QTM2NTczN0MxNkUw N0U1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2Y2QwMzI1LTMxYWYtNGZmZS04 YmViLWU3Nzk5N2U2YzNlMS8wLzMxMzYzMDJlMzIzNTJlMzEzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmYMA0GCSqG SIb3DQEBCwUAA4IBAQBqiiU802ytrgw96l6uWyS3FkiudJFIOAprJdj6wmbyoMfu B2AaDz4N4cOPJb4TWjVwAw4zadrKr48qbelL9NvtYbc52jKT7ONwUuGKduSVsilr HrN3zRaV/kIdubGjncKwTeDCo0RjCEedMGtDUUywVoc1P0uFy7naCw75PyKPghgV 7s2l5Ti+8hSr4Xbr1m6aiqGm7IG7kUd7WbwO2MxQk7DVpAcpdc1bfuzPiIj2jIse c/2INO2kCZNLMO4gmZAGYUSTHgxQuGS9dzL26/3qGejBrUFEGd867rZx7+cYU0C9 VhNqPxQ6fDcaUMdw6lV67YM8SJnlHZterO1ZWZ2+ -----END CERTIFICATE-----Generated at Wed May 13 01:45:20 2026 by rpki-client