$ rpki-client -vvf rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/3136302e3138372e3137342e302f32342d3234203d3e20313533313335.roa File: 3136302e3138372e3137342e302f32342d3234203d3e20313533313335.roa (raw, json) Hash identifier: wxG5u0knwwtRFwXPMgfrz2l9Xi2Prxv/dPiLuDPGtJo= Subject key identifier: C8:55:B4:5D:83:5F:84:85:8F:2B:9E:88:9D:63:05:44:74:36:AD:90 Certificate issuer: /CN=27A90045CBA22331AEF929C017271A7936688C97 Certificate serial: 70A90EAC070A479D1101A962F5B8C8DF6A651687 Authority key identifier: 27:A9:00:45:CB:A2:23:31:AE:F9:29:C0:17:27:1A:79:36:68:8C:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/27A90045CBA22331AEF929C017271A7936688C97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/3136302e3138372e3137342e302f32342d3234203d3e20313533313335.roa Signing time: Sun 03 May 2026 02:53:29 +0000 ROA not before: Sun 03 May 2026 02:48:29 +0000 ROA not after: Sun 02 May 2027 02:53:29 +0000 asID: 153135 IP address blocks: 160.187.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/27A90045CBA22331AEF929C017271A7936688C97.crl rsync://rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/27A90045CBA22331AEF929C017271A7936688C97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/27A90045CBA22331AEF929C017271A7936688C97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a9:0e:ac:07:0a:47:9d:11:01:a9:62:f5:b8:c8:df:6a:65:16:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27A90045CBA22331AEF929C017271A7936688C97 Validity Not Before: May 3 02:48:29 2026 GMT Not After : May 2 02:53:29 2027 GMT Subject: CN=C855B45D835F84858F2B9E889D6305447436AD90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d0:72:57:e1:60:93:bd:36:b8:ea:59:7e:0b: 01:ad:8f:d9:59:3d:d1:cb:f9:2c:bf:6c:a5:70:27: 62:a1:7f:57:63:d8:0b:7a:49:0c:c5:be:15:d8:a4: d6:a1:00:19:9e:8e:c5:a5:cd:cd:16:dd:3f:67:d8: f4:34:cf:74:05:21:e0:a4:14:54:1c:18:b2:4e:b9: a9:c4:18:63:4a:6d:a4:f6:bf:16:c1:dd:7e:65:8f: af:c9:fb:ff:f0:b1:00:76:8d:80:d4:33:ce:c1:f8: 98:c4:ed:7b:79:a8:71:2f:80:19:50:f9:c8:39:13: 80:88:ee:50:cd:49:9c:af:06:3a:bf:a8:e7:fa:a6: 62:24:41:05:41:5c:2d:6d:af:51:7a:8b:b9:6c:75: e1:ee:af:87:55:76:5c:06:57:75:92:39:36:24:67: b9:a6:cb:ba:b6:09:8f:98:a0:f9:9b:ad:9e:9e:e5: 23:86:29:02:21:70:4b:76:e3:e6:f0:b5:bc:3c:e7: 33:e3:cc:66:bb:1e:21:85:f9:cf:2b:57:b7:b2:ce: a4:58:87:6b:6f:91:7d:f6:0c:4b:77:61:52:a8:97: 73:34:97:1f:ed:e0:f1:8d:b2:27:3a:8a:fb:d6:f0: ee:24:14:03:51:68:3f:e7:f9:88:db:3f:bf:07:e3: ea:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:55:B4:5D:83:5F:84:85:8F:2B:9E:88:9D:63:05:44:74:36:AD:90 X509v3 Authority Key Identifier: keyid:27:A9:00:45:CB:A2:23:31:AE:F9:29:C0:17:27:1A:79:36:68:8C:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/27A90045CBA22331AEF929C017271A7936688C97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/27A90045CBA22331AEF929C017271A7936688C97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/98853aab-8d6c-457f-9d57-484acacea9d8/0/3136302e3138372e3137342e302f32342d3234203d3e20313533313335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.174.0/24 Signature Algorithm: sha256WithRSAEncryption bf:75:bf:f2:6e:3c:25:15:fc:c0:98:06:8c:4f:6e:c1:e8:ce: fa:1d:c3:91:48:ca:19:e0:a6:22:e2:4e:a7:a9:c6:9e:57:80: c3:e5:53:fb:4c:aa:76:7f:3e:f9:57:03:77:2c:ed:cc:2e:08: c4:3c:25:85:23:d7:a3:c8:de:4b:07:51:40:45:23:fc:5f:87: 88:71:5f:c5:ae:b5:e4:eb:86:ed:85:11:c9:f4:96:61:59:97: ed:44:df:1c:ac:7f:a7:95:d4:2d:15:8d:20:01:15:3a:9e:3e: 23:6a:8a:dd:08:16:da:0a:7b:8b:ff:26:f3:7a:c7:24:41:3f: ec:09:ad:4d:76:e7:09:af:db:4e:93:0a:0a:2c:f2:ad:0e:5e: be:e5:d6:32:3b:51:05:14:ba:0b:ca:e6:47:f3:5d:70:9b:db: 90:c9:28:96:ce:0e:57:b1:73:50:7b:bb:0f:6c:9e:e2:d3:f3: f2:45:a4:ce:bf:b5:56:43:02:26:b4:62:06:52:ad:25:76:91: 07:84:2c:73:be:b6:63:b4:04:51:85:b6:30:26:c3:9e:09:16: aa:4f:3c:0b:1f:74:cd:f1:d5:ed:5d:c1:d2:d1:f3:9a:d2:7e: 5e:64:9d:34:48:04:54:c7:f7:b1:46:b4:a6:21:d2:ab:73:b4: 20:86:6a:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcKkOrAcKR50RAali9bjI32plFocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdBOTAwNDVDQkEyMjMzMUFFRjkyOUMwMTcyNzFBNzkz NjY4OEM5NzAeFw0yNjA1MDMwMjQ4MjlaFw0yNzA1MDIwMjUzMjlaMDMxMTAvBgNV BAMTKEM4NTVCNDVEODM1Rjg0ODU4RjJCOUU4ODlENjMwNTQ0NzQzNkFEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo0HJX4WCTvTa46ll+CwGtj9lZ PdHL+Sy/bKVwJ2Khf1dj2At6SQzFvhXYpNahABmejsWlzc0W3T9n2PQ0z3QFIeCk FFQcGLJOuanEGGNKbaT2vxbB3X5lj6/J+//wsQB2jYDUM87B+JjE7Xt5qHEvgBlQ +cg5E4CI7lDNSZyvBjq/qOf6pmIkQQVBXC1tr1F6i7lsdeHur4dVdlwGV3WSOTYk Z7mmy7q2CY+YoPmbrZ6e5SOGKQIhcEt24+bwtbw85zPjzGa7HiGF+c8rV7eyzqRY h2tvkX32DEt3YVKol3M0lx/t4PGNsic6ivvW8O4kFANRaD/n+YjbP78H4+qnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyFW0XYNfhIWPK56InWMFRHQ2rZAwHwYDVR0j BBgwFoAUJ6kARcuiIzGu+SnAFycaeTZojJcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTg4NTNhYWItOGQ2Yy00NTdmLTlkNTctNDg0YWNhY2VhOWQ4LzAvMjdBOTAwNDVD QkEyMjMzMUFFRjkyOUMwMTcyNzFBNzkzNjY4OEM5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yN0E5MDA0NUNCQTIyMzMxQUVGOTI5QzAxNzI3MUE3OTM2Njg4 Qzk3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk4ODUzYWFiLThkNmMtNDU3Zi05 ZDU3LTQ4NGFjYWNlYTlkOC8wLzMxMzYzMDJlMzEzODM3MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMzMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu64wDQYJ KoZIhvcNAQELBQADggEBAL91v/JuPCUV/MCYBoxPbsHozvodw5FIyhngpiLiTqep xp5XgMPlU/tMqnZ/PvlXA3cs7cwuCMQ8JYUj16PI3ksHUUBFI/xfh4hxX8WuteTr hu2FEcn0lmFZl+1E3xysf6eV1C0VjSABFTqePiNqit0IFtoKe4v/JvN6xyRBP+wJ rU125wmv206TCgos8q0OXr7l1jI7UQUUugvK5kfzXXCb25DJKJbODlexc1B7uw9s nuLT8/JFpM6/tVZDAia0YgZSrSV2kQeELHO+tmO0BFGFtjAmw54JFqpPPAsfdM3x 1e1dwdLR85rSfl5knTRIBFTH97FGtKYh0qtztCCGanM= -----END CERTIFICATE-----Generated at Wed May 13 12:08:20 2026 by rpki-client