$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa File: 3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: I+TsRodHPZi2sFygS9uUTvIPPJWZ6Ey7cdEpwFzA144= Subject key identifier: 35:9D:E9:22:87:02:40:09:8A:C4:46:FD:F7:93:0F:16:47:EF:F7:CA Certificate issuer: /CN=ED8801C97D629F0D5149E3C88E72600C016E4712 Certificate serial: 6A9C3E7E34810FFBB80DD5A1672C39FFC8717F08 Authority key identifier: ED:88:01:C9:7D:62:9F:0D:51:49:E3:C8:8E:72:60:0C:01:6E:47:12 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/ED8801C97D629F0D5149E3C88E72600C016E4712.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa Signing time: Sun 03 May 2026 02:54:27 +0000 ROA not before: Sun 03 May 2026 02:49:27 +0000 ROA not after: Sun 02 May 2027 02:54:27 +0000 asID: 137316 IP address blocks: 160.22.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/ED8801C97D629F0D5149E3C88E72600C016E4712.crl rsync://rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/ED8801C97D629F0D5149E3C88E72600C016E4712.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/ED8801C97D629F0D5149E3C88E72600C016E4712.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9c:3e:7e:34:81:0f:fb:b8:0d:d5:a1:67:2c:39:ff:c8:71:7f:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED8801C97D629F0D5149E3C88E72600C016E4712 Validity Not Before: May 3 02:49:27 2026 GMT Not After : May 2 02:54:27 2027 GMT Subject: CN=359DE922870240098AC446FDF7930F1647EFF7CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8d:a6:dd:05:19:01:8f:53:83:4f:3b:af:22: 1a:21:03:25:e5:00:85:76:b3:c6:d5:a1:c1:02:f0: 0c:67:86:4b:77:5b:82:57:20:9a:bc:e3:8a:5d:e6: 0b:2b:f8:9a:55:f5:f3:23:af:0e:76:a1:b8:ca:e6: 85:fa:96:f7:4b:43:4f:e9:5c:1d:38:9e:99:4f:b8: b2:14:27:1c:f1:70:10:3a:48:7e:bb:a9:1f:61:fa: 5a:ab:bb:47:0f:09:e8:86:30:01:e5:5c:25:75:0b: 1d:1a:a4:a6:7f:cc:fb:42:c1:89:a0:e3:f1:21:8a: 52:e1:29:65:56:e0:30:67:4c:f4:e4:d3:b6:28:e3: 19:55:33:39:df:32:60:4c:42:17:34:21:f4:8c:4e: 93:06:6e:3c:e6:5d:1b:b9:80:06:0e:cc:c7:f8:7f: 46:9b:39:c1:bc:4e:7e:2e:7d:d8:44:a4:f2:85:e0: a8:30:84:d0:60:39:8e:15:26:a2:3a:ad:c5:31:e7: 1e:99:a6:bd:9c:e7:6a:50:d5:31:57:32:51:4e:be: c4:51:af:a2:19:40:95:09:f1:bc:a5:00:99:8a:0d: 74:20:bf:48:fe:f5:ee:6f:a5:53:24:04:10:d5:c3: e4:89:76:43:9e:31:79:c5:36:29:91:73:60:7b:2a: aa:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:9D:E9:22:87:02:40:09:8A:C4:46:FD:F7:93:0F:16:47:EF:F7:CA X509v3 Authority Key Identifier: keyid:ED:88:01:C9:7D:62:9F:0D:51:49:E3:C8:8E:72:60:0C:01:6E:47:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/ED8801C97D629F0D5149E3C88E72600C016E4712.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/ED8801C97D629F0D5149E3C88E72600C016E4712.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c1b4c38-7747-45fc-a590-cac52163d538/0/3136302e32322e3230352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.205.0/24 Signature Algorithm: sha256WithRSAEncryption 86:a5:ea:05:32:a5:cf:8c:ac:47:d4:62:0d:ef:78:53:0e:b7: 32:1e:68:fe:a8:34:4b:6f:2c:c3:d6:b5:0d:22:8a:4c:44:52: d9:36:0a:c2:05:46:93:f3:05:8c:ad:53:71:21:87:2a:66:bf: b3:63:e1:b1:04:0a:6a:d4:1e:ca:b2:be:d7:5e:70:2e:3e:4c: 80:ff:d3:1e:5b:9a:ab:b4:98:b3:c5:ae:b4:1a:68:d5:e4:4b: 5c:1b:10:71:ff:02:0d:4b:a9:74:37:bc:4a:84:04:6c:05:86: c8:49:a8:49:7c:83:4d:15:3a:ce:56:2c:ec:68:ef:ad:e1:74: d8:cb:4e:19:75:a5:22:4e:b4:b9:b8:27:58:48:8d:9d:75:48: a4:72:18:ad:26:71:c5:f5:86:ba:6f:a4:7a:1f:ad:e6:c6:b1: 75:c8:a6:86:fe:5d:84:ea:0f:3d:cf:9e:00:54:5e:6b:8c:cd: 14:aa:c2:dd:53:3b:44:26:85:75:57:47:d5:2b:9e:cb:b6:ac: 46:d2:8e:b2:70:f1:27:65:12:21:f9:94:8c:68:47:bb:4f:a5: df:f9:8f:7f:4a:32:b5:97:0b:5f:be:b9:18:af:a7:06:86:ce: 53:49:46:35:89:fa:ee:1f:c0:00:fa:24:7c:3d:fe:62:32:fb: 96:37:e3:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUapw+fjSBD/u4DdWhZyw5/8hxfwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ4ODAxQzk3RDYyOUYwRDUxNDlFM0M4OEU3MjYwMEMw MTZFNDcxMjAeFw0yNjA1MDMwMjQ5MjdaFw0yNzA1MDIwMjU0MjdaMDMxMTAvBgNV BAMTKDM1OURFOTIyODcwMjQwMDk4QUM0NDZGREY3OTMwRjE2NDdFRkY3Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXjabdBRkBj1ODTzuvIhohAyXl AIV2s8bVocEC8Axnhkt3W4JXIJq844pd5gsr+JpV9fMjrw52objK5oX6lvdLQ0/p XB04nplPuLIUJxzxcBA6SH67qR9h+lqru0cPCeiGMAHlXCV1Cx0apKZ/zPtCwYmg 4/EhilLhKWVW4DBnTPTk07Yo4xlVMznfMmBMQhc0IfSMTpMGbjzmXRu5gAYOzMf4 f0abOcG8Tn4ufdhEpPKF4KgwhNBgOY4VJqI6rcUx5x6Zpr2c52pQ1TFXMlFOvsRR r6IZQJUJ8bylAJmKDXQgv0j+9e5vpVMkBBDVw+SJdkOeMXnFNimRc2B7KqqrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNZ3pIocCQAmKxEb995MPFkfv98owHwYDVR0j BBgwFoAU7YgByX1inw1RSePIjnJgDAFuRxIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWMxYjRjMzgtNzc0Ny00NWZjLWE1OTAtY2FjNTIxNjNkNTM4LzAvRUQ4ODAxQzk3 RDYyOUYwRDUxNDlFM0M4OEU3MjYwMEMwMTZFNDcxMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FRDg4MDFDOTdENjI5RjBENTE0OUUzQzg4RTcyNjAwQzAxNkU0 NzEyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljMWI0YzM4LTc3NDctNDVmYy1h NTkwLWNhYzUyMTYzZDUzOC8wLzMxMzYzMDJlMzIzMjJlMzIzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbNMA0GCSqG SIb3DQEBCwUAA4IBAQCGpeoFMqXPjKxH1GIN73hTDrcyHmj+qDRLbyzD1rUNIopM RFLZNgrCBUaT8wWMrVNxIYcqZr+zY+GxBApq1B7Ksr7XXnAuPkyA/9MeW5qrtJiz xa60GmjV5EtcGxBx/wINS6l0N7xKhARsBYbISahJfINNFTrOVizsaO+t4XTYy04Z daUiTrS5uCdYSI2ddUikchitJnHF9Ya6b6R6H63mxrF1yKaG/l2E6g89z54AVF5r jM0UqsLdUztEJoV1V0fVK57LtqxG0o6ycPEnZRIh+ZSMaEe7T6Xf+Y9/SjK1lwtf vrkYr6cGhs5TSUY1ifruH8AA+iR8Pf5iMvuWN+OK -----END CERTIFICATE-----Generated at Wed May 13 10:29:53 2026 by rpki-client