$ rpki-client -vvf rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa File: 3136302e32322e36362e302f32332d3233203d3e20313532383134.roa (raw, json) Hash identifier: DVbfArMTlg+UHrMZklDTYc3fTbYxFUjdyjuDCut72nE= Subject key identifier: B2:22:E3:5F:B9:51:AA:EA:FC:5D:C6:B0:87:C5:65:09:4D:5A:E0:C2 Certificate issuer: /CN=0FB62F1F0D10C5EC7D72410E5637525B621C4870 Certificate serial: 2888A972D85D1D09F69E91A381AA10B017F5336C Authority key identifier: 0F:B6:2F:1F:0D:10:C5:EC:7D:72:41:0E:56:37:52:5B:62:1C:48:70 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa Signing time: Sun 03 May 2026 02:54:48 +0000 ROA not before: Sun 03 May 2026 02:49:48 +0000 ROA not after: Sun 02 May 2027 02:54:48 +0000 asID: 152814 IP address blocks: 160.22.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.crl rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:88:a9:72:d8:5d:1d:09:f6:9e:91:a3:81:aa:10:b0:17:f5:33:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FB62F1F0D10C5EC7D72410E5637525B621C4870 Validity Not Before: May 3 02:49:48 2026 GMT Not After : May 2 02:54:48 2027 GMT Subject: CN=B222E35FB951AAEAFC5DC6B087C565094D5AE0C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:f0:2a:cf:9d:82:5b:53:0c:6c:55:29:15: 1e:af:cf:99:a9:07:e2:68:00:80:a6:6f:d4:00:34: ff:7f:30:fa:30:fb:68:0e:37:dc:2b:1c:fd:e6:b3: ae:00:92:6d:26:f3:9c:97:66:d6:ca:bf:ed:75:4f: e2:a9:84:63:4b:5d:55:1a:5f:fe:d6:96:71:02:cd: 2a:fa:83:6c:82:32:cf:13:72:06:fc:ed:16:25:4e: dd:e7:bd:20:40:61:be:78:b8:46:03:62:f3:b1:b8: 6c:bf:b4:78:05:ab:97:e5:8a:5f:0e:98:b0:16:74: 76:ca:14:09:44:fb:39:b1:66:29:2a:1c:3c:d7:1c: d6:0b:ed:af:7f:47:17:fd:4e:4d:69:1f:c4:c9:a5: 15:5f:e6:13:67:be:a5:17:25:e2:22:3e:9a:e2:e7: ac:0a:cc:12:bb:8e:a8:e2:51:06:b9:b4:c8:a2:d6: 65:5a:27:af:ba:62:56:a2:d7:23:88:61:79:4f:ee: a6:d9:1d:eb:c0:53:ec:45:67:57:be:dc:68:c2:5f: 00:c3:09:54:a5:e0:c3:e4:28:71:26:15:23:e0:b8: 84:72:72:8d:aa:7b:ed:19:91:24:e3:42:bb:0a:bf: 7f:de:7d:3e:f6:7e:11:69:3a:ad:ed:ea:5e:5d:e6: 25:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:22:E3:5F:B9:51:AA:EA:FC:5D:C6:B0:87:C5:65:09:4D:5A:E0:C2 X509v3 Authority Key Identifier: keyid:0F:B6:2F:1F:0D:10:C5:EC:7D:72:41:0E:56:37:52:5B:62:1C:48:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/3136302e32322e36362e302f32332d3233203d3e20313532383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.66.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:4a:ed:eb:a6:25:91:92:fb:58:8a:86:5c:7e:69:a3:3b:83: 8b:42:4f:7f:70:5d:5c:9c:be:37:66:63:43:6b:a0:0e:4f:d0: 00:95:36:00:2f:c2:a4:38:e0:a9:56:52:c1:60:89:a9:a7:b8: b5:2f:eb:be:4c:87:6b:5b:6c:35:ef:1f:cf:11:d8:44:c7:7d: 07:5d:9c:a3:a7:2d:b8:cb:d0:d7:31:69:34:0c:74:0c:bd:98: b0:6b:df:3a:83:01:a4:ea:e9:ca:d9:e1:98:22:e5:4d:dd:46: 78:1b:03:f5:f7:01:f8:a8:29:e7:6a:be:dd:ad:de:57:c8:b1: 04:6a:f1:ed:5f:63:c2:23:43:46:46:c7:1f:a4:f3:dd:55:8a: d4:ed:d9:ae:1d:41:40:d4:4c:4b:a3:33:1f:01:0b:7e:b1:ca: d8:11:95:74:09:3d:b9:c1:86:fa:04:04:69:52:e4:1d:0d:43: 2e:58:b2:ca:e0:9d:30:75:96:83:4c:30:7e:86:c1:62:31:ce: cc:c7:64:31:a4:cd:d6:67:3c:2a:4b:87:7c:74:ab:8d:f3:07: 32:81:4c:ff:a7:30:1a:3e:0f:4d:af:7d:83:2c:d3:b7:1a:b1: 66:99:10:e7:c5:5d:90:39:f4:05:4a:7d:bf:c6:28:c9:de:79: 4e:dc:f9:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKIipcthdHQn2npGjgaoQsBf1M2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZCNjJGMUYwRDEwQzVFQzdENzI0MTBFNTYzNzUyNUI2 MjFDNDg3MDAeFw0yNjA1MDMwMjQ5NDhaFw0yNzA1MDIwMjU0NDhaMDMxMTAvBgNV BAMTKEIyMjJFMzVGQjk1MUFBRUFGQzVEQzZCMDg3QzU2NTA5NEQ1QUUwQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw6/Aqz52CW1MMbFUpFR6vz5mp B+JoAICmb9QANP9/MPow+2gON9wrHP3ms64Akm0m85yXZtbKv+11T+KphGNLXVUa X/7WlnECzSr6g2yCMs8Tcgb87RYlTt3nvSBAYb54uEYDYvOxuGy/tHgFq5flil8O mLAWdHbKFAlE+zmxZikqHDzXHNYL7a9/Rxf9Tk1pH8TJpRVf5hNnvqUXJeIiPpri 56wKzBK7jqjiUQa5tMii1mVaJ6+6Ylai1yOIYXlP7qbZHevAU+xFZ1e+3GjCXwDD CVSl4MPkKHEmFSPguIRyco2qe+0ZkSTjQrsKv3/efT72fhFpOq3t6l5d5iXrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsiLjX7lRqur8Xcawh8VlCU1a4MIwHwYDVR0j BBgwFoAUD7YvHw0Qxex9ckEOVjdSW2IcSHAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWRiOTI3ZGYtYmM5Yy00YmU2LWExZmEtMmUxMjVjNDY5ZjcxLzAvMEZCNjJGMUYw RDEwQzVFQzdENzI0MTBFNTYzNzUyNUI2MjFDNDg3MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8wRkI2MkYxRjBEMTBDNUVDN0Q3MjQxMEU1NjM3NTI1QjYyMUM0 ODcwLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzlkYjkyN2RmLWJjOWMtNGJlNi1h MWZhLTJlMTI1YzQ2OWY3MS8wLzMxMzYzMDJlMzIzMjJlMzYzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM4MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAWQjANBgkqhkiG 9w0BAQsFAAOCAQEAnkrt66YlkZL7WIqGXH5pozuDi0JPf3BdXJy+N2ZjQ2ugDk/Q AJU2AC/CpDjgqVZSwWCJqae4tS/rvkyHa1tsNe8fzxHYRMd9B12co6ctuMvQ1zFp NAx0DL2YsGvfOoMBpOrpytnhmCLlTd1GeBsD9fcB+Kgp52q+3a3eV8ixBGrx7V9j wiNDRkbHH6Tz3VWK1O3Zrh1BQNRMS6MzHwELfrHK2BGVdAk9ucGG+gQEaVLkHQ1D LliyyuCdMHWWg0wwfobBYjHOzMdkMaTN1mc8KkuHfHSrjfMHMoFM/6cwGj4PTa99 gyzTtxqxZpkQ58VdkDn0BUp9v8Yoyd55Ttz53w== -----END CERTIFICATE-----Generated at Wed May 13 02:50:50 2026 by rpki-client