$ rpki-client -vvf rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa File: 3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa (raw, json) Hash identifier: q5l3eOYPeemq7qIazHMV6kibSs/1KaEDRsni+YgaV1w= Subject key identifier: DB:C4:C2:6D:05:53:BA:C1:09:91:49:A1:69:95:A7:74:F8:FC:CB:CF Certificate issuer: /CN=B46886DF13C95D5C834BD72CDC1742C463272A72 Certificate serial: 4EE46C5EBDFD9C6E7C593E36DFEF84F6AFDD3706 Authority key identifier: B4:68:86:DF:13:C9:5D:5C:83:4B:D7:2C:DC:17:42:C4:63:27:2A:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B46886DF13C95D5C834BD72CDC1742C463272A72.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa Signing time: Sun 03 May 2026 02:55:35 +0000 ROA not before: Sun 03 May 2026 02:50:35 +0000 ROA not after: Sun 02 May 2027 02:55:35 +0000 asID: 152826 IP address blocks: 160.22.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/B46886DF13C95D5C834BD72CDC1742C463272A72.crl rsync://rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/B46886DF13C95D5C834BD72CDC1742C463272A72.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B46886DF13C95D5C834BD72CDC1742C463272A72.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e4:6c:5e:bd:fd:9c:6e:7c:59:3e:36:df:ef:84:f6:af:dd:37:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46886DF13C95D5C834BD72CDC1742C463272A72 Validity Not Before: May 3 02:50:35 2026 GMT Not After : May 2 02:55:35 2027 GMT Subject: CN=DBC4C26D0553BAC1099149A16995A774F8FCCBCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a5:6c:db:ae:0a:6e:47:4b:da:43:fc:54:56: 99:e0:0c:92:8a:d3:a9:62:97:42:65:30:83:28:71: b9:a8:9b:37:43:da:aa:d7:bb:61:88:0e:30:73:c1: 7d:2f:e8:00:cd:6d:93:52:b3:e1:cb:ad:fc:3b:d1: 6a:9b:c5:00:1a:7a:a8:60:f8:d1:e0:e9:c6:0e:3d: 0c:7b:4c:f0:ce:f2:7c:48:b9:bf:21:9a:1a:b9:3e: 9e:70:09:68:45:93:36:6f:8b:3a:32:3c:68:84:31: f1:9a:1e:da:88:c8:d0:24:f3:a0:93:6f:d8:e6:42: 2c:6c:07:6e:f3:16:9c:dd:27:23:b1:20:20:43:bb: 51:86:a9:a7:e5:83:b6:67:e7:d1:d3:74:77:ae:7f: 6d:63:d6:13:89:86:1f:af:48:a5:83:c3:74:d8:e6: cf:f0:07:0b:f7:94:ea:3b:a5:46:e4:58:55:52:82: f5:d5:57:0b:a9:68:ad:2f:14:94:c7:5a:00:29:f4: 96:84:df:b0:29:f3:a9:4d:fe:54:55:15:4d:d9:7c: 8e:e0:16:2e:26:b6:1b:9d:02:bf:e3:1c:c6:bb:2f: a1:12:cf:4a:ce:92:0e:63:94:f4:e2:84:f1:65:e6: cf:48:28:e1:2e:ff:0e:2e:d1:06:e3:b2:e2:5a:4a: e8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C4:C2:6D:05:53:BA:C1:09:91:49:A1:69:95:A7:74:F8:FC:CB:CF X509v3 Authority Key Identifier: keyid:B4:68:86:DF:13:C9:5D:5C:83:4B:D7:2C:DC:17:42:C4:63:27:2A:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/B46886DF13C95D5C834BD72CDC1742C463272A72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B46886DF13C95D5C834BD72CDC1742C463272A72.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.194.0/23 Signature Algorithm: sha256WithRSAEncryption 70:71:f5:db:5b:74:6e:27:ef:c1:50:d7:89:9d:b4:91:85:3e: 7e:50:f1:ec:a8:3a:aa:1e:dd:81:bc:b6:fd:7e:13:fd:97:5c: 0c:e4:58:9f:80:6d:30:f9:64:e7:87:d9:3b:a7:6a:a8:f0:72: c9:42:fd:f8:a0:59:26:49:f1:e9:e2:e4:b4:aa:f1:90:c7:e6: 28:9b:4b:54:30:2a:36:42:04:1b:4c:cf:5a:c5:50:62:8e:44: 5f:e2:c4:e0:c6:94:09:52:60:a4:ff:56:a3:c7:58:e9:c0:79: 8a:42:69:57:34:eb:d9:f8:93:8f:84:98:e2:8f:7f:bd:99:e3: 22:34:c7:34:ad:f5:ae:c6:e3:1c:a6:1c:9f:c2:d7:0b:c7:4a: d1:0e:9e:4d:12:5f:75:6a:5d:0b:70:78:a3:08:d8:87:f0:bd: 8b:8d:08:db:57:26:92:a7:de:12:d1:9c:e0:3a:2c:aa:e8:ec: 35:b0:b5:b8:2e:ba:70:ef:e9:f4:6f:93:e2:58:dd:26:0a:f7: 79:b1:54:5d:46:d9:98:44:66:25:10:a1:bc:79:82:ee:b9:90: 0f:ba:ae:8a:63:76:b3:de:ab:eb:c7:2a:0c:29:ef:1d:f3:05: d4:9f:1a:3c:fa:64:ed:82:e1:68:fa:98:0b:eb:d8:af:f2:07: 28:41:e5:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTuRsXr39nG58WT423++E9q/dNwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2ODg2REYxM0M5NUQ1QzgzNEJENzJDREMxNzQyQzQ2 MzI3MkE3MjAeFw0yNjA1MDMwMjUwMzVaFw0yNzA1MDIwMjU1MzVaMDMxMTAvBgNV BAMTKERCQzRDMjZEMDU1M0JBQzEwOTkxNDlBMTY5OTVBNzc0RjhGQ0NCQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzpWzbrgpuR0vaQ/xUVpngDJKK 06lil0JlMIMocbmomzdD2qrXu2GIDjBzwX0v6ADNbZNSs+HLrfw70WqbxQAaeqhg +NHg6cYOPQx7TPDO8nxIub8hmhq5Pp5wCWhFkzZvizoyPGiEMfGaHtqIyNAk86CT b9jmQixsB27zFpzdJyOxICBDu1GGqaflg7Zn59HTdHeuf21j1hOJhh+vSKWDw3TY 5s/wBwv3lOo7pUbkWFVSgvXVVwupaK0vFJTHWgAp9JaE37Ap86lN/lRVFU3ZfI7g Fi4mthudAr/jHMa7L6ESz0rOkg5jlPTihPFl5s9IKOEu/w4u0QbjsuJaSujJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU28TCbQVTusEJkUmhaZWndPj8y88wHwYDVR0j BBgwFoAUtGiG3xPJXVyDS9cs3BdCxGMnKnIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTBiYTg1YTAtMzUzNC00OWE0LWE4MjYtMTNhNzM1Zjk0MzY5LzAvQjQ2ODg2REYx M0M5NUQ1QzgzNEJENzJDREMxNzQyQzQ2MzI3MkE3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CNDY4ODZERjEzQzk1RDVDODM0QkQ3MkNEQzE3NDJDNDYzMjcy QTcyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EwYmE4NWEwLTM1MzQtNDlhNC1h ODI2LTEzYTczNWY5NDM2OS8wLzMxMzYzMDJlMzIzMjJlMzEzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbCMA0GCSqG SIb3DQEBCwUAA4IBAQBwcfXbW3RuJ+/BUNeJnbSRhT5+UPHsqDqqHt2BvLb9fhP9 l1wM5FifgG0w+WTnh9k7p2qo8HLJQv34oFkmSfHp4uS0qvGQx+Yom0tUMCo2QgQb TM9axVBijkRf4sTgxpQJUmCk/1ajx1jpwHmKQmlXNOvZ+JOPhJjij3+9meMiNMc0 rfWuxuMcphyfwtcLx0rRDp5NEl91al0LcHijCNiH8L2LjQjbVyaSp94S0ZzgOiyq 6Ow1sLW4Lrpw7+n0b5PiWN0mCvd5sVRdRtmYRGYlEKG8eYLuuZAPuq6KY3az3qvr xyoMKe8d8wXUnxo8+mTtguFo+pgL69iv8gcoQeWZ -----END CERTIFICATE-----Generated at Wed May 13 12:46:38 2026 by rpki-client