$ rpki-client -vvf rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa File: 3136302e31392e3134352e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: byftjSeCvMFNmeFpkuYeG9YZa2VCV2p6nFeWhRr4XHM= Subject key identifier: 5D:A9:A9:65:1C:D1:72:04:38:81:75:42:A6:23:9E:D1:56:C3:9D:67 Certificate issuer: /CN=D37E9EB2F98E29CDF13865332666AEFB23184FEB Certificate serial: 2CDB3B45192FCD405100CCB1394D3675025F3B5D Authority key identifier: D3:7E:9E:B2:F9:8E:29:CD:F1:38:65:33:26:66:AE:FB:23:18:4F:EB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa Signing time: Sun 03 May 2026 02:56:07 +0000 ROA not before: Sun 03 May 2026 02:51:07 +0000 ROA not after: Sun 02 May 2027 02:56:07 +0000 asID: 45305 IP address blocks: 160.19.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.crl rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:db:3b:45:19:2f:cd:40:51:00:cc:b1:39:4d:36:75:02:5f:3b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D37E9EB2F98E29CDF13865332666AEFB23184FEB Validity Not Before: May 3 02:51:07 2026 GMT Not After : May 2 02:56:07 2027 GMT Subject: CN=5DA9A9651CD1720438817542A6239ED156C39D67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:23:df:9d:4c:4b:82:c8:d7:b2:74:ca:73:e1: 6d:cd:16:06:e6:cb:98:67:de:18:e9:bb:31:d6:81: 7b:30:19:91:0d:fe:fa:cc:88:a6:4d:d7:84:81:c5: f5:07:ad:b7:9f:57:c0:73:c6:32:1f:fd:62:d8:97: e2:ae:c4:4c:5f:c8:60:cc:2c:2b:e3:0c:a2:7b:2f: b2:42:31:9e:96:5e:b6:ed:85:52:55:40:af:7a:f1: 4a:c7:69:01:4e:b2:ea:2f:e1:1b:d0:d7:56:d7:2b: 1b:d2:02:c7:da:1b:79:56:ec:97:61:36:d4:99:01: 2d:c6:d9:eb:35:e5:f9:a2:e6:0c:ac:04:20:02:ba: 14:73:b9:88:71:5f:02:8d:b6:bd:16:b6:7a:1b:5d: 79:f3:f3:d1:fb:f9:0b:b7:e6:71:a7:62:53:58:0c: 35:0e:ac:55:81:1a:1f:f5:ba:00:6a:2a:cc:12:6e: 0a:be:77:3d:6b:4e:d4:08:fc:ff:e0:3c:dd:e8:36: b7:15:a0:19:3c:98:b6:3f:d8:98:11:0e:96:f7:33: eb:78:bb:51:75:39:b6:58:a1:78:fa:05:df:97:f6: 71:28:66:83:7a:70:ed:52:ea:7c:d5:fe:0c:81:d3: a3:a4:b0:a0:fc:3d:62:34:4a:08:0c:6c:1a:ee:0b: 86:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A9:A9:65:1C:D1:72:04:38:81:75:42:A6:23:9E:D1:56:C3:9D:67 X509v3 Authority Key Identifier: keyid:D3:7E:9E:B2:F9:8E:29:CD:F1:38:65:33:26:66:AE:FB:23:18:4F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/3136302e31392e3134352e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.145.0/24 Signature Algorithm: sha256WithRSAEncryption 99:3f:e6:be:55:0d:1b:99:3b:c4:56:a7:fd:0a:6c:01:fb:0c: fb:ba:ae:0f:69:43:a0:8f:24:07:5d:42:fd:60:95:52:41:ab: c0:66:09:41:d9:cb:8b:9f:0f:c9:12:51:fa:56:b6:bf:bb:5d: af:a9:0f:21:f8:a1:09:8b:75:ff:6a:66:88:e0:60:5f:ca:d4: c3:a8:2e:6e:a4:dd:b3:cd:01:ff:2b:d6:ec:9a:7d:49:7c:1a: 87:7d:c1:5f:a1:a9:c6:f9:d4:e0:d5:1f:c0:85:7d:e7:95:47: f7:a5:10:97:e0:b3:a3:1d:2e:11:e8:9b:30:b4:4a:77:cc:9e: d0:12:81:af:ff:8d:8f:2d:89:c6:8f:80:04:77:15:5d:61:ee: 63:9c:be:62:02:1a:73:93:d6:63:7b:30:62:75:63:c2:bc:d5: 6c:62:7b:12:51:77:cf:65:f9:b8:3d:b0:96:67:c6:bc:8e:e3: b2:cd:de:42:94:a5:6c:04:56:13:f9:64:10:74:0e:33:16:c6: 60:c3:f0:44:d8:3f:3b:93:69:9a:34:df:7b:14:56:03:f3:61: e0:f3:f0:29:1c:6f:37:0b:ce:b3:64:3c:59:31:35:28:22:87: 4e:a8:fd:08:73:0f:8c:65:41:fe:c7:38:89:50:d2:13:a0:de: ea:a2:e4:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULNs7RRkvzUBRAMyxOU02dQJfO10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM3RTlFQjJGOThFMjlDREYxMzg2NTMzMjY2NkFFRkIy MzE4NEZFQjAeFw0yNjA1MDMwMjUxMDdaFw0yNzA1MDIwMjU2MDdaMDMxMTAvBgNV BAMTKDVEQTlBOTY1MUNEMTcyMDQzODgxNzU0MkE2MjM5RUQxNTZDMzlENjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbI9+dTEuCyNeydMpz4W3NFgbm y5hn3hjpuzHWgXswGZEN/vrMiKZN14SBxfUHrbefV8BzxjIf/WLYl+KuxExfyGDM LCvjDKJ7L7JCMZ6WXrbthVJVQK968UrHaQFOsuov4RvQ11bXKxvSAsfaG3lW7Jdh NtSZAS3G2es15fmi5gysBCACuhRzuYhxXwKNtr0WtnobXXnz89H7+Qu35nGnYlNY DDUOrFWBGh/1ugBqKswSbgq+dz1rTtQI/P/gPN3oNrcVoBk8mLY/2JgRDpb3M+t4 u1F1ObZYoXj6Bd+X9nEoZoN6cO1S6nzV/gyB06OksKD8PWI0SggMbBruC4YbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXampZRzRcgQ4gXVCpiOe0VbDnWcwHwYDVR0j BBgwFoAU036esvmOKc3xOGUzJmau+yMYT+swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTJlNWZmODEtYjA4Mi00MzM0LWFkMjktNTVkYzhkMWU1M2I5LzAvRDM3RTlFQjJG OThFMjlDREYxMzg2NTMzMjY2NkFFRkIyMzE4NEZFQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EMzdFOUVCMkY5OEUyOUNERjEzODY1MzMyNjY2QUVGQjIzMTg0 RkVCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EyZTVmZjgxLWIwODItNDMzNC1h ZDI5LTU1ZGM4ZDFlNTNiOS8wLzMxMzYzMDJlMzEzOTJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATkTANBgkqhkiG 9w0BAQsFAAOCAQEAmT/mvlUNG5k7xFan/QpsAfsM+7quD2lDoI8kB11C/WCVUkGr wGYJQdnLi58PyRJR+la2v7tdr6kPIfihCYt1/2pmiOBgX8rUw6gubqTds80B/yvW 7Jp9SXwah33BX6GpxvnU4NUfwIV955VH96UQl+Czox0uEeibMLRKd8ye0BKBr/+N jy2Jxo+ABHcVXWHuY5y+YgIac5PWY3swYnVjwrzVbGJ7ElF3z2X5uD2wlmfGvI7j ss3eQpSlbARWE/lkEHQOMxbGYMPwRNg/O5NpmjTfexRWA/Nh4PPwKRxvNwvOs2Q8 WTE1KCKHTqj9CHMPjGVB/sc4iVDSE6De6qLktQ== -----END CERTIFICATE-----Generated at Wed May 13 00:27:42 2026 by rpki-client