$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa File: 3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa (raw, json) Hash identifier: fDnmzf65jBSv74PMDMyNjaHpX/nCsTXRpP2C1qWxmnk= Subject key identifier: 58:50:17:8A:5F:AC:88:68:17:95:A6:C5:1C:60:1D:D7:EF:35:4C:EF Certificate issuer: /CN=B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A Certificate serial: 26C400AE708620BA209FC202BF1C19A53A5B0B5B Authority key identifier: B9:B8:A6:1D:8E:A5:52:0C:F2:8E:8E:5C:24:50:17:6A:C5:FA:D2:9A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa Signing time: Sun 03 May 2026 02:58:12 +0000 ROA not before: Sun 03 May 2026 02:53:12 +0000 ROA not after: Sun 02 May 2027 02:58:12 +0000 asID: 153106 IP address blocks: 160.25.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.crl rsync://rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c4:00:ae:70:86:20:ba:20:9f:c2:02:bf:1c:19:a5:3a:5b:0b:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A Validity Not Before: May 3 02:53:12 2026 GMT Not After : May 2 02:58:12 2027 GMT Subject: CN=5850178A5FAC88681795A6C51C601DD7EF354CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:da:ad:71:c9:ea:89:b7:56:88:50:49:74:06: 54:b0:d5:83:3a:0d:ff:0a:71:74:c4:99:fa:1f:07: 7b:72:7f:c6:e4:59:c6:e6:0a:89:c1:cb:19:9a:51: ac:97:4a:36:4a:2e:60:94:fb:73:68:f5:99:29:2e: ee:77:e7:01:6d:47:5e:18:da:29:ac:b4:9d:5d:c0: f9:c8:f6:17:a8:e5:d3:98:55:c8:36:ec:0f:42:d4: e2:c5:e7:40:fb:e0:47:d4:01:e8:ff:a7:d5:7b:b2: 5a:0a:78:df:2a:88:2e:65:a1:d8:b5:ce:26:cf:01: 2d:a1:5f:85:dd:e9:5a:74:94:29:41:6d:60:a0:0e: 48:78:dc:33:f0:4f:f3:10:92:6a:a5:a7:8d:9a:3c: c2:aa:04:f5:eb:fa:af:f6:d5:40:d7:70:3e:6f:be: a7:45:ce:fa:1d:05:eb:ca:3c:fb:8f:6a:cf:15:1d: d4:b7:c9:74:f8:30:02:59:70:33:5b:7e:0a:39:96: a0:33:99:b0:07:9a:f7:9b:2c:7b:f5:fe:72:6f:51: b3:56:84:79:47:bf:18:e8:07:43:92:c7:a4:a9:22: 56:cd:b2:0f:3c:93:f3:37:94:ef:09:4d:b1:62:15: 5c:c9:0c:13:4f:11:7f:e2:b8:6a:88:bf:ac:cd:83: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:50:17:8A:5F:AC:88:68:17:95:A6:C5:1C:60:1D:D7:EF:35:4C:EF X509v3 Authority Key Identifier: keyid:B9:B8:A6:1D:8E:A5:52:0C:F2:8E:8E:5C:24:50:17:6A:C5:FA:D2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/B9B8A61D8EA5520CF28E8E5C2450176AC5FAD29A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/3136302e32352e3232392e302f32342d3234203d3e20313533313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.229.0/24 Signature Algorithm: sha256WithRSAEncryption af:61:5d:5e:21:ea:ce:4a:79:8c:ac:b3:71:58:2e:4a:24:8b: eb:70:2e:cb:1f:8a:be:7b:9a:7f:e2:b3:9c:01:a9:75:28:d3: aa:37:5e:9a:9f:fa:86:7f:29:58:4a:46:16:3c:ea:9c:29:97: c1:45:ad:de:6d:f3:91:df:b5:50:a4:49:b9:fd:10:e1:eb:09: ef:ba:21:32:40:c2:47:fb:e4:3f:46:d1:31:f0:31:de:35:2b: 3a:19:e9:4f:a3:f8:24:1f:30:70:af:ad:4f:5e:ca:74:2c:18: 00:a7:4d:fb:98:34:d3:c9:35:0c:35:2b:8e:a6:21:18:6c:3d: 69:46:7d:6b:c5:e7:5b:36:9f:fc:9c:33:d7:6b:26:ad:86:34: 8d:b9:a3:44:71:ab:91:1b:e8:f7:89:34:f9:31:8f:b4:04:d5: ee:bc:22:fb:91:b2:12:f9:a5:43:1c:73:37:9d:80:b1:ec:05: df:0a:e8:4e:49:4a:51:64:39:fa:cb:1e:ac:f3:af:8c:0f:af: 91:b5:6d:ad:81:67:d3:36:af:ca:68:58:33:d0:4e:6e:15:5f: 35:33:6d:66:b7:4b:0b:8d:9a:e9:03:8e:c6:d1:70:66:d1:c9: 2f:8a:bd:79:a6:a5:40:78:09:a5:b4:fe:19:00:b7:6c:e9:fd: ae:c8:8c:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJsQArnCGILogn8ICvxwZpTpbC1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlCOEE2MUQ4RUE1NTIwQ0YyOEU4RTVDMjQ1MDE3NkFD NUZBRDI5QTAeFw0yNjA1MDMwMjUzMTJaFw0yNzA1MDIwMjU4MTJaMDMxMTAvBgNV BAMTKDU4NTAxNzhBNUZBQzg4NjgxNzk1QTZDNTFDNjAxREQ3RUYzNTRDRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW2q1xyeqJt1aIUEl0BlSw1YM6 Df8KcXTEmfofB3tyf8bkWcbmConByxmaUayXSjZKLmCU+3No9ZkpLu535wFtR14Y 2imstJ1dwPnI9heo5dOYVcg27A9C1OLF50D74EfUAej/p9V7sloKeN8qiC5lodi1 zibPAS2hX4Xd6Vp0lClBbWCgDkh43DPwT/MQkmqlp42aPMKqBPXr+q/21UDXcD5v vqdFzvodBevKPPuPas8VHdS3yXT4MAJZcDNbfgo5lqAzmbAHmvebLHv1/nJvUbNW hHlHvxjoB0OSx6SpIlbNsg88k/M3lO8JTbFiFVzJDBNPEX/iuGqIv6zNgypPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWFAXil+siGgXlabFHGAd1+81TO8wHwYDVR0j BBgwFoAUubimHY6lUgzyjo5cJFAXasX60powDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE0MTc2MDgtMTZiOC00NDk3LTgxZTMtOTQ3ZDc4ZGJjZjExLzAvQjlCOEE2MUQ4 RUE1NTIwQ0YyOEU4RTVDMjQ1MDE3NkFDNUZBRDI5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9COUI4QTYxRDhFQTU1MjBDRjI4RThFNUMyNDUwMTc2QUM1RkFE MjlBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhNDE3NjA4LTE2YjgtNDQ5Ny04 MWUzLTk0N2Q3OGRiY2YxMS8wLzMxMzYzMDJlMzIzNTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnlMA0GCSqG SIb3DQEBCwUAA4IBAQCvYV1eIerOSnmMrLNxWC5KJIvrcC7LH4q+e5p/4rOcAal1 KNOqN16an/qGfylYSkYWPOqcKZfBRa3ebfOR37VQpEm5/RDh6wnvuiEyQMJH++Q/ RtEx8DHeNSs6GelPo/gkHzBwr61PXsp0LBgAp037mDTTyTUMNSuOpiEYbD1pRn1r xedbNp/8nDPXayathjSNuaNEcauRG+j3iTT5MY+0BNXuvCL7kbIS+aVDHHM3nYCx 7AXfCuhOSUpRZDn6yx6s86+MD6+RtW2tgWfTNq/KaFgz0E5uFV81M21mt0sLjZrp A47G0XBm0ckvir15pqVAeAmltP4ZALds6f2uyIzX -----END CERTIFICATE-----Generated at Wed May 13 08:25:02 2026 by rpki-client