$ rpki-client -vvf rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa File: 3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa (raw, json) Hash identifier: 8SDP3wfE2ITikt4jDcd6r3J1oTDgApLS/F1IvHjprMQ= Subject key identifier: F1:83:9B:C7:D5:D0:7F:3F:AD:53:36:5C:E6:9E:CB:53:67:85:35:26 Certificate issuer: /CN=58D7371463C97F0A2A5D9ED78952F82CAA379F75 Certificate serial: 01BC857A32E7C82AC9E44A8FD2A47D9D93F72984 Authority key identifier: 58:D7:37:14:63:C9:7F:0A:2A:5D:9E:D7:89:52:F8:2C:AA:37:9F:75 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa Signing time: Sun 03 May 2026 02:58:51 +0000 ROA not before: Sun 03 May 2026 02:53:51 +0000 ROA not after: Sun 02 May 2027 02:58:51 +0000 asID: 153082 IP address blocks: 160.22.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.crl rsync://rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:bc:85:7a:32:e7:c8:2a:c9:e4:4a:8f:d2:a4:7d:9d:93:f7:29:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7371463C97F0A2A5D9ED78952F82CAA379F75 Validity Not Before: May 3 02:53:51 2026 GMT Not After : May 2 02:58:51 2027 GMT Subject: CN=F1839BC7D5D07F3FAD53365CE69ECB5367853526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5c:68:b3:dc:2d:5e:25:67:06:a5:dc:c3:84: ea:b2:7d:a1:b7:68:ac:7b:c3:25:7c:cf:d8:72:7e: da:b0:c2:23:d2:28:af:1b:ae:70:7d:4b:97:89:4b: 47:4c:d5:03:39:a9:5d:ec:ea:d7:b7:64:25:f4:b3: 9a:e2:f7:32:3c:d4:36:5c:95:f8:c5:01:67:34:83: 83:e3:28:26:b6:3b:7e:cf:c6:78:dc:34:a4:a3:7c: db:9f:2f:21:17:b4:49:1d:56:05:e1:c2:89:aa:8f: d4:31:c3:a4:3f:90:4f:91:65:c1:2b:1f:3e:a0:6f: 15:d3:4f:d0:a0:98:6d:96:56:ff:0f:60:54:a9:9a: 95:e3:bc:07:f1:4a:33:eb:5a:98:96:fb:f4:2d:2a: 4a:ff:ec:d2:de:35:6a:30:e6:df:70:e7:a1:02:20: f2:c1:cd:1f:5b:fa:b5:73:92:75:4a:00:1a:bd:6d: 43:56:f8:09:35:c1:65:4e:40:da:f9:50:bb:61:77: 14:80:2d:bf:c4:21:84:bb:90:1f:53:d7:01:00:c6: 3e:e0:04:01:bf:04:2f:35:17:4a:b7:da:84:63:68: 6c:55:c8:8e:c0:84:4e:c2:b3:5a:cb:ec:3d:04:c6: b0:f2:ad:69:3f:f3:31:85:63:ad:2c:bd:1a:03:87: 71:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:83:9B:C7:D5:D0:7F:3F:AD:53:36:5C:E6:9E:CB:53:67:85:35:26 X509v3 Authority Key Identifier: keyid:58:D7:37:14:63:C9:7F:0A:2A:5D:9E:D7:89:52:F8:2C:AA:37:9F:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/58D7371463C97F0A2A5D9ED78952F82CAA379F75.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.218.0/23 Signature Algorithm: sha256WithRSAEncryption 60:10:83:25:a8:b8:2d:fa:ec:c7:95:ed:d0:b3:d0:4e:8b:23: dc:7a:87:85:77:ff:38:f0:86:2d:22:79:f1:d9:c6:1a:96:07: 20:62:37:cb:3b:59:ff:96:52:60:f4:30:0f:d6:e8:7f:ea:79: d2:bb:80:b2:45:81:79:64:1b:c4:7d:be:0c:5a:70:5c:2b:36: f3:82:2a:5e:52:d1:84:6c:ee:90:ea:a8:db:69:1a:0e:fd:5d: 5c:18:37:ce:cf:ce:54:d4:01:01:49:5e:5b:e1:39:e3:92:11: a7:30:f5:90:76:58:8e:40:5b:8f:92:df:06:3f:0b:ff:87:dc: 2f:2b:42:45:78:f6:72:97:54:0b:97:55:c5:25:ff:34:25:a7: 1b:58:7e:13:33:0c:7d:07:a5:aa:23:bf:1c:44:05:3f:8d:e8: 6c:02:98:16:db:91:0b:7d:be:94:42:d0:a0:15:12:74:de:45: 2d:0f:50:e8:89:d8:ef:59:64:32:f3:1a:40:c1:35:06:46:de: d0:ca:eb:ca:bf:c5:0c:99:6d:ce:66:fd:f0:c7:5c:f0:60:bd: de:f9:4a:87:6c:6a:2c:f8:66:ef:b4:c3:fd:ab:83:7c:bd:ad: 83:89:04:0e:b8:f6:8d:ac:f4:d0:75:8d:e6:97:60:7f:26:dc: ae:0b:94:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAbyFejLnyCrJ5EqP0qR9nZP3KYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThENzM3MTQ2M0M5N0YwQTJBNUQ5RUQ3ODk1MkY4MkNB QTM3OUY3NTAeFw0yNjA1MDMwMjUzNTFaFw0yNzA1MDIwMjU4NTFaMDMxMTAvBgNV BAMTKEYxODM5QkM3RDVEMDdGM0ZBRDUzMzY1Q0U2OUVDQjUzNjc4NTM1MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzXGiz3C1eJWcGpdzDhOqyfaG3 aKx7wyV8z9hyftqwwiPSKK8brnB9S5eJS0dM1QM5qV3s6te3ZCX0s5ri9zI81DZc lfjFAWc0g4PjKCa2O37PxnjcNKSjfNufLyEXtEkdVgXhwomqj9Qxw6Q/kE+RZcEr Hz6gbxXTT9CgmG2WVv8PYFSpmpXjvAfxSjPrWpiW+/QtKkr/7NLeNWow5t9w56EC IPLBzR9b+rVzknVKABq9bUNW+Ak1wWVOQNr5ULthdxSALb/EIYS7kB9T1wEAxj7g BAG/BC81F0q32oRjaGxVyI7AhE7Cs1rL7D0ExrDyrWk/8zGFY60svRoDh3F/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8YObx9XQfz+tUzZc5p7LU2eFNSYwHwYDVR0j BBgwFoAUWNc3FGPJfwoqXZ7XiVL4LKo3n3UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWNkYjJiZjgtYmViMy00Y2M5LTgzYWQtMmM5ZDU3NWY5NGFmLzAvNThENzM3MTQ2 M0M5N0YwQTJBNUQ5RUQ3ODk1MkY4MkNBQTM3OUY3NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81OEQ3MzcxNDYzQzk3RjBBMkE1RDlFRDc4OTUyRjgyQ0FBMzc5 Rjc1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjZGIyYmY4LWJlYjMtNGNjOS04 M2FkLTJjOWQ1NzVmOTRhZi8wLzMxMzYzMDJlMzIzMjJlMzIzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbaMA0GCSqG SIb3DQEBCwUAA4IBAQBgEIMlqLgt+uzHle3Qs9BOiyPceoeFd/848IYtInnx2cYa lgcgYjfLO1n/llJg9DAP1uh/6nnSu4CyRYF5ZBvEfb4MWnBcKzbzgipeUtGEbO6Q 6qjbaRoO/V1cGDfOz85U1AEBSV5b4TnjkhGnMPWQdliOQFuPkt8GPwv/h9wvK0JF ePZyl1QLl1XFJf80JacbWH4TMwx9B6WqI78cRAU/jehsApgW25ELfb6UQtCgFRJ0 3kUtD1DoidjvWWQy8xpAwTUGRt7QyuvKv8UMmW3OZv3wx1zwYL3e+UqHbGos+Gbv tMP9q4N8va2DiQQOuPaNrPTQdY3ml2B/JtyuC5SL -----END CERTIFICATE-----Generated at Wed May 13 00:54:01 2026 by rpki-client