$ rpki-client -vvf rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36382e302f32342d3234203d3e20313532383430.roa File: 3136302e32352e36382e302f32342d3234203d3e20313532383430.roa (raw, json) Hash identifier: 76jX1EQLJLemOan59z7L47xBchgtO5SRGL4XXupWKtc= Subject key identifier: 6B:1A:6A:23:51:7C:B9:64:FC:E3:C4:AD:51:1B:E8:10:CB:47:FA:0C Certificate issuer: /CN=88D4F4FDF51BF10308C015B2FC8444F66EC54E55 Certificate serial: 2427F02B45D95C9D9A08FC8486F4A035544C145F Authority key identifier: 88:D4:F4:FD:F5:1B:F1:03:08:C0:15:B2:FC:84:44:F6:6E:C5:4E:55 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36382e302f32342d3234203d3e20313532383430.roa Signing time: Sun 03 May 2026 03:00:39 +0000 ROA not before: Sun 03 May 2026 02:55:39 +0000 ROA not after: Sun 02 May 2027 03:00:39 +0000 asID: 152840 IP address blocks: 160.25.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.crl rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:27:f0:2b:45:d9:5c:9d:9a:08:fc:84:86:f4:a0:35:54:4c:14:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88D4F4FDF51BF10308C015B2FC8444F66EC54E55 Validity Not Before: May 3 02:55:39 2026 GMT Not After : May 2 03:00:39 2027 GMT Subject: CN=6B1A6A23517CB964FCE3C4AD511BE810CB47FA0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:6c:5f:2a:f3:a5:78:b5:35:f2:43:df:2f: cc:00:38:eb:d0:3a:78:93:75:5c:67:a1:ad:db:87: 3a:6a:c9:59:f7:e9:bb:97:76:b9:f0:ab:4f:8f:29: 20:27:eb:e5:45:3f:ed:07:61:e2:bb:4d:3d:3e:12: 41:26:a6:7c:f8:89:f5:bc:3b:6d:dc:12:56:06:e2: a0:6f:8a:ce:9a:db:de:4d:b3:9c:99:92:db:98:f9: 17:85:06:2d:c8:1b:31:a1:2c:68:63:ed:eb:41:b7: a9:51:25:25:d5:22:55:4d:3d:e8:bd:78:68:0c:14: 21:6f:91:9e:24:ac:bf:f2:14:29:93:04:28:bd:d5: 83:cb:c3:15:11:05:21:01:ba:fb:3d:2b:6a:11:b7: 6b:4e:f1:24:ba:02:06:d7:c1:e8:b1:89:9f:3f:f4: 11:7d:c6:22:1b:df:0f:10:98:d0:d2:ff:7a:cd:a2: ab:64:ff:31:1c:26:e9:45:1c:62:fc:7d:dd:2c:98: 1e:ef:4f:37:a9:37:ca:f9:21:dd:52:f0:de:69:81: 3c:63:a4:bd:ef:98:4d:d2:12:d6:26:23:7f:ea:24: 8f:d2:49:cc:5d:89:05:aa:61:59:87:2e:69:8b:01: a1:61:24:c7:c5:c5:ca:bb:eb:f9:88:fc:de:79:0e: 2e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1A:6A:23:51:7C:B9:64:FC:E3:C4:AD:51:1B:E8:10:CB:47:FA:0C X509v3 Authority Key Identifier: keyid:88:D4:F4:FD:F5:1B:F1:03:08:C0:15:B2:FC:84:44:F6:6E:C5:4E:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36382e302f32342d3234203d3e20313532383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.68.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:01:00:7a:fb:2f:ba:33:7b:9e:0c:68:26:6f:0c:21:ab:e0: 70:62:73:7d:20:8f:6b:c3:47:aa:72:9b:ce:12:19:2f:97:4e: 75:dc:8c:6f:53:b5:92:86:25:33:d9:9c:48:e6:97:df:b4:49: 57:4d:ed:a8:e5:2f:b7:4d:d6:82:38:76:c9:d0:52:97:d2:69: a3:28:98:07:a1:f1:f0:3b:48:20:01:b4:35:01:fb:fc:44:47: cd:fe:36:67:a8:61:81:4b:fe:8d:1c:33:47:8b:bb:0a:d7:49: 23:7b:81:12:ac:e2:0b:f7:aa:b0:9d:05:9e:b3:a8:ac:8e:99: 05:14:d9:16:d6:ec:5b:cd:8b:a4:e7:bc:6d:15:be:2d:14:79: 3e:da:ad:ae:2c:49:47:61:55:ba:01:6f:a1:18:69:22:73:81: 54:51:c0:4d:56:9c:52:7d:2b:30:bc:b0:42:8a:ea:1a:c0:5c: 23:aa:98:ab:ec:9b:b1:48:9e:fb:da:4c:bf:1d:e0:41:d8:7f: a9:03:39:a1:c8:ed:83:07:a3:d2:c0:5b:ad:e5:4e:a0:87:34: 77:82:ec:75:08:27:02:6f:3b:77:4d:40:6e:5e:6c:54:71:c6: 54:1b:bc:03:d3:9d:ed:2e:b4:a0:fb:e0:64:87:86:de:6b:98: f4:bb:d5:42 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJCfwK0XZXJ2aCPyEhvSgNVRMFF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhENEY0RkRGNTFCRjEwMzA4QzAxNUIyRkM4NDQ0RjY2 RUM1NEU1NTAeFw0yNjA1MDMwMjU1MzlaFw0yNzA1MDIwMzAwMzlaMDMxMTAvBgNV BAMTKDZCMUE2QTIzNTE3Q0I5NjRGQ0UzQzRBRDUxMUJFODEwQ0I0N0ZBMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyeWxfKvOleLU18kPfL8wAOOvQ OniTdVxnoa3bhzpqyVn36buXdrnwq0+PKSAn6+VFP+0HYeK7TT0+EkEmpnz4ifW8 O23cElYG4qBvis6a295Ns5yZktuY+ReFBi3IGzGhLGhj7etBt6lRJSXVIlVNPei9 eGgMFCFvkZ4krL/yFCmTBCi91YPLwxURBSEBuvs9K2oRt2tO8SS6AgbXweixiZ8/ 9BF9xiIb3w8QmNDS/3rNoqtk/zEcJulFHGL8fd0smB7vTzepN8r5Id1S8N5pgTxj pL3vmE3SEtYmI3/qJI/SScxdiQWqYVmHLmmLAaFhJMfFxcq76/mI/N55Di7lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaxpqI1F8uWT848StURvoEMtH+gwwHwYDVR0j BBgwFoAUiNT0/fUb8QMIwBWy/IRE9m7FTlUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjJmYmFhZmMtNGRiMi00ZmM0LWExYTgtMmQ4ZTRjOGIyY2UwLzAvODhENEY0RkRG NTFCRjEwMzA4QzAxNUIyRkM4NDQ0RjY2RUM1NEU1NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84OEQ0RjRGREY1MUJGMTAzMDhDMDE1QjJGQzg0NDRGNjZFQzU0 RTU1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyZmJhYWZjLTRkYjItNGZjNC1h MWE4LTJkOGU0YzhiMmNlMC8wLzMxMzYzMDJlMzIzNTJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZRDANBgkqhkiG 9w0BAQsFAAOCAQEADwEAevsvujN7ngxoJm8MIavgcGJzfSCPa8NHqnKbzhIZL5dO ddyMb1O1koYlM9mcSOaX37RJV03tqOUvt03Wgjh2ydBSl9JpoyiYB6Hx8DtIIAG0 NQH7/ERHzf42Z6hhgUv+jRwzR4u7CtdJI3uBEqziC/eqsJ0FnrOorI6ZBRTZFtbs W82LpOe8bRW+LRR5PtqtrixJR2FVugFvoRhpInOBVFHATVacUn0rMLywQorqGsBc I6qYq+ybsUie+9pMvx3gQdh/qQM5ocjtgwej0sBbreVOoIc0d4LsdQgnAm87d01A bl5sVHHGVBu8A9Od7S60oPvgZIeG3muY9LvVQg== -----END CERTIFICATE-----Generated at Tue May 12 23:27:35 2026 by rpki-client