$ rpki-client -vvf rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36392e302f32342d3234203d3e20313532383430.roa File: 3136302e32352e36392e302f32342d3234203d3e20313532383430.roa (raw, json) Hash identifier: EWMwL60vzqC7F/OnWAuKboStk3XuPspVW+rLMqOb4lI= Subject key identifier: 7C:BB:6C:79:54:A2:92:56:B1:65:DD:CF:3E:A2:3A:03:CB:80:F3:CA Certificate issuer: /CN=88D4F4FDF51BF10308C015B2FC8444F66EC54E55 Certificate serial: 234E4FDAA0FBD63D972EE14078627AFA1D7DE526 Authority key identifier: 88:D4:F4:FD:F5:1B:F1:03:08:C0:15:B2:FC:84:44:F6:6E:C5:4E:55 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36392e302f32342d3234203d3e20313532383430.roa Signing time: Sun 03 May 2026 03:00:40 +0000 ROA not before: Sun 03 May 2026 02:55:40 +0000 ROA not after: Sun 02 May 2027 03:00:40 +0000 asID: 152840 IP address blocks: 160.25.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.crl rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:4e:4f:da:a0:fb:d6:3d:97:2e:e1:40:78:62:7a:fa:1d:7d:e5:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88D4F4FDF51BF10308C015B2FC8444F66EC54E55 Validity Not Before: May 3 02:55:40 2026 GMT Not After : May 2 03:00:40 2027 GMT Subject: CN=7CBB6C7954A29256B165DDCF3EA23A03CB80F3CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1d:43:86:fa:e6:71:3d:20:96:37:89:9b:bb: 86:ea:4e:42:6a:78:52:78:b7:03:a2:dd:1b:2d:88: 9d:c4:69:84:20:18:42:46:83:d0:1a:6d:3f:0e:8e: ee:b5:aa:d7:b8:00:67:f5:53:72:aa:e4:c6:0f:d7: df:6a:48:6e:a5:39:68:c9:6f:b9:3b:53:7b:30:25: 71:c0:39:13:87:27:12:9c:0b:c5:49:98:df:fa:ba: 4e:13:49:ab:a1:59:c0:a2:9b:00:19:78:e1:ab:fe: 4d:03:4a:4b:80:c4:1c:e7:1c:b6:5e:ce:b5:f1:97: 54:64:e7:45:31:f8:c6:ef:eb:a9:cb:d4:51:72:46: ea:b2:78:2a:a1:da:f3:99:9e:83:e3:aa:df:a7:c4: 16:46:1c:40:54:f2:48:54:75:9a:02:59:56:23:48: 67:bb:c5:5b:0b:b9:92:46:7d:22:8d:df:57:f9:5c: 7a:fc:e1:b0:fe:5a:15:8f:80:6e:a5:52:a9:71:c5: 4b:9f:1e:ba:08:7f:6e:80:2c:91:39:c5:77:e1:c5: e5:9e:0b:ed:9a:46:e1:25:53:2e:34:40:00:c2:ba: 04:98:08:5d:48:25:02:be:5d:df:55:0f:32:9a:cc: ef:c4:5e:56:79:44:32:01:ab:0e:83:97:02:ab:fc: 3d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BB:6C:79:54:A2:92:56:B1:65:DD:CF:3E:A2:3A:03:CB:80:F3:CA X509v3 Authority Key Identifier: keyid:88:D4:F4:FD:F5:1B:F1:03:08:C0:15:B2:FC:84:44:F6:6E:C5:4E:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/88D4F4FDF51BF10308C015B2FC8444F66EC54E55.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b2fbaafc-4db2-4fc4-a1a8-2d8e4c8b2ce0/0/3136302e32352e36392e302f32342d3234203d3e20313532383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.69.0/24 Signature Algorithm: sha256WithRSAEncryption 62:40:e1:a1:ed:22:07:3f:3c:76:d7:d6:06:6a:3b:70:00:8d: 9e:16:e1:01:83:e0:2a:bb:50:70:9d:75:90:cf:4c:ee:29:ce: 8c:24:74:60:20:ef:70:79:1e:5e:69:69:46:9b:d1:06:bc:a4: 6e:6d:b3:2e:33:a2:6c:33:68:34:9c:6a:0d:93:79:28:07:99: 13:26:d6:59:2e:1d:75:9c:9e:13:4f:a5:43:2c:b3:d5:ba:57: 67:6f:f2:1a:ea:df:f1:30:4b:47:96:13:e5:dd:cc:ec:c8:02: 4a:c6:c5:38:3f:80:29:ac:b5:27:1d:93:40:d2:f2:54:49:eb: f6:c6:d1:fb:13:72:ff:17:c3:b6:38:99:2f:25:62:d0:f9:3e: 7f:78:46:99:cf:f7:c7:22:19:32:b1:85:28:17:b2:57:92:79: 4a:bd:17:1e:d0:6b:db:8e:64:56:c3:90:c7:2c:2e:76:46:23: 2b:ca:6b:02:5c:74:6c:2e:44:2e:1b:0a:26:f1:17:05:86:d7: 27:b0:58:63:b0:3d:79:53:2a:a9:03:5c:e3:7f:ea:ce:bf:0e: 77:d4:4a:b3:93:d0:2b:d6:cc:ef:7d:88:a8:84:d8:70:c2:28: dc:67:a9:e0:a5:49:8e:62:76:61:1c:ad:2c:0e:bb:13:3a:06: ec:5e:96:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI05P2qD71j2XLuFAeGJ6+h195SYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhENEY0RkRGNTFCRjEwMzA4QzAxNUIyRkM4NDQ0RjY2 RUM1NEU1NTAeFw0yNjA1MDMwMjU1NDBaFw0yNzA1MDIwMzAwNDBaMDMxMTAvBgNV BAMTKDdDQkI2Qzc5NTRBMjkyNTZCMTY1RERDRjNFQTIzQTAzQ0I4MEYzQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeHUOG+uZxPSCWN4mbu4bqTkJq eFJ4twOi3RstiJ3EaYQgGEJGg9AabT8Oju61qte4AGf1U3Kq5MYP199qSG6lOWjJ b7k7U3swJXHAOROHJxKcC8VJmN/6uk4TSauhWcCimwAZeOGr/k0DSkuAxBznHLZe zrXxl1Rk50Ux+Mbv66nL1FFyRuqyeCqh2vOZnoPjqt+nxBZGHEBU8khUdZoCWVYj SGe7xVsLuZJGfSKN31f5XHr84bD+WhWPgG6lUqlxxUufHroIf26ALJE5xXfhxeWe C+2aRuElUy40QADCugSYCF1IJQK+Xd9VDzKazO/EXlZ5RDIBqw6DlwKr/D25AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfLtseVSiklaxZd3PPqI6A8uA88owHwYDVR0j BBgwFoAUiNT0/fUb8QMIwBWy/IRE9m7FTlUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjJmYmFhZmMtNGRiMi00ZmM0LWExYTgtMmQ4ZTRjOGIyY2UwLzAvODhENEY0RkRG NTFCRjEwMzA4QzAxNUIyRkM4NDQ0RjY2RUM1NEU1NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84OEQ0RjRGREY1MUJGMTAzMDhDMDE1QjJGQzg0NDRGNjZFQzU0 RTU1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IyZmJhYWZjLTRkYjItNGZjNC1h MWE4LTJkOGU0YzhiMmNlMC8wLzMxMzYzMDJlMzIzNTJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAZRTANBgkqhkiG 9w0BAQsFAAOCAQEAYkDhoe0iBz88dtfWBmo7cACNnhbhAYPgKrtQcJ11kM9M7inO jCR0YCDvcHkeXmlpRpvRBrykbm2zLjOibDNoNJxqDZN5KAeZEybWWS4ddZyeE0+l Qyyz1bpXZ2/yGurf8TBLR5YT5d3M7MgCSsbFOD+AKay1Jx2TQNLyVEnr9sbR+xNy /xfDtjiZLyVi0Pk+f3hGmc/3xyIZMrGFKBeyV5J5Sr0XHtBr245kVsOQxywudkYj K8prAlx0bC5ELhsKJvEXBYbXJ7BYY7A9eVMqqQNc43/qzr8Od9RKs5PQK9bM732I qITYcMIo3Gep4KVJjmJ2YRytLA67EzoG7F6WCQ== -----END CERTIFICATE-----Generated at Tue May 12 23:27:30 2026 by rpki-client