$ rpki-client -vvf rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa File: 3136302e31392e38352e302f32342d3234203d3e20313532373534.roa (raw, json) Hash identifier: ldSnrrmteNryHWcf9UUZou80Ix7aIJzaiTf7mkq3mc4= Subject key identifier: 7D:5D:DF:A3:5A:70:FB:A0:50:14:81:40:8B:F8:DC:F5:AD:D4:3A:89 Certificate issuer: /CN=889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8 Certificate serial: 2B8D8A12889E6DC8926CF73CA7F97CD9CBF66BC4 Authority key identifier: 88:9C:6D:E3:F5:7A:53:47:0E:BB:EA:BC:1C:2D:89:A6:F3:FC:17:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa Signing time: Sun 03 May 2026 03:02:13 +0000 ROA not before: Sun 03 May 2026 02:57:13 +0000 ROA not after: Sun 02 May 2027 03:02:13 +0000 asID: 152754 IP address blocks: 160.19.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.crl rsync://rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8d:8a:12:88:9e:6d:c8:92:6c:f7:3c:a7:f9:7c:d9:cb:f6:6b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8 Validity Not Before: May 3 02:57:13 2026 GMT Not After : May 2 03:02:13 2027 GMT Subject: CN=7D5DDFA35A70FBA0501481408BF8DCF5ADD43A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:08:25:b0:5a:9c:85:a2:8b:f1:be:2a:cd:c4: 43:5f:88:4c:20:53:26:1b:71:6b:79:ce:fd:17:cc: 76:54:15:00:79:0a:5e:5e:24:09:22:f6:4f:d9:e9: 61:2c:7f:b5:ed:46:02:36:a4:8c:33:97:e8:b0:49: b1:67:31:65:c9:3a:67:1b:e3:69:c8:a0:ba:da:40: 83:69:e4:dc:29:4d:68:62:4d:29:5d:c7:0b:64:1e: 78:d6:23:f9:28:2b:9b:94:fa:8a:c3:64:e6:6c:90: 6c:b0:fc:07:77:85:33:83:ad:59:b8:dd:7c:3d:2d: ca:30:a9:67:74:d2:e9:b2:3c:1d:6f:9a:b3:24:3d: b4:49:3a:73:63:2d:1c:2a:7f:c0:9e:53:a9:e5:0a: 22:de:13:4d:56:a7:6b:34:96:2a:b5:a9:38:75:4c: bd:3e:ec:fa:bd:98:c4:aa:3b:51:96:07:0c:c5:1e: d4:73:f8:cd:b1:95:8f:cd:60:b1:26:cd:ad:34:98: 54:8e:45:fc:d1:46:03:62:5a:75:58:a1:0f:98:25: c2:90:ae:ec:eb:67:70:55:db:b1:ef:f8:50:20:e6: 35:b2:41:0d:af:74:6c:54:c0:87:c8:74:6b:d7:bc: 36:5c:eb:16:bf:b4:cc:c9:60:14:8e:64:00:75:94: a3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5D:DF:A3:5A:70:FB:A0:50:14:81:40:8B:F8:DC:F5:AD:D4:3A:89 X509v3 Authority Key Identifier: keyid:88:9C:6D:E3:F5:7A:53:47:0E:BB:EA:BC:1C:2D:89:A6:F3:FC:17:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/889C6DE3F57A53470EBBEABC1C2D89A6F3FC17C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38352e302f32342d3234203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.85.0/24 Signature Algorithm: sha256WithRSAEncryption 87:33:cd:93:ab:83:c1:46:47:77:7a:55:4c:72:4b:dd:4d:fd: f6:14:a3:e0:60:ee:f8:78:6e:92:98:ce:9d:cc:2f:f7:4f:ad: 81:60:7a:b1:47:cc:e0:e7:c6:1f:1f:6c:12:0c:1a:c3:6f:63: 14:95:1a:5a:75:f7:15:0b:10:88:52:16:89:0b:54:c0:44:88: 59:af:b3:c5:3b:67:8c:2f:40:e3:eb:79:4d:e9:bb:28:db:d3: 38:6c:7e:96:e3:be:85:62:8e:4a:7d:d3:db:b6:e2:85:0b:86: af:2c:51:ad:81:5a:4d:9e:87:7c:f0:02:e0:cd:6b:f1:74:d2: 28:8d:f3:d4:02:00:04:fa:47:22:61:e1:d5:15:9d:44:0d:4c: 92:c8:6a:23:c9:76:c5:3c:73:e8:65:ef:9e:cc:62:f6:94:3c: 42:69:c8:b2:51:91:9a:1e:88:8a:6d:05:69:1f:f1:0b:e0:d2: 8c:1e:83:84:cf:6a:21:79:31:f5:f9:d0:45:65:03:6b:b1:f1: 0e:2c:45:af:48:74:85:70:43:81:dc:e5:c3:e8:04:ee:fb:b9: 2b:15:4f:55:5b:01:f9:a6:a6:81:6d:d3:5c:db:d4:cc:f3:c0: 04:46:4b:21:c0:9d:47:1b:36:5c:53:e3:57:64:0d:44:f2:a0: e4:cf:e9:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK42KEoiebciSbPc8p/l82cv2a8QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg5QzZERTNGNTdBNTM0NzBFQkJFQUJDMUMyRDg5QTZG M0ZDMTdDODAeFw0yNjA1MDMwMjU3MTNaFw0yNzA1MDIwMzAyMTNaMDMxMTAvBgNV BAMTKDdENURERkEzNUE3MEZCQTA1MDE0ODE0MDhCRjhEQ0Y1QURENDNBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoCCWwWpyFoovxvirNxENfiEwg UyYbcWt5zv0XzHZUFQB5Cl5eJAki9k/Z6WEsf7XtRgI2pIwzl+iwSbFnMWXJOmcb 42nIoLraQINp5NwpTWhiTSldxwtkHnjWI/koK5uU+orDZOZskGyw/Ad3hTODrVm4 3Xw9LcowqWd00umyPB1vmrMkPbRJOnNjLRwqf8CeU6nlCiLeE01Wp2s0liq1qTh1 TL0+7Pq9mMSqO1GWBwzFHtRz+M2xlY/NYLEmza00mFSORfzRRgNiWnVYoQ+YJcKQ ruzrZ3BV27Hv+FAg5jWyQQ2vdGxUwIfIdGvXvDZc6xa/tMzJYBSOZAB1lKNrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfV3fo1pw+6BQFIFAi/jc9a3UOokwHwYDVR0j BBgwFoAUiJxt4/V6U0cOu+q8HC2JpvP8F8gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmEwOThmMDAtYTBhMC00YjVjLTllODMtNjA2NzM3MTI4Y2IxLzAvODg5QzZERTNG NTdBNTM0NzBFQkJFQUJDMUMyRDg5QTZGM0ZDMTdDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84ODlDNkRFM0Y1N0E1MzQ3MEVCQkVBQkMxQzJEODlBNkYzRkMx N0M4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVTANBgkqhkiG 9w0BAQsFAAOCAQEAhzPNk6uDwUZHd3pVTHJL3U399hSj4GDu+HhukpjOncwv90+t gWB6sUfM4OfGHx9sEgwaw29jFJUaWnX3FQsQiFIWiQtUwESIWa+zxTtnjC9A4+t5 Tem7KNvTOGx+luO+hWKOSn3T27bihQuGryxRrYFaTZ6HfPAC4M1r8XTSKI3z1AIA BPpHImHh1RWdRA1MkshqI8l2xTxz6GXvnsxi9pQ8QmnIslGRmh6Iim0FaR/xC+DS jB6DhM9qIXkx9fnQRWUDa7HxDixFr0h0hXBDgdzlw+gE7vu5KxVPVVsB+aamgW3T XNvUzPPABEZLIcCdRxs2XFPjV2QNRPKg5M/poQ== -----END CERTIFICATE-----Generated at Wed May 13 04:54:32 2026 by rpki-client