$ rpki-client -vvf rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa File: 3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa (raw, json) Hash identifier: D1W5omLh7o0cboJZQI9GxY1nYLxszT6FDxJvrufpNko= Subject key identifier: CD:7F:E6:82:0B:66:04:AA:35:00:5F:FD:91:56:D4:48:56:4F:96:45 Certificate issuer: /CN=BDC7DB49447E34D3CF074E82FCC5B942799CB19B Certificate serial: 0BEDFCF2FDDDDB38FBC2A10D33DE724C57D2913A Authority key identifier: BD:C7:DB:49:44:7E:34:D3:CF:07:4E:82:FC:C5:B9:42:79:9C:B1:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa Signing time: Sun 03 May 2026 03:02:14 +0000 ROA not before: Sun 03 May 2026 02:57:14 +0000 ROA not after: Sun 02 May 2027 03:02:14 +0000 asID: 153121 IP address blocks: 160.187.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.crl rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:ed:fc:f2:fd:dd:db:38:fb:c2:a1:0d:33:de:72:4c:57:d2:91:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDC7DB49447E34D3CF074E82FCC5B942799CB19B Validity Not Before: May 3 02:57:14 2026 GMT Not After : May 2 03:02:14 2027 GMT Subject: CN=CD7FE6820B6604AA35005FFD9156D448564F9645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0e:03:31:8b:f0:94:a9:24:06:ac:6d:92:1b: 63:b6:78:9c:02:33:09:7b:2f:98:61:85:8d:47:4b: bb:d2:68:97:09:d2:17:6f:f6:71:4c:f9:50:4b:e9: 66:e6:63:dc:96:33:56:f8:e0:e1:22:ad:47:90:24: 04:dd:e2:b0:e2:f3:1b:b3:c8:f8:23:f6:be:ea:3a: 8c:8a:74:fc:6c:d3:91:07:61:b0:09:86:b1:27:71: 0b:3a:11:5d:ae:e8:11:5c:30:c0:92:4a:84:01:77: 13:fe:f1:20:bf:82:b5:fb:9b:cb:5b:11:b6:85:3e: 64:59:9a:32:64:b5:62:af:36:a4:95:6d:92:48:32: 37:2b:7c:a7:af:32:3f:41:29:7e:4b:98:83:c9:7c: 65:03:f0:1c:62:3c:dc:62:85:b8:ec:b2:71:ab:25: 8f:d2:5f:ff:f9:c1:a2:dc:ad:b0:a3:7b:18:06:3b: 98:27:fd:16:35:ec:3e:f8:13:ab:8c:93:48:5a:8d: 03:f0:7f:75:b6:a7:2b:40:d0:34:ce:92:db:3a:0e: 52:ad:f1:e6:c3:2b:88:30:42:e5:fc:06:29:be:8a: f4:2f:98:c6:8a:76:62:2f:c1:3c:97:b6:02:83:88: 37:cf:d1:a8:aa:42:b9:d5:2a:a4:8a:f0:40:30:c6: 87:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:7F:E6:82:0B:66:04:AA:35:00:5F:FD:91:56:D4:48:56:4F:96:45 X509v3 Authority Key Identifier: keyid:BD:C7:DB:49:44:7E:34:D3:CF:07:4E:82:FC:C5:B9:42:79:9C:B1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BDC7DB49447E34D3CF074E82FCC5B942799CB19B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/3136302e3138372e3134342e302f32332d3233203d3e20313533313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.144.0/23 Signature Algorithm: sha256WithRSAEncryption 91:38:4e:21:1e:c5:77:a1:78:05:ac:c8:a7:f0:46:75:bf:1f: e6:e1:e8:4c:6c:24:4a:66:ea:3b:91:ab:10:00:8e:2c:57:21: dc:9c:c3:ee:43:d1:52:e8:84:05:c1:c8:85:31:20:46:c4:11: 2a:3c:ce:82:61:7f:73:95:f8:40:07:e0:9b:df:6e:98:9e:3e: ff:b6:17:d3:86:e6:fa:5b:cb:71:0d:f1:02:21:ec:f4:27:d3: b2:c1:9a:b1:ec:50:ad:09:48:8e:a6:33:90:9e:4d:e3:40:ff: 57:45:11:32:a9:6c:40:ea:27:79:97:e2:9c:12:74:15:e3:33: 1a:b2:1a:29:e8:60:4b:aa:c6:ab:de:dc:64:b5:14:9f:42:a3: 39:dc:17:12:b0:c8:13:af:44:83:2e:6d:e9:56:54:51:b8:06: 0f:ff:39:f3:31:2f:09:c2:ca:48:6e:7c:4b:13:bb:7e:c3:9e: 4c:a9:7c:2a:4c:62:c3:e9:09:0e:af:56:77:1f:b9:32:b3:1c: 1f:7a:cc:86:4d:d9:49:63:80:f7:a1:22:f7:ee:19:60:a6:5b: 6f:44:3d:45:fa:42:ce:ba:40:57:47:f0:d7:35:18:58:a4:7f: f5:78:35:e0:02:e6:44:28:e2:0c:d2:db:7f:04:62:ab:58:9c: ad:01:ec:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC+388v3d2zj7wqENM95yTFfSkTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkRDN0RCNDk0NDdFMzREM0NGMDc0RTgyRkNDNUI5NDI3 OTlDQjE5QjAeFw0yNjA1MDMwMjU3MTRaFw0yNzA1MDIwMzAyMTRaMDMxMTAvBgNV BAMTKENEN0ZFNjgyMEI2NjA0QUEzNTAwNUZGRDkxNTZENDQ4NTY0Rjk2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyDgMxi/CUqSQGrG2SG2O2eJwC Mwl7L5hhhY1HS7vSaJcJ0hdv9nFM+VBL6WbmY9yWM1b44OEirUeQJATd4rDi8xuz yPgj9r7qOoyKdPxs05EHYbAJhrEncQs6EV2u6BFcMMCSSoQBdxP+8SC/grX7m8tb EbaFPmRZmjJktWKvNqSVbZJIMjcrfKevMj9BKX5LmIPJfGUD8BxiPNxihbjssnGr JY/SX//5waLcrbCjexgGO5gn/RY17D74E6uMk0hajQPwf3W2pytA0DTOkts6DlKt 8ebDK4gwQuX8Bim+ivQvmMaKdmIvwTyXtgKDiDfP0aiqQrnVKqSK8EAwxocjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzX/mggtmBKo1AF/9kVbUSFZPlkUwHwYDVR0j BBgwFoAUvcfbSUR+NNPPB06C/MW5QnmcsZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmE4OWI3ZGQtOTlhNy00NTBlLWJlODQtYjNiZmM3MzQwZjFmLzAvQkRDN0RCNDk0 NDdFMzREM0NGMDc0RTgyRkNDNUI5NDI3OTlDQjE5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CREM3REI0OTQ0N0UzNEQzQ0YwNzRFODJGQ0M1Qjk0Mjc5OUNC MTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JhODliN2RkLTk5YTctNDUwZS1i ZTg0LWIzYmZjNzM0MGYxZi8wLzMxMzYzMDJlMzEzODM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzMzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgu5AwDQYJ KoZIhvcNAQELBQADggEBAJE4TiEexXeheAWsyKfwRnW/H+bh6ExsJEpm6juRqxAA jixXIdycw+5D0VLohAXByIUxIEbEESo8zoJhf3OV+EAH4JvfbpiePv+2F9OG5vpb y3EN8QIh7PQn07LBmrHsUK0JSI6mM5CeTeNA/1dFETKpbEDqJ3mX4pwSdBXjMxqy GinoYEuqxqve3GS1FJ9CozncFxKwyBOvRIMubelWVFG4Bg//OfMxLwnCykhufEsT u37DnkypfCpMYsPpCQ6vVncfuTKzHB96zIZN2UljgPehIvfuGWCmW29EPUX6Qs66 QFdH8Nc1GFikf/V4NeAC5kQo4gzS238EYqtYnK0B7AU= -----END CERTIFICATE-----Generated at Wed May 13 02:58:54 2026 by rpki-client