$ rpki-client -vvf rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139372e302f32342d3234203d3e20313533313037.roa File: 3136302e32352e3139372e302f32342d3234203d3e20313533313037.roa (raw, json) Hash identifier: Sl5RIQ6TEp2vaieF8W/DsRGoACBj5tfJiV0/4Hnxdeo= Subject key identifier: 96:E6:A9:5B:11:12:93:98:0E:13:F6:80:DE:02:32:26:BE:F2:F4:77 Certificate issuer: /CN=A2E9BBA810962C7C303F74052ADA8F8AE90FCB03 Certificate serial: 654BEAA9CDBBBA1ECAEDD73FFA686016049EC791 Authority key identifier: A2:E9:BB:A8:10:96:2C:7C:30:3F:74:05:2A:DA:8F:8A:E9:0F:CB:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139372e302f32342d3234203d3e20313533313037.roa Signing time: Sun 03 May 2026 03:02:20 +0000 ROA not before: Sun 03 May 2026 02:57:20 +0000 ROA not after: Sun 02 May 2027 03:02:20 +0000 asID: 153107 IP address blocks: 160.25.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.crl rsync://rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:4b:ea:a9:cd:bb:ba:1e:ca:ed:d7:3f:fa:68:60:16:04:9e:c7:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E9BBA810962C7C303F74052ADA8F8AE90FCB03 Validity Not Before: May 3 02:57:20 2026 GMT Not After : May 2 03:02:20 2027 GMT Subject: CN=96E6A95B111293980E13F680DE023226BEF2F477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9c:10:34:d8:d8:84:da:d2:fd:42:e6:2e:4e: ca:94:32:df:2b:20:36:8b:e7:f5:d3:7e:31:7d:b6: 0c:6e:f9:00:01:42:a4:32:37:b3:17:9c:45:f7:ca: fb:ca:cc:09:ad:6f:fd:e8:60:c4:ce:1b:c2:9c:24: 36:12:43:a6:8b:57:22:fa:45:92:c9:d6:21:42:f8: 26:3d:a7:ed:3f:fa:2e:1c:67:48:9e:89:3e:ff:61: 07:e0:f3:b3:63:6c:d0:2b:d4:fe:45:95:26:da:48: be:d7:3c:c6:c7:fa:bd:24:b4:23:ed:11:08:60:59: bd:31:fe:ec:da:41:f1:b3:e7:0b:29:27:31:6d:60: 0c:f5:aa:45:9d:e0:b4:1e:19:1e:0f:b2:3e:2a:32: f1:7c:23:1e:75:ab:7f:cc:c5:65:dd:ef:a0:3c:52: cc:bd:6b:5e:27:3a:d7:2a:ea:34:72:58:10:7f:1e: 70:b4:d1:12:b0:92:cb:6a:6c:a0:29:31:45:05:f2: 97:23:14:56:01:5b:ea:4f:0d:73:63:65:8f:90:91: 94:03:92:02:25:c2:91:65:6b:db:79:7e:0e:c6:f8: b4:ba:79:a2:4e:53:60:2c:2a:31:4d:9d:49:7b:9e: 0e:fb:29:4a:00:82:91:96:34:39:8e:f6:93:bf:60: bc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E6:A9:5B:11:12:93:98:0E:13:F6:80:DE:02:32:26:BE:F2:F4:77 X509v3 Authority Key Identifier: keyid:A2:E9:BB:A8:10:96:2C:7C:30:3F:74:05:2A:DA:8F:8A:E9:0F:CB:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A2E9BBA810962C7C303F74052ADA8F8AE90FCB03.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bb69d667-17a4-4fdd-9c57-1122033ef999/0/3136302e32352e3139372e302f32342d3234203d3e20313533313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.197.0/24 Signature Algorithm: sha256WithRSAEncryption 88:41:9a:e0:95:92:32:f0:6a:b1:61:70:f7:08:7d:cd:7d:d8: 05:94:f3:b5:c7:be:0e:83:e3:12:41:e4:23:b0:c3:d2:d1:9f: 3a:01:d4:a4:48:d9:a6:9e:4b:d0:6a:ce:dc:34:d0:bd:a2:f2: 0a:ed:c5:69:9f:90:fe:c4:94:e6:f8:c0:f1:69:35:24:7c:02: 00:7a:a5:53:84:8e:38:f6:43:58:6e:7a:d2:12:2b:6c:aa:9c: 57:24:2c:82:05:13:06:61:de:68:24:fa:6e:fe:be:2f:4a:64: 1b:b5:6f:04:7b:c8:8c:c5:2c:b5:40:ab:e4:40:07:81:48:1a: 67:98:ea:91:19:3d:88:ad:6e:a6:7b:b1:e6:8f:b6:04:14:1f: ea:5a:54:67:e1:a5:72:36:32:e2:60:7b:f4:d1:3a:5c:9e:86: 2d:a9:06:e4:f3:c6:3e:d9:03:90:30:0f:62:82:81:36:22:44: c2:3d:b0:d2:27:8d:06:f7:82:d3:84:cf:c3:68:2d:52:ae:b5: 50:d7:73:32:a7:31:47:19:e7:e2:99:10:75:fb:86:61:74:51: 1e:9b:30:5f:00:1c:6f:f1:1e:30:3a:ba:6d:09:5a:33:78:19: c0:3c:da:d2:a1:0c:14:09:05:d2:17:ac:01:76:fc:51:4d:13: 1d:7b:3c:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZUvqqc27uh7K7dc/+mhgFgSex5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFOUJCQTgxMDk2MkM3QzMwM0Y3NDA1MkFEQThGOEFF OTBGQ0IwMzAeFw0yNjA1MDMwMjU3MjBaFw0yNzA1MDIwMzAyMjBaMDMxMTAvBgNV BAMTKDk2RTZBOTVCMTExMjkzOTgwRTEzRjY4MERFMDIzMjI2QkVGMkY0NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsnBA02NiE2tL9QuYuTsqUMt8r IDaL5/XTfjF9tgxu+QABQqQyN7MXnEX3yvvKzAmtb/3oYMTOG8KcJDYSQ6aLVyL6 RZLJ1iFC+CY9p+0/+i4cZ0ieiT7/YQfg87NjbNAr1P5FlSbaSL7XPMbH+r0ktCPt EQhgWb0x/uzaQfGz5wspJzFtYAz1qkWd4LQeGR4Psj4qMvF8Ix51q3/MxWXd76A8 Usy9a14nOtcq6jRyWBB/HnC00RKwkstqbKApMUUF8pcjFFYBW+pPDXNjZY+QkZQD kgIlwpFla9t5fg7G+LS6eaJOU2AsKjFNnUl7ng77KUoAgpGWNDmO9pO/YLztAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUluapWxESk5gOE/aA3gIyJr7y9HcwHwYDVR0j BBgwFoAUoum7qBCWLHwwP3QFKtqPiukPywMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmI2OWQ2NjctMTdhNC00ZmRkLTljNTctMTEyMjAzM2VmOTk5LzAvQTJFOUJCQTgx MDk2MkM3QzMwM0Y3NDA1MkFEQThGOEFFOTBGQ0IwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BMkU5QkJBODEwOTYyQzdDMzAzRjc0MDUyQURBOEY4QUU5MEZD QjAzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JiNjlkNjY3LTE3YTQtNGZkZC05 YzU3LTExMjIwMzNlZjk5OS8wLzMxMzYzMDJlMzIzNTJlMzEzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBnFMA0GCSqG SIb3DQEBCwUAA4IBAQCIQZrglZIy8GqxYXD3CH3NfdgFlPO1x74Og+MSQeQjsMPS 0Z86AdSkSNmmnkvQas7cNNC9ovIK7cVpn5D+xJTm+MDxaTUkfAIAeqVThI449kNY bnrSEitsqpxXJCyCBRMGYd5oJPpu/r4vSmQbtW8Ee8iMxSy1QKvkQAeBSBpnmOqR GT2IrW6me7Hmj7YEFB/qWlRn4aVyNjLiYHv00TpcnoYtqQbk88Y+2QOQMA9igoE2 IkTCPbDSJ40G94LThM/DaC1SrrVQ13MypzFHGefimRB1+4ZhdFEemzBfABxv8R4w OrptCVozeBnAPNrSoQwUCQXSF6wBdvxRTRMdezww -----END CERTIFICATE-----Generated at Wed May 13 12:01:44 2026 by rpki-client