$ rpki-client -vvf rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa File: 3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa (raw, json) Hash identifier: 4yYHOQ19SUo4wUen+ovEY0nBNoIbYKAxFiddTf9qCzI= Subject key identifier: 81:DA:A3:4D:E5:92:A0:B9:02:49:0D:D4:02:7E:AA:09:FE:85:51:9C Certificate issuer: /CN=AF3D1EB6F3B74B12606797C31C2353B780FDFDFD Certificate serial: 685ACD336ABE99ABAA189299FBE2E62D8061D13B Authority key identifier: AF:3D:1E:B6:F3:B7:4B:12:60:67:97:C3:1C:23:53:B7:80:FD:FD:FD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa Signing time: Sun 03 May 2026 03:05:39 +0000 ROA not before: Sun 03 May 2026 03:00:39 +0000 ROA not after: Sun 02 May 2027 03:05:39 +0000 asID: 153071 IP address blocks: 160.25.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.crl rsync://rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:5a:cd:33:6a:be:99:ab:aa:18:92:99:fb:e2:e6:2d:80:61:d1:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3D1EB6F3B74B12606797C31C2353B780FDFDFD Validity Not Before: May 3 03:00:39 2026 GMT Not After : May 2 03:05:39 2027 GMT Subject: CN=81DAA34DE592A0B902490DD4027EAA09FE85519C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3b:f7:2c:8f:f7:1a:21:46:73:6a:e6:0f:ce: 78:28:b7:ae:42:fb:2b:6a:4b:e8:74:cc:1a:f9:96: e4:fe:7a:16:c2:90:02:4a:78:98:cb:69:d9:f6:cb: 06:36:fd:cd:e1:5b:6f:dc:90:c7:d5:c3:09:fb:1a: 48:df:ee:af:2b:95:60:4e:bd:8a:bd:2d:7b:ec:1f: 51:a2:f5:7e:93:73:a8:c6:3f:3a:55:03:d4:d7:86: 02:d5:31:cf:04:17:58:0c:f5:cc:15:ed:8e:6e:80: cc:58:3f:22:a2:4e:0a:bf:1f:62:b0:b9:68:fe:69: 91:15:6c:ec:36:dd:54:0a:17:af:1b:b5:d4:42:96: ad:9b:78:eb:53:9c:6b:d8:8e:a4:12:f6:23:d4:be: 32:ab:e0:31:07:fe:7a:2f:6d:c5:8c:3c:fd:a8:7f: b2:f0:41:28:06:8a:ce:d3:26:ef:3d:3b:f7:f8:19: 2d:f9:39:0f:51:f5:6b:57:b5:0a:17:62:72:83:10: 62:d2:60:d3:51:24:b3:0d:e6:32:d5:20:32:5a:ce: 05:af:a6:9d:bf:9e:a6:83:81:fb:a6:b4:dd:2c:22: 72:fd:71:8e:3f:ec:e7:00:41:de:54:b5:33:04:bd: dd:76:c5:8d:12:ab:59:e3:e0:11:dd:0a:41:e1:fc: 4b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DA:A3:4D:E5:92:A0:B9:02:49:0D:D4:02:7E:AA:09:FE:85:51:9C X509v3 Authority Key Identifier: keyid:AF:3D:1E:B6:F3:B7:4B:12:60:67:97:C3:1C:23:53:B7:80:FD:FD:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF3D1EB6F3B74B12606797C31C2353B780FDFDFD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c67860e3-6ad8-47a5-94c0-93ffd2472865/0/3136302e32352e3131342e302f32342d3234203d3e20313533303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.114.0/24 Signature Algorithm: sha256WithRSAEncryption 10:75:22:a8:ee:3f:38:16:7e:64:e8:84:ad:5a:cb:1c:e9:b3: f9:7a:d3:3b:6e:f0:9b:84:ab:3d:ba:b7:93:fe:74:a5:d3:b1: 0d:18:11:3b:7a:6a:72:5d:72:44:1e:d3:ea:8d:40:66:f4:04: 22:32:02:f2:54:63:98:81:d5:0a:8f:1e:9d:6a:13:8b:08:37: 59:61:68:bd:39:1b:0f:49:aa:04:93:ef:fc:01:83:46:b0:c0: e7:54:73:5e:57:fb:88:c9:50:8c:0f:24:bd:e1:c4:86:3c:ba: 67:26:a7:99:61:0a:11:18:9f:c5:0b:13:09:64:b7:16:0b:1f: d7:80:54:a7:88:e0:00:c6:fb:41:f0:19:39:62:f9:e6:90:f9: a6:31:6b:e1:74:00:03:07:b9:a7:a3:ea:07:d3:40:58:9f:27: 68:8c:02:52:de:4d:64:7b:12:3a:cc:10:54:30:e0:00:cb:24: 45:1f:99:a5:74:86:d9:bf:79:b6:ab:08:ea:f3:89:f3:e4:8c: 4b:96:5c:e5:6c:90:9b:0a:7e:cc:00:d6:b2:f5:07:ab:44:06: 51:ce:c6:26:12:c6:b1:d4:bf:17:10:4a:c8:aa:b1:e4:38:69: b7:b0:6e:35:d6:d4:bd:f3:74:6b:79:8a:72:93:97:3d:5c:16: 18:da:52:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaFrNM2q+mauqGJKZ++LmLYBh0TswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzRDFFQjZGM0I3NEIxMjYwNjc5N0MzMUMyMzUzQjc4 MEZERkRGRDAeFw0yNjA1MDMwMzAwMzlaFw0yNzA1MDIwMzA1MzlaMDMxMTAvBgNV BAMTKDgxREFBMzRERTU5MkEwQjkwMjQ5MERENDAyN0VBQTA5RkU4NTUxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgO/csj/caIUZzauYPzngot65C +ytqS+h0zBr5luT+ehbCkAJKeJjLadn2ywY2/c3hW2/ckMfVwwn7Gkjf7q8rlWBO vYq9LXvsH1Gi9X6Tc6jGPzpVA9TXhgLVMc8EF1gM9cwV7Y5ugMxYPyKiTgq/H2Kw uWj+aZEVbOw23VQKF68btdRClq2beOtTnGvYjqQS9iPUvjKr4DEH/novbcWMPP2o f7LwQSgGis7TJu89O/f4GS35OQ9R9WtXtQoXYnKDEGLSYNNRJLMN5jLVIDJazgWv pp2/nqaDgfumtN0sInL9cY4/7OcAQd5UtTMEvd12xY0Sq1nj4BHdCkHh/EvLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgdqjTeWSoLkCSQ3UAn6qCf6FUZwwHwYDVR0j BBgwFoAUrz0etvO3SxJgZ5fDHCNTt4D9/f0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzY3ODYwZTMtNmFkOC00N2E1LTk0YzAtOTNmZmQyNDcyODY1LzAvQUYzRDFFQjZG M0I3NEIxMjYwNjc5N0MzMUMyMzUzQjc4MEZERkRGRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BRjNEMUVCNkYzQjc0QjEyNjA2Nzk3QzMxQzIzNTNCNzgwRkRG REZELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M2Nzg2MGUzLTZhZDgtNDdhNS05 NGMwLTkzZmZkMjQ3Mjg2NS8wLzMxMzYzMDJlMzIzNTJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBlyMA0GCSqG SIb3DQEBCwUAA4IBAQAQdSKo7j84Fn5k6IStWssc6bP5etM7bvCbhKs9ureT/nSl 07ENGBE7empyXXJEHtPqjUBm9AQiMgLyVGOYgdUKjx6dahOLCDdZYWi9ORsPSaoE k+/8AYNGsMDnVHNeV/uIyVCMDyS94cSGPLpnJqeZYQoRGJ/FCxMJZLcWCx/XgFSn iOAAxvtB8Bk5YvnmkPmmMWvhdAADB7mno+oH00BYnydojAJS3k1kexI6zBBUMOAA yyRFH5mldIbZv3m2qwjq84nz5IxLllzlbJCbCn7MANay9QerRAZRzsYmEsax1L8X EErIqrHkOGm3sG411tS983RreYpyk5c9XBYY2lLy -----END CERTIFICATE-----Generated at Wed May 13 06:26:28 2026 by rpki-client