$ rpki-client -vvf rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32332d3233203d3e20313533313131.roa File: 3136302e32352e3234342e302f32332d3233203d3e20313533313131.roa (raw, json) Hash identifier: FxemyMpIsKKyeyZF+nt8pq/Wh2yMuBg7NUlyoxRZXT8= Subject key identifier: 53:0C:2B:A0:FF:86:6C:B6:A9:F0:FA:A9:24:90:43:E6:A2:5B:7F:68 Certificate issuer: /CN=D769452C15749C457029AB81E06B7D36C9F48804 Certificate serial: 2363C967C58D2099A0A097FB5255D0EA00FBBA25 Authority key identifier: D7:69:45:2C:15:74:9C:45:70:29:AB:81:E0:6B:7D:36:C9:F4:88:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32332d3233203d3e20313533313131.roa Signing time: Sun 03 May 2026 03:06:05 +0000 ROA not before: Sun 03 May 2026 03:01:05 +0000 ROA not after: Sun 02 May 2027 03:06:05 +0000 asID: 153111 IP address blocks: 160.25.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.crl rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:63:c9:67:c5:8d:20:99:a0:a0:97:fb:52:55:d0:ea:00:fb:ba:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D769452C15749C457029AB81E06B7D36C9F48804 Validity Not Before: May 3 03:01:05 2026 GMT Not After : May 2 03:06:05 2027 GMT Subject: CN=530C2BA0FF866CB6A9F0FAA9249043E6A25B7F68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:8d:5b:b8:7a:59:40:90:ac:58:4e:ef:bd: e7:1a:c0:19:05:9a:7e:ad:6e:c2:97:7c:a3:69:46: 9c:ee:46:2f:38:a5:f1:5b:9f:6a:eb:e5:c6:9b:60: 29:84:9e:b9:0b:47:92:1c:73:1d:bc:78:bb:6b:0e: d8:23:f3:a5:4a:75:8f:81:df:c1:5b:95:7f:cc:1e: 10:02:6f:05:9e:4a:e0:83:19:08:c7:89:c3:52:52: c0:7e:5e:8c:f9:f1:3f:a8:db:ae:10:7c:c1:a3:ec: 94:f6:1a:10:81:f9:55:75:ac:9b:de:81:65:78:df: c6:be:da:29:6f:a2:90:ae:8d:b8:3e:c7:2f:ea:78: 77:57:c8:00:43:bc:02:6a:85:95:fa:16:5b:06:f2: 22:40:b3:e8:57:99:df:92:e4:c5:6d:26:34:48:52: dd:bb:2d:70:9d:86:30:41:db:fd:04:1b:6c:46:3d: 29:f1:65:74:f2:2d:a3:6c:55:a5:b3:f0:ac:8b:cf: 09:67:51:ed:5a:96:81:25:ba:5e:12:9d:60:e5:16: ea:4c:c8:d7:63:99:d7:03:c7:65:e6:57:90:7f:5c: 58:14:65:2b:0d:5e:06:4d:49:7c:d2:f9:32:85:62: 67:43:a1:1e:c9:03:fa:f0:97:47:a5:8c:cd:4b:cb: d5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0C:2B:A0:FF:86:6C:B6:A9:F0:FA:A9:24:90:43:E6:A2:5B:7F:68 X509v3 Authority Key Identifier: keyid:D7:69:45:2C:15:74:9C:45:70:29:AB:81:E0:6B:7D:36:C9:F4:88:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234342e302f32332d3233203d3e20313533313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.244.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:57:0e:a9:8a:02:23:0b:9f:57:03:cd:26:13:c9:7e:18:10: f4:4c:12:b9:3d:1e:f0:c8:0a:18:a8:ad:63:e2:89:1d:1b:a6: 98:2d:34:0d:19:68:17:b3:c7:02:1d:8d:b4:1f:b1:ca:ff:08: 49:03:32:5f:91:1e:04:ba:51:32:63:6d:97:37:84:d8:6b:1d: bd:42:44:45:5c:fb:a9:d1:48:53:12:08:6a:1f:45:4a:42:fe: 13:9b:f6:8c:25:b2:30:96:c4:72:d9:6a:8a:4b:45:f4:f7:23: 78:1f:2f:ec:b7:03:3e:1b:b8:70:7e:57:9b:7f:e4:f0:16:d2: be:55:b6:fe:e5:fc:57:d4:7d:19:ef:97:66:cf:23:e1:ae:1f: 43:df:72:52:32:77:58:5e:15:43:34:78:98:fd:b9:67:2f:55: 35:40:14:27:b9:2f:ff:fc:f1:e8:b1:18:9e:48:6d:e2:f9:45: 10:1d:04:06:a6:bb:4c:c1:21:20:b0:ab:8c:39:ce:a1:9e:e7: 46:9c:5b:ff:cf:65:66:fc:3e:32:e4:41:06:7c:d6:d7:d6:95: db:58:f4:0d:65:15:58:84:73:33:5c:f1:8e:4e:05:60:2d:bb: a7:c5:78:03:fa:ef:30:69:3a:47:34:79:d5:3d:30:4b:ac:89: 20:6c:5b:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI2PJZ8WNIJmgoJf7UlXQ6gD7uiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc2OTQ1MkMxNTc0OUM0NTcwMjlBQjgxRTA2QjdEMzZD OUY0ODgwNDAeFw0yNjA1MDMwMzAxMDVaFw0yNzA1MDIwMzA2MDVaMDMxMTAvBgNV BAMTKDUzMEMyQkEwRkY4NjZDQjZBOUYwRkFBOTI0OTA0M0U2QTI1QjdGNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDoI1buHpZQJCsWE7vvecawBkF mn6tbsKXfKNpRpzuRi84pfFbn2rr5cabYCmEnrkLR5Iccx28eLtrDtgj86VKdY+B 38FblX/MHhACbwWeSuCDGQjHicNSUsB+Xoz58T+o264QfMGj7JT2GhCB+VV1rJve gWV438a+2ilvopCujbg+xy/qeHdXyABDvAJqhZX6FlsG8iJAs+hXmd+S5MVtJjRI Ut27LXCdhjBB2/0EG2xGPSnxZXTyLaNsVaWz8KyLzwlnUe1aloElul4SnWDlFupM yNdjmdcDx2XmV5B/XFgUZSsNXgZNSXzS+TKFYmdDoR7JA/rwl0eljM1Ly9XDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUwwroP+GbLap8PqpJJBD5qJbf2gwHwYDVR0j BBgwFoAU12lFLBV0nEVwKauB4Gt9Nsn0iAQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzhjYzFjN2UtZGE3NC00YjExLWI2N2EtZDVmMjdkOTgxNzU3LzAvRDc2OTQ1MkMx NTc0OUM0NTcwMjlBQjgxRTA2QjdEMzZDOUY0ODgwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENzY5NDUyQzE1NzQ5QzQ1NzAyOUFCODFFMDZCN0QzNkM5RjQ4 ODA0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4Y2MxYzdlLWRhNzQtNGIxMS1i NjdhLWQ1ZjI3ZDk4MTc1Ny8wLzMxMzYzMDJlMzIzNTJlMzIzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBn0MA0GCSqG SIb3DQEBCwUAA4IBAQCOVw6pigIjC59XA80mE8l+GBD0TBK5PR7wyAoYqK1j4okd G6aYLTQNGWgXs8cCHY20H7HK/whJAzJfkR4EulEyY22XN4TYax29QkRFXPup0UhT EghqH0VKQv4Tm/aMJbIwlsRy2WqKS0X09yN4Hy/stwM+G7hwflebf+TwFtK+Vbb+ 5fxX1H0Z75dmzyPhrh9D33JSMndYXhVDNHiY/blnL1U1QBQnuS///PHosRieSG3i +UUQHQQGprtMwSEgsKuMOc6hnudGnFv/z2Vm/D4y5EEGfNbX1pXbWPQNZRVYhHMz XPGOTgVgLbunxXgD+u8waTpHNHnVPTBLrIkgbFvH -----END CERTIFICATE-----Generated at Wed May 13 03:47:32 2026 by rpki-client