$ rpki-client -vvf rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa File: 3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa (raw, json) Hash identifier: Wgp2Ly277xiC/SJ4ahqqMWo1yKBGTp7hlr1qa44tvrs= Subject key identifier: 39:6A:2C:86:27:9D:B5:5F:55:6C:F8:16:66:83:55:25:B5:B3:A5:04 Certificate issuer: /CN=D769452C15749C457029AB81E06B7D36C9F48804 Certificate serial: 79060C01348C0803740EADA78484B88B7FC03EDD Authority key identifier: D7:69:45:2C:15:74:9C:45:70:29:AB:81:E0:6B:7D:36:C9:F4:88:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa Signing time: Sun 03 May 2026 03:06:05 +0000 ROA not before: Sun 03 May 2026 03:01:05 +0000 ROA not after: Sun 02 May 2027 03:06:05 +0000 asID: 153111 IP address blocks: 160.25.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.crl rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:06:0c:01:34:8c:08:03:74:0e:ad:a7:84:84:b8:8b:7f:c0:3e:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D769452C15749C457029AB81E06B7D36C9F48804 Validity Not Before: May 3 03:01:05 2026 GMT Not After : May 2 03:06:05 2027 GMT Subject: CN=396A2C86279DB55F556CF81666835525B5B3A504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:d2:0d:2d:ee:71:9a:af:a4:b3:70:aa:9d: bf:9e:5d:b2:57:df:ec:44:9c:97:a2:41:11:c7:42: a8:c0:cc:17:4d:d9:73:a5:30:a8:5a:06:59:90:30: 41:cc:74:92:86:48:40:37:cb:67:2c:29:6a:0c:97: a9:55:49:08:19:8c:cb:6b:e2:4e:ec:1d:b7:f8:23: 7f:86:5a:9f:2c:be:94:0e:ad:41:53:43:f6:f2:d8: bc:93:e5:ab:16:17:1e:8b:bd:02:2e:2c:44:79:46: 33:21:cd:43:66:55:1a:c4:6b:00:0e:21:0b:32:0c: bd:f8:88:3f:b7:5a:09:1c:71:a2:ca:0a:95:ee:37: 3b:fb:a6:db:7c:a8:30:10:40:77:65:d3:ff:38:6a: 96:61:57:33:94:a2:29:f5:54:a4:bb:18:76:1c:d2: 84:a6:e6:cd:a4:b2:3b:06:30:85:eb:b9:d0:ed:80: 96:92:89:c3:13:ed:92:15:27:24:23:74:e4:6f:14: 28:58:bf:bd:24:96:80:e8:cf:e1:10:7a:c3:05:a3: 4d:f7:a7:ce:6a:a6:0a:f6:a8:47:ae:e6:1f:9f:0e: a3:24:0b:a7:42:50:1a:a2:cf:12:1e:da:78:c1:5f: bb:15:37:7a:34:64:a4:f4:43:8f:90:3b:44:e7:ec: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6A:2C:86:27:9D:B5:5F:55:6C:F8:16:66:83:55:25:B5:B3:A5:04 X509v3 Authority Key Identifier: keyid:D7:69:45:2C:15:74:9C:45:70:29:AB:81:E0:6B:7D:36:C9:F4:88:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/D769452C15749C457029AB81E06B7D36C9F48804.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D769452C15749C457029AB81E06B7D36C9F48804.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.245.0/24 Signature Algorithm: sha256WithRSAEncryption b3:35:3a:ad:6d:80:c2:23:63:27:6b:bd:cc:68:69:b1:24:4c: 36:cd:48:65:a7:1c:54:aa:52:d5:bb:d2:51:e0:d8:4e:6f:0e: 8c:c6:02:e8:35:c2:bd:fb:7c:8f:05:7e:19:b5:2b:30:2f:cf: 42:32:8d:b8:f0:8d:ac:1e:e7:9c:de:87:0c:96:81:42:06:2d: a9:e0:b1:35:d8:4d:34:16:00:fd:df:7f:ab:60:98:67:87:21: f5:d1:9b:43:b9:b1:ec:78:16:9a:33:83:0d:ea:cf:b3:67:1e: 4d:c7:e1:c3:75:c4:3c:7f:45:58:00:88:85:63:74:41:20:51: 38:52:3e:3a:4e:28:49:30:0f:78:a4:dd:d2:ac:da:25:ca:80: 29:9f:ff:0d:9a:7c:a7:a8:2a:8f:3e:d4:e6:39:f7:52:5b:94: b3:db:b7:74:1d:4c:ca:d1:9f:f6:59:52:9d:54:ee:35:ed:9c: 83:d6:e5:d3:ea:ed:f8:58:ef:61:bb:4a:70:30:33:a4:55:9b: 74:5b:e5:c2:76:c0:f9:bd:ad:bf:ad:5f:de:e5:75:48:16:26: 72:25:58:fb:b5:3d:31:e3:54:97:80:09:b1:db:80:2f:1f:e9: a2:76:60:76:8b:92:bb:7e:47:25:c3:1e:68:a6:df:74:22:59: 65:c5:e9:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeQYMATSMCAN0Dq2nhIS4i3/APt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc2OTQ1MkMxNTc0OUM0NTcwMjlBQjgxRTA2QjdEMzZD OUY0ODgwNDAeFw0yNjA1MDMwMzAxMDVaFw0yNzA1MDIwMzA2MDVaMDMxMTAvBgNV BAMTKDM5NkEyQzg2Mjc5REI1NUY1NTZDRjgxNjY2ODM1NTI1QjVCM0E1MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/U9INLe5xmq+ks3Cqnb+eXbJX 3+xEnJeiQRHHQqjAzBdN2XOlMKhaBlmQMEHMdJKGSEA3y2csKWoMl6lVSQgZjMtr 4k7sHbf4I3+GWp8svpQOrUFTQ/by2LyT5asWFx6LvQIuLER5RjMhzUNmVRrEawAO IQsyDL34iD+3WgkccaLKCpXuNzv7ptt8qDAQQHdl0/84apZhVzOUoin1VKS7GHYc 0oSm5s2ksjsGMIXrudDtgJaSicMT7ZIVJyQjdORvFChYv70kloDoz+EQesMFo033 p85qpgr2qEeu5h+fDqMkC6dCUBqizxIe2njBX7sVN3o0ZKT0Q4+QO0Tn7OOZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOWoshiedtV9VbPgWZoNVJbWzpQQwHwYDVR0j BBgwFoAU12lFLBV0nEVwKauB4Gt9Nsn0iAQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzhjYzFjN2UtZGE3NC00YjExLWI2N2EtZDVmMjdkOTgxNzU3LzAvRDc2OTQ1MkMx NTc0OUM0NTcwMjlBQjgxRTA2QjdEMzZDOUY0ODgwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENzY5NDUyQzE1NzQ5QzQ1NzAyOUFCODFFMDZCN0QzNkM5RjQ4 ODA0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4Y2MxYzdlLWRhNzQtNGIxMS1i NjdhLWQ1ZjI3ZDk4MTc1Ny8wLzMxMzYzMDJlMzIzNTJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn1MA0GCSqG SIb3DQEBCwUAA4IBAQCzNTqtbYDCI2Mna73MaGmxJEw2zUhlpxxUqlLVu9JR4NhO bw6MxgLoNcK9+3yPBX4ZtSswL89CMo248I2sHuec3ocMloFCBi2p4LE12E00FgD9 33+rYJhnhyH10ZtDubHseBaaM4MN6s+zZx5Nx+HDdcQ8f0VYAIiFY3RBIFE4Uj46 TihJMA94pN3SrNolyoApn/8NmnynqCqPPtTmOfdSW5Sz27d0HUzK0Z/2WVKdVO41 7ZyD1uXT6u34WO9hu0pwMDOkVZt0W+XCdsD5va2/rV/e5XVIFiZyJVj7tT0x41SX gAmx24AvH+midmB2i5K7fkclwx5opt90Illlxeng -----END CERTIFICATE-----Generated at Wed May 13 04:46:59 2026 by rpki-client