$ rpki-client -vvf rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/3136302e31392e3230362e302f32342d3234203d3e20313532373634.roa File: 3136302e31392e3230362e302f32342d3234203d3e20313532373634.roa (raw, json) Hash identifier: rkfIQLZH91MBngOR2XF3JSvb0x7kp9rSE9FoBc2wVuU= Subject key identifier: 3A:B4:09:D6:08:91:06:6C:21:5E:B6:15:E5:35:AC:67:65:C6:2E:5A Certificate issuer: /CN=EBA1F4874C4867D2CAA214867052E9413088CD22 Certificate serial: 7567D5D7FE153A04651402EF48EA7B9473526616 Authority key identifier: EB:A1:F4:87:4C:48:67:D2:CA:A2:14:86:70:52:E9:41:30:88:CD:22 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EBA1F4874C4867D2CAA214867052E9413088CD22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/3136302e31392e3230362e302f32342d3234203d3e20313532373634.roa Signing time: Sun 03 May 2026 03:06:58 +0000 ROA not before: Sun 03 May 2026 03:01:58 +0000 ROA not after: Sun 02 May 2027 03:06:58 +0000 asID: 152764 IP address blocks: 160.19.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/EBA1F4874C4867D2CAA214867052E9413088CD22.crl rsync://rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/EBA1F4874C4867D2CAA214867052E9413088CD22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EBA1F4874C4867D2CAA214867052E9413088CD22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:67:d5:d7:fe:15:3a:04:65:14:02:ef:48:ea:7b:94:73:52:66:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EBA1F4874C4867D2CAA214867052E9413088CD22 Validity Not Before: May 3 03:01:58 2026 GMT Not After : May 2 03:06:58 2027 GMT Subject: CN=3AB409D60891066C215EB615E535AC6765C62E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:aa:09:bd:de:74:80:7f:e6:4d:86:c8:b6:73: e7:1f:1b:08:a9:96:61:26:ac:fa:4e:df:5b:f2:22: a9:2c:6e:b8:1d:32:9b:b6:8b:38:d4:1e:f5:41:09: 2c:61:a4:42:72:b8:78:7f:f1:f7:84:1f:fb:6f:2a: 2f:a4:bd:6a:9d:2c:3a:0f:9b:6b:82:f0:41:00:52: 13:cf:b0:86:7d:1d:40:55:b9:c6:b7:4e:80:72:1e: c5:13:86:bc:8c:35:88:99:f9:02:42:bb:bb:bf:d2: d2:98:1a:81:47:8a:cd:df:7a:41:44:db:35:a9:f6: 27:b3:99:34:9d:79:e7:9a:24:b3:1a:0d:27:28:e8: b0:71:89:a1:9d:22:b9:a0:af:a5:e6:68:e6:cc:08: 22:a9:e0:46:02:18:12:49:8b:1f:e6:47:04:31:9f: 2a:a5:70:65:52:d6:c8:31:c8:bc:1b:d5:1e:40:14: ad:1c:a9:95:74:98:82:48:3e:ee:be:ba:54:66:66: 5c:e4:58:66:a4:13:da:91:d1:0c:d8:08:ef:1a:d9: c7:60:35:2d:92:c0:49:22:3c:2a:d3:50:7a:9a:4b: e4:72:3d:89:b0:2a:58:41:f0:23:d4:1e:00:49:92: 9d:cf:34:9e:95:64:a3:46:b0:7e:f7:7e:0c:d7:bb: 82:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B4:09:D6:08:91:06:6C:21:5E:B6:15:E5:35:AC:67:65:C6:2E:5A X509v3 Authority Key Identifier: keyid:EB:A1:F4:87:4C:48:67:D2:CA:A2:14:86:70:52:E9:41:30:88:CD:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/EBA1F4874C4867D2CAA214867052E9413088CD22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/EBA1F4874C4867D2CAA214867052E9413088CD22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cb2a916a-ad22-4979-be43-951c76f2f920/0/3136302e31392e3230362e302f32342d3234203d3e20313532373634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.206.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:0f:02:6d:7d:86:22:de:7b:ff:9a:e6:0b:0f:88:ca:4f:4f: 55:30:16:fc:92:64:bf:d7:b6:c8:80:d0:b4:08:3b:71:24:eb: 29:d5:ba:c1:cf:ee:2a:18:1e:71:07:b5:1c:bb:93:b3:b2:1c: eb:ce:2f:aa:ee:72:d6:21:d3:8d:75:45:f8:62:3d:f0:ef:fa: a1:a4:fe:86:4d:b2:16:98:b5:0e:0a:3f:0d:55:ae:9b:8c:2f: ff:0c:60:c1:fa:12:2c:15:f9:51:be:b5:1c:8c:46:29:7a:1a: a0:0c:42:2a:80:73:fd:e7:b2:40:cf:8f:a0:1c:7f:1e:85:dc: 5c:7f:7c:7a:16:f6:5e:1a:d9:af:f9:b9:df:68:48:04:36:32: d7:78:15:de:38:e4:b9:dd:77:50:d3:20:76:1b:c7:60:e5:55: 3e:bd:8b:bd:9a:2d:ed:49:ae:b3:98:99:f5:9c:f8:17:27:9e: 0e:7e:d3:ba:c8:80:2d:ba:05:76:3f:cc:d6:3e:ae:43:73:54: d6:e8:26:10:52:ff:98:fa:67:f0:58:c6:63:b9:2c:0e:9b:d2: d8:a6:db:ce:31:fa:1b:97:42:c6:b2:87:26:dd:6f:3b:1a:79: 26:df:a0:89:4f:31:c5:e2:0a:0b:2c:21:3e:3e:e9:3a:e6:58: 38:fe:c7:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdWfV1/4VOgRlFALvSOp7lHNSZhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUJBMUY0ODc0QzQ4NjdEMkNBQTIxNDg2NzA1MkU5NDEz MDg4Q0QyMjAeFw0yNjA1MDMwMzAxNThaFw0yNzA1MDIwMzA2NThaMDMxMTAvBgNV BAMTKDNBQjQwOUQ2MDg5MTA2NkMyMTVFQjYxNUU1MzVBQzY3NjVDNjJFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfqgm93nSAf+ZNhsi2c+cfGwip lmEmrPpO31vyIqksbrgdMpu2izjUHvVBCSxhpEJyuHh/8feEH/tvKi+kvWqdLDoP m2uC8EEAUhPPsIZ9HUBVuca3ToByHsUThryMNYiZ+QJCu7u/0tKYGoFHis3fekFE 2zWp9iezmTSdeeeaJLMaDSco6LBxiaGdIrmgr6XmaObMCCKp4EYCGBJJix/mRwQx nyqlcGVS1sgxyLwb1R5AFK0cqZV0mIJIPu6+ulRmZlzkWGakE9qR0QzYCO8a2cdg NS2SwEkiPCrTUHqaS+RyPYmwKlhB8CPUHgBJkp3PNJ6VZKNGsH73fgzXu4LxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOrQJ1giRBmwhXrYV5TWsZ2XGLlowHwYDVR0j BBgwFoAU66H0h0xIZ9LKohSGcFLpQTCIzSIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2IyYTkxNmEtYWQyMi00OTc5LWJlNDMtOTUxYzc2ZjJmOTIwLzAvRUJBMUY0ODc0 QzQ4NjdEMkNBQTIxNDg2NzA1MkU5NDEzMDg4Q0QyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9FQkExRjQ4NzRDNDg2N0QyQ0FBMjE0ODY3MDUyRTk0MTMwODhD RDIyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NiMmE5MTZhLWFkMjItNDk3OS1i ZTQzLTk1MWM3NmYyZjkyMC8wLzMxMzYzMDJlMzEzOTJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBPOMA0GCSqG SIb3DQEBCwUAA4IBAQBcDwJtfYYi3nv/muYLD4jKT09VMBb8kmS/17bIgNC0CDtx JOsp1brBz+4qGB5xB7Ucu5Ozshzrzi+q7nLWIdONdUX4Yj3w7/qhpP6GTbIWmLUO Cj8NVa6bjC//DGDB+hIsFflRvrUcjEYpehqgDEIqgHP957JAz4+gHH8ehdxcf3x6 FvZeGtmv+bnfaEgENjLXeBXeOOS53XdQ0yB2G8dg5VU+vYu9mi3tSa6zmJn1nPgX J54OftO6yIAtugV2P8zWPq5Dc1TW6CYQUv+Y+mfwWMZjuSwOm9LYptvOMfobl0LG socm3W87Gnkm36CJTzHF4goLLCE+Puk65lg4/scA -----END CERTIFICATE-----Generated at Wed May 13 04:48:06 2026 by rpki-client