$ rpki-client -vvf rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313439393333.roa File: 3136302e3138372e3136342e302f32342d3234203d3e20313439393333.roa (raw, json) Hash identifier: GmBqoocRQKggDWCQV98uJdiIxG9ynSKifYvn1zS1W2I= Subject key identifier: B5:77:B4:B8:D8:AC:71:C4:AC:80:7C:39:80:9A:52:BF:C1:D2:C6:22 Certificate issuer: /CN=BCE01C08E8E67E88147644DD138C0632C10BECF7 Certificate serial: 454D55A65AF6075B7619DA35A557A94B3AAAA0BF Authority key identifier: BC:E0:1C:08:E8:E6:7E:88:14:76:44:DD:13:8C:06:32:C1:0B:EC:F7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313439393333.roa Signing time: Sun 03 May 2026 03:07:43 +0000 ROA not before: Sun 03 May 2026 03:02:43 +0000 ROA not after: Sun 02 May 2027 03:07:43 +0000 asID: 149933 IP address blocks: 160.187.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.crl rsync://rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4d:55:a6:5a:f6:07:5b:76:19:da:35:a5:57:a9:4b:3a:aa:a0:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCE01C08E8E67E88147644DD138C0632C10BECF7 Validity Not Before: May 3 03:02:43 2026 GMT Not After : May 2 03:07:43 2027 GMT Subject: CN=B577B4B8D8AC71C4AC807C39809A52BFC1D2C622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:21:24:cd:3a:e1:9a:e6:38:b8:43:d7:d2:d4: 79:b3:d5:82:98:a8:59:fc:34:b4:48:3e:7c:0d:4c: 40:2b:c0:fc:e0:64:bf:f2:3b:5c:86:c3:0f:83:49: b6:05:de:38:25:58:00:36:05:eb:75:99:cd:84:bd: 3d:22:04:7c:89:a7:5b:83:90:a8:f1:bc:c5:d7:b0: 45:0a:46:14:4a:ee:15:30:59:68:fe:50:86:4b:66: f5:19:19:d5:fe:ca:41:22:8f:c1:34:e1:8d:9d:45: 9a:12:7e:6f:28:6f:94:6a:26:79:a4:24:a7:ef:f0: 23:09:e2:b6:e5:7d:69:f3:9c:08:aa:65:96:84:43: 39:c3:04:71:7c:8f:35:50:17:13:12:6c:c9:54:d1: 79:44:09:9f:a6:79:5b:a4:6f:c9:91:76:9c:e7:25: fb:85:53:48:a3:dd:36:24:4e:f7:03:b8:8e:3a:91: b1:a0:96:fb:d6:ae:61:4e:1a:91:5e:d7:56:36:ea: 75:18:a7:28:4a:16:d7:ef:0f:30:73:d5:03:34:47: 8d:48:7d:87:de:23:75:42:d1:bc:6e:91:dd:db:65: 14:ea:a8:cf:78:3b:6d:07:b8:57:fa:94:27:84:5c: 93:d8:5a:77:3a:5a:ac:28:10:3d:f6:47:88:cf:ef: 95:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:77:B4:B8:D8:AC:71:C4:AC:80:7C:39:80:9A:52:BF:C1:D2:C6:22 X509v3 Authority Key Identifier: keyid:BC:E0:1C:08:E8:E6:7E:88:14:76:44:DD:13:8C:06:32:C1:0B:EC:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BCE01C08E8E67E88147644DD138C0632C10BECF7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cf2975d5-f990-484e-9460-f136b4551f8d/0/3136302e3138372e3136342e302f32342d3234203d3e20313439393333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.164.0/24 Signature Algorithm: sha256WithRSAEncryption 42:18:c6:0a:3d:82:1c:4c:35:99:f5:03:82:ba:82:be:1f:1a: 00:24:a6:bb:f1:85:27:c6:a0:8c:79:b1:18:8d:dc:f3:98:09: 14:b6:ff:a6:6f:0b:73:76:01:29:db:ad:8e:b3:54:65:5c:3e: 0f:d6:98:58:d2:10:2d:10:7c:1d:d8:2c:9f:5f:98:b3:e4:2a: f0:05:2e:e5:b0:57:47:a4:28:63:77:6d:36:46:58:d4:05:c4: 99:3c:1e:0c:07:a4:73:df:7c:d4:36:6e:88:c8:45:0b:e4:5b: d5:3f:4b:48:75:55:d5:5c:70:e2:7f:7e:13:4c:f4:46:5d:34: 8e:0f:18:49:30:45:30:cc:ac:0d:7a:98:c7:91:c8:cb:4c:70: 10:19:2b:a8:c8:92:13:7c:9c:b0:eb:81:0d:f8:00:53:f0:88: 17:cc:fb:b8:6b:f7:b3:e4:3d:2c:9c:1b:51:ad:91:cf:7c:51: 7f:b5:c2:a9:e4:c6:53:34:63:a3:60:ca:48:38:13:1a:8d:ec: 47:5e:26:b5:9f:85:02:38:6e:a1:d3:d1:3a:01:cb:07:e4:6d: 4a:d3:9e:4c:5f:9a:97:bf:ca:9b:24:d7:5a:5b:6a:ab:c6:81: 39:30:6e:ec:78:09:93:1e:11:9d:af:25:f7:f8:a4:f6:93:8b: 82:d3:eb:07 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURU1Vplr2B1t2Gdo1pVepSzqqoL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNFMDFDMDhFOEU2N0U4ODE0NzY0NEREMTM4QzA2MzJD MTBCRUNGNzAeFw0yNjA1MDMwMzAyNDNaFw0yNzA1MDIwMzA3NDNaMDMxMTAvBgNV BAMTKEI1NzdCNEI4RDhBQzcxQzRBQzgwN0MzOTgwOUE1MkJGQzFEMkM2MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtISTNOuGa5ji4Q9fS1Hmz1YKY qFn8NLRIPnwNTEArwPzgZL/yO1yGww+DSbYF3jglWAA2Bet1mc2EvT0iBHyJp1uD kKjxvMXXsEUKRhRK7hUwWWj+UIZLZvUZGdX+ykEij8E04Y2dRZoSfm8ob5RqJnmk JKfv8CMJ4rblfWnznAiqZZaEQznDBHF8jzVQFxMSbMlU0XlECZ+meVukb8mRdpzn JfuFU0ij3TYkTvcDuI46kbGglvvWrmFOGpFe11Y26nUYpyhKFtfvDzBz1QM0R41I fYfeI3VC0bxukd3bZRTqqM94O20HuFf6lCeEXJPYWnc6WqwoED32R4jP75UtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtXe0uNisccSsgHw5gJpSv8HSxiIwHwYDVR0j BBgwFoAUvOAcCOjmfogUdkTdE4wGMsEL7PcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2YyOTc1ZDUtZjk5MC00ODRlLTk0NjAtZjEzNmI0NTUxZjhkLzAvQkNFMDFDMDhF OEU2N0U4ODE0NzY0NEREMTM4QzA2MzJDMTBCRUNGNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CQ0UwMUMwOEU4RTY3RTg4MTQ3NjQ0REQxMzhDMDYzMkMxMEJF Q0Y3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmMjk3NWQ1LWY5OTAtNDg0ZS05 NDYwLWYxMzZiNDU1MWY4ZC8wLzMxMzYzMDJlMzEzODM3MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu6QwDQYJ KoZIhvcNAQELBQADggEBAEIYxgo9ghxMNZn1A4K6gr4fGgAkprvxhSfGoIx5sRiN 3POYCRS2/6ZvC3N2ASnbrY6zVGVcPg/WmFjSEC0QfB3YLJ9fmLPkKvAFLuWwV0ek KGN3bTZGWNQFxJk8HgwHpHPffNQ2bojIRQvkW9U/S0h1VdVccOJ/fhNM9EZdNI4P GEkwRTDMrA16mMeRyMtMcBAZK6jIkhN8nLDrgQ34AFPwiBfM+7hr97PkPSycG1Gt kc98UX+1wqnkxlM0Y6Ngykg4ExqN7EdeJrWfhQI4bqHT0ToBywfkbUrTnkxfmpe/ ypsk11pbaqvGgTkwbux4CZMeEZ2vJff4pPaTi4LT6wc= -----END CERTIFICATE-----Generated at Wed May 13 16:07:52 2026 by rpki-client