$ rpki-client -vvf rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa File: 3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa (raw, json) Hash identifier: 3tpzoG5Hhn3R6GUMX6zsEklRDaeeeAfN54reFvu6a6c= Subject key identifier: 0E:9C:D2:CD:15:5B:FE:D2:D7:95:F7:FB:55:B9:3D:5A:3A:74:27:E3 Certificate issuer: /CN=7BEEB290E9254E766A7D8C3B216F0785206617EF Certificate serial: 1A254DD997675D2AAF5E3B01BB593A36C1965E88 Authority key identifier: 7B:EE:B2:90:E9:25:4E:76:6A:7D:8C:3B:21:6F:07:85:20:66:17:EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa Signing time: Sun 03 May 2026 03:07:46 +0000 ROA not before: Sun 03 May 2026 03:02:46 +0000 ROA not after: Sun 02 May 2027 03:07:46 +0000 asID: 153062 IP address blocks: 160.25.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.crl rsync://rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:25:4d:d9:97:67:5d:2a:af:5e:3b:01:bb:59:3a:36:c1:96:5e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7BEEB290E9254E766A7D8C3B216F0785206617EF Validity Not Before: May 3 03:02:46 2026 GMT Not After : May 2 03:07:46 2027 GMT Subject: CN=0E9CD2CD155BFED2D795F7FB55B93D5A3A7427E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:85:da:f4:b9:6b:3a:86:3f:31:dc:64:fd: 12:a7:e4:ae:09:ba:e8:eb:40:82:08:19:b7:8f:aa: 39:c4:7f:65:62:8d:31:89:a4:b3:5c:ca:1c:f3:f0: 21:6f:9e:5a:92:7d:0e:c4:74:6d:c2:18:83:01:74: 52:ee:49:83:9e:f5:8d:3c:c5:02:47:35:bc:20:7e: fc:cd:f9:f3:67:3e:6a:f2:5f:24:51:91:0d:08:09: dc:ce:9e:b9:85:b8:41:ba:81:05:a2:ba:0a:04:a8: d3:14:45:f2:5a:24:0e:f4:00:2e:46:55:07:2a:c7: b3:8c:1c:10:7c:99:ad:d7:a3:f3:5e:bf:a5:38:4e: 50:ee:1d:eb:e8:1a:8f:c7:60:f6:98:e6:0f:a0:a1: 8a:fa:37:35:12:e2:e9:49:3b:99:58:36:51:5f:ea: ec:7d:15:0d:5e:ac:ea:f3:56:46:a7:e9:94:19:78: 1f:16:fc:54:36:6c:fb:fd:6b:8f:b8:b2:ee:e5:dc: c1:87:38:08:84:98:06:c4:c0:97:1c:91:4a:ca:75: 9f:3b:db:44:2c:51:c4:5b:b6:ad:af:1e:ea:58:45: 48:2d:60:99:f8:9c:08:30:76:12:c7:00:55:88:87: 0a:1a:ee:82:26:69:bc:bb:f9:19:ce:da:2d:f0:80: 2a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9C:D2:CD:15:5B:FE:D2:D7:95:F7:FB:55:B9:3D:5A:3A:74:27:E3 X509v3 Authority Key Identifier: keyid:7B:EE:B2:90:E9:25:4E:76:6A:7D:8C:3B:21:6F:07:85:20:66:17:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7BEEB290E9254E766A7D8C3B216F0785206617EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/3136302e32352e3132302e302f32342d3234203d3e20313533303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.120.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:55:70:50:28:6f:a3:87:fe:eb:ea:a1:79:2d:23:b1:55:fd: dd:99:eb:5c:7a:0d:d5:46:54:c5:44:ef:ad:1d:71:26:3d:5d: 0a:b9:42:42:b9:09:f0:20:41:5c:11:7b:00:1a:09:49:e6:72: 23:fa:2f:8d:c4:41:25:75:ce:2d:6a:08:e4:79:0d:c4:ee:09: 20:89:22:8f:2e:43:90:68:8f:56:26:ab:f9:a3:06:31:0e:3a: 5b:2c:a1:a5:62:0a:ba:4a:79:bc:39:56:02:09:c4:36:96:1b: cf:66:78:f8:5a:ff:0c:3b:8c:58:42:7d:02:a4:68:22:9b:54: f8:ea:55:24:14:db:75:1d:3e:58:83:b9:29:29:64:71:13:54: 75:3d:87:5c:80:7c:42:e4:0a:c2:53:60:02:b2:91:1d:20:79: 28:a4:60:1f:dc:f8:92:46:70:7d:10:dc:c0:b2:cf:29:9a:50: 3b:bd:c2:c1:92:cd:1a:f8:7b:b1:92:88:35:27:cc:fe:a0:95: df:ec:b0:1c:d0:a4:b6:a9:34:79:0c:66:a3:8f:aa:8a:70:31: 2d:29:1c:75:9a:c4:42:d2:56:7c:35:ae:e2:69:8f:dc:55:ca: 11:57:9c:72:e6:d6:d3:b8:67:ca:a5:35:e2:ee:8e:34:d0:d4: 3e:0a:79:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGiVN2ZdnXSqvXjsBu1k6NsGWXogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0JFRUIyOTBFOTI1NEU3NjZBN0Q4QzNCMjE2RjA3ODUy MDY2MTdFRjAeFw0yNjA1MDMwMzAyNDZaFw0yNzA1MDIwMzA3NDZaMDMxMTAvBgNV BAMTKDBFOUNEMkNEMTU1QkZFRDJENzk1RjdGQjU1QjkzRDVBM0E3NDI3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+LYXa9LlrOoY/Mdxk/RKn5K4J uujrQIIIGbePqjnEf2VijTGJpLNcyhzz8CFvnlqSfQ7EdG3CGIMBdFLuSYOe9Y08 xQJHNbwgfvzN+fNnPmryXyRRkQ0ICdzOnrmFuEG6gQWiugoEqNMURfJaJA70AC5G VQcqx7OMHBB8ma3Xo/Nev6U4TlDuHevoGo/HYPaY5g+goYr6NzUS4ulJO5lYNlFf 6ux9FQ1erOrzVkan6ZQZeB8W/FQ2bPv9a4+4su7l3MGHOAiEmAbEwJcckUrKdZ87 20QsUcRbtq2vHupYRUgtYJn4nAgwdhLHAFWIhwoa7oImaby7+RnO2i3wgCrbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDpzSzRVb/tLXlff7Vbk9Wjp0J+MwHwYDVR0j BBgwFoAUe+6ykOklTnZqfYw7IW8HhSBmF+8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2Y3MmYwMTItYTQzYS00ZmNiLTg2YTktYWIzZTk1NzNhOGQ5LzAvN0JFRUIyOTBF OTI1NEU3NjZBN0Q4QzNCMjE2RjA3ODUyMDY2MTdFRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC83QkVFQjI5MEU5MjU0RTc2NkE3RDhDM0IyMTZGMDc4NTIwNjYx N0VGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmNzJmMDEyLWE0M2EtNGZjYi04 NmE5LWFiM2U5NTczYThkOS8wLzMxMzYzMDJlMzIzNTJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBl4MA0GCSqG SIb3DQEBCwUAA4IBAQBeVXBQKG+jh/7r6qF5LSOxVf3dmetceg3VRlTFRO+tHXEm PV0KuUJCuQnwIEFcEXsAGglJ5nIj+i+NxEEldc4tagjkeQ3E7gkgiSKPLkOQaI9W Jqv5owYxDjpbLKGlYgq6Snm8OVYCCcQ2lhvPZnj4Wv8MO4xYQn0CpGgim1T46lUk FNt1HT5Yg7kpKWRxE1R1PYdcgHxC5ArCU2ACspEdIHkopGAf3PiSRnB9ENzAss8p mlA7vcLBks0a+Huxkog1J8z+oJXf7LAc0KS2qTR5DGajj6qKcDEtKRx1msRC0lZ8 Na7iaY/cVcoRV5xy5tbTuGfKpTXi7o400NQ+Cnmh -----END CERTIFICATE-----Generated at Wed May 13 02:41:12 2026 by rpki-client