$ rpki-client -vvf rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa File: 3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa (raw, json) Hash identifier: yiKtjyaJg+/4RrQVJVpsjcN53nYqA/23WnoDn5hFEmM= Subject key identifier: FF:05:71:86:86:A4:22:80:BA:F5:F8:F6:A1:72:64:0B:12:A8:F2:DE Certificate issuer: /CN=D551D58F2876BBDA9C36678EFF8D271A14EAD8A3 Certificate serial: 080352A23C4129172518DF90535BC4D4E69A9113 Authority key identifier: D5:51:D5:8F:28:76:BB:DA:9C:36:67:8E:FF:8D:27:1A:14:EA:D8:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa Signing time: Sun 03 May 2026 03:09:33 +0000 ROA not before: Sun 03 May 2026 03:04:33 +0000 ROA not after: Sun 02 May 2027 03:09:33 +0000 asID: 152788 IP address blocks: 160.19.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.crl rsync://rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:03:52:a2:3c:41:29:17:25:18:df:90:53:5b:c4:d4:e6:9a:91:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D551D58F2876BBDA9C36678EFF8D271A14EAD8A3 Validity Not Before: May 3 03:04:33 2026 GMT Not After : May 2 03:09:33 2027 GMT Subject: CN=FF05718686A42280BAF5F8F6A172640B12A8F2DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a1:6f:89:cf:ce:21:7e:60:f5:8e:eb:97:d2: 11:5f:a9:1a:20:58:8b:bb:d3:c9:06:38:c7:64:32: fc:bb:98:07:8d:65:0b:bc:c6:cc:8b:e2:2c:99:8c: 3c:33:ed:43:05:ab:59:96:0e:f3:94:fb:5d:a8:96: a0:6d:bb:7b:85:09:58:a1:1c:9f:87:4d:0e:91:21: dd:f7:e8:d7:92:1e:05:48:10:62:64:78:1e:47:41: 28:3f:3e:f9:e5:07:19:34:40:5a:eb:14:87:8e:5e: 33:4c:ce:d1:24:69:37:ad:b7:37:7e:fa:54:f9:13: 94:df:9e:f2:0c:cf:26:98:4f:8d:9e:4a:9d:08:42: b6:e1:97:4f:47:75:28:b3:ff:d2:ff:eb:ec:db:8c: 46:4a:21:d2:04:26:e8:82:2d:8f:aa:31:02:46:8a: 6d:06:c6:e2:14:2e:f5:1f:28:36:e7:fe:18:0a:15: 7f:db:70:ab:29:14:21:a2:9a:ae:44:0e:4e:17:3c: 35:ef:4b:91:8e:ef:51:17:bc:bd:2b:40:b3:0b:8c: 58:b8:e4:7f:91:cb:9c:f8:b1:76:1a:ee:30:33:ce: 68:9e:d8:6f:89:d2:44:54:d3:fc:c4:99:9a:4a:cd: c7:08:89:03:bc:7e:d9:c1:a0:0b:bc:79:a7:90:8b: 12:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:05:71:86:86:A4:22:80:BA:F5:F8:F6:A1:72:64:0B:12:A8:F2:DE X509v3 Authority Key Identifier: keyid:D5:51:D5:8F:28:76:BB:DA:9C:36:67:8E:FF:8D:27:1A:14:EA:D8:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D551D58F2876BBDA9C36678EFF8D271A14EAD8A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.144.0/23 Signature Algorithm: sha256WithRSAEncryption d1:34:a9:bc:a9:12:67:09:bc:bc:db:cc:4a:23:f8:17:f9:aa: f7:07:67:b5:15:71:7c:15:ba:d0:da:54:6d:8a:60:3a:49:86: 69:f2:85:60:b5:89:68:e3:3b:d8:00:dd:38:5a:aa:1d:2e:ad: 0d:df:05:1d:d1:dd:96:61:db:e4:20:a4:53:0f:df:35:8e:d7: 91:1d:3c:9e:ee:86:47:aa:38:71:1a:2b:57:c4:a8:c2:64:85: 9b:d9:a8:30:57:17:5a:75:be:44:a3:27:c7:51:e1:ab:55:5d: bc:19:a0:f2:9f:90:09:ec:62:31:04:16:83:d4:df:d8:77:83: 19:05:4f:0d:b9:3c:3c:85:8f:66:73:cd:72:a8:e9:0c:7f:0d: 78:2e:5d:dc:7f:e6:c9:f5:6c:7c:5c:5e:18:08:9d:3d:10:c3: f4:9b:8e:15:c3:a1:de:00:a2:13:a0:02:9a:94:19:c4:89:c7: d1:00:a1:2b:51:61:f5:f8:1a:8e:b4:d1:e7:cc:f9:3f:06:f4: 9f:b8:3e:32:f6:5a:0d:c2:91:86:37:96:cd:52:d8:90:8e:b2: d9:14:35:9d:a5:50:ef:09:9d:99:27:47:4b:6f:95:f7:5d:45: 5d:ed:da:9f:f1:af:c3:25:81:0a:61:b0:5f:08:cf:46:d9:d7: a0:96:c8:19 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCANSojxBKRclGN+QU1vE1OaakRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1MUQ1OEYyODc2QkJEQTlDMzY2NzhFRkY4RDI3MUEx NEVBRDhBMzAeFw0yNjA1MDMwMzA0MzNaFw0yNzA1MDIwMzA5MzNaMDMxMTAvBgNV BAMTKEZGMDU3MTg2ODZBNDIyODBCQUY1RjhGNkExNzI2NDBCMTJBOEYyREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuoW+Jz84hfmD1juuX0hFfqRog WIu708kGOMdkMvy7mAeNZQu8xsyL4iyZjDwz7UMFq1mWDvOU+12olqBtu3uFCVih HJ+HTQ6RId336NeSHgVIEGJkeB5HQSg/PvnlBxk0QFrrFIeOXjNMztEkaTettzd+ +lT5E5TfnvIMzyaYT42eSp0IQrbhl09HdSiz/9L/6+zbjEZKIdIEJuiCLY+qMQJG im0GxuIULvUfKDbn/hgKFX/bcKspFCGimq5EDk4XPDXvS5GO71EXvL0rQLMLjFi4 5H+Ry5z4sXYa7jAzzmie2G+J0kRU0/zEmZpKzccIiQO8ftnBoAu8eaeQixIfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/wVxhoakIoC69fj2oXJkCxKo8t4wHwYDVR0j BBgwFoAU1VHVjyh2u9qcNmeO/40nGhTq2KMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDQwYmQ2ZTQtYjRmYi00ZjQ4LWI4M2EtYWNiOGYyZDc0NTgzLzAvRDU1MUQ1OEYy ODc2QkJEQTlDMzY2NzhFRkY4RDI3MUExNEVBRDhBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ENTUxRDU4RjI4NzZCQkRBOUMzNjY3OEVGRjhEMjcxQTE0RUFE OEEzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q0MGJkNmU0LWI0ZmItNGY0OC1i ODNhLWFjYjhmMmQ3NDU4My8wLzMxMzYzMDJlMzEzOTJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBOQMA0GCSqG SIb3DQEBCwUAA4IBAQDRNKm8qRJnCby828xKI/gX+ar3B2e1FXF8FbrQ2lRtimA6 SYZp8oVgtYlo4zvYAN04WqodLq0N3wUd0d2WYdvkIKRTD981jteRHTye7oZHqjhx GitXxKjCZIWb2agwVxdadb5EoyfHUeGrVV28GaDyn5AJ7GIxBBaD1N/Yd4MZBU8N uTw8hY9mc81yqOkMfw14Ll3cf+bJ9Wx8XF4YCJ09EMP0m44Vw6HeAKIToAKalBnE icfRAKErUWH1+BqOtNHnzPk/BvSfuD4y9loNwpGGN5bNUtiQjrLZFDWdpVDvCZ2Z J0dLb5X3XUVd7dqf8a/DJYEKYbBfCM9G2deglsgZ -----END CERTIFICATE-----Generated at Wed May 13 03:48:31 2026 by rpki-client