$ rpki-client -vvf rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa File: 3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa (raw, json) Hash identifier: ySMFpx3jAtHRk6Y0gp/23WMKdK2+n4m1Qj3cdUQcw48= Subject key identifier: 5B:6F:9C:00:56:3D:C0:34:96:CF:AA:F4:B0:BC:22:72:A3:9D:D0:DD Certificate issuer: /CN=4B1EABA76460DBE6046B857B57FDFB528C2DA09F Certificate serial: 5FBFA6A27C78E5D1876F60402578F3771B2CA57A Authority key identifier: 4B:1E:AB:A7:64:60:DB:E6:04:6B:85:7B:57:FD:FB:52:8C:2D:A0:9F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa Signing time: Sun 03 May 2026 03:10:24 +0000 ROA not before: Sun 03 May 2026 03:05:24 +0000 ROA not after: Sun 02 May 2027 03:10:24 +0000 asID: 152785 IP address blocks: 160.20.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.crl rsync://rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 10:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:bf:a6:a2:7c:78:e5:d1:87:6f:60:40:25:78:f3:77:1b:2c:a5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B1EABA76460DBE6046B857B57FDFB528C2DA09F Validity Not Before: May 3 03:05:24 2026 GMT Not After : May 2 03:10:24 2027 GMT Subject: CN=5B6F9C00563DC03496CFAAF4B0BC2272A39DD0DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5c:da:b8:ef:bd:c3:38:c4:d1:f5:c1:e4:78: c9:89:32:c1:38:0a:d6:71:47:45:2f:fe:b7:86:93: ca:04:f9:e9:a2:73:af:25:6e:53:f4:62:b2:3c:5d: f6:1d:c9:7c:84:b3:aa:1f:27:fe:01:83:27:12:94: 72:db:7b:26:92:d9:71:af:84:9c:57:fe:a4:c0:d4: 50:9d:e1:d7:9e:96:fc:2f:24:8e:62:bf:0e:59:2f: 60:13:2f:5d:fc:3f:37:35:62:19:08:98:78:1a:6e: 36:cd:46:2b:43:e0:64:17:13:9b:c3:30:48:48:0e: 64:dd:6d:dd:60:2b:aa:3f:f9:ac:3b:b2:a4:20:50: be:f1:15:60:9f:c8:15:31:ac:23:7d:52:04:49:fb: 41:e8:7b:30:52:e7:4d:1f:6a:0a:aa:92:65:2e:08: ca:1e:05:6f:9d:b3:c9:a1:65:c7:13:bc:2c:8d:e3: fe:bb:7a:52:e0:37:7f:3e:9a:c2:f9:9c:a3:12:72: 2e:f1:a1:29:fd:0c:44:38:7b:fe:b9:9e:b7:00:16: 1d:54:64:f4:68:0c:01:9e:af:97:f2:a3:67:62:dc: 5c:82:32:6e:b4:fe:12:eb:49:3a:7f:db:27:ea:c8: 51:ed:e9:6f:11:f0:02:fd:07:07:1f:1a:c6:ed:85: 62:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6F:9C:00:56:3D:C0:34:96:CF:AA:F4:B0:BC:22:72:A3:9D:D0:DD X509v3 Authority Key Identifier: keyid:4B:1E:AB:A7:64:60:DB:E6:04:6B:85:7B:57:FD:FB:52:8C:2D:A0:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/4B1EABA76460DBE6046B857B57FDFB528C2DA09F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d88575c8-54fe-4801-a7b1-517d0e6b8b73/0/3136302e32302e3232302e302f32342d3234203d3e20313532373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.220.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:d2:00:e1:97:de:a4:94:a2:f5:98:10:9c:01:cb:8f:9c:95: 71:a0:f0:5f:42:45:a1:77:2a:33:4f:86:0b:7d:a3:d9:fa:a3: 6f:27:7a:50:78:f6:ed:c4:9c:80:ff:ea:98:30:6c:af:e3:55: c1:23:5e:6d:3d:aa:94:3c:bc:c9:8f:f2:71:33:1a:1d:33:b0: 5e:d2:8b:af:40:20:33:89:05:3c:5f:b7:0a:f8:c5:2c:19:0d: 46:83:a4:64:5c:6f:eb:95:b9:6f:ae:db:cf:70:db:c2:f8:9c: 64:20:4f:0d:d9:0d:1d:0b:00:ff:3c:d0:ec:6e:53:b3:ac:ae: d4:47:ef:29:4a:67:cf:d9:cf:9f:bd:0e:2a:b0:47:c9:16:25: 51:62:ab:8a:3e:97:34:ba:c1:9d:d0:fa:2a:a8:94:3e:23:6f: 47:09:30:e1:de:2e:aa:3b:51:59:b0:a5:59:f0:6c:db:24:a1: 86:38:0a:9c:2e:e2:88:2a:e2:e7:f1:7c:c7:2b:95:d5:56:0e: e9:ea:98:6a:de:45:d2:9b:72:4e:0c:26:71:6a:4e:db:aa:ad: 43:0a:fd:50:59:00:a3:ae:2a:f0:d7:3f:54:6a:3b:09:97:29: ce:a3:d8:27:ad:12:ac:91:21:48:25:b9:10:1c:4d:7c:8d:fc: dc:b6:e1:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX7+monx45dGHb2BAJXjzdxsspXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIxRUFCQTc2NDYwREJFNjA0NkI4NTdCNTdGREZCNTI4 QzJEQTA5RjAeFw0yNjA1MDMwMzA1MjRaFw0yNzA1MDIwMzEwMjRaMDMxMTAvBgNV BAMTKDVCNkY5QzAwNTYzREMwMzQ5NkNGQUFGNEIwQkMyMjcyQTM5REQwREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRXNq4773DOMTR9cHkeMmJMsE4 CtZxR0Uv/reGk8oE+emic68lblP0YrI8XfYdyXyEs6ofJ/4BgycSlHLbeyaS2XGv hJxX/qTA1FCd4deelvwvJI5ivw5ZL2ATL138Pzc1YhkImHgabjbNRitD4GQXE5vD MEhIDmTdbd1gK6o/+aw7sqQgUL7xFWCfyBUxrCN9UgRJ+0HoezBS500fagqqkmUu CMoeBW+ds8mhZccTvCyN4/67elLgN38+msL5nKMSci7xoSn9DEQ4e/65nrcAFh1U ZPRoDAGer5fyo2di3FyCMm60/hLrSTp/2yfqyFHt6W8R8AL9BwcfGsbthWIFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW2+cAFY9wDSWz6r0sLwicqOd0N0wHwYDVR0j BBgwFoAUSx6rp2Rg2+YEa4V7V/37UowtoJ8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDg4NTc1YzgtNTRmZS00ODAxLWE3YjEtNTE3ZDBlNmI4YjczLzAvNEIxRUFCQTc2 NDYwREJFNjA0NkI4NTdCNTdGREZCNTI4QzJEQTA5Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80QjFFQUJBNzY0NjBEQkU2MDQ2Qjg1N0I1N0ZERkI1MjhDMkRB MDlGLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q4ODU3NWM4LTU0ZmUtNDgwMS1h N2IxLTUxN2QwZTZiOGI3My8wLzMxMzYzMDJlMzIzMDJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBTcMA0GCSqG SIb3DQEBCwUAA4IBAQBu0gDhl96klKL1mBCcAcuPnJVxoPBfQkWhdyozT4YLfaPZ +qNvJ3pQePbtxJyA/+qYMGyv41XBI15tPaqUPLzJj/JxMxodM7Be0ouvQCAziQU8 X7cK+MUsGQ1Gg6RkXG/rlblvrtvPcNvC+JxkIE8N2Q0dCwD/PNDsblOzrK7UR+8p SmfP2c+fvQ4qsEfJFiVRYquKPpc0usGd0PoqqJQ+I29HCTDh3i6qO1FZsKVZ8Gzb JKGGOAqcLuKIKuLn8XzHK5XVVg7p6phq3kXSm3JODCZxak7bqq1DCv1QWQCjrirw 1z9UajsJlynOo9gnrRKskSFIJbkQHE18jfzctuEI -----END CERTIFICATE-----Generated at Wed May 13 03:23:16 2026 by rpki-client