$ rpki-client -vvf rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/3136302e31392e38392e302f32342d3234203d3e20313532373839.roa File: 3136302e31392e38392e302f32342d3234203d3e20313532373839.roa (raw, json) Hash identifier: JniyB+kykIY2ndXJuy/YxGMo3Dbdi9UVhfqGmbiBAvY= Subject key identifier: C4:81:A9:C1:61:1E:D4:55:19:23:62:A3:F0:4E:41:02:F3:C1:33:D0 Certificate issuer: /CN=5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495 Certificate serial: 4487D6567F33A5B208863DE9BCEEF0AF5E2E746F Authority key identifier: 5D:10:A7:2C:87:21:CE:50:C0:93:BD:9B:5D:1A:C9:BB:6F:E9:34:95 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/3136302e31392e38392e302f32342d3234203d3e20313532373839.roa Signing time: Sun 03 May 2026 03:11:37 +0000 ROA not before: Sun 03 May 2026 03:06:37 +0000 ROA not after: Sun 02 May 2027 03:11:37 +0000 asID: 152789 IP address blocks: 160.19.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.crl rsync://rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:87:d6:56:7f:33:a5:b2:08:86:3d:e9:bc:ee:f0:af:5e:2e:74:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495 Validity Not Before: May 3 03:06:37 2026 GMT Not After : May 2 03:11:37 2027 GMT Subject: CN=C481A9C1611ED455192362A3F04E4102F3C133D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ad:e5:90:03:13:2f:d0:78:06:57:28:7d:39: 54:ba:28:4b:1b:d3:e9:ff:9e:83:92:5e:87:a6:ea: a4:f7:b8:22:a0:e4:da:c2:28:4e:2d:b3:20:9f:bb: 2c:6d:3b:a0:1a:e5:a8:b5:00:7d:ae:9a:1c:f0:3b: d6:86:6b:54:f4:f5:83:39:73:74:48:f0:c5:95:a2: 30:2d:69:78:2b:3d:38:ce:ce:e7:21:e8:9c:b5:54: bc:34:96:dd:b9:17:d3:18:c1:ff:27:66:a2:02:54: 4c:00:c8:b1:f7:23:0b:5e:0e:c6:76:c4:60:a3:33: f1:05:d4:0e:4a:81:62:d6:58:e2:97:48:5d:ea:fd: 2a:38:b9:30:77:aa:e0:6e:14:1e:43:72:b6:f2:22: 72:74:eb:37:f4:91:44:14:32:d3:48:77:6a:0b:ae: d4:27:32:94:1e:cf:a1:3c:4f:69:c7:69:80:31:f5: 79:af:43:d0:47:12:8b:32:77:99:4d:ee:da:b6:7d: 39:ce:d3:c5:90:57:96:e5:32:fe:6b:60:d5:18:e1: 47:1f:f8:e0:1f:f8:4e:ec:80:05:f7:09:c0:c5:1d: 87:dd:75:5e:71:91:4c:ca:a8:71:56:ed:a9:12:57: 2d:df:a1:87:fd:ed:3e:69:a9:a7:db:88:07:75:00: d4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:81:A9:C1:61:1E:D4:55:19:23:62:A3:F0:4E:41:02:F3:C1:33:D0 X509v3 Authority Key Identifier: keyid:5D:10:A7:2C:87:21:CE:50:C0:93:BD:9B:5D:1A:C9:BB:6F:E9:34:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5D10A72C8721CE50C093BD9B5D1AC9BB6FE93495.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ddc1007d-fd61-4543-8f5f-3fdffa4b01e6/0/3136302e31392e38392e302f32342d3234203d3e20313532373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.89.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:a9:70:80:f8:69:cc:9c:eb:79:b2:1a:73:5d:1a:bd:0b:1b: cf:ed:44:aa:b3:38:71:84:e5:ff:b7:78:f3:89:61:24:5d:e8: 4b:2d:f5:4d:aa:2d:6a:c1:8a:42:62:d7:e4:3c:5e:3e:ca:7f: fe:c4:a0:c5:21:24:d2:84:73:01:be:59:ae:f3:71:d4:ff:e2: d7:dc:3c:58:68:df:5c:96:58:b0:a0:f5:cf:b1:7e:6d:11:5b: 6f:85:79:ef:39:e8:28:73:44:6f:0a:45:82:71:c5:b1:48:cb: f4:65:23:e4:0e:de:f5:4d:f4:9b:e6:7d:62:76:f9:af:45:7d: 97:24:c0:f7:f3:fb:e5:b5:48:f6:ff:a2:32:43:58:28:b8:45: 6f:04:5f:39:9f:fe:7b:4b:b2:e8:65:c4:c5:dd:33:e7:de:5e: 33:85:cd:d3:2b:42:f8:5a:53:36:e6:81:da:ed:d5:05:71:9d: fc:a1:c2:e2:75:51:8e:74:56:bf:8e:10:5e:88:d8:4a:7b:70: 24:32:82:26:40:d5:c3:f0:18:32:29:ec:96:12:82:72:5e:5a: a7:22:90:85:b7:b3:3e:2f:8a:97:ed:f7:35:a2:1d:c9:91:44: 21:5e:8f:9d:40:3f:54:35:88:2e:54:d9:ee:04:6f:0f:5a:22: a7:85:1a:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURIfWVn8zpbIIhj3pvO7wr14udG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQxMEE3MkM4NzIxQ0U1MEMwOTNCRDlCNUQxQUM5QkI2 RkU5MzQ5NTAeFw0yNjA1MDMwMzA2MzdaFw0yNzA1MDIwMzExMzdaMDMxMTAvBgNV BAMTKEM0ODFBOUMxNjExRUQ0NTUxOTIzNjJBM0YwNEU0MTAyRjNDMTMzRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUreWQAxMv0HgGVyh9OVS6KEsb 0+n/noOSXoem6qT3uCKg5NrCKE4tsyCfuyxtO6Aa5ai1AH2umhzwO9aGa1T09YM5 c3RI8MWVojAtaXgrPTjOzuch6Jy1VLw0lt25F9MYwf8nZqICVEwAyLH3IwteDsZ2 xGCjM/EF1A5KgWLWWOKXSF3q/So4uTB3quBuFB5DcrbyInJ06zf0kUQUMtNId2oL rtQnMpQez6E8T2nHaYAx9XmvQ9BHEosyd5lN7tq2fTnO08WQV5blMv5rYNUY4Ucf +OAf+E7sgAX3CcDFHYfddV5xkUzKqHFW7akSVy3foYf97T5pqafbiAd1ANRPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxIGpwWEe1FUZI2Kj8E5BAvPBM9AwHwYDVR0j BBgwFoAUXRCnLIchzlDAk72bXRrJu2/pNJUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGRjMTAwN2QtZmQ2MS00NTQzLThmNWYtM2ZkZmZhNGIwMWU2LzAvNUQxMEE3MkM4 NzIxQ0U1MEMwOTNCRDlCNUQxQUM5QkI2RkU5MzQ5NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81RDEwQTcyQzg3MjFDRTUwQzA5M0JEOUI1RDFBQzlCQjZGRTkz NDk1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RkYzEwMDdkLWZkNjEtNDU0My04 ZjVmLTNmZGZmYTRiMDFlNi8wLzMxMzYzMDJlMzEzOTJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATWTANBgkqhkiG 9w0BAQsFAAOCAQEAT6lwgPhpzJzrebIac10avQsbz+1EqrM4cYTl/7d484lhJF3o Sy31TaotasGKQmLX5DxePsp//sSgxSEk0oRzAb5ZrvNx1P/i19w8WGjfXJZYsKD1 z7F+bRFbb4V57znoKHNEbwpFgnHFsUjL9GUj5A7e9U30m+Z9Ynb5r0V9lyTA9/P7 5bVI9v+iMkNYKLhFbwRfOZ/+e0uy6GXExd0z595eM4XN0ytC+FpTNuaB2u3VBXGd /KHC4nVRjnRWv44QXojYSntwJDKCJkDVw/AYMinslhKCcl5apyKQhbezPi+Kl+33 NaIdyZFEIV6PnUA/VDWILlTZ7gRvD1oip4Uajg== -----END CERTIFICATE-----Generated at Wed May 13 02:19:08 2026 by rpki-client