$ rpki-client -vvf rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa File: 3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa (raw, json) Hash identifier: cvKGIujNKpn8r6a8rprf+PEz/toRdewoQzshB4q6X84= Subject key identifier: 67:70:79:C6:18:09:97:61:3C:C2:20:24:FD:44:B1:AF:16:07:FA:3D Certificate issuer: /CN=A041DA85A835517127145910FB36AAA5B7CA41F2 Certificate serial: 01CE82C2163D7970FB95D3DA7D8D5C6560A0A68B Authority key identifier: A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa Signing time: Sun 03 May 2026 03:11:54 +0000 ROA not before: Sun 03 May 2026 03:06:54 +0000 ROA not after: Sun 02 May 2027 03:11:54 +0000 asID: 152822 IP address blocks: 160.22.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.crl rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ce:82:c2:16:3d:79:70:fb:95:d3:da:7d:8d:5c:65:60:a0:a6:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A041DA85A835517127145910FB36AAA5B7CA41F2 Validity Not Before: May 3 03:06:54 2026 GMT Not After : May 2 03:11:54 2027 GMT Subject: CN=677079C6180997613CC22024FD44B1AF1607FA3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:7d:93:55:9d:d2:28:de:bd:0e:9c:03:13: bf:78:38:61:5f:70:84:f0:63:bb:21:61:93:87:e4: 36:c1:4c:b0:0a:b3:ab:c5:dd:0e:92:a0:83:cb:29: 5d:1d:e9:79:23:8a:7d:7b:ad:16:52:b4:7b:e9:80: 84:38:95:69:70:af:8e:78:1c:d1:00:dc:74:97:f5: bb:26:4a:8d:9e:26:1c:86:f1:bb:06:82:0d:7b:b2: 09:8a:b2:74:de:7b:aa:f2:09:0b:60:63:00:55:de: 29:60:d6:fe:8e:9d:28:a7:2e:e5:de:47:89:1d:0a: 30:3d:71:06:68:a9:0e:31:a7:4c:65:4c:02:74:bb: 65:30:03:14:3b:fb:93:19:93:83:f2:b9:f5:60:c9: 9e:a5:c3:0a:5b:ee:ee:ce:26:bc:f5:00:8e:f7:fe: eb:3e:68:c8:08:0a:bc:53:88:b4:2d:74:e2:cd:f8: 37:d8:e2:84:21:28:bf:1b:53:82:a3:48:65:20:d8: 89:20:58:fd:af:17:7b:d8:4f:34:74:53:21:65:d5: 67:a9:34:aa:d2:80:5c:7d:1c:37:5f:1e:ff:1d:80: 05:5d:ce:fe:58:a8:c1:ea:76:c5:91:b3:0f:11:94: 92:d8:fe:9c:65:68:c3:13:aa:9f:ba:19:e7:a6:0d: 51:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:70:79:C6:18:09:97:61:3C:C2:20:24:FD:44:B1:AF:16:07:FA:3D X509v3 Authority Key Identifier: keyid:A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.197.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ba:5b:17:1f:b9:d9:cd:b2:b1:90:0c:b4:50:b6:4b:2a:d4: 85:e4:d0:ac:51:7e:d8:da:39:df:6a:aa:92:ec:c5:a3:76:e9: b7:a7:06:82:7a:2a:ff:e4:c0:a8:f7:bf:ea:3c:82:45:b8:0c: 2a:01:e2:8e:b7:32:54:0a:61:e4:4e:3c:eb:9b:b5:e7:96:55: 41:6a:0d:7a:29:bd:f4:af:72:b3:20:3a:4d:85:df:e4:e3:2d: 48:61:bf:9c:3a:15:91:20:67:0e:1b:43:21:df:ae:17:93:31: 47:2a:bf:0c:13:56:b9:0f:ba:b4:61:38:ca:71:70:48:6b:3a: d8:47:da:d4:bf:9a:04:32:86:00:1a:c4:66:4d:a5:ab:7e:ee: 14:05:f2:e3:c5:7a:f5:c9:ed:04:1c:9d:5d:c5:04:83:2b:4c: be:42:4b:aa:d2:31:ba:82:32:1a:d3:5b:86:8f:af:52:fe:3b: 70:67:d8:20:e9:1e:5e:9b:cd:f0:3f:d7:fe:8b:d8:3d:80:85: d0:bb:44:a6:4b:5e:19:40:0d:12:0b:6e:39:d2:59:ea:18:2a: e5:be:51:04:49:62:b9:aa:9d:44:9c:d5:73:2c:ca:69:83:b7: f6:86:2c:d3:ea:b8:57:00:71:ba:73:49:7d:60:1d:dd:59:9b: 2e:00:b2:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAc6CwhY9eXD7ldPafY1cZWCgposwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA0MURBODVBODM1NTE3MTI3MTQ1OTEwRkIzNkFBQTVC N0NBNDFGMjAeFw0yNjA1MDMwMzA2NTRaFw0yNzA1MDIwMzExNTRaMDMxMTAvBgNV BAMTKDY3NzA3OUM2MTgwOTk3NjEzQ0MyMjAyNEZENDRCMUFGMTYwN0ZBM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3032TVZ3SKN69DpwDE794OGFf cITwY7shYZOH5DbBTLAKs6vF3Q6SoIPLKV0d6Xkjin17rRZStHvpgIQ4lWlwr454 HNEA3HSX9bsmSo2eJhyG8bsGgg17sgmKsnTee6ryCQtgYwBV3ilg1v6OnSinLuXe R4kdCjA9cQZoqQ4xp0xlTAJ0u2UwAxQ7+5MZk4PyufVgyZ6lwwpb7u7OJrz1AI73 /us+aMgICrxTiLQtdOLN+DfY4oQhKL8bU4KjSGUg2IkgWP2vF3vYTzR0UyFl1Wep NKrSgFx9HDdfHv8dgAVdzv5YqMHqdsWRsw8RlJLY/pxlaMMTqp+6GeemDVFNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ3B5xhgJl2E8wiAk/USxrxYH+j0wHwYDVR0j BBgwFoAUoEHahag1UXEnFFkQ+zaqpbfKQfIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYxYTBkZjYtMWQzYS00YmNjLWIzZDEtNjQ2OTVmODdlMzdmLzAvQTA0MURBODVB ODM1NTE3MTI3MTQ1OTEwRkIzNkFBQTVCN0NBNDFGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BMDQxREE4NUE4MzU1MTcxMjcxNDU5MTBGQjM2QUFBNUI3Q0E0 MUYyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmMWEwZGY2LTFkM2EtNGJjYy1i M2QxLTY0Njk1Zjg3ZTM3Zi8wLzMxMzYzMDJlMzIzMjJlMzEzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbFMA0GCSqG SIb3DQEBCwUAA4IBAQA6ulsXH7nZzbKxkAy0ULZLKtSF5NCsUX7Y2jnfaqqS7MWj dum3pwaCeir/5MCo97/qPIJFuAwqAeKOtzJUCmHkTjzrm7XnllVBag16Kb30r3Kz IDpNhd/k4y1IYb+cOhWRIGcOG0Mh364XkzFHKr8ME1a5D7q0YTjKcXBIazrYR9rU v5oEMoYAGsRmTaWrfu4UBfLjxXr1ye0EHJ1dxQSDK0y+Qkuq0jG6gjIa01uGj69S /jtwZ9gg6R5em83wP9f+i9g9gIXQu0SmS14ZQA0SC2450lnqGCrlvlEESWK5qp1E nNVzLMppg7f2hizT6rhXAHG6c0l9YB3dWZsuALIL -----END CERTIFICATE-----Generated at Wed May 13 03:23:00 2026 by rpki-client