$ rpki-client -vvf rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: 7YQRPlXdULMyA1HYWK14T5iCJHvbhMELTTePtHF2CN4= Subject key identifier: 84:31:EA:10:94:08:5D:08:0B:8D:4B:75:CE:5A:C4:46:5D:24:76:03 Certificate issuer: /CN=602DC3C042450989509B4BAEFDB4AA291EB6F8F6 Certificate serial: 0D29EBF24A6286F88538180241CC5415577F4A79 Authority key identifier: 60:2D:C3:C0:42:45:09:89:50:9B:4B:AE:FD:B4:AA:29:1E:B6:F8:F6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa Signing time: Sun 03 May 2026 03:12:18 +0000 ROA not before: Sun 03 May 2026 03:07:18 +0000 ROA not after: Sun 02 May 2027 03:12:18 +0000 asID: 152767 IP address blocks: 160.20.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.crl rsync://rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:29:eb:f2:4a:62:86:f8:85:38:18:02:41:cc:54:15:57:7f:4a:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602DC3C042450989509B4BAEFDB4AA291EB6F8F6 Validity Not Before: May 3 03:07:18 2026 GMT Not After : May 2 03:12:18 2027 GMT Subject: CN=8431EA1094085D080B8D4B75CE5AC4465D247603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:01:16:06:fa:38:53:90:d3:44:0a:a9:e0:21: 21:c7:87:7d:72:2b:40:c7:01:1c:f4:c2:57:0e:6f: 46:0c:68:ba:21:0a:bd:0f:21:e8:0b:4a:50:97:76: fa:56:f4:da:2a:bb:c3:d3:f5:e8:bc:38:bf:22:92: 67:39:c5:d7:41:94:2f:bd:ff:3b:82:77:75:73:bf: 86:7d:1c:ee:40:25:c0:c4:33:c1:c3:a8:29:18:c5: aa:70:e8:4c:2a:21:a3:97:b8:67:1d:13:24:02:38: e9:0a:3b:49:43:bb:a5:e9:a7:e5:c0:5e:b4:1a:9c: 8b:d8:94:7b:1d:f0:aa:ff:03:0b:b0:65:bf:27:0b: 3a:4a:ad:27:cb:a2:4e:7a:65:7b:aa:9d:c0:d4:08: 7a:33:f0:b5:61:5f:87:e8:9e:9c:e6:24:47:dd:a7: 49:94:f7:ed:c1:3a:67:54:cd:e1:32:3f:35:32:50: cf:cf:57:ac:96:e5:e5:26:c3:18:fd:d3:dc:82:ae: 88:1b:e3:22:2b:b6:d1:85:fc:2e:9d:2d:2e:27:8b: bf:1d:a5:4e:77:e2:72:a4:e8:7a:2d:d7:26:37:a7: 0e:f6:16:f9:23:89:15:11:a5:be:be:10:6a:a2:83: 68:7d:b2:86:73:88:95:81:d7:80:d1:d6:16:5d:e4: 6a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:31:EA:10:94:08:5D:08:0B:8D:4B:75:CE:5A:C4:46:5D:24:76:03 X509v3 Authority Key Identifier: keyid:60:2D:C3:C0:42:45:09:89:50:9B:4B:AE:FD:B4:AA:29:1E:B6:F8:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/602DC3C042450989509B4BAEFDB4AA291EB6F8F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.39.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:04:5d:fb:6c:e4:99:d0:09:78:9e:3c:b1:a0:ce:05:ba:a2: 9f:02:cc:1f:f8:46:65:6c:58:ff:0b:bf:19:5f:73:8e:c6:81: bb:90:99:75:b0:3a:1b:d8:b3:98:98:a5:5b:d4:f7:44:bc:07: 3f:6a:a8:9e:d0:0e:dc:8c:05:64:24:94:da:38:40:c1:31:b9: 1e:db:8e:f2:d8:67:b3:51:81:55:40:de:4d:95:13:e6:da:14: fa:24:d0:d4:2f:bb:c8:27:db:98:8c:98:13:51:a0:bb:83:84: 7f:9c:d3:03:74:80:3f:34:0f:77:f0:93:93:3b:60:0b:3e:ee: 94:2e:9a:4f:c4:ed:04:89:80:6c:3a:97:ca:30:63:3f:be:8a: 87:82:97:0f:02:a8:85:82:81:4b:db:2f:6a:fe:48:70:fa:f8: 6b:7a:32:c7:2d:27:0b:07:fd:ee:49:2c:e3:f0:d5:08:8e:f9: 0a:57:24:77:1b:31:f2:76:e5:da:80:56:69:05:59:c8:17:80: 00:9b:66:b9:75:5d:26:6f:b8:2c:d4:55:f2:42:36:bd:85:78: 0e:c2:fc:5a:a6:9a:2e:a0:a6:a9:b5:09:45:55:96:2c:07:89: 3e:4d:8c:72:da:4a:7b:d4:08:44:c4:9f:01:8c:2e:0e:2d:1a: 54:c7:c5:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDSnr8kpihviFOBgCQcxUFVd/SnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAyREMzQzA0MjQ1MDk4OTUwOUI0QkFFRkRCNEFBMjkx RUI2RjhGNjAeFw0yNjA1MDMwMzA3MThaFw0yNzA1MDIwMzEyMThaMDMxMTAvBgNV BAMTKDg0MzFFQTEwOTQwODVEMDgwQjhENEI3NUNFNUFDNDQ2NUQyNDc2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPARYG+jhTkNNECqngISHHh31y K0DHARz0wlcOb0YMaLohCr0PIegLSlCXdvpW9Noqu8PT9ei8OL8ikmc5xddBlC+9 /zuCd3Vzv4Z9HO5AJcDEM8HDqCkYxapw6EwqIaOXuGcdEyQCOOkKO0lDu6Xpp+XA XrQanIvYlHsd8Kr/AwuwZb8nCzpKrSfLok56ZXuqncDUCHoz8LVhX4fonpzmJEfd p0mU9+3BOmdUzeEyPzUyUM/PV6yW5eUmwxj909yCrogb4yIrttGF/C6dLS4ni78d pU534nKk6Hot1yY3pw72FvkjiRURpb6+EGqig2h9soZziJWB14DR1hZd5GpFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhDHqEJQIXQgLjUt1zlrERl0kdgMwHwYDVR0j BBgwFoAUYC3DwEJFCYlQm0uu/bSqKR62+PYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGZlN2RhY2MtMmI0NS00MTQxLTk3NzUtZjFiYjlmMDUyMzk2LzAvNjAyREMzQzA0 MjQ1MDk4OTUwOUI0QkFFRkRCNEFBMjkxRUI2RjhGNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82MDJEQzNDMDQyNDUwOTg5NTA5QjRCQUVGREI0QUEyOTFFQjZG OEY2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJzANBgkqhkiG 9w0BAQsFAAOCAQEAXQRd+2zkmdAJeJ48saDOBbqinwLMH/hGZWxY/wu/GV9zjsaB u5CZdbA6G9izmJilW9T3RLwHP2qontAO3IwFZCSU2jhAwTG5HtuO8thns1GBVUDe TZUT5toU+iTQ1C+7yCfbmIyYE1Ggu4OEf5zTA3SAPzQPd/CTkztgCz7ulC6aT8Tt BImAbDqXyjBjP76Kh4KXDwKohYKBS9svav5IcPr4a3oyxy0nCwf97kks4/DVCI75 Clckdxsx8nbl2oBWaQVZyBeAAJtmuXVdJm+4LNRV8kI2vYV4DsL8WqaaLqCmqbUJ RVWWLAeJPk2MctpKe9QIRMSfAYwuDi0aVMfFXw== -----END CERTIFICATE-----Generated at Wed May 13 09:14:37 2026 by rpki-client