$ rpki-client -vvf rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313534343130.roa File: 3136302e32352e3132362e302f32332d3233203d3e20313534343130.roa (raw, json) Hash identifier: D7D7+eNACx2VPV6VDU/GlsPiDsYcZqOGcWBVAzfAkao= Subject key identifier: CB:F0:C0:54:20:D1:55:D9:6C:9E:61:59:C9:41:F7:64:1A:6D:5C:04 Certificate issuer: /CN=F576D7187FE092471757158DEF85D92023BB827A Certificate serial: 2DE77BDB52509903E14C292FD67A81673C5C4249 Authority key identifier: F5:76:D7:18:7F:E0:92:47:17:57:15:8D:EF:85:D9:20:23:BB:82:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F576D7187FE092471757158DEF85D92023BB827A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313534343130.roa Signing time: Sun 03 May 2026 03:12:57 +0000 ROA not before: Sun 03 May 2026 03:07:57 +0000 ROA not after: Sun 02 May 2027 03:12:57 +0000 asID: 154410 IP address blocks: 160.25.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/F576D7187FE092471757158DEF85D92023BB827A.crl rsync://rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/F576D7187FE092471757158DEF85D92023BB827A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F576D7187FE092471757158DEF85D92023BB827A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e7:7b:db:52:50:99:03:e1:4c:29:2f:d6:7a:81:67:3c:5c:42:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F576D7187FE092471757158DEF85D92023BB827A Validity Not Before: May 3 03:07:57 2026 GMT Not After : May 2 03:12:57 2027 GMT Subject: CN=CBF0C05420D155D96C9E6159C941F7641A6D5C04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:65:57:26:1f:86:9f:7c:fc:4e:e2:3d:a3: fe:cf:b6:0f:b8:07:75:35:0e:9b:d4:ec:44:03:d6: 22:b0:43:04:13:20:3e:bf:23:d3:d3:4a:23:52:1c: 7c:f4:a5:8c:b6:92:81:d4:74:15:38:7b:f7:20:0c: 3d:38:db:39:dc:80:2c:29:56:42:cd:fb:ac:72:28: aa:89:bb:09:24:24:74:78:2d:44:9c:32:9d:8e:f4: bf:4b:53:af:d7:5f:3e:01:76:b9:35:5d:cd:d3:16: 07:d1:94:4c:50:d6:55:83:9c:f0:66:5f:05:76:9f: 1f:05:25:60:36:dd:21:64:88:cf:e1:05:24:ec:8e: a7:24:e4:8c:4b:00:d8:ab:f6:e0:43:2f:2b:44:41: 6f:55:a1:90:11:ec:14:98:6e:02:ef:37:a9:7d:96: b3:e6:2f:8e:d4:d0:e0:6c:19:9d:b2:f8:61:ff:ed: 03:a6:cb:37:16:f8:a5:97:4a:f7:98:14:dd:bb:92: d6:ca:52:24:90:52:9e:bb:14:ac:f5:ac:8a:d8:1f: 6d:bd:9c:8a:1e:f9:41:4f:5a:5b:2e:83:14:7d:22: 28:03:e5:ef:df:e0:b0:a7:30:af:02:5a:b0:99:42: 2a:53:b1:c4:10:03:71:25:7c:e5:b0:32:36:97:aa: 63:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F0:C0:54:20:D1:55:D9:6C:9E:61:59:C9:41:F7:64:1A:6D:5C:04 X509v3 Authority Key Identifier: keyid:F5:76:D7:18:7F:E0:92:47:17:57:15:8D:EF:85:D9:20:23:BB:82:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/F576D7187FE092471757158DEF85D92023BB827A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F576D7187FE092471757158DEF85D92023BB827A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e206defa-fa43-4f93-93ce-39fdff81c19a/0/3136302e32352e3132362e302f32332d3233203d3e20313534343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.126.0/23 Signature Algorithm: sha256WithRSAEncryption 69:eb:c9:a8:4e:99:70:39:3a:8f:00:29:e2:b7:fb:51:f5:4c: fa:24:b6:99:08:21:e1:5e:49:16:2c:94:ec:56:99:91:58:6b: 27:35:81:cb:a0:ab:54:39:37:a6:4e:f1:9c:a7:b0:96:6d:5d: fc:cf:c9:14:ad:13:ed:96:30:c2:ac:81:0c:47:d6:24:48:a4: fe:cb:a0:e7:8f:5f:79:23:4f:a9:ef:e0:8d:30:f4:25:43:31: 9f:72:0b:73:79:db:42:48:20:55:3e:fa:a2:6d:ef:4e:b7:c7: 0b:fb:23:6d:31:ae:cf:6f:62:e9:a7:d9:ce:eb:fb:e0:24:55: 41:f4:8b:2c:b5:93:44:2b:9c:b1:ad:d8:fc:b1:94:e9:46:6f: 05:0b:0f:92:fd:b8:a2:99:e4:ef:2a:9b:bf:8f:f9:bd:7f:67: 30:b9:b8:cf:ec:75:c5:ae:d2:61:c0:d7:3c:af:ed:b5:69:0c: 38:b3:46:bb:37:74:ec:08:a1:3b:fb:ce:71:dc:b3:aa:de:28: ad:d5:a7:7f:df:53:fb:da:ae:da:9e:b9:5c:4f:b8:c6:86:35: 52:83:a8:e5:a2:29:43:29:ab:cd:bc:bf:e3:65:74:d3:d9:b2: d9:aa:4c:54:b2:5d:0d:4b:ed:9e:a4:a2:4e:d0:86:6e:ef:54: 22:37:3a:d3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULed721JQmQPhTCkv1nqBZzxcQkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU3NkQ3MTg3RkUwOTI0NzE3NTcxNThERUY4NUQ5MjAy M0JCODI3QTAeFw0yNjA1MDMwMzA3NTdaFw0yNzA1MDIwMzEyNTdaMDMxMTAvBgNV BAMTKENCRjBDMDU0MjBEMTU1RDk2QzlFNjE1OUM5NDFGNzY0MUE2RDVDMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqjmVXJh+Gn3z8TuI9o/7Ptg+4 B3U1DpvU7EQD1iKwQwQTID6/I9PTSiNSHHz0pYy2koHUdBU4e/cgDD042zncgCwp VkLN+6xyKKqJuwkkJHR4LUScMp2O9L9LU6/XXz4Bdrk1Xc3TFgfRlExQ1lWDnPBm XwV2nx8FJWA23SFkiM/hBSTsjqck5IxLANir9uBDLytEQW9VoZAR7BSYbgLvN6l9 lrPmL47U0OBsGZ2y+GH/7QOmyzcW+KWXSveYFN27ktbKUiSQUp67FKz1rIrYH229 nIoe+UFPWlsugxR9IigD5e/f4LCnMK8CWrCZQipTscQQA3ElfOWwMjaXqmNLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy/DAVCDRVdlsnmFZyUH3ZBptXAQwHwYDVR0j BBgwFoAU9XbXGH/gkkcXVxWN74XZICO7gnowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTIwNmRlZmEtZmE0My00ZjkzLTkzY2UtMzlmZGZmODFjMTlhLzAvRjU3NkQ3MTg3 RkUwOTI0NzE3NTcxNThERUY4NUQ5MjAyM0JCODI3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GNTc2RDcxODdGRTA5MjQ3MTc1NzE1OERFRjg1RDkyMDIzQkI4 MjdBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UyMDZkZWZhLWZhNDMtNGY5My05 M2NlLTM5ZmRmZjgxYzE5YS8wLzMxMzYzMDJlMzIzNTJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTM0MzQzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBl+MA0GCSqG SIb3DQEBCwUAA4IBAQBp68moTplwOTqPACnit/tR9Uz6JLaZCCHhXkkWLJTsVpmR WGsnNYHLoKtUOTemTvGcp7CWbV38z8kUrRPtljDCrIEMR9YkSKT+y6Dnj195I0+p 7+CNMPQlQzGfcgtzedtCSCBVPvqibe9Ot8cL+yNtMa7Pb2Lpp9nO6/vgJFVB9Iss tZNEK5yxrdj8sZTpRm8FCw+S/biimeTvKpu/j/m9f2cwubjP7HXFrtJhwNc8r+21 aQw4s0a7N3TsCKE7+85x3LOq3iit1ad/31P72q7anrlcT7jGhjVSg6jloilDKavN vL/jZXTT2bLZqkxUsl0NS+2epKJO0IZu71QiNzrT -----END CERTIFICATE-----Generated at Tue May 12 22:50:03 2026 by rpki-client