$ rpki-client -vvf rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/3136302e32352e3137362e302f32342d3234203d3e20313533303734.roa File: 3136302e32352e3137362e302f32342d3234203d3e20313533303734.roa (raw, json) Hash identifier: NYpdwytkChGCzh12ASFb3hn9VjleUU/gf+HbYhk8TR8= Subject key identifier: 8B:57:FB:DE:8F:D6:57:26:B7:7B:3E:D1:7D:17:C8:2B:80:47:7E:90 Certificate issuer: /CN=30136AF0EB2FFA9F14E052E4E490AA9B53C9542C Certificate serial: 7B3A89F056AD0A1818F522676D04C28AA79206C1 Authority key identifier: 30:13:6A:F0:EB:2F:FA:9F:14:E0:52:E4:E4:90:AA:9B:53:C9:54:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/3136302e32352e3137362e302f32342d3234203d3e20313533303734.roa Signing time: Sun 03 May 2026 03:13:11 +0000 ROA not before: Sun 03 May 2026 03:08:11 +0000 ROA not after: Sun 02 May 2027 03:13:11 +0000 asID: 153074 IP address blocks: 160.25.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.crl rsync://rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3a:89:f0:56:ad:0a:18:18:f5:22:67:6d:04:c2:8a:a7:92:06:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30136AF0EB2FFA9F14E052E4E490AA9B53C9542C Validity Not Before: May 3 03:08:11 2026 GMT Not After : May 2 03:13:11 2027 GMT Subject: CN=8B57FBDE8FD65726B77B3ED17D17C82B80477E90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:06:c5:93:11:50:1a:26:ad:35:4c:88:4b: 27:91:fc:a5:39:4c:9a:24:1b:ed:7f:4f:2c:57:c2: 51:ca:68:df:5f:12:37:8a:5b:9f:12:c9:fe:93:32: 08:ef:37:b3:73:1a:c4:10:66:78:1f:87:eb:3a:81: 57:14:bd:a7:3b:79:14:62:48:64:d9:d0:21:b4:74: 4b:3b:3b:11:01:41:d2:5c:6c:3b:83:67:05:57:9b: cb:99:93:c2:09:fa:6c:b8:7f:f8:74:64:54:2e:12: dc:59:7b:bc:96:68:87:24:88:3e:80:fe:bd:5e:f9: c8:52:ef:f9:a0:ec:52:8b:95:ec:34:78:63:65:cd: 18:66:d8:a3:61:8a:60:a8:3b:0d:fe:58:00:56:3f: 29:72:67:15:f3:91:37:9a:d8:3c:ca:28:e7:67:08: a9:76:ce:f8:e0:eb:ad:3d:67:3b:4c:15:48:d0:a6: 5e:5f:4d:56:8c:1f:bb:94:d5:53:16:a1:99:e1:01: ff:7a:56:2b:9d:b8:11:34:a1:93:30:8a:10:3c:f5: 55:39:e6:a7:b7:23:cf:81:e2:3a:f1:dd:2c:79:a0: 3b:44:94:65:1f:76:82:f2:67:7e:cc:e0:24:e5:d6: 27:39:8c:bb:a6:4d:ac:9f:bd:1e:3d:55:37:e3:e5: 00:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:57:FB:DE:8F:D6:57:26:B7:7B:3E:D1:7D:17:C8:2B:80:47:7E:90 X509v3 Authority Key Identifier: keyid:30:13:6A:F0:EB:2F:FA:9F:14:E0:52:E4:E4:90:AA:9B:53:C9:54:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/30136AF0EB2FFA9F14E052E4E490AA9B53C9542C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e38f9b6b-027a-4be6-ab02-28d551c39819/0/3136302e32352e3137362e302f32342d3234203d3e20313533303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.176.0/24 Signature Algorithm: sha256WithRSAEncryption ad:75:0c:4b:26:07:b5:00:fd:3d:40:33:5b:8d:61:a5:0e:c6: 0a:75:71:5f:fa:7e:5b:cc:5e:e4:35:21:7a:32:06:24:9f:6d: b1:e3:cd:24:bc:7f:f5:55:b1:98:60:13:ea:b5:b8:2f:2e:04: 95:c7:b2:82:85:19:c8:62:e2:16:7f:ee:a9:ad:38:a2:4e:95: 32:b1:bc:ee:ba:6d:99:a6:12:dc:da:79:eb:9b:e9:1d:5a:0c: 25:e2:8a:e0:60:b3:11:ec:0a:d5:dc:af:3b:f1:92:03:07:5f: 48:a8:7a:db:33:76:9e:33:44:80:bb:90:19:a1:4a:f3:ad:bd: ca:cf:1f:e6:79:57:00:db:f5:bd:bf:f2:fb:35:cb:41:a7:bd: c4:f0:66:6c:25:54:9e:35:8c:20:da:73:52:64:3c:ce:9e:92: 30:66:e8:05:3a:91:d5:9f:04:bf:c5:ca:ac:58:98:d0:4a:12: cd:43:0a:01:9c:07:08:6d:ed:1f:6d:79:28:ed:ed:ed:c0:50: ea:8c:25:27:1a:0c:16:f6:d3:c6:f3:5c:ab:0f:8d:05:0b:6c: af:e0:3d:23:fb:20:03:a5:1d:dd:dd:ad:83:7c:30:c2:00:65: ba:90:4e:12:60:76:94:39:f6:37:6b:f3:f2:1a:d0:88:46:d4: 30:c8:fb:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUezqJ8FatChgY9SJnbQTCiqeSBsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAxMzZBRjBFQjJGRkE5RjE0RTA1MkU0RTQ5MEFBOUI1 M0M5NTQyQzAeFw0yNjA1MDMwMzA4MTFaFw0yNzA1MDIwMzEzMTFaMDMxMTAvBgNV BAMTKDhCNTdGQkRFOEZENjU3MjZCNzdCM0VEMTdEMTdDODJCODA0NzdFOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73AbFkxFQGiatNUyISyeR/KU5 TJokG+1/TyxXwlHKaN9fEjeKW58Syf6TMgjvN7NzGsQQZngfh+s6gVcUvac7eRRi SGTZ0CG0dEs7OxEBQdJcbDuDZwVXm8uZk8IJ+my4f/h0ZFQuEtxZe7yWaIckiD6A /r1e+chS7/mg7FKLlew0eGNlzRhm2KNhimCoOw3+WABWPylyZxXzkTea2DzKKOdn CKl2zvjg6609ZztMFUjQpl5fTVaMH7uU1VMWoZnhAf96ViuduBE0oZMwihA89VU5 5qe3I8+B4jrx3Sx5oDtElGUfdoLyZ37M4CTl1ic5jLumTayfvR49VTfj5QAzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi1f73o/WVya3ez7RfRfIK4BHfpAwHwYDVR0j BBgwFoAUMBNq8Osv+p8U4FLk5JCqm1PJVCwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTM4ZjliNmItMDI3YS00YmU2LWFiMDItMjhkNTUxYzM5ODE5LzAvMzAxMzZBRjBF QjJGRkE5RjE0RTA1MkU0RTQ5MEFBOUI1M0M5NTQyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zMDEzNkFGMEVCMkZGQTlGMTRFMDUyRTRFNDkwQUE5QjUzQzk1 NDJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UzOGY5YjZiLTAyN2EtNGJlNi1h YjAyLTI4ZDU1MWMzOTgxOS8wLzMxMzYzMDJlMzIzNTJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmwMA0GCSqG SIb3DQEBCwUAA4IBAQCtdQxLJge1AP09QDNbjWGlDsYKdXFf+n5bzF7kNSF6MgYk n22x480kvH/1VbGYYBPqtbgvLgSVx7KChRnIYuIWf+6prTiiTpUysbzuum2ZphLc 2nnrm+kdWgwl4orgYLMR7ArV3K878ZIDB19IqHrbM3aeM0SAu5AZoUrzrb3Kzx/m eVcA2/W9v/L7NctBp73E8GZsJVSeNYwg2nNSZDzOnpIwZugFOpHVnwS/xcqsWJjQ ShLNQwoBnAcIbe0fbXko7e3twFDqjCUnGgwW9tPG81yrD40FC2yv4D0j+yADpR3d 3a2DfDDCAGW6kE4SYHaUOfY3a/PyGtCIRtQwyPsV -----END CERTIFICATE-----Generated at Wed May 13 13:00:32 2026 by rpki-client