$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3136302e32322e39352e302f32342d3234203d3e20313533313130.roa File: 3136302e32322e39352e302f32342d3234203d3e20313533313130.roa (raw, json) Hash identifier: Q+S9A/y116CZNR4HsWvWafo8POLMzZHES9UK/q+FgoQ= Subject key identifier: 10:F0:CC:7B:4C:73:86:A5:DF:00:BE:46:EC:53:A4:3E:06:31:E7:E6 Certificate issuer: /CN=3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE Certificate serial: 4E991646BEBA4F63BBFF8F5B5A30ADF521C54E41 Authority key identifier: 3D:8B:1B:0F:FC:78:64:B1:A0:E9:9A:09:EB:F5:A7:6C:96:C8:27:DE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3136302e32322e39352e302f32342d3234203d3e20313533313130.roa Signing time: Sun 03 May 2026 03:14:57 +0000 ROA not before: Sun 03 May 2026 03:09:57 +0000 ROA not after: Sun 02 May 2027 03:14:57 +0000 asID: 153110 IP address blocks: 160.22.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.crl rsync://rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:99:16:46:be:ba:4f:63:bb:ff:8f:5b:5a:30:ad:f5:21:c5:4e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE Validity Not Before: May 3 03:09:57 2026 GMT Not After : May 2 03:14:57 2027 GMT Subject: CN=10F0CC7B4C7386A5DF00BE46EC53A43E0631E7E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:7a:60:39:b6:ba:a5:53:ba:69:0b:44:9e: e6:c2:4d:4a:23:c5:c5:dd:f0:1b:c9:d5:bd:a4:b6: 57:76:eb:33:e7:7f:5b:a7:7f:85:e0:0e:01:ef:7f: 32:26:59:e7:22:e6:6d:da:80:4e:d4:fc:0c:1d:98: d8:c7:c1:80:a2:84:48:1c:7e:8e:18:f7:70:d7:16: 0d:25:a9:f9:f4:96:4f:95:75:84:95:c7:7f:28:d1: 01:89:03:85:cf:7d:7e:42:2e:76:17:33:b2:11:15: 7e:62:b6:6a:49:0f:46:9e:c9:be:50:2d:1a:9b:e1: 3f:af:1b:4c:06:43:07:30:32:03:b8:ed:5a:b6:92: 35:f0:7e:51:b1:f2:18:18:e0:a0:c1:5f:1e:9c:eb: 79:b9:86:0d:e6:35:fd:21:9a:c2:0d:48:7e:11:aa: 77:28:7c:42:a5:67:33:89:d9:be:22:f4:13:d8:3d: e5:9a:62:d0:ca:7f:54:ed:c6:ea:68:31:a5:94:e0: e7:43:84:a2:a3:6d:08:88:74:06:a7:55:0a:9d:55: a2:f1:ce:88:18:9f:35:1e:61:43:9d:7b:08:62:e9: a6:e5:29:2b:2d:a7:7b:78:8c:3a:f9:68:10:e1:2f: 61:61:eb:b3:c8:9e:b7:16:ef:71:b5:ae:e7:62:65: a7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F0:CC:7B:4C:73:86:A5:DF:00:BE:46:EC:53:A4:3E:06:31:E7:E6 X509v3 Authority Key Identifier: keyid:3D:8B:1B:0F:FC:78:64:B1:A0:E9:9A:09:EB:F5:A7:6C:96:C8:27:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3D8B1B0FFC7864B1A0E99A09EBF5A76C96C827DE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea077386-301b-4ff1-871b-6232b5f3be09/0/3136302e32322e39352e302f32342d3234203d3e20313533313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.95.0/24 Signature Algorithm: sha256WithRSAEncryption 46:a3:66:93:45:aa:13:c9:f1:79:5b:2b:ab:ae:44:bd:de:6b: b8:49:50:23:4a:df:37:e9:56:61:42:12:a6:2d:ed:ea:58:b4: 5a:72:46:32:14:b8:d9:b3:20:32:6f:45:7b:53:f7:32:ae:bb: a3:66:3c:8f:2e:d4:b0:9b:f6:ef:ae:ab:c8:b2:08:8a:85:c5: 75:4f:bf:3a:65:65:7b:78:00:9e:03:1c:98:e7:f4:35:12:2f: 43:cf:10:ba:88:ab:a3:9d:7e:2b:2a:b4:e1:e1:68:a0:a0:27: e9:89:75:11:4f:1e:9e:bf:1d:4a:41:b3:fe:6f:da:06:57:63: 29:e6:bb:f7:f8:86:26:15:39:20:10:88:ab:5f:1a:49:6f:d2: 72:f4:90:4e:cb:e0:f4:a1:8c:36:e9:08:5a:7d:de:26:c7:71: 48:3d:97:87:59:ba:c5:f9:97:c2:25:fc:5a:5a:c4:de:19:70: db:94:5d:da:5b:4c:0b:a1:0b:11:a5:41:17:ef:d1:3f:6f:8f: db:17:2b:da:ee:89:40:4a:f2:91:99:d0:77:71:c1:b0:e1:33: 57:89:fa:e6:9f:bb:bd:8b:7e:6b:b8:9a:f3:31:40:a9:da:40: f9:81:c6:de:6c:52:9e:12:74:37:52:fe:81:96:02:6e:6b:f7: a2:0b:3a:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTpkWRr66T2O7/49bWjCt9SHFTkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q4QjFCMEZGQzc4NjRCMUEwRTk5QTA5RUJGNUE3NkM5 NkM4MjdERTAeFw0yNjA1MDMwMzA5NTdaFw0yNzA1MDIwMzE0NTdaMDMxMTAvBgNV BAMTKDEwRjBDQzdCNEM3Mzg2QTVERjAwQkU0NkVDNTNBNDNFMDYzMUU3RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCutnpgOba6pVO6aQtEnubCTUoj xcXd8BvJ1b2ktld26zPnf1unf4XgDgHvfzImWeci5m3agE7U/AwdmNjHwYCihEgc fo4Y93DXFg0lqfn0lk+VdYSVx38o0QGJA4XPfX5CLnYXM7IRFX5itmpJD0aeyb5Q LRqb4T+vG0wGQwcwMgO47Vq2kjXwflGx8hgY4KDBXx6c63m5hg3mNf0hmsINSH4R qncofEKlZzOJ2b4i9BPYPeWaYtDKf1TtxupoMaWU4OdDhKKjbQiIdAanVQqdVaLx zogYnzUeYUOdewhi6ablKSstp3t4jDr5aBDhL2Fh67PInrcW73G1rudiZadjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEPDMe0xzhqXfAL5G7FOkPgYx5+YwHwYDVR0j BBgwFoAUPYsbD/x4ZLGg6ZoJ6/WnbJbIJ94wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWEwNzczODYtMzAxYi00ZmYxLTg3MWItNjIzMmI1ZjNiZTA5LzAvM0Q4QjFCMEZG Qzc4NjRCMUEwRTk5QTA5RUJGNUE3NkM5NkM4MjdERS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zRDhCMUIwRkZDNzg2NEIxQTBFOTlBMDlFQkY1QTc2Qzk2Qzgy N0RFLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhMDc3Mzg2LTMwMWItNGZmMS04 NzFiLTYyMzJiNWYzYmUwOS8wLzMxMzYzMDJlMzIzMjJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzMxMzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWXzANBgkqhkiG 9w0BAQsFAAOCAQEARqNmk0WqE8nxeVsrq65Evd5ruElQI0rfN+lWYUISpi3t6li0 WnJGMhS42bMgMm9Fe1P3Mq67o2Y8jy7UsJv2766ryLIIioXFdU+/OmVle3gAngMc mOf0NRIvQ88Quoiro51+Kyq04eFooKAn6Yl1EU8enr8dSkGz/m/aBldjKea79/iG JhU5IBCIq18aSW/ScvSQTsvg9KGMNukIWn3eJsdxSD2Xh1m6xfmXwiX8WlrE3hlw 25Rd2ltMC6ELEaVBF+/RP2+P2xcr2u6JQErykZnQd3HBsOEzV4n65p+7vYt+a7ia 8zFAqdpA+YHG3mxSnhJ0N1L+gZYCbmv3ogs6mA== -----END CERTIFICATE-----Generated at Wed May 13 05:47:20 2026 by rpki-client