$ rpki-client -vvf rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137352e302f32342d3234203d3e20313533303733.roa File: 3136302e32352e3137352e302f32342d3234203d3e20313533303733.roa (raw, json) Hash identifier: YDSkpFGq8xybThgooh1RThJN9W0fBsfNyr37Omd1f4w= Subject key identifier: E3:69:95:7C:A4:C9:2C:96:8E:14:21:4D:23:FC:6B:77:65:5E:DE:1F Certificate issuer: /CN=5C7445C1E1376E4A7B404BC53A71AC927D2C2204 Certificate serial: 36AB9E95FD1CCF4019C491F285508916163D37AE Authority key identifier: 5C:74:45:C1:E1:37:6E:4A:7B:40:4B:C5:3A:71:AC:92:7D:2C:22:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137352e302f32342d3234203d3e20313533303733.roa Signing time: Sun 03 May 2026 03:15:42 +0000 ROA not before: Sun 03 May 2026 03:10:42 +0000 ROA not after: Sun 02 May 2027 03:15:42 +0000 asID: 153073 IP address blocks: 160.25.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.crl rsync://rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ab:9e:95:fd:1c:cf:40:19:c4:91:f2:85:50:89:16:16:3d:37:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C7445C1E1376E4A7B404BC53A71AC927D2C2204 Validity Not Before: May 3 03:10:42 2026 GMT Not After : May 2 03:15:42 2027 GMT Subject: CN=E369957CA4C92C968E14214D23FC6B77655EDE1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:87:2a:9e:84:3f:45:47:d6:53:ec:64:2b:89: 84:05:10:97:b1:44:2d:8c:6c:a7:a2:39:5a:4c:5c: 34:91:31:33:c0:fa:4c:7f:b7:10:1c:25:c6:65:67: 9c:66:82:d3:5e:5d:97:dd:b2:98:a5:50:c2:d2:6e: 82:37:70:b6:33:59:46:02:21:4e:12:32:42:b5:7d: 01:8e:24:23:2e:34:bf:80:0e:7e:88:f4:68:9d:c1: e1:d4:25:51:96:6a:e4:e4:44:36:25:41:19:da:0e: 5b:a7:47:e2:f0:22:1b:25:bf:05:cd:34:4c:dd:85: 72:c6:80:7f:e6:36:db:ec:8d:8f:f9:1e:ba:f5:ad: 30:38:fe:7f:ac:ea:cd:c7:df:8a:86:3e:2b:16:34: af:8f:aa:5f:ad:46:fa:f1:b5:7c:fa:12:d6:84:f8: 3b:08:c6:d4:a3:c7:f6:50:0a:cd:22:74:07:08:e4: 63:66:73:9d:52:e1:6d:15:3c:cf:c1:20:35:d8:3e: 02:13:05:04:0e:b7:79:8a:a2:8e:49:87:6e:dd:d1: 95:71:af:76:78:a3:9a:6f:e7:23:f1:01:14:19:29: 2b:7d:be:5b:0d:83:a8:33:14:c1:a3:cb:3a:fb:51: 76:7f:0c:40:08:4d:9a:77:39:90:ac:88:ad:51:8a: f6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:69:95:7C:A4:C9:2C:96:8E:14:21:4D:23:FC:6B:77:65:5E:DE:1F X509v3 Authority Key Identifier: keyid:5C:74:45:C1:E1:37:6E:4A:7B:40:4B:C5:3A:71:AC:92:7D:2C:22:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5C7445C1E1376E4A7B404BC53A71AC927D2C2204.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137352e302f32342d3234203d3e20313533303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.175.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:21:4e:a4:b7:ba:62:0f:eb:87:5c:02:30:3f:d2:35:8c:29: ae:03:3a:7d:e8:48:19:25:f5:56:ba:28:7d:b4:1b:66:56:ca: aa:e8:41:c1:4c:7e:84:eb:4d:e2:10:c9:96:9a:fd:fe:61:57: bd:95:a1:f6:78:28:c0:d2:7a:16:79:bf:78:c6:79:26:ac:47: 8c:9c:1b:37:cd:50:25:b2:aa:cc:9e:d4:d6:7b:2a:e4:23:ed: ae:83:b1:a6:d2:e7:9e:98:72:a0:6d:46:7f:e3:c8:ae:07:08: 8e:a4:80:55:96:46:88:87:23:6d:42:82:6e:24:53:d6:57:e2: 84:bd:56:39:f6:b9:7e:87:f6:b9:c1:76:39:cb:c0:24:c0:2a: 5a:44:a7:58:50:6a:a3:52:aa:a1:22:77:e6:10:81:79:52:cc: 41:9f:68:7b:d2:3a:f1:c8:42:ee:6b:e8:e9:27:66:7a:7a:53: 64:32:a6:67:be:1d:f1:df:16:52:01:24:b7:ad:b4:66:30:c2: 85:11:f4:99:13:90:23:ac:ff:11:4d:eb:8e:71:66:05:d9:be: d4:ae:81:84:71:b0:79:62:26:ab:75:15:da:38:06:38:b5:22: dd:8b:45:36:c9:74:c2:45:aa:5f:ed:41:b0:ce:46:f2:d2:09: 07:84:47:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNquelf0cz0AZxJHyhVCJFhY9N64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM3NDQ1QzFFMTM3NkU0QTdCNDA0QkM1M0E3MUFDOTI3 RDJDMjIwNDAeFw0yNjA1MDMwMzEwNDJaFw0yNzA1MDIwMzE1NDJaMDMxMTAvBgNV BAMTKEUzNjk5NTdDQTRDOTJDOTY4RTE0MjE0RDIzRkM2Qjc3NjU1RURFMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKhyqehD9FR9ZT7GQriYQFEJex RC2MbKeiOVpMXDSRMTPA+kx/txAcJcZlZ5xmgtNeXZfdspilUMLSboI3cLYzWUYC IU4SMkK1fQGOJCMuNL+ADn6I9GidweHUJVGWauTkRDYlQRnaDlunR+LwIhslvwXN NEzdhXLGgH/mNtvsjY/5Hrr1rTA4/n+s6s3H34qGPisWNK+Pql+tRvrxtXz6EtaE +DsIxtSjx/ZQCs0idAcI5GNmc51S4W0VPM/BIDXYPgITBQQOt3mKoo5Jh27d0ZVx r3Z4o5pv5yPxARQZKSt9vlsNg6gzFMGjyzr7UXZ/DEAITZp3OZCsiK1Riva5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU42mVfKTJLJaOFCFNI/xrd2Ve3h8wHwYDVR0j BBgwFoAUXHRFweE3bkp7QEvFOnGskn0sIgQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWM3MmVlM2MtZTE4MC00Mjk2LTlkYWQtOTUwMGVmZDk0ODkwLzAvNUM3NDQ1QzFF MTM3NkU0QTdCNDA0QkM1M0E3MUFDOTI3RDJDMjIwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81Qzc0NDVDMUUxMzc2RTRBN0I0MDRCQzUzQTcxQUM5MjdEMkMy MjA0LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VjNzJlZTNjLWUxODAtNDI5Ni05 ZGFkLTk1MDBlZmQ5NDg5MC8wLzMxMzYzMDJlMzIzNTJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmvMA0GCSqG SIb3DQEBCwUAA4IBAQCKIU6kt7piD+uHXAIwP9I1jCmuAzp96EgZJfVWuih9tBtm Vsqq6EHBTH6E603iEMmWmv3+YVe9laH2eCjA0noWeb94xnkmrEeMnBs3zVAlsqrM ntTWeyrkI+2ug7Gm0ueemHKgbUZ/48iuBwiOpIBVlkaIhyNtQoJuJFPWV+KEvVY5 9rl+h/a5wXY5y8AkwCpaRKdYUGqjUqqhInfmEIF5UsxBn2h70jrxyELua+jpJ2Z6 elNkMqZnvh3x3xZSASS3rbRmMMKFEfSZE5AjrP8RTeuOcWYF2b7UroGEcbB5Yiar dRXaOAY4tSLdi0U2yXTCRapf7UGwzkby0gkHhEdl -----END CERTIFICATE-----Generated at Wed May 13 04:47:15 2026 by rpki-client