$ rpki-client -vvf rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa File: 3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa (raw, json) Hash identifier: e4bsRLScbecV3EUW42ypNee+dC4atMUS4ULfB5R1TMs= Subject key identifier: FC:13:DD:AF:40:93:EA:12:E1:B0:D2:8E:FE:6E:A9:C8:D3:3E:D6:3D Certificate issuer: /CN=D9C4B6BE84C90BC406AB671E5F75A8C8656294F6 Certificate serial: 166954328BB8614AD1C6097529E4D7B923475DE4 Authority key identifier: D9:C4:B6:BE:84:C9:0B:C4:06:AB:67:1E:5F:75:A8:C8:65:62:94:F6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa Signing time: Sun 03 May 2026 03:16:42 +0000 ROA not before: Sun 03 May 2026 03:11:42 +0000 ROA not after: Sun 02 May 2027 03:16:42 +0000 asID: 152811 IP address blocks: 160.22.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.crl rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:69:54:32:8b:b8:61:4a:d1:c6:09:75:29:e4:d7:b9:23:47:5d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9C4B6BE84C90BC406AB671E5F75A8C8656294F6 Validity Not Before: May 3 03:11:42 2026 GMT Not After : May 2 03:16:42 2027 GMT Subject: CN=FC13DDAF4093EA12E1B0D28EFE6EA9C8D33ED63D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7e:6c:f5:47:3a:92:a9:e5:6e:fb:7c:0d:d0: 8c:81:a0:7d:dc:96:50:64:8f:d8:aa:9d:02:9f:5e: a9:c7:12:f7:c8:90:9d:43:ce:39:db:0c:b4:a4:cc: ca:b4:d9:50:82:08:e3:09:f8:1e:34:51:35:97:f7: c1:b3:7e:fb:3e:53:0d:07:1f:b6:a0:d5:88:de:59: 61:92:9a:34:45:6c:32:07:9c:6a:6f:43:9a:a5:9a: 73:31:4d:1a:74:f7:23:9d:fe:33:61:78:58:60:7e: 95:24:d2:6a:c9:ff:02:c4:59:27:b2:b7:67:c3:90: c6:4f:9d:8d:27:d5:1a:24:ce:df:5a:0b:ed:e5:fa: 31:29:52:86:a0:fa:97:86:e0:6c:cb:ca:06:64:af: 4f:20:d6:c2:2d:68:dd:15:f8:52:46:8f:8c:0e:12: c0:63:fe:e0:1e:61:c0:3d:32:c0:13:3e:1c:5f:ea: 6e:60:a3:39:ca:d6:66:1a:f1:19:dc:60:e5:d3:e9: aa:b6:c1:fa:b7:0d:1f:14:7d:51:81:ca:33:f4:5c: f8:b2:c7:e7:b1:9f:83:1c:b8:ea:c3:86:8d:30:29: 41:51:ff:dc:6f:15:32:d4:94:ed:c8:b0:22:40:a7: 95:04:7a:c3:23:5e:f0:e0:06:6c:68:76:c6:13:ef: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:13:DD:AF:40:93:EA:12:E1:B0:D2:8E:FE:6E:A9:C8:D3:3E:D6:3D X509v3 Authority Key Identifier: keyid:D9:C4:B6:BE:84:C9:0B:C4:06:AB:67:1E:5F:75:A8:C8:65:62:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32332d3233203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 51:6e:6a:86:e3:11:c5:c9:0e:33:11:5b:17:f2:91:c7:3d:1c: 92:49:8d:50:30:b5:c4:74:42:aa:d9:0c:eb:9f:7e:b9:4a:ed: cf:79:2c:e5:83:19:1e:02:c9:24:24:c4:53:64:7e:f4:e5:8d: f3:38:9a:d0:38:f6:cd:5f:34:0d:1b:d6:c1:66:9b:d8:8d:0a: 32:f1:56:5d:5f:a7:af:4a:24:c7:89:63:a3:ac:84:1a:c1:8c: 5e:1c:c2:2f:77:14:f7:e0:d4:12:37:9b:ff:c4:c2:34:44:2f: a5:40:2a:7f:3e:55:35:c1:b9:3d:eb:05:5f:8f:54:b4:9e:d9: 27:d8:71:2d:e2:21:12:e9:ca:42:e1:cf:62:99:91:f7:4b:cd: 40:34:1c:21:11:86:6a:0d:cc:3e:76:2b:b1:c0:e1:1b:7f:b2: ba:c3:b5:cd:6a:29:64:87:86:9e:02:36:00:84:df:41:a9:38: 5c:d2:f6:f2:be:6b:ae:7e:af:eb:07:55:d6:d5:fc:8f:50:14: f8:b2:39:fd:66:e4:6d:ef:83:f2:28:85:e2:46:85:de:7e:fe: 60:dc:d0:5d:bb:1c:97:b4:bf:2d:c3:c3:eb:23:11:35:a7:3f: 87:64:62:0c:d5:f3:cb:9b:51:21:f7:e8:fe:a5:7e:ec:62:52: cf:cc:3d:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFmlUMou4YUrRxgl1KeTXuSNHXeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDNEI2QkU4NEM5MEJDNDA2QUI2NzFFNUY3NUE4Qzg2 NTYyOTRGNjAeFw0yNjA1MDMwMzExNDJaFw0yNzA1MDIwMzE2NDJaMDMxMTAvBgNV BAMTKEZDMTNEREFGNDA5M0VBMTJFMUIwRDI4RUZFNkVBOUM4RDMzRUQ2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYfmz1RzqSqeVu+3wN0IyBoH3c llBkj9iqnQKfXqnHEvfIkJ1DzjnbDLSkzMq02VCCCOMJ+B40UTWX98Gzfvs+Uw0H H7ag1YjeWWGSmjRFbDIHnGpvQ5qlmnMxTRp09yOd/jNheFhgfpUk0mrJ/wLEWSey t2fDkMZPnY0n1Rokzt9aC+3l+jEpUoag+peG4GzLygZkr08g1sItaN0V+FJGj4wO EsBj/uAeYcA9MsATPhxf6m5goznK1mYa8RncYOXT6aq2wfq3DR8UfVGByjP0XPiy x+exn4McuOrDho0wKUFR/9xvFTLUlO3IsCJAp5UEesMjXvDgBmxodsYT7wqhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/BPdr0CT6hLhsNKO/m6pyNM+1j0wHwYDVR0j BBgwFoAU2cS2voTJC8QGq2ceX3WoyGVilPYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjE5NWI0YjQtYmM4YS00Y2U1LWI1NTAtOWFhN2IzNmVlMWZhLzAvRDlDNEI2QkU4 NEM5MEJDNDA2QUI2NzFFNUY3NUE4Qzg2NTYyOTRGNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EOUM0QjZCRTg0QzkwQkM0MDZBQjY3MUU1Rjc1QThDODY1NjI5 NEY2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQBRbmqG4xHFyQ4zEVsX8pHHPRySSY1QMLXEdEKq2Qzrn365 Su3PeSzlgxkeAskkJMRTZH705Y3zOJrQOPbNXzQNG9bBZpvYjQoy8VZdX6evSiTH iWOjrIQawYxeHMIvdxT34NQSN5v/xMI0RC+lQCp/PlU1wbk96wVfj1S0ntkn2HEt 4iES6cpC4c9imZH3S81ANBwhEYZqDcw+diuxwOEbf7K6w7XNailkh4aeAjYAhN9B qThc0vbyvmuufq/rB1XW1fyPUBT4sjn9ZuRt74PyKIXiRoXefv5g3NBduxyXtL8t w8PrIxE1pz+HZGIM1fPLm1Eh9+j+pX7sYlLPzD3d -----END CERTIFICATE-----Generated at Wed May 13 00:34:16 2026 by rpki-client