$ rpki-client -vvf rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa File: 3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa (raw, json) Hash identifier: mzkKba2j66n6wraFNQYRS+UC4ztp7C2s0dllCrbur4g= Subject key identifier: 07:57:7A:71:C1:33:5D:50:71:09:CF:DE:88:BC:38:A0:91:62:BF:30 Certificate issuer: /CN=D9C4B6BE84C90BC406AB671E5F75A8C8656294F6 Certificate serial: 50EA0BDEE9FFFD65F8468E25CBA34123852C59C6 Authority key identifier: D9:C4:B6:BE:84:C9:0B:C4:06:AB:67:1E:5F:75:A8:C8:65:62:94:F6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa Signing time: Sun 03 May 2026 03:16:41 +0000 ROA not before: Sun 03 May 2026 03:11:41 +0000 ROA not after: Sun 02 May 2027 03:16:41 +0000 asID: 152811 IP address blocks: 160.22.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.crl rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ea:0b:de:e9:ff:fd:65:f8:46:8e:25:cb:a3:41:23:85:2c:59:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9C4B6BE84C90BC406AB671E5F75A8C8656294F6 Validity Not Before: May 3 03:11:41 2026 GMT Not After : May 2 03:16:41 2027 GMT Subject: CN=07577A71C1335D507109CFDE88BC38A09162BF30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:88:e9:ef:c8:88:84:d3:08:df:ce:57:43:2d: 2c:ab:9b:e7:f6:9e:8f:d5:ae:4b:71:47:79:5d:33: 47:ba:87:8c:e1:68:18:0d:2f:15:dd:95:83:cd:4e: d0:e6:b5:e1:4b:18:e3:4a:ad:72:7a:39:16:11:6e: 84:a1:66:66:f7:f0:88:e6:64:ff:7f:d5:59:22:c1: a7:f9:c0:d5:5f:57:6b:40:4b:c5:1f:89:9d:e0:97: 0d:dd:b9:f0:c5:36:4f:00:07:ea:60:ec:45:c0:30: 14:db:be:ea:3b:51:9a:e7:a9:13:1a:98:73:d0:6c: 9b:27:e4:7c:25:9b:1d:66:d8:9a:83:90:ad:11:72: 8f:45:e4:58:f8:f6:be:d8:e8:95:03:45:31:66:0e: 7e:ae:f1:b8:a3:c5:10:b0:df:a4:cb:2c:c5:de:9b: 3a:37:49:af:73:2e:ab:40:48:02:92:b3:21:b9:b3: d1:f2:30:ff:cf:91:b0:5b:97:d5:ae:43:0e:15:ec: e3:d2:97:cc:e1:26:03:d0:90:3a:51:34:68:bc:31: 61:e5:eb:c3:d3:fa:c1:22:57:90:2c:2d:a1:d5:b5: 3a:37:63:0e:aa:6a:90:2c:46:0e:0a:46:a9:cc:78: d6:e2:a9:30:db:22:a4:87:a4:55:eb:36:31:02:16: 12:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:57:7A:71:C1:33:5D:50:71:09:CF:DE:88:BC:38:A0:91:62:BF:30 X509v3 Authority Key Identifier: keyid:D9:C4:B6:BE:84:C9:0B:C4:06:AB:67:1E:5F:75:A8:C8:65:62:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/D9C4B6BE84C90BC406AB671E5F75A8C8656294F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/3136302e32322e3133362e302f32342d3234203d3e20313532383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/24 Signature Algorithm: sha256WithRSAEncryption 45:91:f2:3a:8f:e1:d0:33:ca:99:69:07:c8:55:94:a0:a6:d1: 46:73:64:12:ea:79:d1:96:9e:87:79:64:41:64:76:c9:cc:ae: 98:80:f9:ba:a8:0b:01:55:ec:3e:65:4d:fa:af:68:dd:92:05: 80:cc:64:ba:6b:b7:fb:fd:95:3b:91:8b:e2:d8:3d:89:07:33: 72:4b:04:c1:bb:f0:de:ab:8e:34:0c:8c:13:fa:31:9c:d5:01: fb:62:57:ad:2c:64:4a:2c:a7:3f:d4:d7:69:38:f6:4a:3c:72: 2e:25:82:ba:3f:5d:81:47:5c:29:43:a3:8e:09:eb:5b:24:83: 38:79:67:e9:29:b0:d5:4d:11:1d:01:0c:e9:1e:1d:2a:56:08: fa:57:ec:8d:1b:1d:3c:6f:df:e5:ff:20:b4:fb:d9:bb:f3:d8: 67:5e:ca:dd:ec:0d:62:05:a1:6c:58:1a:24:8a:fe:83:d9:bc: 0a:93:16:ae:da:d1:a2:44:2e:91:71:28:e9:91:7c:cc:71:71: e3:ff:b3:09:0e:a6:7d:99:74:b3:8f:dd:d5:f2:49:7f:bb:8f: 7a:fb:89:2e:bb:d9:c0:4e:ce:0b:01:89:f4:37:e4:57:ff:42: 3b:a0:7a:f3:be:6b:fe:af:09:8d:f8:a9:9f:45:66:a6:31:6e: 6b:5b:40:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUOoL3un//WX4Ro4ly6NBI4UsWcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDNEI2QkU4NEM5MEJDNDA2QUI2NzFFNUY3NUE4Qzg2 NTYyOTRGNjAeFw0yNjA1MDMwMzExNDFaFw0yNzA1MDIwMzE2NDFaMDMxMTAvBgNV BAMTKDA3NTc3QTcxQzEzMzVENTA3MTA5Q0ZERTg4QkMzOEEwOTE2MkJGMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmiOnvyIiE0wjfzldDLSyrm+f2 no/VrktxR3ldM0e6h4zhaBgNLxXdlYPNTtDmteFLGONKrXJ6ORYRboShZmb38Ijm ZP9/1Vkiwaf5wNVfV2tAS8UfiZ3glw3dufDFNk8AB+pg7EXAMBTbvuo7UZrnqRMa mHPQbJsn5Hwlmx1m2JqDkK0Rco9F5Fj49r7Y6JUDRTFmDn6u8bijxRCw36TLLMXe mzo3Sa9zLqtASAKSsyG5s9HyMP/PkbBbl9WuQw4V7OPSl8zhJgPQkDpRNGi8MWHl 68PT+sEiV5AsLaHVtTo3Yw6qapAsRg4KRqnMeNbiqTDbIqSHpFXrNjECFhJVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB1d6ccEzXVBxCc/eiLw4oJFivzAwHwYDVR0j BBgwFoAU2cS2voTJC8QGq2ceX3WoyGVilPYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjE5NWI0YjQtYmM4YS00Y2U1LWI1NTAtOWFhN2IzNmVlMWZhLzAvRDlDNEI2QkU4 NEM5MEJDNDA2QUI2NzFFNUY3NUE4Qzg2NTYyOTRGNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9EOUM0QjZCRTg0QzkwQkM0MDZBQjY3MUU1Rjc1QThDODY1NjI5 NEY2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0LWJjOGEtNGNlNS1i NTUwLTlhYTdiMzZlZTFmYS8wLzMxMzYzMDJlMzIzMjJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBaIMA0GCSqG SIb3DQEBCwUAA4IBAQBFkfI6j+HQM8qZaQfIVZSgptFGc2QS6nnRlp6HeWRBZHbJ zK6YgPm6qAsBVew+ZU36r2jdkgWAzGS6a7f7/ZU7kYvi2D2JBzNySwTBu/Deq440 DIwT+jGc1QH7YletLGRKLKc/1NdpOPZKPHIuJYK6P12BR1wpQ6OOCetbJIM4eWfp KbDVTREdAQzpHh0qVgj6V+yNGx08b9/l/yC0+9m789hnXsrd7A1iBaFsWBokiv6D 2bwKkxau2tGiRC6RcSjpkXzMcXHj/7MJDqZ9mXSzj93V8kl/u496+4kuu9nATs4L AYn0N+RX/0I7oHrzvmv+rwmN+KmfRWamMW5rW0BH -----END CERTIFICATE-----Generated at Wed May 13 03:16:42 2026 by rpki-client