$ rpki-client -vvf rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa File: 3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa (raw, json) Hash identifier: geTlR2xlRfEtN72u5a2Y4lLKK2jTFc1FYHlhZP1ErB8= Subject key identifier: 2C:D2:8C:BE:90:79:BE:88:21:23:41:E3:3B:94:75:B9:6E:19:77:B6 Certificate issuer: /CN=9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9 Certificate serial: 4A4358C75C94DE94F796D8051A4C72BAC435BB98 Authority key identifier: 9C:23:FB:3E:8B:85:96:1F:D4:8B:C7:80:DA:F4:4C:EF:B6:47:C6:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa Signing time: Sun 03 May 2026 03:17:34 +0000 ROA not before: Sun 03 May 2026 03:12:34 +0000 ROA not after: Sun 02 May 2027 03:17:34 +0000 asID: 152829 IP address blocks: 160.22.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.crl rsync://rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 12:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:43:58:c7:5c:94:de:94:f7:96:d8:05:1a:4c:72:ba:c4:35:bb:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9 Validity Not Before: May 3 03:12:34 2026 GMT Not After : May 2 03:17:34 2027 GMT Subject: CN=2CD28CBE9079BE88212341E33B9475B96E1977B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:89:78:6b:ba:ab:39:2e:01:32:ff:0a:21:5d: ed:d8:11:c2:82:bf:f4:50:db:ad:eb:81:6b:de:23: 14:95:6b:7f:23:f4:92:0e:65:f3:83:1a:21:6e:b9: c6:c7:4b:97:df:4a:fd:ff:7a:9f:55:9a:42:3e:0d: 7c:39:8f:d6:6b:c2:ce:10:f8:6f:8c:e6:89:0d:52: ac:77:08:0f:df:78:28:fc:09:59:9e:12:46:37:36: 98:f6:47:6f:60:27:d8:68:7e:32:24:54:3d:cd:af: b1:bd:3d:91:28:ca:9d:6b:e4:f0:a6:63:7d:3d:22: d4:3d:4d:15:cd:b9:36:04:6f:7b:35:df:8e:7c:f1: 6b:34:9d:9f:3c:68:2e:4a:d6:a4:1b:9d:9d:3e:27: ca:fe:b4:b4:32:7d:11:ec:56:c6:05:70:78:1e:76: bf:35:b6:9c:d6:a2:73:c4:79:34:2a:fb:0d:2e:41: 73:23:c7:74:18:81:19:12:82:4b:fe:c3:be:42:06: cd:c2:08:18:c4:31:2c:d0:ed:93:2d:c5:37:52:2a: c7:0d:93:e4:1e:29:6b:23:a0:e5:f0:11:1e:bd:78: 4a:72:38:bc:29:f2:cc:77:08:22:db:00:f0:be:07: f4:a9:c5:af:12:ee:c2:6c:d3:4b:c3:08:fd:b9:99: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D2:8C:BE:90:79:BE:88:21:23:41:E3:3B:94:75:B9:6E:19:77:B6 X509v3 Authority Key Identifier: keyid:9C:23:FB:3E:8B:85:96:1F:D4:8B:C7:80:DA:F4:4C:EF:B6:47:C6:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9C23FB3E8B85961FD48BC780DAF44CEFB647C6E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.208.0/23 Signature Algorithm: sha256WithRSAEncryption 71:36:fc:6e:21:a8:11:9d:89:16:63:00:3d:65:dd:61:95:56: ba:97:a7:a5:b0:ed:dd:99:93:12:67:cf:65:b2:cb:e0:84:a3: 2b:9b:d8:8d:f0:43:4c:13:93:cc:b5:97:68:66:d0:f9:f2:d1: 87:23:a7:ae:bd:6e:d0:31:98:be:4b:87:51:bd:00:1e:c5:8b: 3c:4f:07:73:82:a6:3e:c7:a6:2b:4c:ca:dd:f1:ba:ac:c9:90: 1d:d7:6e:da:b2:a8:0c:7e:d9:3a:a5:6a:80:f9:64:c1:28:46: e2:c6:ac:01:67:cb:63:4d:4f:f5:d0:2c:cb:88:9a:c6:40:18: 4b:b4:49:85:e2:66:db:75:45:a4:5a:23:f3:a7:67:b8:78:f0: 7d:4d:83:92:78:23:5d:50:07:44:1f:aa:35:c2:8a:11:e8:ba: b1:f1:a6:b8:50:72:08:c1:ce:4d:d9:4b:88:14:a1:4f:3b:f0: 6b:f5:33:47:41:06:cc:e4:ea:8e:3f:93:8d:b1:31:50:5b:cd: 28:51:de:42:9a:14:9b:a0:54:1a:17:23:53:f5:ce:2b:1b:61: 6c:3a:10:37:1f:fa:d7:ef:ce:b2:8d:a3:c4:3d:3c:3e:56:ce: 01:28:2c:91:ab:53:35:9f:f9:54:9f:e4:b6:ca:57:16:db:9f: d1:8d:41:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSkNYx1yU3pT3ltgFGkxyusQ1u5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMyM0ZCM0U4Qjg1OTYxRkQ0OEJDNzgwREFGNDRDRUZC NjQ3QzZFOTAeFw0yNjA1MDMwMzEyMzRaFw0yNzA1MDIwMzE3MzRaMDMxMTAvBgNV BAMTKDJDRDI4Q0JFOTA3OUJFODgyMTIzNDFFMzNCOTQ3NUI5NkUxOTc3QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsiXhruqs5LgEy/wohXe3YEcKC v/RQ263rgWveIxSVa38j9JIOZfODGiFuucbHS5ffSv3/ep9VmkI+DXw5j9Zrws4Q +G+M5okNUqx3CA/feCj8CVmeEkY3Npj2R29gJ9hofjIkVD3Nr7G9PZEoyp1r5PCm Y309ItQ9TRXNuTYEb3s134588Ws0nZ88aC5K1qQbnZ0+J8r+tLQyfRHsVsYFcHge dr81tpzWonPEeTQq+w0uQXMjx3QYgRkSgkv+w75CBs3CCBjEMSzQ7ZMtxTdSKscN k+QeKWsjoOXwER69eEpyOLwp8sx3CCLbAPC+B/Spxa8S7sJs00vDCP25mZfZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULNKMvpB5voghI0HjO5R1uW4Zd7YwHwYDVR0j BBgwFoAUnCP7PouFlh/Ui8eA2vRM77ZHxukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjNjYjUwYjAtNDNjYy00OGQwLTkxZjQtMDViYmRlN2FjMWQwLzAvOUMyM0ZCM0U4 Qjg1OTYxRkQ0OEJDNzgwREFGNDRDRUZCNjQ3QzZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC85QzIzRkIzRThCODU5NjFGRDQ4QkM3ODBEQUY0NENFRkI2NDdD NkU5LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YzY2I1MGIwLTQzY2MtNDhkMC05 MWY0LTA1YmJkZTdhYzFkMC8wLzMxMzYzMDJlMzIzMjJlMzIzMDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbQMA0GCSqG SIb3DQEBCwUAA4IBAQBxNvxuIagRnYkWYwA9Zd1hlVa6l6elsO3dmZMSZ89lssvg hKMrm9iN8ENME5PMtZdoZtD58tGHI6euvW7QMZi+S4dRvQAexYs8TwdzgqY+x6Yr TMrd8bqsyZAd127asqgMftk6pWqA+WTBKEbixqwBZ8tjTU/10CzLiJrGQBhLtEmF 4mbbdUWkWiPzp2e4ePB9TYOSeCNdUAdEH6o1wooR6Lqx8aa4UHIIwc5N2UuIFKFP O/Br9TNHQQbM5OqOP5ONsTFQW80oUd5CmhSboFQaFyNT9c4rG2FsOhA3H/rX786y jaPEPTw+Vs4BKCyRq1M1n/lUn+S2ylcW25/RjUGC -----END CERTIFICATE-----Generated at Wed May 13 04:09:27 2026 by rpki-client