$ rpki-client -vvf rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa File: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (raw, json) Hash identifier: oCEPSRGBFFoflWYSjHYx9VCHu8/mjpeyrYwb5luSmks= Subject key identifier: FD:15:DF:E5:11:69:77:BA:74:8C:F5:31:34:64:9C:79:89:AB:B6:D9 Certificate issuer: /CN=FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C Certificate serial: 156BDDD3DD35849F1845F2D5A5984BC8718EB80B Authority key identifier: FD:5F:AE:8F:24:1E:C7:B7:2B:D4:BA:87:95:21:67:6B:1D:A8:F3:8C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa Signing time: Sun 03 May 2026 03:19:05 +0000 ROA not before: Sun 03 May 2026 03:14:05 +0000 ROA not after: Sun 02 May 2027 03:19:05 +0000 asID: 152790 IP address blocks: 160.20.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.crl rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6b:dd:d3:dd:35:84:9f:18:45:f2:d5:a5:98:4b:c8:71:8e:b8:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C Validity Not Before: May 3 03:14:05 2026 GMT Not After : May 2 03:19:05 2027 GMT Subject: CN=FD15DFE5116977BA748CF53134649C7989ABB6D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:74:15:8c:34:e2:a0:53:5f:af:47:25:9f: 5c:3c:33:c5:d4:56:56:75:fc:19:1f:2c:fe:b3:22: cb:28:7e:b9:f3:41:6d:96:00:bd:94:1f:85:f8:00: ca:cd:12:d4:db:c9:db:0f:96:82:70:a0:42:37:92: 65:4f:d9:d1:58:82:0b:7f:42:8a:39:49:10:af:5a: 1c:73:c1:49:47:fe:a0:d8:86:44:a0:e9:3f:4a:95: 0f:c1:cb:b5:60:29:38:b3:a6:2e:bd:bf:78:81:99: cf:fa:90:58:22:51:34:75:6a:d9:25:bb:0e:e7:c4: 7e:7e:f7:b0:8e:fa:5b:c9:b6:11:2a:06:9e:a9:e3: cd:82:48:9c:0f:87:c1:df:46:9d:30:31:ce:74:b7: 92:2b:ae:d6:de:52:87:4a:98:0e:da:2d:08:1a:58: 36:10:90:ce:d9:52:69:e0:1e:8f:eb:e4:84:9a:3f: 57:33:60:15:29:4b:ee:7d:03:8b:bf:4d:c5:2b:18: 64:e6:ae:0a:54:74:c4:bf:5a:dc:e2:5b:e7:07:5f: 94:3d:00:6a:1f:02:ed:97:dc:78:2a:02:5d:9b:8b: 2f:b7:3a:25:bf:37:83:b7:ae:e3:e5:e0:98:53:62: d4:2e:e2:d3:59:44:69:20:6c:19:95:6e:4b:b7:5f: fb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:15:DF:E5:11:69:77:BA:74:8C:F5:31:34:64:9C:79:89:AB:B6:D9 X509v3 Authority Key Identifier: keyid:FD:5F:AE:8F:24:1E:C7:B7:2B:D4:BA:87:95:21:67:6B:1D:A8:F3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.104.0/23 Signature Algorithm: sha256WithRSAEncryption 36:20:a0:34:50:3c:2e:ef:c0:c8:c8:ca:1b:27:9c:1c:a9:be: 42:b5:81:de:2c:b8:26:65:84:d6:7e:23:7c:db:7d:b0:bd:6d: 38:d9:4b:71:e4:dc:f7:eb:3a:56:da:88:7b:a2:26:94:34:90: 22:0f:88:3e:5f:51:56:7e:ad:94:7a:40:2d:68:6b:a7:9a:8b: 62:87:4a:0e:cf:69:3c:60:91:fb:cb:ef:7e:f0:45:b5:1d:36: 26:07:29:f0:8b:5d:76:23:49:b2:94:5a:80:7e:7e:7d:a4:fd: 9c:7f:04:0e:f6:fb:b4:80:79:69:b0:85:e5:eb:84:fe:07:12: 61:c4:4a:fb:3b:26:d7:19:a8:b4:6d:2c:96:87:20:82:68:18: d3:ef:06:77:01:9b:e2:db:a6:8a:4b:61:3f:6c:03:68:d0:b8: e8:45:6a:7d:f8:f1:b2:5d:7f:c4:98:ae:01:e5:3e:ce:ab:18: 24:19:fe:49:c5:63:d0:c0:45:80:64:68:aa:45:dd:ad:49:27: d5:7f:94:ba:ab:e4:d0:d9:e0:43:6f:a5:fe:5d:c6:33:58:fc: 84:fb:93:82:61:21:72:62:d4:e1:e3:09:1c:27:d2:ec:0a:af: ed:fb:14:b0:54:81:85:5b:c5:f2:55:50:96:d7:c9:d7:65:c2: 04:1c:98:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFWvd0901hJ8YRfLVpZhLyHGOuAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ1RkFFOEYyNDFFQzdCNzJCRDRCQTg3OTUyMTY3NkIx REE4RjM4QzAeFw0yNjA1MDMwMzE0MDVaFw0yNzA1MDIwMzE5MDVaMDMxMTAvBgNV BAMTKEZEMTVERkU1MTE2OTc3QkE3NDhDRjUzMTM0NjQ5Qzc5ODlBQkI2RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDanQVjDTioFNfr0cln1w8M8XU VlZ1/BkfLP6zIssofrnzQW2WAL2UH4X4AMrNEtTbydsPloJwoEI3kmVP2dFYggt/ Qoo5SRCvWhxzwUlH/qDYhkSg6T9KlQ/By7VgKTizpi69v3iBmc/6kFgiUTR1atkl uw7nxH5+97CO+lvJthEqBp6p482CSJwPh8HfRp0wMc50t5IrrtbeUodKmA7aLQga WDYQkM7ZUmngHo/r5ISaP1czYBUpS+59A4u/TcUrGGTmrgpUdMS/WtziW+cHX5Q9 AGofAu2X3HgqAl2biy+3OiW/N4O3ruPl4JhTYtQu4tNZRGkgbBmVbku3X/sfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/RXf5RFpd7p0jPUxNGSceYmrttkwHwYDVR0j BBgwFoAU/V+ujyQex7cr1LqHlSFnax2o84wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJiNWZhNGEtYmVhNi00NjRmLWI0MDktMTFkOWEzNzYxYTZjLzAvRkQ1RkFFOEYy NDFFQzdCNzJCRDRCQTg3OTUyMTY3NkIxREE4RjM4Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GRDVGQUU4RjI0MUVDN0I3MkJENEJBODc5NTIxNjc2QjFEQThG MzhDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8wLzMxMzYzMDJlMzIzMDJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBRoMA0GCSqG SIb3DQEBCwUAA4IBAQA2IKA0UDwu78DIyMobJ5wcqb5CtYHeLLgmZYTWfiN8232w vW042Utx5Nz36zpW2oh7oiaUNJAiD4g+X1FWfq2UekAtaGunmotih0oOz2k8YJH7 y+9+8EW1HTYmBynwi112I0mylFqAfn59pP2cfwQO9vu0gHlpsIXl64T+BxJhxEr7 OybXGai0bSyWhyCCaBjT7wZ3AZvi26aKS2E/bANo0LjoRWp9+PGyXX/EmK4B5T7O qxgkGf5JxWPQwEWAZGiqRd2tSSfVf5S6q+TQ2eBDb6X+XcYzWPyE+5OCYSFyYtTh 4wkcJ9LsCq/t+xSwVIGFW8XyVVCW18nXZcIEHJjC -----END CERTIFICATE-----Generated at Wed May 13 02:33:42 2026 by rpki-client