$ rpki-client -vvf rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa File: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (raw, json) Hash identifier: RnJJllf0YMteG3AFkp1Ixqim8p6HBfDvdaEh2ix5oH0= Subject key identifier: 5F:2A:6E:71:F3:83:94:F8:7F:5D:10:21:81:25:95:9A:D8:97:01:98 Certificate issuer: /CN=FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C Certificate serial: 6392F0826390913BB21A764B0AA486FE28836DD8 Authority key identifier: FD:5F:AE:8F:24:1E:C7:B7:2B:D4:BA:87:95:21:67:6B:1D:A8:F3:8C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa Signing time: Sun 03 May 2026 03:19:05 +0000 ROA not before: Sun 03 May 2026 03:14:05 +0000 ROA not after: Sun 02 May 2027 03:19:05 +0000 asID: 152790 IP address blocks: 160.20.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.crl rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:92:f0:82:63:90:91:3b:b2:1a:76:4b:0a:a4:86:fe:28:83:6d:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C Validity Not Before: May 3 03:14:05 2026 GMT Not After : May 2 03:19:05 2027 GMT Subject: CN=5F2A6E71F38394F87F5D10218125959AD8970198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:79:10:54:4b:57:67:c9:b1:3a:c1:39:f3:7a: 0f:be:fc:23:06:32:19:ff:f6:5f:e5:45:c4:64:4d: fd:8b:df:e5:4e:fb:f1:01:1c:3c:dd:15:84:b4:ff: bc:45:2c:3e:90:48:3d:3c:6a:63:d9:b5:2c:ff:98: ee:a7:cf:a7:7e:b8:0e:b4:bb:98:2d:78:ce:88:15: b4:d9:14:77:b0:01:60:9f:48:6f:ac:75:3c:30:25: 04:27:de:0c:17:02:55:a6:ee:43:f6:bb:79:7c:58: 7a:d2:8c:8a:01:79:f7:7a:cb:ae:e9:15:0c:ee:56: 7c:c6:bd:c3:a3:1f:83:a1:60:c5:b7:f1:07:26:02: 3f:5f:d2:64:ce:65:40:b3:3d:f8:76:29:e4:85:72: 2b:cc:f7:9a:dd:fa:57:24:43:6d:47:2b:26:25:92: 83:b7:92:fd:97:a0:c6:27:54:b3:b6:bd:e8:df:11: 6b:b9:46:03:22:0f:dc:e4:11:d5:39:fe:97:5b:07: 3f:b9:e2:3f:61:45:83:d0:45:15:e0:86:81:43:f1: e0:87:91:98:56:d4:89:e0:26:6e:31:38:9b:31:2b: 4f:ec:ec:38:bb:9e:98:f5:3d:b7:b0:42:e3:32:a0: 0f:e5:b9:03:08:0b:71:da:f6:d0:ff:97:b4:75:83: 54:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2A:6E:71:F3:83:94:F8:7F:5D:10:21:81:25:95:9A:D8:97:01:98 X509v3 Authority Key Identifier: keyid:FD:5F:AE:8F:24:1E:C7:B7:2B:D4:BA:87:95:21:67:6B:1D:A8:F3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/FD5FAE8F241EC7B72BD4BA879521676B1DA8F38C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.104.0/24 Signature Algorithm: sha256WithRSAEncryption 27:e7:3d:93:5a:13:17:2d:61:67:a9:e3:36:23:91:dd:24:a2: 7b:20:d8:e0:59:11:3d:06:f0:8d:9c:82:38:4c:89:fe:fe:b4: 42:34:16:f1:be:09:38:ae:54:ad:11:4e:10:37:59:bd:1f:fe: f1:6e:90:06:5d:df:f7:99:fe:15:46:4a:60:f7:cb:e0:30:30: d7:18:ab:12:ce:ee:53:df:89:f1:a3:fd:1e:37:dc:8e:54:d1: 7c:de:e8:4c:a8:5a:6f:6e:b4:3e:46:33:37:c5:59:f0:2f:b4: 87:cd:03:4e:f3:25:4a:f9:db:f3:7e:4f:09:a8:7a:c1:00:d4: 00:a3:19:b9:29:72:73:7a:df:61:70:20:37:40:0d:b3:e2:79: e3:4f:a3:19:ed:20:9d:ef:ca:09:15:b8:9b:53:bb:dd:be:4a: eb:91:1e:0c:65:a8:be:69:5a:86:9d:36:a0:21:61:c6:40:ff: ae:b8:4d:7e:f3:a0:8c:3e:4c:6f:96:5d:30:b9:75:1e:91:ea: e1:2d:68:35:ea:b5:3f:e3:0a:d9:0d:e6:76:cc:7e:cd:49:3a: 04:e7:49:75:01:06:f3:05:93:5d:c0:a0:6e:4e:55:f9:34:90: ec:bf:a9:ef:16:e7:e6:b0:bd:1a:3d:0d:6d:fd:da:11:7b:a3: d7:ea:95:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY5LwgmOQkTuyGnZLCqSG/iiDbdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ1RkFFOEYyNDFFQzdCNzJCRDRCQTg3OTUyMTY3NkIx REE4RjM4QzAeFw0yNjA1MDMwMzE0MDVaFw0yNzA1MDIwMzE5MDVaMDMxMTAvBgNV BAMTKDVGMkE2RTcxRjM4Mzk0Rjg3RjVEMTAyMTgxMjU5NTlBRDg5NzAxOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaeRBUS1dnybE6wTnzeg++/CMG Mhn/9l/lRcRkTf2L3+VO+/EBHDzdFYS0/7xFLD6QSD08amPZtSz/mO6nz6d+uA60 u5gteM6IFbTZFHewAWCfSG+sdTwwJQQn3gwXAlWm7kP2u3l8WHrSjIoBefd6y67p FQzuVnzGvcOjH4OhYMW38QcmAj9f0mTOZUCzPfh2KeSFcivM95rd+lckQ21HKyYl koO3kv2XoMYnVLO2vejfEWu5RgMiD9zkEdU5/pdbBz+54j9hRYPQRRXghoFD8eCH kZhW1IngJm4xOJsxK0/s7Di7npj1PbewQuMyoA/luQMIC3Ha9tD/l7R1g1ThAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXypucfODlPh/XRAhgSWVmtiXAZgwHwYDVR0j BBgwFoAU/V+ujyQex7cr1LqHlSFnax2o84wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJiNWZhNGEtYmVhNi00NjRmLWI0MDktMTFkOWEzNzYxYTZjLzAvRkQ1RkFFOEYy NDFFQzdCNzJCRDRCQTg3OTUyMTY3NkIxREE4RjM4Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GRDVGQUU4RjI0MUVDN0I3MkJENEJBODc5NTIxNjc2QjFEQThG MzhDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8wLzMxMzYzMDJlMzIzMDJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBRoMA0GCSqG SIb3DQEBCwUAA4IBAQAn5z2TWhMXLWFnqeM2I5HdJKJ7INjgWRE9BvCNnII4TIn+ /rRCNBbxvgk4rlStEU4QN1m9H/7xbpAGXd/3mf4VRkpg98vgMDDXGKsSzu5T34nx o/0eN9yOVNF83uhMqFpvbrQ+RjM3xVnwL7SHzQNO8yVK+dvzfk8JqHrBANQAoxm5 KXJzet9hcCA3QA2z4nnjT6MZ7SCd78oJFbibU7vdvkrrkR4MZai+aVqGnTagIWHG QP+uuE1+86CMPkxvll0wuXUekerhLWg16rU/4wrZDeZ2zH7NSToE50l1AQbzBZNd wKBuTlX5NJDsv6nvFufmsL0aPQ1t/doRe6PX6pXd -----END CERTIFICATE-----Generated at Wed May 13 02:37:14 2026 by rpki-client