$ rpki-client -vvf rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa File: 3136302e32322e37302e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: HfjxEYgkrqfzHgHj5l+tU2/vWOSWktiutyLJJOsTTUI= Subject key identifier: 4F:8A:1A:F8:4A:BC:26:C0:63:B9:A5:BF:28:2C:0C:0F:7A:2C:3D:D3 Certificate issuer: /CN=9346713F8C419319E481DBF3CFA54206BF4BE699 Certificate serial: 02AB2ACE9E5C3F0446EA59EA65CB08C4DE09214E Authority key identifier: 93:46:71:3F:8C:41:93:19:E4:81:DB:F3:CF:A5:42:06:BF:4B:E6:99 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9346713F8C419319E481DBF3CFA54206BF4BE699.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa Signing time: Sun 03 May 2026 02:25:25 +0000 ROA not before: Sun 03 May 2026 02:20:25 +0000 ROA not after: Sun 02 May 2027 02:25:25 +0000 asID: 58381 IP address blocks: 160.22.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/9346713F8C419319E481DBF3CFA54206BF4BE699.crl rsync://rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/9346713F8C419319E481DBF3CFA54206BF4BE699.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9346713F8C419319E481DBF3CFA54206BF4BE699.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ab:2a:ce:9e:5c:3f:04:46:ea:59:ea:65:cb:08:c4:de:09:21:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9346713F8C419319E481DBF3CFA54206BF4BE699 Validity Not Before: May 3 02:20:25 2026 GMT Not After : May 2 02:25:25 2027 GMT Subject: CN=4F8A1AF84ABC26C063B9A5BF282C0C0F7A2C3DD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:4a:88:8d:70:3b:e8:6d:03:9e:48:15:5c: 53:4f:57:1a:f0:36:b7:d5:e7:91:1f:8f:15:1d:0a: 55:58:f6:99:3e:10:13:cd:42:32:d3:15:02:b5:15: 80:36:50:6d:5c:e4:ca:ae:b9:48:ef:65:ca:bc:78: a8:b2:0f:0a:f1:e8:20:6f:e8:68:13:36:03:58:58: 32:c5:a1:26:0f:41:84:6f:0b:66:56:d8:3c:4c:89: 51:3c:4a:3f:36:94:56:42:2b:85:36:a7:be:d8:8d: 7c:40:dd:fa:d1:d5:ff:25:c3:ae:cc:44:be:7d:a7: 36:9f:6f:06:aa:2e:9a:2c:07:48:32:85:c4:f3:ad: 56:c9:69:b5:b8:5e:3b:b1:26:18:8e:50:ac:63:16: 1c:5d:c9:53:19:b2:41:90:2a:82:b9:1e:e7:7d:6d: 19:58:87:1f:63:bb:3b:f8:4f:f2:10:6a:5e:35:e1: 9f:05:b4:c7:55:04:72:97:22:84:48:a8:30:da:8a: ca:92:38:7d:38:3c:f6:96:50:9c:cc:9d:59:78:06: 20:a4:8c:f7:c6:8c:1a:5d:29:9e:15:e8:94:75:44: f1:77:86:5f:f1:9d:04:68:3e:ce:7f:d2:7a:63:50: cf:96:b7:62:d2:c2:53:36:ac:c5:2a:d0:58:39:02: 59:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:1A:F8:4A:BC:26:C0:63:B9:A5:BF:28:2C:0C:0F:7A:2C:3D:D3 X509v3 Authority Key Identifier: keyid:93:46:71:3F:8C:41:93:19:E4:81:DB:F3:CF:A5:42:06:BF:4B:E6:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/9346713F8C419319E481DBF3CFA54206BF4BE699.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/9346713F8C419319E481DBF3CFA54206BF4BE699.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.70.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:a7:81:b5:85:78:81:de:8b:0e:83:ee:2d:7d:a5:3b:e5:16: f4:2b:0e:66:0d:c4:f5:06:91:c1:35:82:2f:6f:71:a1:bb:9d: 5f:6e:4d:00:14:08:ca:aa:08:77:2f:d8:1a:3e:e9:c8:7d:32: fa:38:c9:29:e5:b5:d9:ae:b8:85:eb:1d:72:02:7f:c1:6c:57: 13:e1:d1:21:31:3f:e0:b4:44:c9:4b:d0:33:7a:5b:b0:d2:c0: 64:16:c8:df:0a:f6:dd:7a:6d:7d:86:e2:24:bc:60:0a:60:2a: 3a:84:6b:99:3c:0f:10:8e:dc:a7:21:61:e9:72:84:49:b8:fe: 98:b6:15:cd:90:1b:b8:3d:e6:8b:d3:32:6a:35:ba:cc:43:bf: db:c4:d9:b8:d7:6d:36:e1:7b:b1:1d:61:65:a7:17:2e:c6:21: e2:a2:8f:94:4a:af:ed:97:a8:88:c0:31:ef:ca:7b:4d:39:7c: 11:b1:21:dd:bc:45:79:9e:60:ae:e9:6d:12:e0:78:14:e1:53: 2a:f7:87:af:97:1b:65:12:8f:a1:cf:cb:cd:3a:8e:52:1c:ce: 45:86:3c:2a:0f:95:05:b6:eb:28:88:13:ec:bf:a3:6a:a2:08: 0f:71:54:12:d9:8e:24:39:8f:91:8f:af:c5:e0:ab:2a:da:3b: b8:1c:d6:82 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAqsqzp5cPwRG6lnqZcsIxN4JIU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM0NjcxM0Y4QzQxOTMxOUU0ODFEQkYzQ0ZBNTQyMDZC RjRCRTY5OTAeFw0yNjA1MDMwMjIwMjVaFw0yNzA1MDIwMjI1MjVaMDMxMTAvBgNV BAMTKDRGOEExQUY4NEFCQzI2QzA2M0I5QTVCRjI4MkMwQzBGN0EyQzNERDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC15EqIjXA76G0DnkgVXFNPVxrw NrfV55EfjxUdClVY9pk+EBPNQjLTFQK1FYA2UG1c5MquuUjvZcq8eKiyDwrx6CBv 6GgTNgNYWDLFoSYPQYRvC2ZW2DxMiVE8Sj82lFZCK4U2p77YjXxA3frR1f8lw67M RL59pzafbwaqLposB0gyhcTzrVbJabW4XjuxJhiOUKxjFhxdyVMZskGQKoK5Hud9 bRlYhx9juzv4T/IQal414Z8FtMdVBHKXIoRIqDDaisqSOH04PPaWUJzMnVl4BiCk jPfGjBpdKZ4V6JR1RPF3hl/xnQRoPs5/0npjUM+Wt2LSwlM2rMUq0Fg5AlkvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUT4oa+Eq8JsBjuaW/KCwMD3osPdMwHwYDVR0j BBgwFoAUk0ZxP4xBkxnkgdvzz6VCBr9L5pkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzVhMjAwNzctZmM1My00M2EzLWJkYTctZjM5OTU2ZDk5MjZkLzAvOTM0NjcxM0Y4 QzQxOTMxOUU0ODFEQkYzQ0ZBNTQyMDZCRjRCRTY5OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC85MzQ2NzEzRjhDNDE5MzE5RTQ4MURCRjNDRkE1NDIwNkJGNEJF Njk5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM1YTIwMDc3LWZjNTMtNDNhMy1i ZGE3LWYzOTk1NmQ5OTI2ZC8wLzMxMzYzMDJlMzIzMjJlMzczMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgFkYwDQYJKoZIhvcN AQELBQADggEBAFyngbWFeIHeiw6D7i19pTvlFvQrDmYNxPUGkcE1gi9vcaG7nV9u TQAUCMqqCHcv2Bo+6ch9Mvo4ySnltdmuuIXrHXICf8FsVxPh0SExP+C0RMlL0DN6 W7DSwGQWyN8K9t16bX2G4iS8YApgKjqEa5k8DxCO3KchYelyhEm4/pi2Fc2QG7g9 5ovTMmo1usxDv9vE2bjXbTbhe7EdYWWnFy7GIeKij5RKr+2XqIjAMe/Ke005fBGx Id28RXmeYK7pbRLgeBThUyr3h6+XG2USj6HPy806jlIczkWGPCoPlQW26yiIE+y/ o2qiCA9xVBLZjiQ5j5GPr8XgqyraO7gc1oI= -----END CERTIFICATE-----Generated at Wed May 6 02:07:01 2026 by rpki-client