$ rpki-client -vvf repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa File: 3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa (raw, json) Hash identifier: 65DQK1QG/30wCkFN9bz2H0nthPJ1RQlEmPEdKlstFUU= Subject key identifier: C9:47:88:9F:7E:9C:E5:CD:62:03:28:7A:5D:C8:92:F3:CE:5C:D2:98 Certificate issuer: /CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Certificate serial: 3487DCD0B36F718C52EECB5BC931D6E1DBDE4354 Authority key identifier: 7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa Signing time: Sat 18 Apr 2026 09:00:00 +0000 ROA not before: Sat 18 Apr 2026 08:55:00 +0000 ROA not after: Sat 17 Apr 2027 09:00:00 +0000 asID: 153123 IP address blocks: 160.187.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 13:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:87:dc:d0:b3:6f:71:8c:52:ee:cb:5b:c9:31:d6:e1:db:de:43:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C4DFD78914DC1F66130F256AE69D9FA843948DC Validity Not Before: Apr 18 08:55:00 2026 GMT Not After : Apr 17 09:00:00 2027 GMT Subject: CN=C947889F7E9CE5CD6203287A5DC892F3CE5CD298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0c:75:61:ac:9a:56:36:c6:89:12:50:96:e5: d9:09:68:ed:d8:c6:74:e5:b0:a6:93:cc:c4:d4:6d: 02:e8:ce:b3:b1:57:d3:8f:26:4d:e6:31:1d:b7:07: 29:74:a4:99:2d:98:36:b9:5c:dd:a9:cc:d2:21:6d: 31:2f:74:c3:8a:06:5b:34:37:50:e2:45:83:0a:23: f0:ea:b0:6c:16:41:0e:5a:6c:e7:93:58:32:69:e0: b0:6a:34:58:c9:de:fb:39:b3:b9:06:75:08:1d:ab: cd:8a:d8:6a:b8:67:ef:a7:d5:e4:9d:98:42:4a:4a: 10:73:5c:04:19:e7:46:51:0f:76:83:ab:be:00:3e: e7:45:9c:b2:28:f4:2c:de:4a:ff:6e:32:bb:b5:e8: ba:b2:d8:23:71:fd:f4:89:6c:16:5a:3e:01:68:f9: 03:7f:42:71:45:2d:40:3c:09:b8:a4:ac:f9:78:88: f2:33:8e:c3:98:27:32:ac:5d:82:0a:40:92:2d:7f: 33:2b:a2:d7:9a:c8:62:b2:66:ab:0c:4e:7c:b9:1e: aa:dd:e8:92:a7:08:60:f5:54:28:b9:bc:e1:c5:0f: 06:f4:c6:bf:21:88:ee:b1:da:64:1f:36:8f:8d:a1: 98:95:65:35:81:57:35:7f:81:78:60:e8:4c:b5:63: 5b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:47:88:9F:7E:9C:E5:CD:62:03:28:7A:5D:C8:92:F3:CE:5C:D2:98 X509v3 Authority Key Identifier: keyid:7C:4D:FD:78:91:4D:C1:F6:61:30:F2:56:AE:69:D9:FA:84:39:48:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/7C4DFD78914DC1F66130F256AE69D9FA843948DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7C4DFD78914DC1F66130F256AE69D9FA843948DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.136.0/24 Signature Algorithm: sha256WithRSAEncryption 18:54:c2:57:ac:c9:6b:b0:4b:71:27:25:b1:90:d6:2b:ce:bc: ed:c5:d5:06:dd:0d:a8:91:ce:49:fa:a0:59:9e:7f:c8:c9:e7: 8a:a4:4a:27:56:69:6a:74:1f:65:df:06:b8:1d:8b:7b:db:f5: 92:7d:78:c6:0a:db:9e:05:b0:9a:45:02:01:ea:23:22:35:33: 07:e5:fd:ee:2b:41:0b:42:5c:28:94:1c:cd:ea:7c:49:89:1b: 2f:d2:67:42:c9:04:68:c4:0a:d6:e6:37:dc:3e:b9:c6:4b:8d: 50:e8:3b:1f:8c:fc:dd:d2:c1:05:d0:dc:dd:e9:67:ee:df:5a: 53:77:21:b5:0a:72:cd:e0:23:1e:f5:ee:c4:8a:8a:45:7d:88: 8d:c5:b5:f5:e9:b2:e9:98:f6:fb:97:d5:b6:d1:e8:7e:33:cf: 62:08:80:fb:98:a0:db:d4:58:3e:cf:b2:46:fd:ea:c1:e0:20: 9f:37:2a:cb:7f:99:a1:0a:31:47:e6:de:2e:8f:26:ad:bb:0f: 72:8c:a5:1c:a2:97:17:26:30:51:f4:f3:ed:54:eb:05:24:33: 2c:bc:0e:92:b2:92:22:33:db:96:79:e1:2d:41:43:d0:42:d0: bf:0c:6b:55:51:31:cf:3b:c4:fb:61:43:68:36:f1:21:c0:59: be:eb:ad:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNIfc0LNvcYxS7stbyTHW4dveQ1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4 NDM5NDhEQzAeFw0yNjA0MTgwODU1MDBaFw0yNzA0MTcwOTAwMDBaMDMxMTAvBgNV BAMTKEM5NDc4ODlGN0U5Q0U1Q0Q2MjAzMjg3QTVEQzg5MkYzQ0U1Q0QyOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpDHVhrJpWNsaJElCW5dkJaO3Y xnTlsKaTzMTUbQLozrOxV9OPJk3mMR23Byl0pJktmDa5XN2pzNIhbTEvdMOKBls0 N1DiRYMKI/DqsGwWQQ5abOeTWDJp4LBqNFjJ3vs5s7kGdQgdq82K2Gq4Z++n1eSd mEJKShBzXAQZ50ZRD3aDq74APudFnLIo9CzeSv9uMru16Lqy2CNx/fSJbBZaPgFo +QN/QnFFLUA8CbikrPl4iPIzjsOYJzKsXYIKQJItfzMroteayGKyZqsMTny5Hqrd 6JKnCGD1VCi5vOHFDwb0xr8hiO6x2mQfNo+NoZiVZTWBVzV/gXhg6Ey1Y1s3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyUeIn36c5c1iAyh6XciS885c0pgwHwYDVR0j BBgwFoAUfE39eJFNwfZhMPJWrmnZ+oQ5SNwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTkyMzM5Ny04Y2Y4LTRjZWYtODg1Ni0wZDI2OGQ3M2VkYjEvMC83QzRERkQ3ODkx NERDMUY2NjEzMEYyNTZBRTY5RDlGQTg0Mzk0OERDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0M0REZENzg5MTREQzFGNjYxMzBGMjU2QUU2OUQ5RkE4NDM5 NDhEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8wLzMxMzYzMDJlMzEzODM3MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgu4gwDQYJ KoZIhvcNAQELBQADggEBABhUwlesyWuwS3EnJbGQ1ivOvO3F1QbdDaiRzkn6oFme f8jJ54qkSidWaWp0H2XfBrgdi3vb9ZJ9eMYK254FsJpFAgHqIyI1Mwfl/e4rQQtC XCiUHM3qfEmJGy/SZ0LJBGjECtbmN9w+ucZLjVDoOx+M/N3SwQXQ3N3pZ+7fWlN3 IbUKcs3gIx717sSKikV9iI3FtfXpsumY9vuX1bbR6H4zz2IIgPuYoNvUWD7Pskb9 6sHgIJ83Kst/maEKMUfm3i6PJq27D3KMpRyilxcmMFH08+1U6wUkMyy8DpKykiIz 25Z54S1BQ9BC0L8Ma1VRMc87xPthQ2g28SHAWb7rrR8= -----END CERTIFICATE-----Generated at Wed Apr 22 06:05:50 2026 by rpki-client