$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: 83JkWRcxdUQ/IgND2nin0+HipBN6wE/MI6TAB2DlRtw= Subject key identifier: C1:E0:8F:71:02:B3:5C:90:BB:42:10:83:FF:36:93:C8:42:DA:B4:23 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 4E5A98F9F20C0884095EB998BE12420830509B60 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa Signing time: Sat 18 Apr 2026 10:02:44 +0000 ROA not before: Sat 18 Apr 2026 09:57:44 +0000 ROA not after: Sat 17 Apr 2027 10:02:44 +0000 asID: 152767 IP address blocks: 160.20.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5a:98:f9:f2:0c:08:84:09:5e:b9:98:be:12:42:08:30:50:9b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Apr 18 09:57:44 2026 GMT Not After : Apr 17 10:02:44 2027 GMT Subject: CN=C1E08F7102B35C90BB421083FF3693C842DAB423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4e:75:39:99:e7:4b:36:75:ef:0f:95:4a:02: 6f:0a:4c:c0:35:7c:34:d0:e1:3f:2b:e1:0d:35:8c: 2f:1d:d3:ce:b1:72:69:58:78:4f:11:98:52:c2:0a: 62:74:e7:30:46:9e:bc:5f:a0:c5:c6:48:7f:42:cd: 44:c1:91:30:9b:a3:dc:5c:6b:e4:4c:66:c7:7b:4f: 16:5b:bb:0f:3b:1b:54:59:d9:99:6d:87:fa:9c:02: b1:b1:8a:d5:3d:20:44:e0:17:2e:d4:a4:b4:ef:ce: 9e:54:80:62:68:2e:00:56:77:9b:a7:eb:37:ac:58: 02:93:e9:50:88:14:23:df:61:58:b5:d0:f9:e2:65: ba:ba:45:cd:ad:41:45:b9:6f:83:92:87:bd:34:cc: d4:20:db:57:75:77:04:3f:2a:be:2e:11:06:e6:3c: f7:d7:6f:15:b4:51:83:16:07:ee:c5:80:81:76:b6: 66:a3:c7:59:f3:11:8b:68:3a:7b:be:5e:f6:4a:35: 08:d6:56:d1:7d:c5:6d:f6:58:eb:6c:a2:f5:b2:c1: 74:92:fb:03:b7:54:6e:03:a0:8e:3a:75:a5:42:05: 9b:8d:70:7c:58:44:76:54:cc:3b:8a:2f:4f:37:fd: bf:87:6e:2b:d2:7a:d4:52:47:ec:51:91:c2:ba:52: c5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E0:8F:71:02:B3:5C:90:BB:42:10:83:FF:36:93:C8:42:DA:B4:23 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33382e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.38.0/24 Signature Algorithm: sha256WithRSAEncryption a9:78:0c:7d:8d:5e:9e:b7:5c:13:21:e8:cb:0d:fc:3e:62:4f: 3f:06:25:84:ee:2f:60:98:78:28:cc:32:59:61:26:78:03:c5: 57:ed:6d:a3:ff:62:73:cc:dd:9d:71:e4:77:43:dd:d5:b9:8a: b2:dc:69:bd:e6:57:d8:e5:11:fe:33:d9:fa:ed:09:c5:90:b3: 93:b4:75:f6:07:4b:7f:00:4d:54:2f:54:51:30:99:31:68:23: ce:ab:8e:45:84:70:ac:40:9e:96:94:7f:56:44:9c:a0:0c:da: 97:29:08:ac:90:e1:b1:66:64:58:d8:00:dc:e1:0f:4a:bf:d1: 23:bb:ec:02:43:dc:2a:d7:f3:52:4a:ec:75:8a:d9:e3:aa:bb: 61:b4:81:ca:47:55:1f:a0:64:ec:9e:65:0b:e3:ca:59:5a:d8: f9:8e:6a:3a:e1:79:96:f2:9b:8f:e6:7a:34:73:13:ea:94:d8: 1f:d1:cb:58:3d:c0:f0:f2:68:de:42:6b:10:e1:d2:49:f5:8b: 99:e9:83:be:30:33:46:35:6e:e4:0b:8f:29:9c:61:0b:0e:fc: 8c:a8:d9:ee:d4:ad:5b:af:5c:ee:ad:5a:d1:d2:e5:84:d9:c7: 78:b3:ec:5f:72:b7:c4:2c:9b:ca:a4:90:e3:fa:d5:ec:b7:b7: f8:d3:c5:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTlqY+fIMCIQJXrmYvhJCCDBQm2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNjA0MTgwOTU3NDRaFw0yNzA0MTcxMDAyNDRaMDMxMTAvBgNV BAMTKEMxRTA4RjcxMDJCMzVDOTBCQjQyMTA4M0ZGMzY5M0M4NDJEQUI0MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGTnU5medLNnXvD5VKAm8KTMA1 fDTQ4T8r4Q01jC8d086xcmlYeE8RmFLCCmJ05zBGnrxfoMXGSH9CzUTBkTCbo9xc a+RMZsd7TxZbuw87G1RZ2Zlth/qcArGxitU9IETgFy7UpLTvzp5UgGJoLgBWd5un 6zesWAKT6VCIFCPfYVi10PniZbq6Rc2tQUW5b4OSh700zNQg21d1dwQ/Kr4uEQbm PPfXbxW0UYMWB+7FgIF2tmajx1nzEYtoOnu+XvZKNQjWVtF9xW32WOtsovWywXSS +wO3VG4DoI46daVCBZuNcHxYRHZUzDuKL083/b+HbivSetRSR+xRkcK6UsXxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUweCPcQKzXJC7QhCD/zaTyELatCMwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJjANBgkqhkiG 9w0BAQsFAAOCAQEAqXgMfY1enrdcEyHoyw38PmJPPwYlhO4vYJh4KMwyWWEmeAPF V+1to/9ic8zdnXHkd0Pd1bmKstxpveZX2OUR/jPZ+u0JxZCzk7R19gdLfwBNVC9U UTCZMWgjzquORYRwrECelpR/VkScoAzalykIrJDhsWZkWNgA3OEPSr/RI7vsAkPc KtfzUkrsdYrZ46q7YbSBykdVH6Bk7J5lC+PKWVrY+Y5qOuF5lvKbj+Z6NHMT6pTY H9HLWD3A8PJo3kJrEOHSSfWLmemDvjAzRjVu5AuPKZxhCw78jKjZ7tStW69c7q1a 0dLlhNnHeLPsX3K3xCybyqSQ4/rV7Le3+NPFJQ== -----END CERTIFICATE-----Generated at Wed Apr 22 06:33:51 2026 by rpki-client