$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa File: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (raw, json) Hash identifier: dfqwYxLH5QYhiLVnY2GmJqFlJKfkF/OcC5X4KBWCcjE= Subject key identifier: 46:7A:95:D6:4F:4A:8D:AA:35:30:F1:70:DC:C6:7A:08:79:5A:EE:7E Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 5D902BAA8A9F97F135158DD6E7A0C52094823D57 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa Signing time: Sat 18 Apr 2026 10:02:44 +0000 ROA not before: Sat 18 Apr 2026 09:57:44 +0000 ROA not after: Sat 17 Apr 2027 10:02:44 +0000 asID: 152767 IP address blocks: 160.20.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:90:2b:aa:8a:9f:97:f1:35:15:8d:d6:e7:a0:c5:20:94:82:3d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Apr 18 09:57:44 2026 GMT Not After : Apr 17 10:02:44 2027 GMT Subject: CN=467A95D64F4A8DAA3530F170DCC67A08795AEE7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:36:47:cb:29:3b:df:2d:50:fd:3c:da:1a:8a: 08:a8:95:32:62:71:fc:c8:aa:e9:8d:08:f6:68:ac: 1d:12:22:99:f1:35:11:27:17:17:77:ac:66:a7:af: 4b:11:27:cf:ee:b3:4e:4c:5f:f7:3f:c8:38:3d:64: d4:07:a5:24:2c:60:95:70:44:02:25:2d:91:77:a6: a6:c8:bc:2b:e2:92:ff:b0:47:a0:b0:43:5a:67:e8: fc:c0:11:c6:6b:92:2b:a2:12:9d:84:e0:af:82:f7: 1c:96:ce:e3:46:d6:29:ac:df:fa:99:73:36:84:b1: dc:0d:a5:84:dd:59:11:9f:9d:c5:7e:ef:40:05:29: b6:99:92:f3:85:fe:a9:24:71:0e:81:8c:7d:97:02: 5e:10:c8:17:8d:67:3a:75:a8:aa:6a:5e:ad:27:8a: 7b:89:36:0c:c1:bb:bb:5a:6f:c1:39:16:85:ce:1a: d7:bd:bc:0b:24:6a:4d:c3:94:29:fb:66:6c:a3:bf: f3:df:bb:92:23:04:20:94:6b:a5:88:c1:2d:ce:2f: 4f:11:de:81:39:a9:0a:f1:9b:d6:f7:dd:3b:c1:c8: df:30:b8:9f:b6:d3:78:01:72:7e:9e:97:2c:0f:06: 78:e2:7f:e7:a1:9f:0d:08:a2:41:93:31:1c:1a:93: 19:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:7A:95:D6:4F:4A:8D:AA:35:30:F1:70:DC:C6:7A:08:79:5A:EE:7E X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/3136302e32302e33392e302f32342d3234203d3e20313532373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.39.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:4d:99:5e:d5:e6:e6:a3:56:3e:b5:97:c8:7e:eb:db:bf:d3: d0:1a:30:dc:bb:fe:4b:2b:68:f9:57:f1:2e:db:00:34:27:cd: cd:24:b1:77:d2:e0:d0:90:f5:05:93:f4:21:84:4d:30:25:a3: 9a:6b:b8:49:24:3f:2e:05:a7:d8:12:6f:8f:cc:47:e6:71:38: 37:89:9b:73:05:c2:55:e7:77:d6:06:d4:c9:54:79:c5:27:69: 10:46:29:2d:e6:61:fb:2a:46:e2:5f:4f:ac:0b:47:8e:07:01: 2b:44:04:6e:86:c3:f0:84:a2:34:76:24:48:9b:9a:7f:cd:76: a5:1e:c1:e9:2a:7f:17:e1:ea:5f:63:bb:c6:ae:ef:c6:54:51: 61:15:f2:47:58:b7:6d:4e:a2:37:cd:33:f9:bc:d6:8e:65:89: f5:88:05:6e:df:13:c1:ab:ff:f2:04:9f:02:68:5e:13:24:7d: d8:e5:f9:02:a6:50:8a:61:f5:54:ef:ba:08:c0:e4:2c:43:8a: c7:f1:0a:31:fb:4d:de:d8:ba:dd:08:7f:a2:51:af:fe:b2:8a: 3f:01:3f:31:1d:23:87:f9:29:09:7c:3a:6e:b5:f7:4f:fb:f3: e1:07:c2:33:de:0a:0b:54:79:ee:49:bb:83:f6:45:8d:b0:b4: ac:ff:ce:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXZArqoqfl/E1FY3W56DFIJSCPVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNjA0MTgwOTU3NDRaFw0yNzA0MTcxMDAyNDRaMDMxMTAvBgNV BAMTKDQ2N0E5NUQ2NEY0QThEQUEzNTMwRjE3MERDQzY3QTA4Nzk1QUVFN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcNkfLKTvfLVD9PNoaigiolTJi cfzIqumNCPZorB0SIpnxNREnFxd3rGanr0sRJ8/us05MX/c/yDg9ZNQHpSQsYJVw RAIlLZF3pqbIvCvikv+wR6CwQ1pn6PzAEcZrkiuiEp2E4K+C9xyWzuNG1ims3/qZ czaEsdwNpYTdWRGfncV+70AFKbaZkvOF/qkkcQ6BjH2XAl4QyBeNZzp1qKpqXq0n inuJNgzBu7tab8E5FoXOGte9vAskak3DlCn7Zmyjv/Pfu5IjBCCUa6WIwS3OL08R 3oE5qQrxm9b33TvByN8wuJ+203gBcn6elywPBnjif+ehnw0IokGTMRwakxnrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURnqV1k9Kjao1MPFw3MZ6CHla7n4wHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZTdkYWNjLTJiNDUtNDE0MS05 Nzc1LWYxYmI5ZjA1MjM5Ni8wLzMxMzYzMDJlMzIzMDJlMzMzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAUJzANBgkqhkiG 9w0BAQsFAAOCAQEALk2ZXtXm5qNWPrWXyH7r27/T0Bow3Lv+Syto+VfxLtsANCfN zSSxd9Lg0JD1BZP0IYRNMCWjmmu4SSQ/LgWn2BJvj8xH5nE4N4mbcwXCVed31gbU yVR5xSdpEEYpLeZh+ypG4l9PrAtHjgcBK0QEbobD8ISiNHYkSJuaf812pR7B6Sp/ F+HqX2O7xq7vxlRRYRXyR1i3bU6iN80z+bzWjmWJ9YgFbt8Twav/8gSfAmheEyR9 2OX5AqZQimH1VO+6CMDkLEOKx/EKMftN3ti63Qh/olGv/rKKPwE/MR0jh/kpCXw6 brX3T/vz4QfCM94KC1R57km7g/ZFjbC0rP/OWw== -----END CERTIFICATE-----Generated at Wed Apr 22 06:33:51 2026 by rpki-client