$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/3/38322e3135382e3132382e302f31392d3234203d3e2039333431.roa File: 38322e3135382e3132382e302f31392d3234203d3e2039333431.roa (raw, json) Hash identifier: D3tiG7/WB1jqD4U3AzWTuk20OEGadYU05eGOdX2UkMk= Subject key identifier: 16:94:2B:EB:32:A5:C8:CB:DC:70:0B:D1:82:2D:2E:0C:80:12:14:F0 Certificate issuer: /CN=A91862140000/serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Certificate serial: 73568620E102F859C2EEA7EA78FF8A26C3997946 Authority key identifier: F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/38322e3135382e3132382e302f31392d3234203d3e2039333431.roa Signing time: Sat 02 May 2026 08:36:20 +0000 ROA not before: Sat 02 May 2026 08:31:20 +0000 ROA not after: Sat 01 May 2027 08:36:20 +0000 asID: 9341 IP address blocks: 82.158.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:56:86:20:e1:02:f8:59:c2:ee:a7:ea:78:ff:8a:26:c3:99:79:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=F927DF3848ABABCA88FF3D95A1E5B16754C63A53 Validity Not Before: May 2 08:31:20 2026 GMT Not After : May 1 08:36:20 2027 GMT Subject: CN=16942BEB32A5C8CBDC700BD1822D2E0C801214F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:d6:97:da:16:36:45:5f:93:e9:e1:f1:c2: 49:f5:4e:e3:00:79:ae:1a:05:c4:05:8c:ee:5c:63: a2:c9:47:6f:43:dd:a5:8b:00:0a:83:21:d1:50:ee: 55:b6:46:1d:18:98:a7:88:67:68:58:52:bd:62:fb: 97:e4:c7:a0:6a:20:f2:d3:72:2d:b5:b8:5a:40:79: 8b:e4:f5:cc:48:d9:25:2d:81:e0:96:93:bc:e7:52: 93:fc:1b:b0:56:d7:a6:9e:4a:22:d7:04:bb:e4:73: d4:e6:ee:e8:5f:7f:f7:dd:62:7a:16:7e:46:cd:da: 89:77:a3:0d:82:27:51:a6:9f:6d:60:16:84:f4:3c: ce:57:21:57:d3:a7:2f:6d:f6:5f:34:f9:eb:81:3b: 67:b4:80:e1:92:62:5c:9d:94:58:66:8c:48:9f:c0: 78:57:51:88:dc:ba:11:4c:ba:94:f2:d8:54:8b:ff: 4d:f8:05:e6:d9:0e:c0:f9:e8:29:5b:51:e0:26:20: 1e:cd:f6:d9:9e:90:70:b4:0e:60:3a:07:35:a1:f0: 64:59:40:84:fb:4b:3a:09:3e:44:85:53:2d:1b:27: 84:9c:4b:2c:6e:13:a9:1c:23:15:59:2a:56:8c:66: b3:ec:55:32:98:db:ba:c1:ce:73:6e:20:d0:41:24: 4f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:94:2B:EB:32:A5:C8:CB:DC:70:0B:D1:82:2D:2E:0C:80:12:14:F0 X509v3 Authority Key Identifier: keyid:F9:27:DF:38:48:AB:AB:CA:88:FF:3D:95:A1:E5:B1:67:54:C6:3A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/F927DF3848ABABCA88FF3D95A1E5B16754C63A53.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/-SffOEirq8qI_z2VoeWxZ1TGOlM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/3/38322e3135382e3132382e302f31392d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.158.128.0/19 Signature Algorithm: sha256WithRSAEncryption 70:04:aa:3a:5c:c7:a0:5d:10:b1:6c:db:c3:29:b5:8d:1b:09: 6f:4a:23:05:34:61:44:a8:a9:c6:4d:2e:e6:1d:a5:d4:43:2d: 82:44:ae:b5:30:34:54:c3:17:d8:d7:1c:3a:7f:05:7f:8a:21: 84:0e:72:28:8d:48:9e:47:7f:08:1e:ab:8c:80:de:90:38:98: aa:ab:8a:d7:2b:4e:97:d4:92:63:50:4f:9e:16:3b:2f:50:63: f9:18:09:f7:ab:5b:67:81:8f:4f:42:a7:b2:05:16:59:a0:59: f1:44:ed:7c:44:cd:c6:c7:48:4b:7b:8e:64:ef:bc:d0:b4:cf: c0:32:9e:3f:c5:dd:52:39:a8:79:c6:51:03:16:18:d2:fa:78: 8e:f4:ee:70:c3:75:e9:85:07:42:4f:c1:d6:a5:68:60:c2:82: e9:d4:85:6c:b5:1b:d1:6c:b5:93:f7:e0:85:a4:68:2d:80:f1: f5:83:d1:4b:2a:ba:42:ec:9d:7d:c9:26:93:bb:de:6c:28:94: bd:6d:1e:37:5a:2f:6b:e0:4c:99:fd:6b:fd:43:c1:16:62:f4: 39:d0:73:4d:ca:c9:82:d7:59:3d:37:73:86:28:dd:3d:9f:59: 90:d0:44:09:4c:60:1e:f3:c2:73:35:c0:a2:bd:52:1a:57:ee: fb:ba:0e:02 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUc1aGIOEC+FnC7qfqeP+KJsOZeUYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhGOTI3REYzODQ4 QUJBQkNBODhGRjNEOTVBMUU1QjE2NzU0QzYzQTUzMB4XDTI2MDUwMjA4MzEyMFoX DTI3MDUwMTA4MzYyMFowMzExMC8GA1UEAxMoMTY5NDJCRUIzMkE1QzhDQkRDNzAw QkQxODIyRDJFMEM4MDEyMTRGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3j1pfaFjZFX5Pp4fHCSfVO4wB5rhoFxAWM7lxjoslHb0PdpYsACoMh0VDu VbZGHRiYp4hnaFhSvWL7l+THoGog8tNyLbW4WkB5i+T1zEjZJS2B4JaTvOdSk/wb sFbXpp5KItcEu+Rz1Obu6F9/991iehZ+Rs3aiXejDYInUaafbWAWhPQ8zlchV9On L232XzT564E7Z7SA4ZJiXJ2UWGaMSJ/AeFdRiNy6EUy6lPLYVIv/TfgF5tkOwPno KVtR4CYgHs322Z6QcLQOYDoHNaHwZFlAhPtLOgk+RIVTLRsnhJxLLG4TqRwjFVkq Voxms+xVMpjbusHOc24g0EEkT9kCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBQWlCvr MqXIy9xwC9GCLS4MgBIU8DAfBgNVHSMEGDAWgBT5J984SKuryoj/PZWh5bFnVMY6 UzAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzMvRjkyN0RGMzg0OEFCQUJDQTg4 RkYzRDk1QTFFNUIxNjc1NEM2M0E1My5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1 RjQxRDY2MTFFMkEzRjI3RjdDNzJGRDFGRjIvLVNmZk9FaXJxOHFJX3oyVm9lV3ha MVRHT2xNLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8zLzM4MzIyZTMxMzUzODJl MzEzMjM4MmUzMDJmMzEzOTJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAVSnoAwDQYJKoZIhvcNAQELBQADggEBAHAEqjpcx6BdELFs28MptY0bCW9KIwU0 YUSoqcZNLuYdpdRDLYJErrUwNFTDF9jXHDp/BX+KIYQOciiNSJ5Hfwgeq4yA3pA4 mKqritcrTpfUkmNQT54WOy9QY/kYCferW2eBj09Cp7IFFlmgWfFE7XxEzcbHSEt7 jmTvvNC0z8Aynj/F3VI5qHnGUQMWGNL6eI707nDDdemFB0JPwdalaGDCgunUhWy1 G9FstZP34IWkaC2A8fWD0UsqukLsnX3JJpO73mwolL1tHjdaL2vgTJn9a/1DwRZi 9DnQc03KyYLXWT03c4Yo3T2fWZDQRAlMYB7zwnM1wKK9UhpX7vu6DgI= -----END CERTIFICATE-----Generated at Tue May 5 13:26:29 2026 by rpki-client