$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa File: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (raw, json) Hash identifier: b50sIU9yQxaEkBk9RbWIC1daty/+h8HIunUUQS3fj8c= Subject key identifier: 39:D0:00:84:F3:75:DB:BB:D8:7C:79:11:B8:09:2E:08:00:73:D1:A8 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 27C04E80B5D14E709F1072B6CE5382B7E2F01FB0 Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa Signing time: Thu 09 Apr 2026 08:00:00 +0000 ROA not before: Thu 09 Apr 2026 07:55:00 +0000 ROA not after: Thu 08 Apr 2027 08:00:00 +0000 asID: 147088 IP address blocks: 160.19.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c0:4e:80:b5:d1:4e:70:9f:10:72:b6:ce:53:82:b7:e2:f0:1f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: Apr 9 07:55:00 2026 GMT Not After : Apr 8 08:00:00 2027 GMT Subject: CN=39D00084F375DBBBD87C7911B8092E080073D1A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e0:73:6e:20:59:b2:9b:a2:b9:7b:c1:50:e3: 47:68:73:8d:64:02:34:53:cc:1b:2a:5e:44:71:53: 30:5b:3b:85:4c:e3:f6:64:f5:da:83:69:21:84:bc: 4c:01:86:dc:84:8d:d5:30:ba:25:f1:fb:15:9b:07: dc:00:b8:9e:92:5e:0d:89:2d:c4:03:e9:19:ce:59: 17:da:79:67:7a:41:17:f2:cc:9a:ab:d0:1f:f7:14: 8e:a5:e0:b0:a3:12:a0:34:cc:26:5a:c4:5e:55:6d: 18:9d:b1:93:4e:80:78:68:fe:18:ff:a5:fc:00:72: 89:53:d0:9e:7f:87:84:2d:04:61:a6:13:33:7a:85: d0:2e:c5:d5:f2:14:42:68:39:c8:9e:0d:7c:20:7f: 4a:8b:11:b9:c6:02:48:bd:b3:7d:c5:a8:c4:75:1c: 2f:6a:e0:e8:e0:54:98:b3:c5:2b:11:d7:f5:69:89: 32:26:6e:7e:04:c4:e9:b4:6b:49:2b:76:28:17:f8: a5:0c:3f:b7:a0:7f:59:df:3b:62:8a:94:12:88:d7: f7:97:b8:41:8c:2e:3d:5c:5d:4a:74:f8:2b:77:c0: 56:49:0f:60:92:ff:d8:23:5f:e0:ff:60:c3:76:f8: d5:88:56:28:6f:01:8e:fd:7b:81:5d:de:5c:bf:ec: 81:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D0:00:84:F3:75:DB:BB:D8:7C:79:11:B8:09:2E:08:00:73:D1:A8 X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/3136302e31392e38382e302f32342d3234203d3e20313437303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.88.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:02:47:0d:6c:30:4b:f3:bb:69:f8:b1:44:4e:a9:4a:33:1f: 67:6a:11:a5:58:8c:dc:92:c9:c6:5d:ef:68:4c:ce:e6:19:18: c2:ba:ef:94:f0:58:61:e2:44:cc:af:05:99:40:de:96:bc:5e: e1:79:8d:9c:1c:b1:1d:d8:bf:89:60:c3:50:2c:6c:dc:8c:f8: 19:1d:ae:df:e5:96:5a:f0:18:ad:e9:aa:d0:62:c3:d6:2d:24: 01:b3:86:ab:a5:96:59:9e:57:d3:ce:7f:73:e5:07:61:66:36: ab:6c:fa:66:cb:42:d6:65:13:f0:4a:a4:1b:4f:17:e7:97:cf: 6d:54:2f:aa:27:10:cb:76:54:a4:fd:6c:9b:10:e1:d5:39:26: 91:72:ac:da:c6:a7:18:7d:4f:8f:31:94:5a:0b:7f:3c:75:49: 9e:7e:23:2e:69:3f:89:94:bd:6c:6d:bb:24:ba:3e:5a:bb:f2: cc:86:30:06:c0:55:10:26:a8:81:1d:9a:9f:bf:92:5d:3e:65: 4c:0c:d5:36:1b:6b:b4:64:d1:a0:a0:32:02:59:90:3b:76:7e: cf:42:1e:b7:9a:da:5a:4b:d9:a0:f5:de:1d:96:ce:e1:b0:35: e0:dc:d6:6c:95:8a:7c:a8:48:0b:a2:36:ff:80:e1:da:19:53: 50:ab:0f:b7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ8BOgLXRTnCfEHK2zlOCt+LwH7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNjA0MDkwNzU1MDBaFw0yNzA0MDgwODAwMDBaMDMxMTAvBgNV BAMTKDM5RDAwMDg0RjM3NURCQkJEODdDNzkxMUI4MDkyRTA4MDA3M0QxQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ4HNuIFmym6K5e8FQ40doc41k AjRTzBsqXkRxUzBbO4VM4/Zk9dqDaSGEvEwBhtyEjdUwuiXx+xWbB9wAuJ6SXg2J LcQD6RnOWRfaeWd6QRfyzJqr0B/3FI6l4LCjEqA0zCZaxF5VbRidsZNOgHho/hj/ pfwAcolT0J5/h4QtBGGmEzN6hdAuxdXyFEJoOcieDXwgf0qLEbnGAki9s33FqMR1 HC9q4OjgVJizxSsR1/VpiTImbn4ExOm0a0krdigX+KUMP7egf1nfO2KKlBKI1/eX uEGMLj1cXUp0+Ct3wFZJD2CS/9gjX+D/YMN2+NWIVihvAY79e4Fd3ly/7IEZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOdAAhPN127vYfHkRuAkuCABz0agwHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg0ZGE0MTViLTVmMTctNDYwMi05 YmQ5LWZkODRhYzJjYWU4Ni8wLzMxMzYzMDJlMzEzOTJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATWDANBgkqhkiG 9w0BAQsFAAOCAQEAKwJHDWwwS/O7afixRE6pSjMfZ2oRpViM3JLJxl3vaEzO5hkY wrrvlPBYYeJEzK8FmUDelrxe4XmNnByxHdi/iWDDUCxs3Iz4GR2u3+WWWvAYremq 0GLD1i0kAbOGq6WWWZ5X085/c+UHYWY2q2z6ZstC1mUT8EqkG08X55fPbVQvqicQ y3ZUpP1smxDh1TkmkXKs2sanGH1PjzGUWgt/PHVJnn4jLmk/iZS9bG27JLo+Wrvy zIYwBsBVECaogR2an7+SXT5lTAzVNhtrtGTRoKAyAlmQO3Z+z0Iet5raWkvZoPXe HZbO4bA14NzWbJWKfKhIC6I2/4Dh2hlTUKsPtw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:46:57 2026 by rpki-client