$ rpki-client -vvf repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa File: 3136302e32322e33362e302f32342d3234203d3e20313532373933.roa (raw, json) Hash identifier: E1t92eCCA0K5YE8ixQAa9ICN2HuojBT+vynz5XXJhec= Subject key identifier: 2F:4C:E6:67:28:42:5B:28:3F:DE:DD:4F:F4:04:6A:61:AA:94:64:EC Certificate issuer: /CN=A950C0F5B830659E499444729038D5D2047859FB Certificate serial: 7B71CB2F95FA38317F65A0521347D836D58F49DE Authority key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa Signing time: Tue 14 Apr 2026 17:00:01 +0000 ROA not before: Tue 14 Apr 2026 16:55:01 +0000 ROA not after: Tue 13 Apr 2027 17:00:01 +0000 asID: 152793 IP address blocks: 160.22.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 03:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:71:cb:2f:95:fa:38:31:7f:65:a0:52:13:47:d8:36:d5:8f:49:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A950C0F5B830659E499444729038D5D2047859FB Validity Not Before: Apr 14 16:55:01 2026 GMT Not After : Apr 13 17:00:01 2027 GMT Subject: CN=2F4CE66728425B283FDEDD4FF4046A61AA9464EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:d0:94:0d:d9:19:47:83:e7:11:24:b7:e6: 9e:5c:7f:c5:e9:8a:20:cc:62:8d:81:a8:86:26:48: 1e:33:3b:0f:db:dd:93:92:73:d8:cd:79:6d:17:7f: 19:b7:44:3d:40:84:96:d0:62:d7:94:76:7f:6e:86: f9:37:86:20:d2:a7:ef:9e:b2:32:c7:94:22:ae:ee: cd:83:87:3b:f8:83:83:92:05:8d:bd:5a:e8:ff:e8: 52:d3:4b:57:8f:9e:cb:27:8a:a2:9e:df:75:4e:ab: 9e:91:66:e9:f1:7d:89:f6:1f:c4:8c:54:83:e8:a9: 86:a9:cb:08:8a:57:93:ff:5d:00:55:0c:32:03:47: 30:f1:d5:c4:20:6d:52:82:5d:ff:ec:86:36:b2:53: ca:b0:7e:d4:76:fa:e7:6a:81:b4:fd:05:75:d7:2d: e7:0d:0d:56:44:91:85:6e:9d:0e:5b:0d:b7:96:f3: 25:8b:2a:09:11:d8:02:c1:93:37:e9:b1:e7:1c:bf: 44:4a:b4:62:31:53:fe:e7:67:70:87:8d:65:97:a7: d8:be:d1:2b:28:95:d6:4c:74:14:ef:d4:bd:cd:80: a1:df:50:e5:1a:e9:0d:d9:6f:75:93:c7:b1:ae:2f: 54:d0:45:83:f0:57:c7:20:2a:6e:01:bc:0b:3e:67: 59:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4C:E6:67:28:42:5B:28:3F:DE:DD:4F:F4:04:6A:61:AA:94:64:EC X509v3 Authority Key Identifier: keyid:A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/3136302e32322e33362e302f32342d3234203d3e20313532373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.36.0/24 Signature Algorithm: sha256WithRSAEncryption 69:6f:29:d2:21:a8:8f:70:9e:e6:68:9b:96:06:b1:5a:db:b0: 7e:bd:57:6f:58:09:c6:45:91:a7:f7:55:a1:b6:6f:14:d0:b0: 87:bf:d5:bb:df:3d:d2:ad:94:af:ec:79:ec:c2:9e:a2:00:27: e7:57:82:f3:09:3e:15:b8:e3:70:06:63:44:78:a3:bf:68:89: 9e:d9:c3:66:e5:7c:12:df:be:59:ac:0e:9a:3d:e8:12:09:27: 3e:89:93:94:b4:12:10:e7:e2:c1:56:46:92:7c:54:23:da:1a: 47:6a:43:26:bd:bd:39:a5:19:c7:3c:6c:cb:22:86:f8:ba:ac: db:cf:c4:b1:01:03:b6:d8:fb:f6:b2:6d:98:15:e7:3f:57:f0: 24:2b:57:f2:0d:b3:ad:a0:4e:32:42:1e:e9:50:a1:0b:6c:f8: d6:95:3c:13:59:b7:36:c7:5f:3b:bd:44:94:a7:9c:e7:7a:64: 6f:d1:c4:7d:71:cd:c6:6d:f8:7f:5c:7f:19:f4:a4:d7:a3:cb: cb:5e:aa:38:c4:56:ee:82:78:23:fd:68:33:4f:e1:db:47:e8: d4:87:00:b1:1b:c8:cd:85:b9:43:25:7c:03:bb:d8:63:e4:c9: 1e:c0:8a:ba:5a:86:f6:2e:f7:10:75:aa:bd:4e:02:ce:f3:93: ad:f1:91:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe3HLL5X6ODF/ZaBSE0fYNtWPSd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIw NDc4NTlGQjAeFw0yNjA0MTQxNjU1MDFaFw0yNzA0MTMxNzAwMDFaMDMxMTAvBgNV BAMTKDJGNENFNjY3Mjg0MjVCMjgzRkRFREQ0RkY0MDQ2QTYxQUE5NDY0RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZ9CUDdkZR4PnESS35p5cf8Xp iiDMYo2BqIYmSB4zOw/b3ZOSc9jNeW0Xfxm3RD1AhJbQYteUdn9uhvk3hiDSp++e sjLHlCKu7s2Dhzv4g4OSBY29Wuj/6FLTS1ePnssniqKe33VOq56RZunxfYn2H8SM VIPoqYapywiKV5P/XQBVDDIDRzDx1cQgbVKCXf/shjayU8qwftR2+udqgbT9BXXX LecNDVZEkYVunQ5bDbeW8yWLKgkR2ALBkzfpseccv0RKtGIxU/7nZ3CHjWWXp9i+ 0SsoldZMdBTv1L3NgKHfUOUa6Q3Zb3WTx7GuL1TQRYPwV8cgKm4BvAs+Z1lNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL0zmZyhCWyg/3t1P9ARqYaqUZOwwHwYDVR0j BBgwFoAUqVDA9bgwZZ5JlERykDjV0gR4WfswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMC9BOTUwQzBGNUI4 MzA2NTlFNDk5NDQ0NzI5MDM4RDVEMjA0Nzg1OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTk1MEMwRjVCODMwNjU5RTQ5OTQ0NDcyOTAzOEQ1RDIwNDc4 NTlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJiLTg2MjUtNGYzOC1i MjZlLTQyZmJkM2MyMWNmMC8wLzMxMzYzMDJlMzIzMjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjM3MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWJDANBgkqhkiG 9w0BAQsFAAOCAQEAaW8p0iGoj3Ce5miblgaxWtuwfr1Xb1gJxkWRp/dVobZvFNCw h7/Vu9890q2Ur+x57MKeogAn51eC8wk+FbjjcAZjRHijv2iJntnDZuV8Et++WawO mj3oEgknPomTlLQSEOfiwVZGknxUI9oaR2pDJr29OaUZxzxsyyKG+Lqs28/EsQED ttj79rJtmBXnP1fwJCtX8g2zraBOMkIe6VChC2z41pU8E1m3NsdfO71ElKec53pk b9HEfXHNxm34f1x/GfSk16PLy16qOMRW7oJ4I/1oM0/h20fo1IcAsRvIzYW5QyV8 A7vYY+TJHsCKulqG9i73EHWqvU4CzvOTrfGRlQ== -----END CERTIFICATE-----Generated at Fri Apr 17 21:16:46 2026 by rpki-client