$ rpki-client -vvf repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa File: 3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa (raw, json) Hash identifier: 2qXbL0ZgQVkSKhEuNsDLIroYy6UTyLt0wrUnL8qsVTw= Subject key identifier: 37:A2:23:56:01:0A:C0:DD:AB:A1:26:D2:D2:BD:D5:30:3E:A1:F8:6C Certificate issuer: /CN=6176447D40001B20E000D73A3B5E66B74A431374 Certificate serial: 5157F3683E7102B15B07F674C1606425C41DDD5A Authority key identifier: 61:76:44:7D:40:00:1B:20:E0:00:D7:3A:3B:5E:66:B7:4A:43:13:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6176447D40001B20E000D73A3B5E66B74A431374.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa Signing time: Fri 17 Apr 2026 06:02:44 +0000 ROA not before: Fri 17 Apr 2026 05:57:44 +0000 ROA not after: Fri 16 Apr 2027 06:02:44 +0000 asID: 152788 IP address blocks: 160.19.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/6176447D40001B20E000D73A3B5E66B74A431374.crl rsync://repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/6176447D40001B20E000D73A3B5E66B74A431374.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6176447D40001B20E000D73A3B5E66B74A431374.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 13:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:57:f3:68:3e:71:02:b1:5b:07:f6:74:c1:60:64:25:c4:1d:dd:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6176447D40001B20E000D73A3B5E66B74A431374 Validity Not Before: Apr 17 05:57:44 2026 GMT Not After : Apr 16 06:02:44 2027 GMT Subject: CN=37A22356010AC0DDABA126D2D2BDD5303EA1F86C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:c9:62:fe:21:47:cf:03:97:36:7c:0d:ef: e1:2c:27:86:fd:ff:b7:3f:c9:2d:23:01:af:7e:fe: 35:9b:4a:c7:ee:b2:12:81:d0:7a:a6:8f:8b:d8:6a: 9f:bf:04:66:1c:55:20:e3:ca:db:7a:7b:f1:e7:62: 05:ae:01:1f:8a:de:46:ed:e3:c3:29:2f:cf:63:94: 55:21:ad:cf:84:96:82:90:3b:93:bf:2d:f0:30:bf: 6d:e8:75:cb:6d:03:9b:f2:09:e5:f0:70:21:c0:e3: 3d:25:9d:14:03:48:72:d4:7d:17:42:e3:99:ca:0a: 7b:e7:d5:1b:20:aa:5b:4e:f3:0f:63:d2:e6:c9:48: 58:5d:e7:55:e8:8e:bd:89:9b:36:17:dc:d6:da:96: 8d:e6:c0:bf:09:c7:83:22:d9:80:50:91:c4:9d:13: e3:c6:36:47:0c:5f:35:33:6c:90:bb:ce:18:0a:5b: 17:ee:68:a1:be:59:03:7c:ee:e6:2c:1d:27:c8:8c: c1:26:c9:40:3d:6f:72:c6:40:c2:59:4c:ac:71:4f: 0c:9f:c7:7f:0d:b6:5b:13:6b:d8:d5:de:c1:7c:36: ab:ff:21:5e:5f:d7:52:31:58:0b:74:7e:c4:2d:4d: ad:68:4e:89:8f:df:53:80:27:f2:a1:9b:b7:30:d6: 07:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:23:56:01:0A:C0:DD:AB:A1:26:D2:D2:BD:D5:30:3E:A1:F8:6C X509v3 Authority Key Identifier: keyid:61:76:44:7D:40:00:1B:20:E0:00:D7:3A:3B:5E:66:B7:4A:43:13:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/6176447D40001B20E000D73A3B5E66B74A431374.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6176447D40001B20E000D73A3B5E66B74A431374.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d40bd6e4-b4fb-4f48-b83a-acb8f2d74583/0/3136302e31392e3134342e302f32332d3234203d3e20313532373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.144.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:4a:79:0c:eb:3a:e7:7c:cb:69:d9:ed:9c:b6:d8:5d:bd:13: d5:5b:b5:0e:a8:48:22:5f:c7:08:ee:ae:f4:00:4d:62:71:6f: e6:2b:fb:d9:49:12:3c:3a:f2:86:ce:24:d8:ea:86:27:07:ea: 49:12:2c:3c:cf:28:60:aa:d1:97:2e:93:93:e3:0c:82:78:2d: dd:8c:d5:41:bc:b2:92:36:d7:24:16:e4:7e:18:9d:64:c6:aa: f0:bf:77:2a:5e:86:8e:0a:86:09:6d:1f:ae:8a:7a:f3:51:39: 8d:df:c3:af:14:48:03:c5:0e:63:18:19:4d:df:53:60:df:fa: 80:8c:c0:d4:ed:7a:93:e9:c7:91:45:f9:3d:62:13:80:6b:ee: cd:66:8a:15:b6:f6:3d:0e:9b:84:83:53:d5:4b:db:70:04:cc: 89:b9:15:37:ac:2e:fe:36:1a:8c:a1:69:3b:5f:db:46:ab:67: 58:0a:65:49:ee:35:5e:f3:1c:59:38:4e:fa:1c:23:db:3a:ac: 13:1a:e5:ca:aa:af:75:1d:a1:fb:a1:5f:6f:55:0e:86:40:4c: 63:12:5c:65:44:67:f0:be:b4:2c:08:78:f1:90:9d:e3:7d:3c: 20:41:ed:4b:e1:b7:a7:e6:58:72:e3:8b:cd:31:65:82:0e:ee: 11:57:d3:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUVfzaD5xArFbB/Z0wWBkJcQd3VowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE3NjQ0N0Q0MDAwMUIyMEUwMDBENzNBM0I1RTY2Qjc0 QTQzMTM3NDAeFw0yNjA0MTcwNTU3NDRaFw0yNzA0MTYwNjAyNDRaMDMxMTAvBgNV BAMTKDM3QTIyMzU2MDEwQUMwRERBQkExMjZEMkQyQkRENTMwM0VBMUY4NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCG8li/iFHzwOXNnwN7+EsJ4b9 /7c/yS0jAa9+/jWbSsfushKB0Hqmj4vYap+/BGYcVSDjytt6e/HnYgWuAR+K3kbt 48MpL89jlFUhrc+EloKQO5O/LfAwv23odcttA5vyCeXwcCHA4z0lnRQDSHLUfRdC 45nKCnvn1RsgqltO8w9j0ubJSFhd51Xojr2JmzYX3Nbalo3mwL8Jx4Mi2YBQkcSd E+PGNkcMXzUzbJC7zhgKWxfuaKG+WQN87uYsHSfIjMEmyUA9b3LGQMJZTKxxTwyf x38NtlsTa9jV3sF8Nqv/IV5f11IxWAt0fsQtTa1oTomP31OAJ/Khm7cw1gddAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN6IjVgEKwN2roSbS0r3VMD6h+GwwHwYDVR0j BBgwFoAUYXZEfUAAGyDgANc6O15mt0pDE3QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDBiZDZlNC1iNGZiLTRmNDgtYjgzYS1hY2I4ZjJkNzQ1ODMvMC82MTc2NDQ3RDQw MDAxQjIwRTAwMEQ3M0EzQjVFNjZCNzRBNDMxMzc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjE3NjQ0N0Q0MDAwMUIyMEUwMDBENzNBM0I1RTY2Qjc0QTQz MTM3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0MGJkNmU0LWI0ZmItNGY0OC1i ODNhLWFjYjhmMmQ3NDU4My8wLzMxMzYzMDJlMzEzOTJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBOQMA0GCSqG SIb3DQEBCwUAA4IBAQAfSnkM6zrnfMtp2e2ctthdvRPVW7UOqEgiX8cI7q70AE1i cW/mK/vZSRI8OvKGziTY6oYnB+pJEiw8zyhgqtGXLpOT4wyCeC3djNVBvLKSNtck FuR+GJ1kxqrwv3cqXoaOCoYJbR+uinrzUTmN38OvFEgDxQ5jGBlN31Ng3/qAjMDU 7XqT6ceRRfk9YhOAa+7NZooVtvY9DpuEg1PVS9twBMyJuRU3rC7+NhqMoWk7X9tG q2dYCmVJ7jVe8xxZOE76HCPbOqwTGuXKqq91HaH7oV9vVQ6GQExjElxlRGfwvrQs CHjxkJ3jfTwgQe1L4ben5lhy44vNMWWCDu4RV9Or -----END CERTIFICATE-----Generated at Fri Apr 17 22:00:00 2026 by rpki-client