$ rpki-client -vvf repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa File: 3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa (raw, json) Hash identifier: LoZ+Ak/AzwjJxT3fXZctBt1mcUGSdVREnhJDJoE0LvU= Subject key identifier: 11:CF:82:6C:39:44:7B:87:BA:31:11:32:73:C6:D7:B1:32:BE:72:8F Certificate issuer: /CN=309FFE30695E76BA4952E2965B4FE24F9B9D6770 Certificate serial: 6A5E22CBFB787E6395CE26268617B4425B05BA2E Authority key identifier: 30:9F:FE:30:69:5E:76:BA:49:52:E2:96:5B:4F:E2:4F:9B:9D:67:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/309FFE30695E76BA4952E2965B4FE24F9B9D6770.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa Signing time: Thu 16 Apr 2026 04:49:26 +0000 ROA not before: Thu 16 Apr 2026 04:44:26 +0000 ROA not after: Thu 15 Apr 2027 04:49:26 +0000 asID: 152829 IP address blocks: 160.22.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/309FFE30695E76BA4952E2965B4FE24F9B9D6770.crl rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/309FFE30695E76BA4952E2965B4FE24F9B9D6770.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/309FFE30695E76BA4952E2965B4FE24F9B9D6770.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 11:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:5e:22:cb:fb:78:7e:63:95:ce:26:26:86:17:b4:42:5b:05:ba:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309FFE30695E76BA4952E2965B4FE24F9B9D6770 Validity Not Before: Apr 16 04:44:26 2026 GMT Not After : Apr 15 04:49:26 2027 GMT Subject: CN=11CF826C39447B87BA31113273C6D7B132BE728F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:56:a3:40:34:3b:aa:c0:7f:55:2c:61:aa:35: ce:da:0d:3e:c6:da:a7:4d:f9:2a:b6:e7:ae:ce:ca: 20:ce:2e:1c:2a:e9:e2:a7:a1:1f:0d:4b:c1:20:99: 05:26:83:41:ad:dd:8f:05:1a:ca:aa:c8:0e:d2:8d: aa:dd:c1:21:ba:77:e0:8a:96:55:4a:bd:a4:e9:a3: 33:e3:b8:62:32:af:9b:c5:70:71:f7:8c:25:f9:f3: f9:73:2a:c6:73:b2:bc:50:9c:bd:26:c6:a8:44:58: 3e:54:75:4d:99:83:ec:e6:a9:a6:96:39:7f:10:9c: 6b:bd:c4:17:9b:1f:03:6a:64:d3:38:2f:da:51:66: ae:55:d3:9e:c7:1b:7e:71:b6:7c:aa:33:e3:f1:eb: 74:7e:02:ec:8b:56:7a:b2:7c:58:25:dd:d4:9a:ba: 1c:4e:59:78:e3:e0:f3:6e:72:a3:68:24:e5:06:b1: 90:b1:9f:96:c3:b9:8d:3e:1e:53:f0:62:a9:c3:e7: d1:ef:e0:7b:df:6b:d3:ba:d6:01:19:41:f0:a7:5f: 27:14:a9:e1:cb:b4:2e:9a:fd:f9:21:8f:70:52:0e: 0f:b7:09:8b:9c:08:e7:19:d6:d5:fe:51:00:65:d9: 08:5c:56:2c:44:e7:02:c6:fa:64:9e:fb:c2:0f:3f: 0a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:CF:82:6C:39:44:7B:87:BA:31:11:32:73:C6:D7:B1:32:BE:72:8F X509v3 Authority Key Identifier: keyid:30:9F:FE:30:69:5E:76:BA:49:52:E2:96:5B:4F:E2:4F:9B:9D:67:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/309FFE30695E76BA4952E2965B4FE24F9B9D6770.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/309FFE30695E76BA4952E2965B4FE24F9B9D6770.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/3136302e32322e3230382e302f32332d3234203d3e20313532383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.208.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:10:c6:55:55:07:1f:09:5c:eb:7e:64:7a:5c:bd:a2:38:da: f3:57:f7:2d:61:93:aa:98:cc:19:87:4b:75:d2:7c:ee:8e:77: cf:74:7c:92:e3:e4:1e:6e:37:00:34:9d:20:02:46:83:01:66: ea:58:15:78:11:07:b6:37:7d:92:ee:62:5e:51:8f:b5:da:58: b6:0c:1d:c2:d5:9b:1e:f1:41:2e:ca:be:e9:52:65:43:fa:e2: 75:e8:16:53:55:4c:fa:40:d1:de:9c:60:30:e8:db:30:18:38: 3d:93:74:5b:1c:00:e6:b9:e7:6b:b4:d0:37:7b:f9:e5:81:f5: 00:ed:f3:e6:87:88:eb:19:ea:65:13:c8:d6:e9:58:71:aa:b3: ea:56:dd:0e:fd:21:10:d4:5a:20:9f:4d:8e:40:27:d7:8b:ac: 37:b4:e1:1f:c7:a0:0f:66:68:f9:3f:e1:5e:e6:e5:5b:9c:8e: f7:2c:78:5e:e1:4a:4f:46:08:cc:4e:d0:17:6c:b9:a6:bc:9e: 5f:c3:5b:75:2e:cf:89:33:fc:60:ad:fd:7e:61:5a:cc:72:31: b2:1b:cb:14:33:e6:9f:68:e5:0c:2e:b7:80:83:1e:72:28:a4: 06:84:f3:6e:c5:1b:cd:d5:96:28:95:40:52:db:2c:a8:73:f8: 73:b7:1d:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUal4iy/t4fmOVziYmhhe0QlsFui4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5RkZFMzA2OTVFNzZCQTQ5NTJFMjk2NUI0RkUyNEY5 QjlENjc3MDAeFw0yNjA0MTYwNDQ0MjZaFw0yNzA0MTUwNDQ5MjZaMDMxMTAvBgNV BAMTKDExQ0Y4MjZDMzk0NDdCODdCQTMxMTEzMjczQzZEN0IxMzJCRTcyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJVqNANDuqwH9VLGGqNc7aDT7G 2qdN+Sq2567OyiDOLhwq6eKnoR8NS8EgmQUmg0Gt3Y8FGsqqyA7SjardwSG6d+CK llVKvaTpozPjuGIyr5vFcHH3jCX58/lzKsZzsrxQnL0mxqhEWD5UdU2Zg+zmqaaW OX8QnGu9xBebHwNqZNM4L9pRZq5V057HG35xtnyqM+Px63R+AuyLVnqyfFgl3dSa uhxOWXjj4PNucqNoJOUGsZCxn5bDuY0+HlPwYqnD59Hv4Hvfa9O61gEZQfCnXycU qeHLtC6a/fkhj3BSDg+3CYucCOcZ1tX+UQBl2QhcVixE5wLG+mSe+8IPPwpvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEc+CbDlEe4e6MREyc8bXsTK+co8wHwYDVR0j BBgwFoAUMJ/+MGledrpJUuKWW0/iT5udZ3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2NiNTBiMC00M2NjLTQ4ZDAtOTFmNC0wNWJiZGU3YWMxZDAvMC8zMDlGRkUzMDY5 NUU3NkJBNDk1MkUyOTY1QjRGRTI0RjlCOUQ2NzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzA5RkZFMzA2OTVFNzZCQTQ5NTJFMjk2NUI0RkUyNEY5QjlE Njc3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzY2I1MGIwLTQzY2MtNDhkMC05 MWY0LTA1YmJkZTdhYzFkMC8wLzMxMzYzMDJlMzIzMjJlMzIzMDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbQMA0GCSqG SIb3DQEBCwUAA4IBAQAOEMZVVQcfCVzrfmR6XL2iONrzV/ctYZOqmMwZh0t10nzu jnfPdHyS4+QebjcANJ0gAkaDAWbqWBV4EQe2N32S7mJeUY+12li2DB3C1Zse8UEu yr7pUmVD+uJ16BZTVUz6QNHenGAw6NswGDg9k3RbHADmuedrtNA3e/nlgfUA7fPm h4jrGeplE8jW6VhxqrPqVt0O/SEQ1Fogn02OQCfXi6w3tOEfx6APZmj5P+Fe5uVb nI73LHhe4UpPRgjMTtAXbLmmvJ5fw1t1Ls+JM/xgrf1+YVrMcjGyG8sUM+afaOUM LreAgx5yKKQGhPNuxRvN1ZYolUBS2yyoc/hztx2s -----END CERTIFICATE-----Generated at Fri Apr 17 23:27:03 2026 by rpki-client