$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa File: 3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: CFruJxQ8MuHheDh6JK+NFFi5zCnJspnYlHEXIeAZWII= Subject key identifier: A6:A6:F3:2E:FE:73:12:FB:C1:C4:69:D0:FB:C1:D1:FD:BD:0C:66:DF Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 054069EDFB4830B5C3309293B30FB5BD557098D0 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:46 +0000 ROA not before: Sun 03 May 2026 02:06:46 +0000 ROA not after: Sun 02 May 2027 02:11:46 +0000 asID: 153087 IP address blocks: 103.136.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:40:69:ed:fb:48:30:b5:c3:30:92:93:b3:0f:b5:bd:55:70:98:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:46 2026 GMT Not After : May 2 02:11:46 2027 GMT Subject: CN=A6A6F32EFE7312FBC1C469D0FBC1D1FDBD0C66DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:22:d8:00:9a:35:9b:3e:07:6b:c9:d3:f9:37: 36:97:3f:89:78:7a:97:ae:8f:ec:46:29:86:c4:cd: c7:3f:67:84:29:87:e5:91:0f:65:9f:f4:09:29:3e: bd:17:c7:55:bc:37:ba:c2:fb:4b:9e:75:0d:8e:be: 58:6b:e2:0b:7e:f1:1e:bc:09:59:12:ea:5f:0a:ac: ba:11:02:4a:df:ad:89:6c:8c:2e:45:dc:3d:61:13: 5c:ac:56:e1:4e:ba:64:d9:9f:e7:89:19:24:19:59: 28:3a:08:51:b6:85:5e:37:f8:f8:8c:ac:80:dd:74: 98:76:87:d6:dd:65:76:fa:56:4b:04:8e:36:d8:16: 18:16:11:32:63:37:78:11:02:42:3c:9e:55:98:68: 87:a4:05:ff:71:6b:82:d7:9c:8c:89:5b:9e:1b:2c: b7:d0:f0:29:60:a6:61:f4:0b:14:4a:5f:07:a5:8c: 03:7d:21:b7:90:af:96:63:27:fb:b2:bd:14:1d:21: b5:74:5a:8c:f6:fa:6f:bd:47:fc:de:e3:0a:3f:b2: af:0e:93:05:29:14:4c:bc:e6:e7:b5:89:7a:3f:93: c9:53:9f:33:58:f9:92:48:7d:1c:1f:cd:f5:75:5e: 2f:da:9a:63:01:0a:78:77:91:9a:89:7b:72:27:c2: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A6:F3:2E:FE:73:12:FB:C1:C4:69:D0:FB:C1:D1:FD:BD:0C:66:DF X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.163.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:93:45:02:98:ea:61:11:5b:3d:e1:2c:ca:29:b3:e1:e8:46: 64:05:72:35:70:5c:c9:bc:bc:e3:d1:ef:8d:37:df:29:d7:b7: a2:20:b6:72:0f:31:e0:b4:aa:47:65:01:0b:58:a3:11:80:bd: e7:68:29:ff:ac:96:e8:53:be:a8:2e:d6:25:38:20:71:6a:ae: 0b:9d:eb:0a:9d:49:1d:3a:54:69:f7:8c:d1:d9:61:59:c6:b4: 9b:48:1b:f2:f7:83:02:5a:41:66:5e:8b:12:57:7b:3a:eb:bd: 22:95:08:36:0d:34:90:a2:ee:5d:a4:47:35:47:57:18:35:f9: eb:34:c3:13:db:cd:79:78:65:16:b0:6a:06:ec:98:74:bc:cc: e3:ae:9b:d6:9e:45:43:ad:6a:d5:ce:d1:f2:97:fa:bd:8b:59: 70:42:8d:07:df:bb:72:18:86:71:f4:b5:1a:0c:22:d3:fc:a2: ec:df:dd:4b:91:9e:aa:8f:aa:9e:be:54:77:8e:e4:d5:e7:17: 55:fd:d8:7d:c5:34:a6:65:55:12:fc:25:19:74:b2:77:9b:bf: 69:70:ca:d2:4d:5d:4f:ee:d1:3a:81:be:7c:18:98:a1:1a:4a: 77:90:83:b6:fd:44:da:e5:2c:ff:44:0b:90:05:46:b1:fc:67: 4f:0d:00:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBUBp7ftIMLXDMJKTsw+1vVVwmNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDZaFw0yNzA1MDIwMjExNDZaMDMxMTAvBgNV BAMTKEE2QTZGMzJFRkU3MzEyRkJDMUM0NjlEMEZCQzFEMUZEQkQwQzY2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbItgAmjWbPgdrydP5NzaXP4l4 epeuj+xGKYbEzcc/Z4Qph+WRD2Wf9AkpPr0Xx1W8N7rC+0uedQ2Ovlhr4gt+8R68 CVkS6l8KrLoRAkrfrYlsjC5F3D1hE1ysVuFOumTZn+eJGSQZWSg6CFG2hV43+PiM rIDddJh2h9bdZXb6VksEjjbYFhgWETJjN3gRAkI8nlWYaIekBf9xa4LXnIyJW54b LLfQ8ClgpmH0CxRKXweljAN9IbeQr5ZjJ/uyvRQdIbV0Woz2+m+9R/ze4wo/sq8O kwUpFEy85ue1iXo/k8lTnzNY+ZJIfRwfzfV1Xi/ammMBCnh3kZqJe3InwjoVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpqbzLv5zEvvBxGnQ+8HR/b0MZt8wHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniKMwDQYJ KoZIhvcNAQELBQADggEBAH+TRQKY6mERWz3hLMops+HoRmQFcjVwXMm8vOPR7403 3ynXt6IgtnIPMeC0qkdlAQtYoxGAvedoKf+sluhTvqgu1iU4IHFqrgud6wqdSR06 VGn3jNHZYVnGtJtIG/L3gwJaQWZeixJXezrrvSKVCDYNNJCi7l2kRzVHVxg1+es0 wxPbzXl4ZRawagbsmHS8zOOum9aeRUOtatXO0fKX+r2LWXBCjQffu3IYhnH0tRoM ItP8ouzf3UuRnqqPqp6+VHeO5NXnF1X92H3FNKZlVRL8JRl0snebv2lwytJNXU/u 0TqBvnwYmKEaSneQg7b9RNrlLP9EC5AFRrH8Z08NAJA= -----END CERTIFICATE-----Generated at Wed May 13 11:50:19 2026 by rpki-client