$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa File: 3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa (raw, json) Hash identifier: TyeS6OFp+eX9ORLvbkAk7IV44ZT6uQE45kxcvU/K/wA= Subject key identifier: 1E:65:99:5D:7A:08:2D:40:18:90:8A:7F:B3:B4:DF:CE:3B:AC:9D:D2 Certificate issuer: /CN=D59D3CB80F39720CC6378798AF38E978ACC61169 Certificate serial: 7874A728871172F9DC3D2A8196D1806FECDDDCB5 Authority key identifier: D5:9D:3C:B8:0F:39:72:0C:C6:37:87:98:AF:38:E9:78:AC:C6:11:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D59D3CB80F39720CC6378798AF38E978ACC61169.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa Signing time: Sun 03 May 2026 02:13:24 +0000 ROA not before: Sun 03 May 2026 02:08:24 +0000 ROA not after: Sun 02 May 2027 02:13:24 +0000 asID: 141146 IP address blocks: 103.158.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/D59D3CB80F39720CC6378798AF38E978ACC61169.crl rsync://rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/D59D3CB80F39720CC6378798AF38E978ACC61169.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D59D3CB80F39720CC6378798AF38E978ACC61169.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:74:a7:28:87:11:72:f9:dc:3d:2a:81:96:d1:80:6f:ec:dd:dc:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D59D3CB80F39720CC6378798AF38E978ACC61169 Validity Not Before: May 3 02:08:24 2026 GMT Not After : May 2 02:13:24 2027 GMT Subject: CN=1E65995D7A082D4018908A7FB3B4DFCE3BAC9DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ba:6c:5c:8c:d9:5a:c8:b3:3e:f1:25:6c:ce: a1:c2:fd:8c:4f:6b:1f:61:cf:a2:ef:e6:ed:d9:aa: f4:a4:ab:37:30:7d:15:b4:41:e1:60:23:7c:1b:5a: ce:54:c2:4e:cb:42:dd:24:ed:1a:cc:35:e9:6d:f5: e9:9f:a9:d5:f0:89:b4:4b:a8:99:88:f2:a3:cf:17: 29:95:42:63:1c:4c:f7:48:28:b3:de:e7:28:8c:59: 0d:6c:a2:1e:27:62:f2:eb:25:5d:ce:2b:54:4a:ae: 89:10:07:c4:b2:a4:8a:9f:ff:15:d8:14:cf:b4:94: bd:7a:83:98:61:01:8a:25:72:36:7d:bd:c1:d2:38: 55:b7:8b:81:44:63:c2:cd:23:a9:11:b9:5d:21:3b: 2c:28:df:f5:1d:60:79:b7:07:c4:35:89:62:ec:57: ec:b4:54:4e:23:60:b8:5b:12:11:ad:dc:b3:2b:ed: 33:10:63:98:70:0c:b2:73:10:8b:61:c0:92:e9:2e: 69:f7:36:f8:e1:bd:79:ba:93:c4:a4:92:fc:8f:30: a7:ed:8c:79:5c:4f:82:d6:40:12:b9:54:d3:0b:12: b4:fa:50:f8:e5:fb:31:44:e2:ce:be:98:f3:d3:9b: 72:37:d9:07:15:9d:3c:36:80:97:c2:9f:7c:f3:42: 21:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:99:5D:7A:08:2D:40:18:90:8A:7F:B3:B4:DF:CE:3B:AC:9D:D2 X509v3 Authority Key Identifier: keyid:D5:9D:3C:B8:0F:39:72:0C:C6:37:87:98:AF:38:E9:78:AC:C6:11:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/D59D3CB80F39720CC6378798AF38E978ACC61169.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D59D3CB80F39720CC6378798AF38E978ACC61169.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.208.0/23 Signature Algorithm: sha256WithRSAEncryption 94:3a:7b:a3:85:70:b3:7a:9b:0a:e7:e7:88:10:74:81:3a:7c: 92:66:3c:dd:ad:89:e2:dd:13:98:7b:7d:4a:a7:cd:71:2d:82: 31:f7:99:45:7c:4a:5e:3b:3f:c4:5e:23:df:39:09:79:bc:f8: da:41:26:96:b4:01:04:d3:b3:24:03:54:6f:f0:f3:2d:78:01: 44:d6:52:9e:05:b0:c5:4e:ca:86:f9:f0:13:e4:09:16:b8:29: 06:d4:4e:df:42:b3:9d:64:5a:de:33:ad:9c:79:20:51:69:01: 7b:1d:6d:f8:16:04:cc:e7:75:da:70:9b:91:5a:7c:f4:bb:04: 97:69:25:84:2d:df:e6:b9:a4:f1:66:a3:77:cb:a8:c6:3e:cb: 61:36:70:ac:55:c8:6f:62:18:2d:fb:fa:3f:b0:ad:35:5c:bb: 25:95:f9:e1:79:63:0e:2f:27:12:49:36:b0:fa:0a:29:f3:ac: a7:1c:6e:8e:b9:33:49:f8:db:95:9b:c1:a7:1d:b1:c5:3d:3b: 24:9d:a1:17:33:38:64:e4:73:e9:51:6e:64:29:f3:b0:10:b7: f2:14:3c:61:c9:49:fc:6d:d3:8f:f5:c1:da:eb:7c:f6:c9:89: d4:ee:89:8f:73:77:3f:7b:f9:64:31:f1:25:52:b4:e4:83:99: 82:cf:35:e4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeHSnKIcRcvncPSqBltGAb+zd3LUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU5RDNDQjgwRjM5NzIwQ0M2Mzc4Nzk4QUYzOEU5NzhB Q0M2MTE2OTAeFw0yNjA1MDMwMjA4MjRaFw0yNzA1MDIwMjEzMjRaMDMxMTAvBgNV BAMTKDFFNjU5OTVEN0EwODJENDAxODkwOEE3RkIzQjRERkNFM0JBQzlERDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtumxcjNlayLM+8SVszqHC/YxP ax9hz6Lv5u3ZqvSkqzcwfRW0QeFgI3wbWs5Uwk7LQt0k7RrMNelt9emfqdXwibRL qJmI8qPPFymVQmMcTPdIKLPe5yiMWQ1soh4nYvLrJV3OK1RKrokQB8SypIqf/xXY FM+0lL16g5hhAYolcjZ9vcHSOFW3i4FEY8LNI6kRuV0hOywo3/UdYHm3B8Q1iWLs V+y0VE4jYLhbEhGt3LMr7TMQY5hwDLJzEIthwJLpLmn3NvjhvXm6k8SkkvyPMKft jHlcT4LWQBK5VNMLErT6UPjl+zFE4s6+mPPTm3I32QcVnTw2gJfCn3zzQiF1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHmWZXXoILUAYkIp/s7TfzjusndIwHwYDVR0j BBgwFoAU1Z08uA85cgzGN4eYrzjpeKzGEWkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU3MDU5MjctZWM2NC00NGY1LTljOWUtYzlhNTVhNTIzYjY0LzAvRDU5RDNDQjgw RjM5NzIwQ0M2Mzc4Nzk4QUYzOEU5NzhBQ0M2MTE2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENTlEM0NCODBGMzk3MjBDQzYzNzg3OThBRjM4RTk3OEFDQzYx MTY5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnntAwDQYJ KoZIhvcNAQELBQADggEBAJQ6e6OFcLN6mwrn54gQdIE6fJJmPN2tieLdE5h7fUqn zXEtgjH3mUV8Sl47P8ReI985CXm8+NpBJpa0AQTTsyQDVG/w8y14AUTWUp4FsMVO yob58BPkCRa4KQbUTt9Cs51kWt4zrZx5IFFpAXsdbfgWBMznddpwm5FafPS7BJdp JYQt3+a5pPFmo3fLqMY+y2E2cKxVyG9iGC37+j+wrTVcuyWV+eF5Yw4vJxJJNrD6 CinzrKccbo65M0n425WbwacdscU9OySdoRczOGTkc+lRbmQp87AQt/IUPGHJSfxt 04/1wdrrfPbJidTuiY9zdz97+WQx8SVStOSDmYLPNeQ= -----END CERTIFICATE-----Generated at Wed May 13 12:39:50 2026 by rpki-client