$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: ZG79u4PD+HEejweoK85E+fQQ2D0/TOpv6Ke8PIGpdKs= Subject key identifier: 91:E6:94:7F:30:91:C8:3E:AF:2C:28:B1:D9:94:98:3B:00:71:EC:06 Certificate issuer: /CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Certificate serial: 42434694A3E4BA273299385229A3ED0E717A7DEA Authority key identifier: 10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa Signing time: Sun 03 May 2026 02:16:00 +0000 ROA not before: Sun 03 May 2026 02:11:00 +0000 ROA not after: Sun 02 May 2027 02:16:00 +0000 asID: 38150 IP address blocks: 180.214.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 10:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:43:46:94:a3:e4:ba:27:32:99:38:52:29:a3:ed:0e:71:7a:7d:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Validity Not Before: May 3 02:11:00 2026 GMT Not After : May 2 02:16:00 2027 GMT Subject: CN=91E6947F3091C83EAF2C28B1D994983B0071EC06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:dd:ef:d3:ec:ac:16:13:c2:0a:ce:b3:98: df:0c:df:e8:83:e8:de:0d:59:ae:0a:ad:13:d9:5f: 9f:db:72:e1:5f:15:5b:e5:5a:1d:7b:4b:7c:80:98: dc:b1:07:b7:75:ba:66:d4:bd:80:ad:07:e7:21:cc: a6:44:5f:0f:14:de:48:53:1a:a8:86:68:da:83:d7: 6b:9e:ac:54:09:14:27:73:33:ec:e9:ab:a9:a6:4a: da:ba:75:7a:8e:dd:78:5f:c1:2d:48:f2:b4:30:09: 37:f8:fb:89:a6:51:87:e2:4e:57:b8:97:61:81:da: 01:6c:e4:6b:39:e5:4f:72:c6:02:9c:5c:a7:39:f9: 53:75:3c:9c:ea:75:fa:07:09:26:6a:92:18:c2:74: 5e:43:75:7b:c0:f3:8c:0b:cb:f3:4e:11:5a:19:8c: c8:30:d2:28:f1:0a:42:b1:b1:12:f8:4f:a5:18:8e: 6a:21:05:3d:08:ab:72:31:85:c5:23:3d:2d:d5:f0: 33:df:76:85:9d:a1:b4:e3:3b:2d:83:41:96:3e:a8: 6b:e6:2a:af:47:73:37:55:9b:02:d3:2d:5f:82:20: be:b4:95:ac:85:d7:c2:90:91:9a:1b:2d:da:44:1c: 8d:a9:49:29:fc:91:15:07:5d:fa:c5:9c:10:ed:e0: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E6:94:7F:30:91:C8:3E:AF:2C:28:B1:D9:94:98:3B:00:71:EC:06 X509v3 Authority Key Identifier: keyid:10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.242.0/24 Signature Algorithm: sha256WithRSAEncryption ad:ca:57:99:c0:4c:98:10:0a:0f:2e:91:8b:6a:bc:18:7a:84: 66:9e:89:74:aa:7e:20:20:39:55:49:1d:9e:77:b7:d9:1d:ca: ec:d0:dd:dc:d9:53:99:df:a0:67:41:10:bd:52:41:1d:1f:b0: bd:18:fd:70:3b:ad:51:e9:24:14:9b:05:ee:09:f7:06:77:a6: 7b:07:92:0c:6d:fd:91:a2:91:f6:c4:be:0d:cd:57:de:e3:75: f4:ae:90:cf:01:66:11:a4:c2:89:93:83:eb:21:74:d1:92:68: f6:42:fc:d7:85:3d:1a:27:58:c2:c3:27:ac:92:5c:75:4f:b2: 30:ab:ab:16:e9:2b:00:8f:b6:65:14:2b:cc:4a:da:03:bc:04: 80:29:03:9a:45:de:78:34:c2:f2:57:78:b2:68:f6:bb:b1:2b: cc:d3:72:ca:4e:71:72:72:06:4d:e3:2e:ae:c7:23:31:73:44: 62:31:71:a3:92:6a:49:3f:a2:18:bf:de:e7:e2:1a:69:d2:8e: db:08:96:9b:b3:5d:48:09:22:0f:9c:e0:4b:a4:74:30:46:3e: 5a:9a:8d:ec:82:4d:36:be:e0:fd:d0:c3:b5:4c:c5:95:38:8c: e8:6a:9b:78:38:d8:63:29:26:a9:fd:30:cd:70:ef:2c:49:87: fb:24:e7:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQkNGlKPkuicymThSKaPtDnF6feowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAyQ0IyMjgyNTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0 OUNENzJFMTAeFw0yNjA1MDMwMjExMDBaFw0yNzA1MDIwMjE2MDBaMDMxMTAvBgNV BAMTKDkxRTY5NDdGMzA5MUM4M0VBRjJDMjhCMUQ5OTQ5ODNCMDA3MUVDMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvc93v0+ysFhPCCs6zmN8M3+iD 6N4NWa4KrRPZX5/bcuFfFVvlWh17S3yAmNyxB7d1umbUvYCtB+chzKZEXw8U3khT GqiGaNqD12uerFQJFCdzM+zpq6mmStq6dXqO3XhfwS1I8rQwCTf4+4mmUYfiTle4 l2GB2gFs5Gs55U9yxgKcXKc5+VN1PJzqdfoHCSZqkhjCdF5DdXvA84wLy/NOEVoZ jMgw0ijxCkKxsRL4T6UYjmohBT0Iq3IxhcUjPS3V8DPfdoWdobTjOy2DQZY+qGvm Kq9HczdVmwLTLV+CIL60layF18KQkZobLdpEHI2pSSn8kRUHXfrFnBDt4AlfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkeaUfzCRyD6vLCix2ZSYOwBx7AYwHwYDVR0j BBgwFoAUECyyKCVaxZwG9Wv5KRqr3UnNcuEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlNjViNjctOTA1Yy00MDNjLThjNzktMjMxNTY1OTY2OGFhLzAvMTAyQ0IyMjgy NTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0OUNENzJFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDJDQjIyODI1NUFDNTlDMDZGNTZCRjkyOTFBQUJERDQ5Q0Q3 MkUxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNbyMA0GCSqG SIb3DQEBCwUAA4IBAQCtyleZwEyYEAoPLpGLarwYeoRmnol0qn4gIDlVSR2ed7fZ Hcrs0N3c2VOZ36BnQRC9UkEdH7C9GP1wO61R6SQUmwXuCfcGd6Z7B5IMbf2RopH2 xL4NzVfe43X0rpDPAWYRpMKJk4PrIXTRkmj2QvzXhT0aJ1jCwyesklx1T7Iwq6sW 6SsAj7ZlFCvMStoDvASAKQOaRd54NMLyV3iyaPa7sSvM03LKTnFycgZN4y6uxyMx c0RiMXGjkmpJP6IYv97n4hpp0o7bCJabs11ICSIPnOBLpHQwRj5amo3sgk02vuD9 0MO1TMWVOIzoapt4ONhjKSap/TDNcO8sSYf7JOeL -----END CERTIFICATE-----Generated at Wed May 13 04:47:16 2026 by rpki-client