$ rpki-client -vvf rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa File: 3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa (raw, json) Hash identifier: ht3wys3Y4NKbvssKz7Sxlx9g755vgJKTzTjwYqhy56E= Subject key identifier: 14:AD:C1:94:73:05:44:C6:DF:F2:8E:FB:A2:A4:2B:74:69:4B:34:56 Certificate issuer: /CN=5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1 Certificate serial: 26E6B1CC535FFC1EA03FC06009F3615E1774FB53 Authority key identifier: 5B:B1:2C:31:D3:6E:55:CF:D6:AF:94:4C:A4:E7:67:E0:B9:DB:9B:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa Signing time: Sun 03 May 2026 02:16:49 +0000 ROA not before: Sun 03 May 2026 02:11:49 +0000 ROA not after: Sun 02 May 2027 02:16:49 +0000 asID: 138855 IP address blocks: 103.171.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.crl rsync://rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e6:b1:cc:53:5f:fc:1e:a0:3f:c0:60:09:f3:61:5e:17:74:fb:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1 Validity Not Before: May 3 02:11:49 2026 GMT Not After : May 2 02:16:49 2027 GMT Subject: CN=14ADC194730544C6DFF28EFBA2A42B74694B3456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:21:9c:17:d5:64:a2:f4:02:d5:97:75:6a:1a: 94:f1:c7:05:26:b1:e6:81:e1:09:de:4b:2e:65:ac: 6b:ec:76:76:52:86:f2:0a:53:54:62:47:57:5d:a5: 53:c1:d5:89:55:01:29:85:bf:a7:88:11:e4:85:fe: 6d:35:39:70:1a:8c:d2:7b:c5:71:4b:67:c5:66:e1: fa:6c:4a:09:63:15:8e:41:61:46:d7:4c:0f:3b:b4: ac:7d:28:86:20:52:42:f6:91:d3:34:08:2c:63:34: 00:9b:7b:e9:14:f2:c7:11:55:3f:fd:94:3c:1d:46: 00:08:7a:b2:62:f3:1d:9c:b4:ac:e9:b4:92:10:15: 4d:43:19:d6:4d:a9:fc:37:b4:bf:32:37:c6:e1:75: 97:33:c1:81:37:ff:15:d7:91:d3:2d:0e:51:af:8a: 52:9d:09:04:a2:f2:48:44:bd:f2:27:59:9c:78:f7: 61:9c:71:f1:97:74:40:39:ef:6d:87:e6:95:ee:d6: 65:06:bb:ce:58:a2:f6:e8:85:75:70:6f:a5:95:58: f0:6d:6e:91:15:e4:35:40:a2:e0:c3:c4:57:d4:eb: 2c:51:aa:1a:7d:df:c3:23:e0:21:c1:20:a0:e8:82: 36:e0:bd:5d:4c:f1:68:2f:b3:61:2d:98:a6:21:c6: be:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AD:C1:94:73:05:44:C6:DF:F2:8E:FB:A2:A4:2B:74:69:4B:34:56 X509v3 Authority Key Identifier: keyid:5B:B1:2C:31:D3:6E:55:CF:D6:AF:94:4C:A4:E7:67:E0:B9:DB:9B:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BB12C31D36E55CFD6AF944CA4E767E0B9DB9BF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.22.0/23 Signature Algorithm: sha256WithRSAEncryption 18:fc:ec:7a:d7:5c:f5:cb:e9:d9:4f:d2:49:95:6e:39:5a:ad: 96:e9:8a:e7:b3:ab:87:eb:fa:1b:35:45:1a:ce:d7:54:77:7c: 14:35:5a:cf:82:3a:24:54:0e:e3:cb:08:d4:f1:e1:6c:3b:27: 82:ad:06:8b:3d:2a:22:e2:54:9e:80:4c:90:2d:ca:8a:75:1a: 55:27:4a:2d:e5:1f:90:62:94:36:de:fc:08:f7:ad:09:35:3a: 1f:e2:95:d6:a9:34:d1:ac:2f:fd:3b:76:48:1b:d8:18:4a:43: 3b:7d:2f:77:1a:d2:37:23:09:88:eb:ba:1c:c9:b5:ad:e6:f4: 11:9f:82:2f:4d:a9:b8:85:f2:d1:af:bb:d4:59:76:5c:0e:60: e5:09:6f:00:1c:6b:bd:7e:68:68:95:20:6d:15:d5:7f:93:e7: 2c:4a:7c:df:99:52:99:d0:43:46:56:a2:3c:24:68:07:d6:20: bf:88:84:ff:e1:ce:5a:0e:3d:b4:1e:93:7d:48:80:b7:30:e1: d1:e0:56:ce:f1:bf:c7:5b:9e:54:31:8a:a8:82:02:d2:8a:37: 03:e5:c4:fb:f0:57:de:99:86:29:c9:10:22:a6:f9:5a:9f:cf: b9:95:8b:0a:6f:fa:b9:57:b9:3e:a2:7d:f0:fe:fe:e1:9e:c1: 1d:d9:36:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJuaxzFNf/B6gP8BgCfNhXhd0+1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJCMTJDMzFEMzZFNTVDRkQ2QUY5NDRDQTRFNzY3RTBC OURCOUJGMTAeFw0yNjA1MDMwMjExNDlaFw0yNzA1MDIwMjE2NDlaMDMxMTAvBgNV BAMTKDE0QURDMTk0NzMwNTQ0QzZERkYyOEVGQkEyQTQyQjc0Njk0QjM0NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvIZwX1WSi9ALVl3VqGpTxxwUm seaB4QneSy5lrGvsdnZShvIKU1RiR1ddpVPB1YlVASmFv6eIEeSF/m01OXAajNJ7 xXFLZ8Vm4fpsSgljFY5BYUbXTA87tKx9KIYgUkL2kdM0CCxjNACbe+kU8scRVT/9 lDwdRgAIerJi8x2ctKzptJIQFU1DGdZNqfw3tL8yN8bhdZczwYE3/xXXkdMtDlGv ilKdCQSi8khEvfInWZx492GccfGXdEA5722H5pXu1mUGu85YovbohXVwb6WVWPBt bpEV5DVAouDDxFfU6yxRqhp938Mj4CHBIKDogjbgvV1M8Wgvs2EtmKYhxr6zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFK3BlHMFRMbf8o77oqQrdGlLNFYwHwYDVR0j BBgwFoAUW7EsMdNuVc/Wr5RMpOdn4Lnbm/EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTliOTNlMWMtNWYyYS00M2E5LTk5ZjEtZmRkMDQwMmY5NDZlLzAvNUJCMTJDMzFE MzZFNTVDRkQ2QUY5NDRDQTRFNzY3RTBCOURCOUJGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81QkIxMkMzMUQzNkU1NUNGRDZBRjk0NENBNEU3NjdFMEI5REI5 QkYxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE5YjkzZTFjLTVmMmEtNDNhOS05 OWYxLWZkZDA0MDJmOTQ2ZS8wLzMxMzAzMzJlMzEzNzMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6sWMA0GCSqG SIb3DQEBCwUAA4IBAQAY/Ox611z1y+nZT9JJlW45Wq2W6Yrns6uH6/obNUUaztdU d3wUNVrPgjokVA7jywjU8eFsOyeCrQaLPSoi4lSegEyQLcqKdRpVJ0ot5R+QYpQ2 3vwI960JNTof4pXWqTTRrC/9O3ZIG9gYSkM7fS93GtI3IwmI67ocybWt5vQRn4Iv Tam4hfLRr7vUWXZcDmDlCW8AHGu9fmholSBtFdV/k+csSnzfmVKZ0ENGVqI8JGgH 1iC/iIT/4c5aDj20HpN9SIC3MOHR4FbO8b/HW55UMYqoggLSijcD5cT78FfemYYp yRAipvlan8+5lYsKb/q5V7k+on3w/v7hnsEd2TY5 -----END CERTIFICATE-----Generated at Wed May 13 13:44:47 2026 by rpki-client