$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa File: 3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: CbnjGUXd5+J6hJMKbj+3ua0RtVbeM/SLewiagXzRFOs= Subject key identifier: D5:92:B7:FB:AA:35:2C:22:A6:6E:08:0F:F9:62:E1:0E:94:27:C4:47 Certificate issuer: /CN=996D7371455A834C9B196DACD041DB7C6E779021 Certificate serial: 13B5B02AD7F0D1164BEA8B5313859D2276CF85E0 Authority key identifier: 99:6D:73:71:45:5A:83:4C:9B:19:6D:AC:D0:41:DB:7C:6E:77:90:21 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa Signing time: Sun 03 May 2026 02:17:09 +0000 ROA not before: Sun 03 May 2026 02:12:09 +0000 ROA not after: Sun 02 May 2027 02:17:09 +0000 asID: 149705 IP address blocks: 103.158.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.crl rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b5:b0:2a:d7:f0:d1:16:4b:ea:8b:53:13:85:9d:22:76:cf:85:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D7371455A834C9B196DACD041DB7C6E779021 Validity Not Before: May 3 02:12:09 2026 GMT Not After : May 2 02:17:09 2027 GMT Subject: CN=D592B7FBAA352C22A66E080FF962E10E9427C447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:31:62:c8:ed:76:32:79:14:07:39:ac:82:9e: 0b:94:4e:12:58:ca:6c:f2:bd:09:c3:63:74:01:9e: fa:fb:c7:b5:e0:6d:2d:fc:60:e5:35:50:f9:d2:04: ba:1a:67:20:6c:11:7b:c3:f4:c1:d5:16:2a:9d:a9: ae:28:0a:b1:e3:0a:98:2f:da:09:38:36:1f:63:ae: 7a:87:38:07:6d:c9:f6:50:53:89:61:8e:85:ec:da: e8:ba:32:66:e2:bf:b6:d8:ce:02:c2:c8:bc:f4:3e: d3:cf:2d:f7:13:4a:1b:de:37:30:2b:06:1d:e5:d0: 63:b8:06:5d:b4:4d:49:d3:96:37:cb:fb:a8:3f:ae: b2:78:0f:1d:80:1a:55:30:37:0b:c6:1a:bc:7c:1c: 3d:f2:13:60:ad:ef:53:83:6b:73:bc:22:60:8c:eb: 40:63:bb:71:80:59:54:2d:69:8c:88:c0:75:05:6f: a6:3c:7c:8a:66:ee:ae:c3:5e:33:57:ed:e1:02:d5: 75:5d:a4:a8:ee:6d:39:92:d0:ff:97:8b:9d:54:69: e9:e7:f4:cb:ac:6b:2f:e1:b6:ff:9b:e2:c6:0d:44: f6:71:16:f2:e6:1a:b1:92:13:0c:4b:c1:42:ad:6c: 0c:4a:4f:04:6c:20:ea:77:19:d4:cc:ff:7a:7c:2b: fe:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:92:B7:FB:AA:35:2C:22:A6:6E:08:0F:F9:62:E1:0E:94:27:C4:47 X509v3 Authority Key Identifier: keyid:99:6D:73:71:45:5A:83:4C:9B:19:6D:AC:D0:41:DB:7C:6E:77:90:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/996D7371455A834C9B196DACD041DB7C6E779021.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/996D7371455A834C9B196DACD041DB7C6E779021.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139322e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.192.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:ac:fe:70:58:64:86:29:69:f1:13:63:a0:16:a6:52:e5:5b: 18:ad:52:a5:5c:9e:25:03:32:80:ba:d2:c0:16:32:d0:36:d4: b7:c0:e6:af:37:ca:7b:69:2c:22:db:8a:e0:00:10:4b:e2:9a: 5c:ab:9c:b2:28:00:75:ee:21:33:a6:9c:f4:77:40:98:f3:54: 29:69:79:db:40:b3:ac:c7:0e:ac:42:14:78:dd:4b:9b:62:92: 9d:70:53:95:01:d2:62:08:7c:91:40:66:42:6b:ae:7b:38:24: e2:65:f9:ba:de:99:c8:d2:cc:e0:b2:8a:e1:39:2f:b1:8e:58: e5:e5:93:84:68:b8:2c:83:d8:12:59:ee:19:71:a4:e3:0a:a6: d4:5e:6a:77:35:68:16:e5:6a:11:d3:bb:dc:d1:f0:9d:ec:d7: 14:e1:ca:66:8a:c1:c8:cb:84:a3:5f:9f:d0:0f:e2:d7:ec:bd: ee:e5:fa:90:f7:9c:7c:95:63:c0:7e:61:05:9f:e9:f5:51:57: a9:82:29:73:89:81:0b:5b:a5:23:0c:8c:94:8e:ac:39:b0:86: 8b:b7:47:78:44:ec:e9:ef:5f:97:ed:c7:1a:5e:66:9a:a5:0d: 73:b6:c6:06:7f:a2:3e:4c:39:bb:ee:30:f0:27:4a:98:58:1d: ed:4a:2d:11 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUE7WwKtfw0RZL6otTE4WdInbPheAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk2RDczNzE0NTVBODM0QzlCMTk2REFDRDA0MURCN0M2 RTc3OTAyMTAeFw0yNjA1MDMwMjEyMDlaFw0yNzA1MDIwMjE3MDlaMDMxMTAvBgNV BAMTKEQ1OTJCN0ZCQUEzNTJDMjJBNjZFMDgwRkY5NjJFMTBFOTQyN0M0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpMWLI7XYyeRQHOayCnguUThJY ymzyvQnDY3QBnvr7x7XgbS38YOU1UPnSBLoaZyBsEXvD9MHVFiqdqa4oCrHjCpgv 2gk4Nh9jrnqHOAdtyfZQU4lhjoXs2ui6Mmbiv7bYzgLCyLz0PtPPLfcTShveNzAr Bh3l0GO4Bl20TUnTljfL+6g/rrJ4Dx2AGlUwNwvGGrx8HD3yE2Ct71ODa3O8ImCM 60Bju3GAWVQtaYyIwHUFb6Y8fIpm7q7DXjNX7eEC1XVdpKjubTmS0P+Xi51Uaenn 9Musay/htv+b4sYNRPZxFvLmGrGSEwxLwUKtbAxKTwRsIOp3GdTM/3p8K/5XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1ZK3+6o1LCKmbggP+WLhDpQnxEcwHwYDVR0j BBgwFoAUmW1zcUVag0ybGW2s0EHbfG53kCEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI2YzYxNGYtZDBmZi00MWE5LTkyZDAtM2EyMTM1ODE1MzdiLzAvOTk2RDczNzE0 NTVBODM0QzlCMTk2REFDRDA0MURCN0M2RTc3OTAyMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OTZENzM3MTQ1NUE4MzRDOUIxOTZEQUNEMDQxREI3QzZFNzc5 MDIxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNmM2MTRmLWQwZmYtNDFhOS05 MmQwLTNhMjEzNTgxNTM3Yi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsAwDQYJ KoZIhvcNAQELBQADggEBAGqs/nBYZIYpafETY6AWplLlWxitUqVcniUDMoC60sAW MtA21LfA5q83yntpLCLbiuAAEEvimlyrnLIoAHXuITOmnPR3QJjzVClpedtAs6zH DqxCFHjdS5tikp1wU5UB0mIIfJFAZkJrrns4JOJl+bremcjSzOCyiuE5L7GOWOXl k4RouCyD2BJZ7hlxpOMKptReanc1aBblahHTu9zR8J3s1xThymaKwcjLhKNfn9AP 4tfsve7l+pD3nHyVY8B+YQWf6fVRV6mCKXOJgQtbpSMMjJSOrDmwhou3R3hE7Onv X5ftxxpeZpqlDXO2xgZ/oj5MObvuMPAnSphYHe1KLRE= -----END CERTIFICATE-----Generated at Wed May 13 10:04:03 2026 by rpki-client