$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa File: 3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa (raw, json) Hash identifier: 9nekhVOc7teYQg+f5BrgTI0vhAp7sKaA+38UO3o1S14= Subject key identifier: D9:4C:5F:8E:73:2B:2F:E0:44:F0:20:C7:CF:C6:77:D6:AC:2C:81:12 Certificate issuer: /CN=54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5 Certificate serial: 1477E7688A6CFEC1BD67DFA935A1D4312292CF32 Authority key identifier: 54:AA:A1:CA:EA:4D:EB:FC:7C:80:5B:C8:2C:9E:23:8D:F3:38:F2:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa Signing time: Sun 03 May 2026 02:17:12 +0000 ROA not before: Sun 03 May 2026 02:12:12 +0000 ROA not after: Sun 02 May 2027 02:17:12 +0000 asID: 147086 IP address blocks: 103.172.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.crl rsync://rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:77:e7:68:8a:6c:fe:c1:bd:67:df:a9:35:a1:d4:31:22:92:cf:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5 Validity Not Before: May 3 02:12:12 2026 GMT Not After : May 2 02:17:12 2027 GMT Subject: CN=D94C5F8E732B2FE044F020C7CFC677D6AC2C8112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cd:66:fb:2c:f5:2e:07:59:6d:60:4b:85:88: 25:7f:81:67:98:fc:ca:cd:eb:c7:8b:b0:1b:c3:bd: 40:93:d2:90:2f:b3:32:33:15:f8:0d:eb:3b:26:68: 98:3f:17:e9:0a:38:0f:15:c3:54:d2:16:6d:57:a6: eb:37:ff:df:39:6f:18:bd:e6:db:07:7c:36:1b:f9: 3e:46:d8:f7:ab:5c:83:d7:2b:b3:ba:8a:7f:f6:9f: 12:56:6e:8c:64:f8:64:84:f2:96:21:85:df:1d:aa: c8:ae:af:c7:91:3a:7a:3d:74:43:f2:17:b1:1e:d5: 50:e2:48:b9:be:cc:c7:63:67:54:2a:14:d9:94:11: a5:f7:a2:78:60:e5:12:ff:d8:48:4a:51:20:2a:5b: fb:ac:63:2f:97:f9:43:a4:68:e3:12:59:a0:7e:f8: db:81:29:03:07:c3:d5:ab:2e:a4:34:f8:b4:07:a1: 91:59:ea:28:80:f4:34:12:f8:16:a9:3f:5e:8e:46: 15:36:18:a8:4b:ab:c2:51:5b:26:4a:53:1f:bc:e4: 5d:50:0b:1b:52:e1:57:d4:40:dc:e9:94:27:4b:2c: f3:56:7e:fd:aa:cd:37:7e:af:09:ec:30:8e:23:b5: 1e:d5:3e:21:eb:42:8c:d2:18:54:a7:c8:fd:f1:59: 80:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4C:5F:8E:73:2B:2F:E0:44:F0:20:C7:CF:C6:77:D6:AC:2C:81:12 X509v3 Authority Key Identifier: keyid:54:AA:A1:CA:EA:4D:EB:FC:7C:80:5B:C8:2C:9E:23:8D:F3:38:F2:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/54AAA1CAEA4DEBFC7C805BC82C9E238DF338F2A5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.242.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:4b:e4:7e:85:14:06:f6:da:ad:d7:f0:df:f2:ed:38:80:db: e8:e1:a8:c2:b5:f5:16:c0:a5:7e:68:17:32:8c:48:53:83:7d: eb:7a:a7:1a:8c:d7:40:cd:45:3c:f0:33:0f:dc:bb:95:69:43: ea:88:63:15:15:e9:cf:20:3d:bc:75:a0:38:04:83:bf:42:0d: f6:b8:29:a3:2a:cd:51:c1:42:fe:3b:c8:e3:24:8f:4f:3a:07: da:1a:fb:78:bc:9a:07:e2:30:af:8a:68:0c:1a:22:55:52:92: 3a:d0:51:85:76:8e:c5:6a:38:81:d3:30:a3:67:a5:fa:23:cd: 8c:bc:1a:9f:ba:1a:d0:bc:bf:83:ea:8a:93:a7:82:bd:54:a9: 12:6e:03:fa:3e:31:20:c9:ad:8c:5f:81:02:89:58:2b:6e:d2: 75:ec:38:4f:23:ca:cc:c5:f0:df:53:bc:2b:02:bc:ae:65:10: 5e:09:37:c9:95:30:c6:f3:d2:d3:02:f5:0c:ae:b3:80:4d:e1: 07:7b:11:a0:5f:36:55:6a:de:0b:20:81:04:68:c5:0b:0a:4d: a4:cd:64:25:b7:52:48:e7:91:ab:c1:5e:0d:a6:c4:de:96:b5: e7:60:e9:b1:21:e6:58:a2:f1:fa:9e:a9:ec:3b:7d:71:99:c6: 7c:fe:cb:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFHfnaIps/sG9Z9+pNaHUMSKSzzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRBQUExQ0FFQTRERUJGQzdDODA1QkM4MkM5RTIzOERG MzM4RjJBNTAeFw0yNjA1MDMwMjEyMTJaFw0yNzA1MDIwMjE3MTJaMDMxMTAvBgNV BAMTKEQ5NEM1RjhFNzMyQjJGRTA0NEYwMjBDN0NGQzY3N0Q2QUMyQzgxMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCozWb7LPUuB1ltYEuFiCV/gWeY /MrN68eLsBvDvUCT0pAvszIzFfgN6zsmaJg/F+kKOA8Vw1TSFm1Xpus3/985bxi9 5tsHfDYb+T5G2PerXIPXK7O6in/2nxJWboxk+GSE8pYhhd8dqsiur8eROno9dEPy F7Ee1VDiSLm+zMdjZ1QqFNmUEaX3onhg5RL/2EhKUSAqW/usYy+X+UOkaOMSWaB+ +NuBKQMHw9WrLqQ0+LQHoZFZ6iiA9DQS+BapP16ORhU2GKhLq8JRWyZKUx+85F1Q CxtS4VfUQNzplCdLLPNWfv2qzTd+rwnsMI4jtR7VPiHrQozSGFSnyP3xWYBNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2UxfjnMrL+BE8CDHz8Z31qwsgRIwHwYDVR0j BBgwFoAUVKqhyupN6/x8gFvILJ4jjfM48qUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWI2ZDhmOTctYzgwNi00Nzk5LTg1ZTAtOGNjZjE4ZGJiYjMxLzAvNTRBQUExQ0FF QTRERUJGQzdDODA1QkM4MkM5RTIzOERGMzM4RjJBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NEFBQTFDQUVBNERFQkZDN0M4MDVCQzgyQzlFMjM4REYzMzhG MkE1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiNmQ4Zjk3LWM4MDYtNDc5OS04 NWUwLThjY2YxOGRiYmIzMS8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPIwDQYJ KoZIhvcNAQELBQADggEBABpL5H6FFAb22q3X8N/y7TiA2+jhqMK19RbApX5oFzKM SFODfet6pxqM10DNRTzwMw/cu5VpQ+qIYxUV6c8gPbx1oDgEg79CDfa4KaMqzVHB Qv47yOMkj086B9oa+3i8mgfiMK+KaAwaIlVSkjrQUYV2jsVqOIHTMKNnpfojzYy8 Gp+6GtC8v4PqipOngr1UqRJuA/o+MSDJrYxfgQKJWCtu0nXsOE8jyszF8N9TvCsC vK5lEF4JN8mVMMbz0tMC9Qyus4BN4Qd7EaBfNlVq3gsggQRoxQsKTaTNZCW3Ukjn kavBXg2mxN6Wtedg6bEh5lii8fqeqew7fXGZxnz+yxA= -----END CERTIFICATE-----Generated at Wed May 13 10:00:49 2026 by rpki-client