$ rpki-client -vvf rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa File: 3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa (raw, json) Hash identifier: DmkUsE6kINSF6XD/3Zq+sJqW+TGuGAU9gHKB12XCOEU= Subject key identifier: D9:5A:C1:26:AC:03:A0:52:51:CB:0A:83:43:77:C9:7C:2B:36:DD:25 Certificate issuer: /CN=206EBD04AE332A983FD5EB49B8B9C0022E577DE2 Certificate serial: 5D790AF3A264B1F04A4FF3393664AF0C7D8E7854 Authority key identifier: 20:6E:BD:04:AE:33:2A:98:3F:D5:EB:49:B8:B9:C0:02:2E:57:7D:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa Signing time: Sun 03 May 2026 02:17:58 +0000 ROA not before: Sun 03 May 2026 02:12:58 +0000 ROA not after: Sun 02 May 2027 02:17:58 +0000 asID: 149888 IP address blocks: 103.189.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.crl rsync://rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:79:0a:f3:a2:64:b1:f0:4a:4f:f3:39:36:64:af:0c:7d:8e:78:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=206EBD04AE332A983FD5EB49B8B9C0022E577DE2 Validity Not Before: May 3 02:12:58 2026 GMT Not After : May 2 02:17:58 2027 GMT Subject: CN=D95AC126AC03A05251CB0A834377C97C2B36DD25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9c:1e:c4:f3:d3:f8:2e:bb:e9:a5:75:a2:98: 1f:25:f7:80:3e:5d:2b:f9:35:73:ec:2c:7a:8f:d8: 29:01:15:69:ac:c6:54:ba:b1:4a:a2:44:c5:13:8b: 6f:f9:1e:2f:82:21:8e:c9:23:c3:2a:c5:6a:6a:a8: 8a:ed:9b:35:9e:47:c6:05:2b:24:bc:05:4d:44:8d: ab:1d:90:96:2a:ab:d6:82:8b:24:f9:32:a9:41:57: 9d:80:13:87:4c:18:13:42:4c:1e:fe:09:a4:31:93: f7:2f:bd:5f:c8:12:6c:75:eb:68:06:16:46:bd:31: 5e:30:11:2b:74:9b:e6:85:d4:9c:6f:31:5f:2e:35: c7:aa:52:51:9d:a9:f9:5b:bf:d5:4a:a0:5f:42:05: ec:15:b5:9a:a2:c3:9a:47:3f:12:78:fb:7a:2a:62: ca:d8:c4:96:96:cc:5c:79:fc:c9:db:1e:a5:77:d3: ff:3e:b4:77:50:a8:9c:60:e8:5c:45:fd:4d:2b:28: 96:6b:8c:d9:36:e1:e1:90:51:75:5f:d5:de:9e:6a: bb:e2:97:0f:63:ce:92:d3:13:a8:46:26:24:69:62: c0:ce:25:75:66:41:f9:c4:28:40:7d:ac:9d:47:a9: 67:16:a3:35:51:78:cf:19:0f:4f:f0:87:c7:51:3f: 7c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:5A:C1:26:AC:03:A0:52:51:CB:0A:83:43:77:C9:7C:2B:36:DD:25 X509v3 Authority Key Identifier: keyid:20:6E:BD:04:AE:33:2A:98:3F:D5:EB:49:B8:B9:C0:02:2E:57:7D:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/206EBD04AE332A983FD5EB49B8B9C0022E577DE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.248.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:76:1a:22:4e:93:54:dd:e6:4b:68:72:e5:59:e9:32:0b:98: d3:f5:ab:2d:10:9a:21:93:b5:86:9c:89:30:31:b1:1a:14:4f: 50:8d:ee:6a:24:4f:23:54:37:ef:d9:f3:be:cf:e6:7b:57:9b: fb:8b:93:fb:60:66:1d:9c:28:17:4d:c3:08:f8:ac:90:68:f4: 14:3e:ea:61:07:78:d2:66:d9:a9:dc:d9:be:bc:be:8e:52:93: 48:17:e4:b3:29:14:a9:a5:b9:c8:b3:03:1b:d2:e1:a7:f3:a1: ea:3e:39:b6:69:f7:36:ae:75:5e:34:08:77:82:26:79:d1:40: a8:db:a6:56:f7:a5:e4:ff:2d:5f:b8:0c:3d:74:90:3c:8b:f0: 7b:95:9e:ca:a6:f5:42:c3:32:ac:8b:56:c9:61:ab:c3:5b:58: 03:d3:7c:39:75:2c:fe:29:c0:33:59:90:6a:14:b0:e6:13:c3: b5:30:a4:a9:8f:66:6f:01:f8:8f:87:52:0e:fd:59:38:dc:ff: 70:5c:ec:6e:c2:17:6c:bc:41:d2:c7:75:13:4c:6e:f0:e3:85: a0:f4:5e:f3:fe:0d:a9:f8:e9:eb:4d:75:a1:80:dc:c0:59:c3: 14:5b:60:a0:d3:9e:2b:91:7b:46:b8:6f:23:ab:5e:62:8a:34: d9:e4:e9:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXXkK86JksfBKT/M5NmSvDH2OeFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA2RUJEMDRBRTMzMkE5ODNGRDVFQjQ5QjhCOUMwMDIy RTU3N0RFMjAeFw0yNjA1MDMwMjEyNThaFw0yNzA1MDIwMjE3NThaMDMxMTAvBgNV BAMTKEQ5NUFDMTI2QUMwM0EwNTI1MUNCMEE4MzQzNzdDOTdDMkIzNkREMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQnB7E89P4LrvppXWimB8l94A+ XSv5NXPsLHqP2CkBFWmsxlS6sUqiRMUTi2/5Hi+CIY7JI8MqxWpqqIrtmzWeR8YF KyS8BU1EjasdkJYqq9aCiyT5MqlBV52AE4dMGBNCTB7+CaQxk/cvvV/IEmx162gG Fka9MV4wESt0m+aF1JxvMV8uNceqUlGdqflbv9VKoF9CBewVtZqiw5pHPxJ4+3oq YsrYxJaWzFx5/MnbHqV30/8+tHdQqJxg6FxF/U0rKJZrjNk24eGQUXVf1d6earvi lw9jzpLTE6hGJiRpYsDOJXVmQfnEKEB9rJ1HqWcWozVReM8ZD0/wh8dRP3yRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2VrBJqwDoFJRywqDQ3fJfCs23SUwHwYDVR0j BBgwFoAUIG69BK4zKpg/1etJuLnAAi5XfeIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRmNDE2NGUtNzRlNS00MGQ2LTlhMzAtYjM3MmE0ZDJhNDU0LzAvMjA2RUJEMDRB RTMzMkE5ODNGRDVFQjQ5QjhCOUMwMDIyRTU3N0RFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDZFQkQwNEFFMzMyQTk4M0ZENUVCNDlCOEI5QzAwMjJFNTc3 REUyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZjQxNjRlLTc0ZTUtNDBkNi05 YTMwLWIzNzJhNGQyYTQ1NC8wLzMxMzAzMzJlMzEzODM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvfgwDQYJ KoZIhvcNAQELBQADggEBAG52GiJOk1Td5ktocuVZ6TILmNP1qy0QmiGTtYaciTAx sRoUT1CN7mokTyNUN+/Z877P5ntXm/uLk/tgZh2cKBdNwwj4rJBo9BQ+6mEHeNJm 2anc2b68vo5Sk0gX5LMpFKmlucizAxvS4afzoeo+ObZp9zaudV40CHeCJnnRQKjb plb3peT/LV+4DD10kDyL8HuVnsqm9ULDMqyLVslhq8NbWAPTfDl1LP4pwDNZkGoU sOYTw7UwpKmPZm8B+I+HUg79WTjc/3Bc7G7CF2y8QdLHdRNMbvDjhaD0XvP+Dan4 6etNdaGA3MBZwxRbYKDTniuRe0a4byOrXmKKNNnk6WA= -----END CERTIFICATE-----Generated at Wed May 13 09:51:16 2026 by rpki-client