$ rpki-client -vvf rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa File: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (raw, json) Hash identifier: 7QTUY2NQvJrxF3QQX7LUC6hqv5ttn70Xh40WXHVfruk= Subject key identifier: C8:EC:41:81:D8:DC:AB:B1:DC:7E:F5:7D:D1:C5:B3:50:20:A5:FE:19 Certificate issuer: /CN=B486D413919D8F20144DB8254040D1237E34B8AA Certificate serial: 683462CB822C7D1AD11E2DCD537B51687340FA08 Authority key identifier: B4:86:D4:13:91:9D:8F:20:14:4D:B8:25:40:40:D1:23:7E:34:B8:AA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B486D413919D8F20144DB8254040D1237E34B8AA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa Signing time: Sun 03 May 2026 02:19:18 +0000 ROA not before: Sun 03 May 2026 02:14:18 +0000 ROA not after: Sun 02 May 2027 02:19:18 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/B486D413919D8F20144DB8254040D1237E34B8AA.crl rsync://rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/B486D413919D8F20144DB8254040D1237E34B8AA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B486D413919D8F20144DB8254040D1237E34B8AA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:34:62:cb:82:2c:7d:1a:d1:1e:2d:cd:53:7b:51:68:73:40:fa:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B486D413919D8F20144DB8254040D1237E34B8AA Validity Not Before: May 3 02:14:18 2026 GMT Not After : May 2 02:19:18 2027 GMT Subject: CN=C8EC4181D8DCABB1DC7EF57DD1C5B35020A5FE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:7d:74:37:56:65:8d:88:19:27:d7:3b:18: f7:86:04:94:32:cc:11:54:2e:39:8a:f1:ed:7f:7c: 93:0a:f8:94:4b:3b:f5:1a:59:0c:17:df:23:61:60: c4:a7:cc:b0:a2:dc:a7:29:5a:80:03:31:e2:c9:23: a2:78:75:6c:cd:ea:84:0a:71:28:25:36:12:ab:7e: 41:2c:29:02:57:39:5e:6f:41:2d:2d:df:52:d2:68: aa:77:22:f9:3a:4a:ab:7e:0d:53:19:21:a6:84:96: 13:09:f9:eb:2e:f3:98:51:89:10:50:27:12:cd:c2: e8:01:ad:95:b1:ec:38:3e:e6:45:a7:5a:d6:3a:84: 8b:bc:a1:21:27:a6:af:e5:43:e8:eb:c5:c6:bd:34: d8:51:1d:67:e2:02:b4:69:d3:4d:5c:27:ca:5a:58: f8:56:a8:96:1c:32:bc:55:d5:d1:3b:c8:84:78:e6: 0a:80:5f:5c:8c:19:d3:d3:ac:55:57:84:71:a4:9e: e1:b7:da:2d:2c:8b:e6:d1:0a:59:b3:8f:7d:95:14: 5e:94:ee:ee:c3:e6:36:45:31:ed:24:06:af:59:43: 64:c8:67:de:83:10:a0:67:91:e4:67:76:1b:db:c6: 3d:b7:f6:c6:74:39:e5:9f:e5:45:b8:9f:f3:0a:81: 01:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EC:41:81:D8:DC:AB:B1:DC:7E:F5:7D:D1:C5:B3:50:20:A5:FE:19 X509v3 Authority Key Identifier: keyid:B4:86:D4:13:91:9D:8F:20:14:4D:B8:25:40:40:D1:23:7E:34:B8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/B486D413919D8F20144DB8254040D1237E34B8AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B486D413919D8F20144DB8254040D1237E34B8AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 75:ca:26:11:0b:0d:0c:56:88:70:81:1c:12:d6:0a:d4:54:ca: 91:4c:b7:c2:6c:ae:84:1f:e1:67:57:27:06:98:1d:00:0f:63: 17:c0:8f:7b:01:78:aa:38:e4:2d:13:c5:1f:f1:64:2a:48:ed: 14:aa:3a:ca:03:eb:79:ab:07:ed:cc:ff:7d:8b:64:99:51:83: 55:a4:34:78:71:99:e2:f3:62:a0:66:2f:a8:3f:33:12:ef:e2: 94:8a:27:ae:de:f6:af:c3:c5:09:ba:90:cb:9c:31:37:33:20: e7:2d:d6:52:c6:31:e1:5c:f1:29:7d:f6:f8:eb:62:d2:8b:27: 6d:4d:85:2e:7e:55:c0:71:8d:b0:56:3a:87:96:25:e5:03:af: e4:65:e1:66:35:62:ea:3d:0c:72:09:2b:c0:ae:2a:88:d5:73: 43:fa:7b:f2:72:e9:8c:92:6b:1b:5b:bf:2d:9b:42:58:11:16: 9e:10:a4:4d:04:83:06:95:d5:25:31:94:4e:92:db:e8:15:72: 0c:3d:ad:60:d9:09:43:6a:b1:5e:35:28:e3:01:7d:76:10:67: 4b:78:2e:1b:7c:8e:bc:67:c3:87:26:23:d3:a8:e5:ea:cd:26: 01:73:72:d5:88:92:00:69:58:a1:da:15:50:36:e6:03:bb:71: 97:c5:2c:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaDRiy4IsfRrRHi3NU3tRaHNA+ggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ4NkQ0MTM5MTlEOEYyMDE0NERCODI1NDA0MEQxMjM3 RTM0QjhBQTAeFw0yNjA1MDMwMjE0MThaFw0yNzA1MDIwMjE5MThaMDMxMTAvBgNV BAMTKEM4RUM0MTgxRDhEQ0FCQjFEQzdFRjU3REQxQzVCMzUwMjBBNUZFMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqBX10N1ZljYgZJ9c7GPeGBJQy zBFULjmK8e1/fJMK+JRLO/UaWQwX3yNhYMSnzLCi3KcpWoADMeLJI6J4dWzN6oQK cSglNhKrfkEsKQJXOV5vQS0t31LSaKp3Ivk6Sqt+DVMZIaaElhMJ+esu85hRiRBQ JxLNwugBrZWx7Dg+5kWnWtY6hIu8oSEnpq/lQ+jrxca9NNhRHWfiArRp001cJ8pa WPhWqJYcMrxV1dE7yIR45gqAX1yMGdPTrFVXhHGknuG32i0si+bRClmzj32VFF6U 7u7D5jZFMe0kBq9ZQ2TIZ96DEKBnkeRndhvbxj239sZ0OeWf5UW4n/MKgQHZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyOxBgdjcq7HcfvV90cWzUCCl/hkwHwYDVR0j BBgwFoAUtIbUE5GdjyAUTbglQEDRI340uKowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjBjMTcxZjQtYmQxMS00OGVkLTg3ZjAtMjdlYTEyMDkwNjRmLzAvQjQ4NkQ0MTM5 MTlEOEYyMDE0NERCODI1NDA0MEQxMjM3RTM0QjhBQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNDg2RDQxMzkxOUQ4RjIwMTQ0REI4MjU0MDQwRDEyMzdFMzRC OEFBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQB1yiYRCw0MVohwgRwS1grUVMqRTLfCbK6EH+FnVycGmB0A D2MXwI97AXiqOOQtE8Uf8WQqSO0UqjrKA+t5qwftzP99i2SZUYNVpDR4cZni82Kg Zi+oPzMS7+KUiieu3vavw8UJupDLnDE3MyDnLdZSxjHhXPEpffb462LSiydtTYUu flXAcY2wVjqHliXlA6/kZeFmNWLqPQxyCSvAriqI1XND+nvycumMkmsbW78tm0JY ERaeEKRNBIMGldUlMZROktvoFXIMPa1g2QlDarFeNSjjAX12EGdLeC4bfI68Z8OH JiPTqOXqzSYBc3LViJIAaVih2hVQNuYDu3GXxSyH -----END CERTIFICATE-----Generated at Wed May 13 06:56:15 2026 by rpki-client