$ rpki-client -vvf rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: w5VnAqDMpxkCSyJK8a4JzBCfvPRADlp4Zd050ewYnlA= Subject key identifier: 04:09:75:A9:D5:FC:41:35:8A:B0:8F:87:19:C0:22:DF:84:8B:C2:93 Certificate issuer: /CN=19101281C951DCE434F1B713AE570F59EE413A09 Certificate serial: 059A4E89A6E7159930D5D2528309709182E8C4D5 Authority key identifier: 19:10:12:81:C9:51:DC:E4:34:F1:B7:13:AE:57:0F:59:EE:41:3A:09 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa Signing time: Sun 03 May 2026 02:19:57 +0000 ROA not before: Sun 03 May 2026 02:14:57 +0000 ROA not after: Sun 02 May 2027 02:19:57 +0000 asID: 134648 IP address blocks: 103.208.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.crl rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:9a:4e:89:a6:e7:15:99:30:d5:d2:52:83:09:70:91:82:e8:c4:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19101281C951DCE434F1B713AE570F59EE413A09 Validity Not Before: May 3 02:14:57 2026 GMT Not After : May 2 02:19:57 2027 GMT Subject: CN=040975A9D5FC41358AB08F8719C022DF848BC293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:76:f3:c5:ea:27:e5:79:75:75:4f:82:3f:9b: ac:f4:e9:b1:18:8d:d0:dd:ce:73:74:2c:9a:82:b1: 1f:37:99:e4:29:a3:74:f3:d7:e3:8a:6c:89:70:b7: 53:bc:b6:87:d4:81:27:64:52:be:6a:bd:cc:e2:78: 7b:b2:f7:18:05:3d:e9:c8:e4:54:96:5b:6e:6f:fa: 6d:58:8f:4c:7e:da:61:40:99:ed:66:86:55:31:dc: 2f:9c:24:08:d1:d5:a1:1d:01:e4:00:4c:c0:8c:4b: c3:ca:e3:a7:f0:b1:dd:59:30:f7:54:a5:8c:cd:41: bc:a7:01:17:23:c2:eb:63:f6:85:f4:9a:fc:ac:31: c8:10:ca:2e:13:1a:ad:15:8e:0d:f0:6d:10:45:82: a5:37:2a:a0:23:12:fb:08:25:f5:d3:b6:8e:a5:07: c9:49:78:34:98:e0:03:6a:a0:d3:45:d0:67:e1:45: 9f:14:b3:9a:78:86:3e:4f:29:fe:2b:55:cd:17:97: ef:42:f3:8a:8a:48:b7:29:79:ae:ed:ab:12:b5:22: 7b:0c:49:ea:81:05:4b:45:7e:d2:ba:9d:d1:6f:52: 5f:b8:d4:62:17:90:82:24:7e:a2:ac:1e:51:60:3f: c9:d6:e8:0f:cb:04:57:5b:b5:fe:57:65:c3:78:de: 52:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:09:75:A9:D5:FC:41:35:8A:B0:8F:87:19:C0:22:DF:84:8B:C2:93 X509v3 Authority Key Identifier: keyid:19:10:12:81:C9:51:DC:E4:34:F1:B7:13:AE:57:0F:59:EE:41:3A:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/19101281C951DCE434F1B713AE570F59EE413A09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19101281C951DCE434F1B713AE570F59EE413A09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.100.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:b6:45:f9:a6:21:04:f8:32:65:e7:b4:8a:8a:33:0a:3c:75: 18:47:eb:a1:3b:f3:24:44:66:5c:6a:96:8b:05:a7:f0:d8:1c: 2c:ee:d0:8c:89:95:ff:44:ac:b3:b1:0f:4d:9e:d5:08:69:39: db:0e:e6:53:71:15:4b:58:1e:1f:93:07:7c:b3:67:49:07:e1: 75:9c:dd:84:e6:d9:d3:2b:ae:83:ed:ab:65:d3:c6:47:ff:98: 86:a2:87:03:87:19:e6:85:35:a6:98:54:a1:ab:28:35:7b:62: c4:39:4d:fb:2b:67:55:37:e3:a7:90:61:24:80:f7:4e:9d:b0: 28:3f:01:d6:99:83:1a:fc:c0:00:4e:cf:92:78:3d:3b:ed:f9: 17:83:39:29:49:a7:09:76:29:e8:48:fb:05:b3:4a:d9:8a:32: 35:97:4f:f6:e3:ae:7d:12:14:72:14:ae:4e:7c:54:d5:14:05: f1:e0:ac:86:0e:5e:74:26:93:74:8d:02:de:64:fc:2a:cf:a1: 22:71:95:e9:e2:76:9e:2f:db:46:20:c7:b1:51:15:aa:c0:42: 0b:63:a6:68:e7:51:43:ec:ca:e8:25:26:9b:19:f1:cb:f7:8f: 3b:07:c2:b7:cb:90:74:cc:32:12:d0:f4:48:49:c4:5d:92:15: 75:b7:e2:a5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBZpOiabnFZkw1dJSgwlwkYLoxNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkxMDEyODFDOTUxRENFNDM0RjFCNzEzQUU1NzBGNTlF RTQxM0EwOTAeFw0yNjA1MDMwMjE0NTdaFw0yNzA1MDIwMjE5NTdaMDMxMTAvBgNV BAMTKDA0MDk3NUE5RDVGQzQxMzU4QUIwOEY4NzE5QzAyMkRGODQ4QkMyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYdvPF6ifleXV1T4I/m6z06bEY jdDdznN0LJqCsR83meQpo3Tz1+OKbIlwt1O8tofUgSdkUr5qvczieHuy9xgFPenI 5FSWW25v+m1Yj0x+2mFAme1mhlUx3C+cJAjR1aEdAeQATMCMS8PK46fwsd1ZMPdU pYzNQbynARcjwutj9oX0mvysMcgQyi4TGq0Vjg3wbRBFgqU3KqAjEvsIJfXTto6l B8lJeDSY4ANqoNNF0GfhRZ8Us5p4hj5PKf4rVc0Xl+9C84qKSLcpea7tqxK1InsM SeqBBUtFftK6ndFvUl+41GIXkIIkfqKsHlFgP8nW6A/LBFdbtf5XZcN43lJbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBAl1qdX8QTWKsI+HGcAi34SLwpMwHwYDVR0j BBgwFoAUGRASgclR3OQ08bcTrlcPWe5BOgkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjJjNjk0NDAtOGIxNy00YTY4LWEwZmEtNjYxNTllMjE2MmUwLzAvMTkxMDEyODFD OTUxRENFNDM0RjFCNzEzQUU1NzBGNTlFRTQxM0EwOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOTEwMTI4MUM5NTFEQ0U0MzRGMUI3MTNBRTU3MEY1OUVFNDEz QTA5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GQwDQYJ KoZIhvcNAQELBQADggEBAG62RfmmIQT4MmXntIqKMwo8dRhH66E78yREZlxqlosF p/DYHCzu0IyJlf9ErLOxD02e1QhpOdsO5lNxFUtYHh+TB3yzZ0kH4XWc3YTm2dMr roPtq2XTxkf/mIaihwOHGeaFNaaYVKGrKDV7YsQ5TfsrZ1U346eQYSSA906dsCg/ AdaZgxr8wABOz5J4PTvt+ReDOSlJpwl2KehI+wWzStmKMjWXT/bjrn0SFHIUrk58 VNUUBfHgrIYOXnQmk3SNAt5k/CrPoSJxlenidp4v20Ygx7FRFarAQgtjpmjnUUPs yuglJpsZ8cv3jzsHwrfLkHTMMhLQ9EhJxF2SFXW34qU= -----END CERTIFICATE-----Generated at Wed May 13 10:39:57 2026 by rpki-client