$ rpki-client -vvf rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/3130332e3136352e3135342e302f32342d3234203d3e20313431393635.roa File: 3130332e3136352e3135342e302f32342d3234203d3e20313431393635.roa (raw, json) Hash identifier: vRniZffLsrR39+YMBuuOMWA3xEVH1whiIwlxoJ0FXP8= Subject key identifier: D4:52:D3:A6:5B:D1:6E:17:9A:DD:4D:6D:75:DA:7E:AE:E3:3C:56:CC Certificate issuer: /CN=BB322B002A297F8520DD12064BEB9ACA71727712 Certificate serial: 3E6BADDB51CC16F644AFB9FB472C2AC07D7E5840 Authority key identifier: BB:32:2B:00:2A:29:7F:85:20:DD:12:06:4B:EB:9A:CA:71:72:77:12 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/3130332e3136352e3135342e302f32342d3234203d3e20313431393635.roa Signing time: Sun 03 May 2026 02:22:31 +0000 ROA not before: Sun 03 May 2026 02:17:31 +0000 ROA not after: Sun 02 May 2027 02:22:31 +0000 asID: 141965 IP address blocks: 103.165.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.crl rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:6b:ad:db:51:cc:16:f6:44:af:b9:fb:47:2c:2a:c0:7d:7e:58:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB322B002A297F8520DD12064BEB9ACA71727712 Validity Not Before: May 3 02:17:31 2026 GMT Not After : May 2 02:22:31 2027 GMT Subject: CN=D452D3A65BD16E179ADD4D6D75DA7EAEE33C56CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:91:f7:b9:3b:69:4c:79:74:1b:3f:bf:4b:c6: 71:ab:93:0e:ea:e2:94:6f:c4:26:f8:cb:9c:e2:a8: 8c:90:fa:f3:6d:79:c3:72:a5:e1:df:c1:1b:10:66: 39:27:2e:ff:0b:a6:54:5b:b7:83:75:f5:ba:79:a3: 5b:f9:9b:d8:15:d3:4a:6f:3f:eb:9d:18:f1:fa:96: 41:a3:63:16:ef:27:db:9f:8a:75:9e:b9:a7:26:c3: 71:ce:5e:cb:dc:3f:a1:e5:c5:78:4f:1b:84:b5:89: 32:34:5f:64:b5:d2:f2:38:a3:7c:16:c5:f8:e2:74: 6c:db:f2:f6:a3:e5:c5:ea:80:fd:98:9f:f2:c7:78: c9:0f:75:51:32:07:15:11:fb:23:9d:2b:c3:18:59: 30:40:f7:02:1e:f5:ef:1b:5b:5c:d5:70:75:94:2f: 20:54:32:0e:16:74:a1:f4:74:50:cd:65:57:90:0b: b0:8f:95:6c:84:e9:41:77:83:97:43:67:ab:ad:68: 80:7f:4c:68:4a:27:4a:4c:9c:4b:1a:d3:3b:37:f3: 1c:aa:dc:11:d1:44:28:b2:ef:e5:64:01:ec:f6:96: 9b:19:c9:ae:1b:34:91:ad:af:dd:fc:02:40:ea:50: 51:1d:78:6c:73:19:73:01:4b:78:7f:51:6c:cc:45: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:52:D3:A6:5B:D1:6E:17:9A:DD:4D:6D:75:DA:7E:AE:E3:3C:56:CC X509v3 Authority Key Identifier: keyid:BB:32:2B:00:2A:29:7F:85:20:DD:12:06:4B:EB:9A:CA:71:72:77:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/3130332e3136352e3135342e302f32342d3234203d3e20313431393635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.154.0/24 Signature Algorithm: sha256WithRSAEncryption 14:8c:09:c0:1c:37:4d:37:bf:3c:da:8b:f4:c2:aa:d0:1b:b9: b3:d8:7d:aa:7e:80:99:b6:cc:dc:1e:03:1e:9f:82:15:9b:51: 39:d8:67:2d:bc:36:65:cd:4b:53:e2:96:7a:58:51:ee:57:1d: c1:d2:46:c1:dc:eb:7f:1a:73:55:65:49:ae:d6:d2:cf:63:d9: 95:12:8d:65:47:fb:36:18:40:26:d2:13:4d:2f:7e:cc:ff:c2: 36:c1:61:3d:e6:9c:98:52:71:1d:e5:90:17:a2:63:86:b5:84: 5f:9d:4d:bf:0e:16:53:9b:eb:16:cf:5e:ff:36:44:11:2c:60: 78:e7:37:c9:7b:60:8d:68:42:49:aa:97:41:11:1c:57:be:58: 43:05:a6:43:52:79:92:3d:33:87:ef:c3:6f:85:8c:95:ee:00: 4d:89:8b:0a:35:0d:64:21:e5:5a:76:1e:db:ee:30:29:dc:ad: 84:d4:ba:01:a4:92:06:d8:1c:8f:a6:c7:03:dd:2f:45:27:ca: a3:c8:11:fa:19:b4:55:5d:1d:09:a7:c8:04:89:bc:d2:3b:ca: 42:7d:4b:c1:35:3d:4c:6b:a2:ec:04:20:eb:87:f7:9d:ab:13: 87:e3:b1:4a:58:94:ce:14:92:42:8a:ef:84:dd:dc:68:dd:cb: dc:fa:0c:64 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPmut21HMFvZEr7n7RywqwH1+WEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIzMjJCMDAyQTI5N0Y4NTIwREQxMjA2NEJFQjlBQ0E3 MTcyNzcxMjAeFw0yNjA1MDMwMjE3MzFaFw0yNzA1MDIwMjIyMzFaMDMxMTAvBgNV BAMTKEQ0NTJEM0E2NUJEMTZFMTc5QURENEQ2RDc1REE3RUFFRTMzQzU2Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdkfe5O2lMeXQbP79LxnGrkw7q 4pRvxCb4y5ziqIyQ+vNtecNypeHfwRsQZjknLv8LplRbt4N19bp5o1v5m9gV00pv P+udGPH6lkGjYxbvJ9ufinWeuacmw3HOXsvcP6HlxXhPG4S1iTI0X2S10vI4o3wW xfjidGzb8vaj5cXqgP2Yn/LHeMkPdVEyBxUR+yOdK8MYWTBA9wIe9e8bW1zVcHWU LyBUMg4WdKH0dFDNZVeQC7CPlWyE6UF3g5dDZ6utaIB/TGhKJ0pMnEsa0zs38xyq 3BHRRCiy7+VkAez2lpsZya4bNJGtr938AkDqUFEdeGxzGXMBS3h/UWzMRUm9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1FLTplvRbhea3U1tddp+ruM8VswwHwYDVR0j BBgwFoAUuzIrACopf4Ug3RIGS+uaynFydxIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmNmMzVhNDctMmNjZS00ODdmLWFhMjctYzllOWRlNjM1YmVjLzAvQkIzMjJCMDAy QTI5N0Y4NTIwREQxMjA2NEJFQjlBQ0E3MTcyNzcxMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjMyMkIwMDJBMjk3Rjg1MjBERDEyMDY0QkVCOUFDQTcxNzI3 NzEyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJjZjM1YTQ3LTJjY2UtNDg3Zi1h YTI3LWM5ZTlkZTYzNWJlYy8wLzMxMzAzMzJlMzEzNjM1MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZowDQYJ KoZIhvcNAQELBQADggEBABSMCcAcN003vzzai/TCqtAbubPYfap+gJm2zNweAx6f ghWbUTnYZy28NmXNS1PilnpYUe5XHcHSRsHc638ac1VlSa7W0s9j2ZUSjWVH+zYY QCbSE00vfsz/wjbBYT3mnJhScR3lkBeiY4a1hF+dTb8OFlOb6xbPXv82RBEsYHjn N8l7YI1oQkmql0ERHFe+WEMFpkNSeZI9M4fvw2+FjJXuAE2Jiwo1DWQh5Vp2Htvu MCncrYTUugGkkgbYHI+mxwPdL0UnyqPIEfoZtFVdHQmnyASJvNI7ykJ9S8E1PUxr ouwEIOuH952rE4fjsUpYlM4UkkKK74Td3Gjdy9z6DGQ= -----END CERTIFICATE-----Generated at Wed May 13 05:47:21 2026 by rpki-client