$ rpki-client -vvf rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa File: 3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa (raw, json) Hash identifier: shzN9V44H6sJbyc7XtBZ0Ia8BJHs5w38s6/XgarDDV4= Subject key identifier: CE:64:1F:15:18:67:9A:D6:A8:46:3E:29:77:E2:17:29:AF:EC:0F:E6 Certificate issuer: /CN=CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81 Certificate serial: 242151B375B26E347A320720F2A2CD3E6322D39F Authority key identifier: CB:B9:DE:42:7E:71:26:B3:62:4E:6F:F8:F0:AC:1D:AC:5E:2B:CD:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa Signing time: Sun 03 May 2026 02:23:45 +0000 ROA not before: Sun 03 May 2026 02:18:45 +0000 ROA not after: Sun 02 May 2027 02:23:45 +0000 asID: 38320 IP address blocks: 103.167.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.crl rsync://rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:44:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:21:51:b3:75:b2:6e:34:7a:32:07:20:f2:a2:cd:3e:63:22:d3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81 Validity Not Before: May 3 02:18:45 2026 GMT Not After : May 2 02:23:45 2027 GMT Subject: CN=CE641F1518679AD6A8463E2977E21729AFEC0FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bc:4a:96:ba:d3:ea:cc:4e:a4:e2:d1:c1:21: 19:5e:97:20:cb:43:32:8d:31:09:c9:02:25:52:fb: 31:09:28:0e:c1:f3:e6:f1:bf:c9:e5:b6:14:48:60: f5:14:bc:89:58:43:4c:4f:33:4a:2c:70:35:72:cf: ac:bf:da:98:54:66:d4:81:a0:c1:11:31:4b:20:88: 48:6a:57:19:64:92:42:c9:6b:71:db:4d:0c:25:f3: cd:02:45:3f:89:c5:64:c0:37:c7:26:64:38:92:a8: 64:97:78:8c:99:09:fb:fe:0c:8f:fe:aa:e1:54:dd: 8a:c2:1d:4f:47:46:28:47:6f:46:0c:20:76:e5:32: 22:aa:f4:ec:96:ed:4d:b3:51:60:f3:c0:7f:9e:d3: 64:b4:fe:36:13:29:e4:b3:57:f2:64:69:a5:5c:e3: c4:2c:8f:d9:c8:15:c1:78:77:99:2f:32:dd:ca:35: 65:37:8e:88:ee:79:58:4d:2e:44:b0:06:5a:52:c5: 45:de:7d:e3:57:71:b2:7d:68:71:e3:1b:b2:e4:f7: 5b:2c:c0:a4:9c:4a:2b:fe:c1:43:ad:71:ac:3f:09: ed:71:eb:82:91:3d:90:9c:dc:0c:27:a9:ad:ff:7e: 93:9d:b7:79:d3:58:27:2c:25:b1:78:40:b8:38:ad: 28:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:64:1F:15:18:67:9A:D6:A8:46:3E:29:77:E2:17:29:AF:EC:0F:E6 X509v3 Authority Key Identifier: keyid:CB:B9:DE:42:7E:71:26:B3:62:4E:6F:F8:F0:AC:1D:AC:5E:2B:CD:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBB9DE427E7126B3624E6FF8F0AC1DAC5E2BCD81.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.105.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:4a:08:62:90:79:59:e7:e8:ca:97:42:d2:5d:09:ff:c3:ce: 09:b2:79:50:51:f5:e2:97:5c:f2:06:14:b9:2d:23:7b:51:de: a4:7e:2d:0d:47:2f:e0:bb:71:c3:58:82:dd:54:a6:a8:41:b8: bd:26:5b:a2:38:51:14:25:d2:c3:9e:f9:1e:aa:f2:7c:de:ab: ca:85:07:3a:e1:6c:12:ac:a9:e0:96:70:2c:fe:ab:3d:5a:86: ad:9b:fa:6d:77:be:e6:3c:06:89:6c:ef:38:60:a1:11:7f:97: 92:02:e0:9b:7a:c4:dc:25:b5:46:e9:53:69:1e:43:d9:34:56: 89:bc:eb:d8:1e:57:b0:14:a6:54:95:09:5f:39:e5:4e:76:5d: 01:af:9b:6a:35:72:16:2b:a5:71:17:ae:d3:60:95:4b:f9:ec: 6d:db:f1:1c:46:fc:69:82:17:f0:aa:0a:13:56:07:b1:d8:dc: 42:af:07:62:81:19:7a:84:90:45:13:51:e2:7e:32:12:f9:ec: f7:82:be:d9:7d:54:10:72:23:ca:11:88:fd:f0:8c:1b:cb:a6: 34:c6:48:0f:03:68:c3:96:bb:6d:5f:7f:1c:8e:fc:fe:94:79: bc:53:4c:c0:97:c5:71:5d:cc:ff:cf:60:15:e3:07:08:c6:5a: 67:8a:64:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJCFRs3WybjR6Mgcg8qLNPmMi058wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JCOURFNDI3RTcxMjZCMzYyNEU2RkY4RjBBQzFEQUM1 RTJCQ0Q4MTAeFw0yNjA1MDMwMjE4NDVaFw0yNzA1MDIwMjIzNDVaMDMxMTAvBgNV BAMTKENFNjQxRjE1MTg2NzlBRDZBODQ2M0UyOTc3RTIxNzI5QUZFQzBGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCevEqWutPqzE6k4tHBIRlelyDL QzKNMQnJAiVS+zEJKA7B8+bxv8nlthRIYPUUvIlYQ0xPM0oscDVyz6y/2phUZtSB oMERMUsgiEhqVxlkkkLJa3HbTQwl880CRT+JxWTAN8cmZDiSqGSXeIyZCfv+DI/+ quFU3YrCHU9HRihHb0YMIHblMiKq9OyW7U2zUWDzwH+e02S0/jYTKeSzV/JkaaVc 48Qsj9nIFcF4d5kvMt3KNWU3jojueVhNLkSwBlpSxUXefeNXcbJ9aHHjG7Lk91ss wKScSiv+wUOtcaw/Ce1x64KRPZCc3Awnqa3/fpOdt3nTWCcsJbF4QLg4rSinAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzmQfFRhnmtaoRj4pd+IXKa/sD+YwHwYDVR0j BBgwFoAUy7neQn5xJrNiTm/48KwdrF4rzYEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAzZWJhYmItOTk5Zi00ZjNlLTg0YzEtYmYyNzliZmUxNzg3LzAvQ0JCOURFNDI3 RTcxMjZCMzYyNEU2RkY4RjBBQzFEQUM1RTJCQ0Q4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQkI5REU0MjdFNzEyNkIzNjI0RTZGRjhGMEFDMURBQzVFMkJD RDgxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwM2ViYWJiLTk5OWYtNGYzZS04 NGMxLWJmMjc5YmZlMTc4Ny8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dpMA0GCSqG SIb3DQEBCwUAA4IBAQBNSghikHlZ5+jKl0LSXQn/w84JsnlQUfXil1zyBhS5LSN7 Ud6kfi0NRy/gu3HDWILdVKaoQbi9JluiOFEUJdLDnvkeqvJ83qvKhQc64WwSrKng lnAs/qs9Woatm/ptd77mPAaJbO84YKERf5eSAuCbesTcJbVG6VNpHkPZNFaJvOvY HlewFKZUlQlfOeVOdl0Br5tqNXIWK6VxF67TYJVL+ext2/EcRvxpghfwqgoTVgex 2NxCrwdigRl6hJBFE1HifjIS+ez3gr7ZfVQQciPKEYj98Iwby6Y0xkgPA2jDlrtt X38cjvz+lHm8U0zAl8VxXcz/z2AV4wcIxlpnimR2 -----END CERTIFICATE-----Generated at Wed May 13 08:39:39 2026 by rpki-client