$ rpki-client -vvf rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa File: 3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa (raw, json) Hash identifier: Udq8GlzFIm/AvhcPc0cFCkf4+tnJ7nB5V9VbIrMM5Xs= Subject key identifier: D0:72:BF:BA:8F:73:EC:97:57:C3:75:77:65:AC:FB:DB:77:83:55:38 Certificate issuer: /CN=083743FDAF0807CCD8D2D3B936DE091676CAFCB5 Certificate serial: 0A617C60AD566AAA230A1E4F0AB54F7D1F7481B9 Authority key identifier: 08:37:43:FD:AF:08:07:CC:D8:D2:D3:B9:36:DE:09:16:76:CA:FC:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa Signing time: Sun 03 May 2026 02:24:09 +0000 ROA not before: Sun 03 May 2026 02:19:09 +0000 ROA not after: Sun 02 May 2027 02:24:09 +0000 asID: 142331 IP address blocks: 103.169.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.crl rsync://rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:61:7c:60:ad:56:6a:aa:23:0a:1e:4f:0a:b5:4f:7d:1f:74:81:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=083743FDAF0807CCD8D2D3B936DE091676CAFCB5 Validity Not Before: May 3 02:19:09 2026 GMT Not After : May 2 02:24:09 2027 GMT Subject: CN=D072BFBA8F73EC9757C3757765ACFBDB77835538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8e:10:86:39:f2:35:64:0a:77:1d:62:28:da: 16:0c:7b:5c:c4:73:b6:b5:66:cf:fb:ae:40:bf:f8: 4c:b5:35:af:f9:57:0b:c3:9f:d0:ea:c8:ed:19:42: ab:40:25:72:ab:91:ee:01:7b:ba:5f:ac:c3:16:eb: f6:ad:7b:51:07:4f:28:9f:6a:c5:66:91:41:40:49: 34:2a:2b:08:bb:f2:d5:5b:bc:f2:44:57:45:a2:ae: fa:93:7a:65:07:49:5c:fb:af:69:8f:f5:e8:9f:ef: 00:11:05:f5:7f:ac:ed:19:9e:aa:69:d7:ca:6c:f1: 02:b7:2b:cd:72:4c:2f:05:43:e8:a5:d8:b4:cd:28: 0c:da:68:ae:44:86:b5:ab:5a:83:a9:ce:d8:dd:80: db:68:99:d7:72:d6:ba:b6:56:43:4a:9b:b4:37:53: d9:bb:c0:0e:45:07:0d:3d:74:55:4f:67:86:17:1a: 5f:55:3d:72:6f:b5:81:b3:80:6e:c2:cd:d0:d4:92: 56:2b:6b:88:4f:30:8c:f0:20:d7:f8:4d:6f:e6:e1: f6:2a:ce:24:10:20:c4:d6:85:71:44:d0:54:e4:52: 60:9a:bc:5f:71:be:0b:af:00:75:60:4e:02:0f:a6: 4f:8a:eb:87:f8:9e:b1:34:9e:37:c6:b2:03:7f:86: 0b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:72:BF:BA:8F:73:EC:97:57:C3:75:77:65:AC:FB:DB:77:83:55:38 X509v3 Authority Key Identifier: keyid:08:37:43:FD:AF:08:07:CC:D8:D2:D3:B9:36:DE:09:16:76:CA:FC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/083743FDAF0807CCD8D2D3B936DE091676CAFCB5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.38.0/23 Signature Algorithm: sha256WithRSAEncryption 35:37:5f:c0:7b:e0:0f:08:93:51:bc:b2:ad:e1:2b:7e:5f:77: d8:95:05:da:50:a1:57:6f:72:95:99:ae:b6:87:41:0f:87:0a: bc:3b:7a:2d:91:be:c6:63:a5:b3:96:06:80:6d:e9:13:f0:07: 1a:57:34:3b:87:3d:66:c6:53:c5:b6:72:8a:2e:fb:86:36:b7: c5:92:1b:8d:dc:76:89:e3:19:d4:ec:23:2c:3d:9b:27:b7:c8: 00:4a:97:8c:0e:8e:e3:4c:bb:f6:be:6f:2b:de:3b:07:61:65: 3e:89:f0:e7:80:8d:0b:76:42:3d:d2:f8:eb:a5:f5:3d:19:fb: d0:f4:72:96:75:ec:56:69:c2:3e:34:ff:4a:7c:be:01:49:5d: 8e:3f:f5:1a:1d:21:c7:7c:8f:89:95:69:bb:7b:ba:85:ca:dd: 3b:f1:2f:79:e0:a6:67:59:b2:6e:1d:6a:35:46:60:d8:48:80: 42:0f:a5:da:59:d8:5f:d4:46:6e:21:8e:fe:fd:e4:79:b2:5e: 88:c4:2a:42:4f:a9:e0:bb:0c:9c:90:47:47:dc:bb:01:67:bd: c1:7a:8f:0d:4a:c3:4a:22:6c:c1:35:c1:47:b4:89:bb:13:81: 61:a7:a6:f8:cb:b8:f2:9e:e7:43:c5:f0:78:23:11:c5:6a:73: 03:18:eb:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCmF8YK1WaqojCh5PCrVPfR90gbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDgzNzQzRkRBRjA4MDdDQ0Q4RDJEM0I5MzZERTA5MTY3 NkNBRkNCNTAeFw0yNjA1MDMwMjE5MDlaFw0yNzA1MDIwMjI0MDlaMDMxMTAvBgNV BAMTKEQwNzJCRkJBOEY3M0VDOTc1N0MzNzU3NzY1QUNGQkRCNzc4MzU1MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4jhCGOfI1ZAp3HWIo2hYMe1zE c7a1Zs/7rkC/+Ey1Na/5VwvDn9DqyO0ZQqtAJXKrke4Be7pfrMMW6/ate1EHTyif asVmkUFASTQqKwi78tVbvPJEV0WirvqTemUHSVz7r2mP9eif7wARBfV/rO0Znqpp 18ps8QK3K81yTC8FQ+il2LTNKAzaaK5EhrWrWoOpztjdgNtomddy1rq2VkNKm7Q3 U9m7wA5FBw09dFVPZ4YXGl9VPXJvtYGzgG7CzdDUklYra4hPMIzwINf4TW/m4fYq ziQQIMTWhXFE0FTkUmCavF9xvguvAHVgTgIPpk+K64f4nrE0njfGsgN/hguJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0HK/uo9z7JdXw3V3Zaz723eDVTgwHwYDVR0j BBgwFoAUCDdD/a8IB8zY0tO5Nt4JFnbK/LUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzI0OGQyN2ItY2NiMC00ZmM3LWFiY2EtOWZjMGEzZTE1NzU0LzAvMDgzNzQzRkRB RjA4MDdDQ0Q4RDJEM0I5MzZERTA5MTY3NkNBRkNCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wODM3NDNGREFGMDgwN0NDRDhEMkQzQjkzNkRFMDkxNjc2Q0FG Q0I1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMyNDhkMjdiLWNjYjAtNGZjNy1h YmNhLTlmYzBhM2UxNTc1NC8wLzMxMzAzMzJlMzEzNjM5MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kmMA0GCSqG SIb3DQEBCwUAA4IBAQA1N1/Ae+APCJNRvLKt4St+X3fYlQXaUKFXb3KVma62h0EP hwq8O3otkb7GY6WzlgaAbekT8AcaVzQ7hz1mxlPFtnKKLvuGNrfFkhuN3HaJ4xnU 7CMsPZsnt8gASpeMDo7jTLv2vm8r3jsHYWU+ifDngI0LdkI90vjrpfU9GfvQ9HKW dexWacI+NP9KfL4BSV2OP/UaHSHHfI+JlWm7e7qFyt078S954KZnWbJuHWo1RmDY SIBCD6XaWdhf1EZuIY7+/eR5sl6IxCpCT6nguwyckEdH3LsBZ73Beo8NSsNKImzB NcFHtIm7E4Fhp6b4y7jynudDxfB4IxHFanMDGOta -----END CERTIFICATE-----Generated at Wed May 13 04:48:23 2026 by rpki-client