$ rpki-client -vvf rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa File: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: 3u+krw4MaugdVPNW0321aXdI9rwWYGxYt6HAFFT4OAw= Subject key identifier: BD:40:0C:7B:89:66:C6:47:07:4A:53:D6:71:11:49:E8:F7:0D:C5:2E Certificate issuer: /CN=1D39B0D917480A85CBB3B0D9D09E220DBF7983AD Certificate serial: 1A83591F09D3BA8D820CBD7E355A688161B34F76 Authority key identifier: 1D:39:B0:D9:17:48:0A:85:CB:B3:B0:D9:D0:9E:22:0D:BF:79:83:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa Signing time: Sun 03 May 2026 02:24:19 +0000 ROA not before: Sun 03 May 2026 02:19:19 +0000 ROA not after: Sun 02 May 2027 02:24:19 +0000 asID: 149883 IP address blocks: 103.184.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.crl rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:83:59:1f:09:d3:ba:8d:82:0c:bd:7e:35:5a:68:81:61:b3:4f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D39B0D917480A85CBB3B0D9D09E220DBF7983AD Validity Not Before: May 3 02:19:19 2026 GMT Not After : May 2 02:24:19 2027 GMT Subject: CN=BD400C7B8966C647074A53D6711149E8F70DC52E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f3:0c:cf:79:73:f0:36:50:28:28:9a:a7:3d: 3e:3f:c7:6b:aa:47:3f:ce:4f:f6:cd:94:6b:35:3b: b5:83:5f:a8:51:ec:75:31:13:61:dd:76:d3:13:29: c5:04:3c:90:25:dd:65:ed:ab:ef:f7:d1:68:c2:62: 6e:a7:88:1d:78:f0:96:81:9b:b0:ac:b4:a4:6e:d2: f3:4e:ee:79:0d:82:e9:28:5d:1c:f5:18:ea:50:d9: 76:be:a4:c1:75:31:af:8f:66:09:6e:c7:49:e1:38: a9:3f:2c:5b:30:a8:0d:7a:3d:61:7e:de:8c:4e:ad: 49:25:00:50:53:fa:0f:d1:13:ac:84:e8:64:8e:68: df:de:4b:85:f4:ff:46:3c:7c:66:95:2e:01:d4:e7: a2:0a:1d:64:0c:bc:8f:2d:99:62:1b:94:bc:ff:52: 64:cd:a3:20:b7:2a:00:14:35:44:8e:5b:6a:d7:29: c2:76:a9:04:1e:16:75:9c:d8:d4:9c:65:6f:0e:5b: 4e:9e:3a:fe:32:11:06:d6:a3:55:82:31:a0:aa:bf: 89:4e:98:cb:09:0f:87:8a:fb:7a:34:df:01:42:e4: d4:04:15:eb:fa:08:9a:20:a6:71:af:a4:93:2f:75: 8b:70:36:58:af:0b:cf:18:ec:37:fb:37:a8:16:5f: ff:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:40:0C:7B:89:66:C6:47:07:4A:53:D6:71:11:49:E8:F7:0D:C5:2E X509v3 Authority Key Identifier: keyid:1D:39:B0:D9:17:48:0A:85:CB:B3:B0:D9:D0:9E:22:0D:BF:79:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 86:fd:cc:3e:6c:7d:1c:1e:cd:72:21:ea:22:80:f9:1f:0a:9d: 07:fb:8b:5a:b5:90:c7:a6:4f:96:fe:60:1b:bd:0d:db:56:24: ba:f3:92:f9:1f:df:a2:60:0f:3a:de:f7:e5:fa:d7:e5:a2:4c: 0d:c7:99:ae:00:e1:bb:44:7a:c6:23:55:33:10:de:50:18:c4: dc:63:34:18:28:22:62:cd:f4:4c:27:dc:f1:3f:2f:93:a1:db: b6:43:68:f6:9b:c5:6e:db:0b:da:03:aa:de:23:28:90:86:81: 83:61:91:39:c7:d9:60:a8:fd:d6:f2:cf:7f:ad:5a:d6:84:32: ed:8a:6f:a0:5c:2f:6d:dd:1c:bc:38:7e:f1:6e:bf:4a:26:c7: fa:16:93:4f:09:67:e6:a6:b6:4b:f2:45:a4:7a:d5:4b:7e:7d: b2:09:42:bc:4c:35:69:55:2c:6c:30:a6:3c:d7:36:8d:66:e7: aa:c4:59:9c:e2:38:1c:1f:9c:08:ab:45:d1:fb:8b:bd:e2:ed: 6d:2a:f9:08:40:56:0c:28:60:22:33:9d:23:2f:61:4a:fd:bd: 4f:89:4e:e9:5b:55:ce:44:c8:ba:66:a2:8c:4f:e5:12:80:0d: 76:84:e7:f4:7f:16:5d:8c:27:25:e8:60:f4:89:90:bf:df:18: 59:16:d7:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGoNZHwnTuo2CDL1+NVpogWGzT3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQzOUIwRDkxNzQ4MEE4NUNCQjNCMEQ5RDA5RTIyMERC Rjc5ODNBRDAeFw0yNjA1MDMwMjE5MTlaFw0yNzA1MDIwMjI0MTlaMDMxMTAvBgNV BAMTKEJENDAwQzdCODk2NkM2NDcwNzRBNTNENjcxMTE0OUU4RjcwREM1MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX8wzPeXPwNlAoKJqnPT4/x2uq Rz/OT/bNlGs1O7WDX6hR7HUxE2HddtMTKcUEPJAl3WXtq+/30WjCYm6niB148JaB m7CstKRu0vNO7nkNgukoXRz1GOpQ2Xa+pMF1Ma+PZglux0nhOKk/LFswqA16PWF+ 3oxOrUklAFBT+g/RE6yE6GSOaN/eS4X0/0Y8fGaVLgHU56IKHWQMvI8tmWIblLz/ UmTNoyC3KgAUNUSOW2rXKcJ2qQQeFnWc2NScZW8OW06eOv4yEQbWo1WCMaCqv4lO mMsJD4eK+3o03wFC5NQEFev6CJogpnGvpJMvdYtwNlivC88Y7Df7N6gWX//HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvUAMe4lmxkcHSlPWcRFJ6PcNxS4wHwYDVR0j BBgwFoAUHTmw2RdICoXLs7DZ0J4iDb95g60wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzJiZmFiMDktYzFlOS00NGQ4LTgxOWUtZmRmNjU0OWM2YjNmLzAvMUQzOUIwRDkx NzQ4MEE4NUNCQjNCMEQ5RDA5RTIyMERCRjc5ODNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDM5QjBEOTE3NDgwQTg1Q0JCM0IwRDlEMDlFMjIwREJGNzk4 M0FELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQCG/cw+bH0cHs1yIeoigPkfCp0H+4tatZDHpk+W/mAbvQ3b ViS685L5H9+iYA863vfl+tflokwNx5muAOG7RHrGI1UzEN5QGMTcYzQYKCJizfRM J9zxPy+Todu2Q2j2m8Vu2wvaA6reIyiQhoGDYZE5x9lgqP3W8s9/rVrWhDLtim+g XC9t3Ry8OH7xbr9KJsf6FpNPCWfmprZL8kWketVLfn2yCUK8TDVpVSxsMKY81zaN ZueqxFmc4jgcH5wIq0XR+4u94u1tKvkIQFYMKGAiM50jL2FK/b1PiU7pW1XORMi6 ZqKMT+USgA12hOf0fxZdjCcl6GD0iZC/3xhZFtdV -----END CERTIFICATE-----Generated at Wed May 13 05:47:23 2026 by rpki-client