$ rpki-client -vvf rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: uLEgNCgaAjsQjxP4KxUR5P3CjpsSxN+zwR1ag08fAfk= Subject key identifier: 88:06:EB:E5:F1:D5:C2:50:D4:F7:E9:89:74:CA:BE:5D:B5:0B:72:40 Certificate issuer: /CN=1D39B0D917480A85CBB3B0D9D09E220DBF7983AD Certificate serial: 725E6FD02D0280A7D4806E379C8B2B79FF8D4697 Authority key identifier: 1D:39:B0:D9:17:48:0A:85:CB:B3:B0:D9:D0:9E:22:0D:BF:79:83:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa Signing time: Sun 03 May 2026 02:24:18 +0000 ROA not before: Sun 03 May 2026 02:19:18 +0000 ROA not after: Sun 02 May 2027 02:24:18 +0000 asID: 149883 IP address blocks: 103.184.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.crl rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5e:6f:d0:2d:02:80:a7:d4:80:6e:37:9c:8b:2b:79:ff:8d:46:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D39B0D917480A85CBB3B0D9D09E220DBF7983AD Validity Not Before: May 3 02:19:18 2026 GMT Not After : May 2 02:24:18 2027 GMT Subject: CN=8806EBE5F1D5C250D4F7E98974CABE5DB50B7240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:3a:a3:7a:a9:3b:7d:1a:7e:47:ec:47:4d: 34:30:4a:63:a9:4e:ac:24:f7:17:d3:63:91:dd:bb: 64:c9:b8:82:4e:c6:33:9e:6d:29:63:3d:ae:64:9a: b1:d4:9b:ef:b6:63:4c:7b:79:06:cf:9a:2b:28:2c: ad:b2:4c:7f:28:97:13:fe:c1:75:8f:32:7c:aa:64: 76:86:c1:91:a2:07:c1:61:90:1b:99:cb:0c:c2:80: 91:bf:db:d4:57:e8:58:42:3b:48:ee:bd:23:1b:a1: 08:59:29:28:ef:a6:87:28:94:e4:f6:97:93:b0:4c: 60:ab:9b:0c:bc:36:5f:cd:c2:0a:4a:bd:37:73:3a: 13:d7:4f:c9:6b:93:38:7d:42:c8:42:26:6f:e2:f2: 0b:fa:eb:57:68:a0:60:07:d1:40:be:8e:98:bc:a0: d5:96:65:b2:66:a6:47:1d:a7:48:e9:a1:71:86:69: 5b:57:2b:7c:e6:dc:6d:7f:b1:ea:67:4d:f2:d8:05: 16:4f:bb:1e:f0:86:21:1f:09:fa:fa:0e:18:0b:73: 62:6f:99:b1:43:de:27:29:3c:10:25:2a:0d:12:54: 23:1b:73:d2:e0:4e:bf:c8:37:73:b2:96:54:e8:d6: c9:4a:90:92:59:25:87:45:a3:79:60:9c:6a:32:09: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:06:EB:E5:F1:D5:C2:50:D4:F7:E9:89:74:CA:BE:5D:B5:0B:72:40 X509v3 Authority Key Identifier: keyid:1D:39:B0:D9:17:48:0A:85:CB:B3:B0:D9:D0:9E:22:0D:BF:79:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D39B0D917480A85CBB3B0D9D09E220DBF7983AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.21.0/24 Signature Algorithm: sha256WithRSAEncryption 73:b3:f0:0c:d7:06:71:2c:2f:29:64:40:2b:9c:b9:ff:2d:48: 74:ff:88:43:b0:1a:e5:5d:0b:58:58:a2:05:15:db:23:e8:0b: b5:44:27:3f:f4:62:fd:71:9c:27:5c:bb:77:72:95:ca:b8:dd: a5:e1:02:47:fa:0b:fd:87:ae:9d:45:a4:f7:2d:f4:b4:32:ab: 6e:0f:00:cf:c2:09:54:4f:6b:93:b6:c5:11:c7:51:f5:38:19: 6c:f9:58:19:34:39:12:38:13:80:d9:60:b7:c2:03:57:08:49: c5:51:66:e8:f8:0d:e3:d9:fc:1c:e2:d0:09:2a:34:e7:a0:3d: 42:fb:f0:92:ab:50:6c:f1:5d:72:7d:95:11:e1:ba:39:bd:32: 76:8d:00:a0:bf:71:3f:c7:c1:bf:8e:79:04:8c:ac:16:11:0b: ca:13:d0:f6:99:26:87:82:88:96:6b:80:43:3a:9d:05:16:dd: 64:c3:e9:16:e7:31:ea:45:a9:fb:54:94:5a:5b:ef:70:43:81: a6:c7:54:c3:d5:b2:1b:20:1f:a5:70:c3:df:e5:2d:1b:3f:ef: 7b:ba:4c:2e:31:65:40:24:26:ba:66:f8:f6:47:59:12:aa:5e: 00:14:5d:e6:93:40:37:40:5c:59:5b:10:d4:84:6d:4a:73:db: 53:8f:b4:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcl5v0C0CgKfUgG43nIsref+NRpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQzOUIwRDkxNzQ4MEE4NUNCQjNCMEQ5RDA5RTIyMERC Rjc5ODNBRDAeFw0yNjA1MDMwMjE5MThaFw0yNzA1MDIwMjI0MThaMDMxMTAvBgNV BAMTKDg4MDZFQkU1RjFENUMyNTBENEY3RTk4OTc0Q0FCRTVEQjUwQjcyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGMjqjeqk7fRp+R+xHTTQwSmOp Tqwk9xfTY5Hdu2TJuIJOxjOebSljPa5kmrHUm++2Y0x7eQbPmisoLK2yTH8olxP+ wXWPMnyqZHaGwZGiB8FhkBuZywzCgJG/29RX6FhCO0juvSMboQhZKSjvpocolOT2 l5OwTGCrmwy8Nl/NwgpKvTdzOhPXT8lrkzh9QshCJm/i8gv661dooGAH0UC+jpi8 oNWWZbJmpkcdp0jpoXGGaVtXK3zm3G1/sepnTfLYBRZPux7whiEfCfr6DhgLc2Jv mbFD3icpPBAlKg0SVCMbc9LgTr/IN3OyllTo1slKkJJZJYdFo3lgnGoyCeOtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiAbr5fHVwlDU9+mJdMq+XbULckAwHwYDVR0j BBgwFoAUHTmw2RdICoXLs7DZ0J4iDb95g60wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzJiZmFiMDktYzFlOS00NGQ4LTgxOWUtZmRmNjU0OWM2YjNmLzAvMUQzOUIwRDkx NzQ4MEE4NUNCQjNCMEQ5RDA5RTIyMERCRjc5ODNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDM5QjBEOTE3NDgwQTg1Q0JCM0IwRDlEMDlFMjIwREJGNzk4 M0FELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gVMA0GCSqG SIb3DQEBCwUAA4IBAQBzs/AM1wZxLC8pZEArnLn/LUh0/4hDsBrlXQtYWKIFFdsj 6Au1RCc/9GL9cZwnXLt3cpXKuN2l4QJH+gv9h66dRaT3LfS0MqtuDwDPwglUT2uT tsURx1H1OBls+VgZNDkSOBOA2WC3wgNXCEnFUWbo+A3j2fwc4tAJKjTnoD1C+/CS q1Bs8V1yfZUR4bo5vTJ2jQCgv3E/x8G/jnkEjKwWEQvKE9D2mSaHgoiWa4BDOp0F Ft1kw+kW5zHqRan7VJRaW+9wQ4Gmx1TD1bIbIB+lcMPf5S0bP+97ukwuMWVAJCa6 Zvj2R1kSql4AFF3mk0A3QFxZWxDUhG1Kc9tTj7RR -----END CERTIFICATE-----Generated at Wed May 13 09:11:53 2026 by rpki-client