$ rpki-client -vvf rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa File: 3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: o0zOCwKMV8jU5a7SbQORjfO9m38/31ZTy9sJntqLIvE= Subject key identifier: 31:7E:AC:10:A4:09:74:15:63:15:A9:4B:B2:B2:0D:B7:1E:AA:EF:AB Certificate issuer: /CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Certificate serial: 5632B63F932F3A322853F03553DD6392184D36AA Authority key identifier: 99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa Signing time: Sun 03 May 2026 02:25:07 +0000 ROA not before: Sun 03 May 2026 02:20:07 +0000 ROA not after: Sun 02 May 2027 02:25:07 +0000 asID: 38788 IP address blocks: 103.242.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:32:b6:3f:93:2f:3a:32:28:53:f0:35:53:dd:63:92:18:4d:36:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56 Validity Not Before: May 3 02:20:07 2026 GMT Not After : May 2 02:25:07 2027 GMT Subject: CN=317EAC10A40974156315A94BB2B20DB71EAAEFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9a:69:8c:ab:a6:0b:25:cc:ef:48:a6:dd:02: bc:d5:dd:71:b5:19:6c:c5:bb:b5:5f:2a:ab:d8:23: be:44:37:cf:93:ee:4b:df:04:32:7c:76:2b:ed:4f: cd:b7:9c:a9:2b:c1:75:65:b3:cc:1a:a7:4f:03:ce: 7a:fe:28:4e:8c:bc:dd:26:55:9e:ef:4b:da:f6:cc: 5c:e2:de:3c:7e:a3:4f:37:cd:06:99:08:35:ff:ff: ab:9a:bc:34:89:18:3b:33:fd:20:ca:29:88:5b:37: ef:3f:51:7e:59:23:ee:69:69:68:00:3d:07:ff:77: a8:f8:ec:37:64:99:06:03:2b:7d:9a:ae:1f:78:48: c4:8d:20:1e:39:c0:55:52:b6:07:05:18:e2:ac:a3: 88:e2:79:db:5b:a1:6e:ef:3e:3d:61:1b:f0:80:a9: 49:d5:b1:b3:6f:ca:07:33:f7:4c:f5:00:4a:33:85: 1d:f6:49:b7:38:85:b7:0a:09:59:42:e2:b9:50:2f: b1:c6:b0:dd:cb:cf:8e:6c:80:af:8a:ac:00:a8:a5: d0:ec:c0:83:92:c7:08:0a:24:6c:be:d5:0c:2f:02: 55:bc:cd:bf:4d:93:3c:27:a9:9c:84:25:10:3a:e1: 2e:7e:39:c2:d2:6a:34:1d:bd:bc:a5:5a:ba:b0:f6: f7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7E:AC:10:A4:09:74:15:63:15:A9:4B:B2:B2:0D:B7:1E:AA:EF:AB X509v3 Authority Key Identifier: keyid:99:AD:23:9A:6C:58:BD:C3:65:0D:B2:BE:81:7F:2E:9A:39:AB:CB:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/99AD239A6C58BDC3650DB2BE817F2E9A39ABCB56.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.180.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:19:64:5c:ed:e1:be:59:de:b7:ad:4d:d6:e9:27:91:90:09: 9e:c3:40:3c:27:e9:1f:5b:dc:f3:05:a1:39:ca:34:6c:48:4f: 11:21:d5:f5:d5:54:03:23:b3:c5:c8:cf:b6:c2:ff:4c:3a:81: 4c:6d:21:48:e4:d6:ed:63:80:db:6e:18:3f:fc:69:03:8d:e9: f5:7b:09:27:d6:5e:b7:90:57:3c:bc:30:c5:a9:75:b7:46:49: 17:3e:2d:c9:53:01:ea:e8:67:36:16:d3:fd:4b:5c:9d:a5:6e: c8:4c:41:d1:f7:30:ba:29:fd:2e:31:e9:3e:ca:3a:66:69:35: 31:d5:b1:b2:b1:4b:f3:f1:54:0d:a9:58:4c:4c:bf:59:c8:99: 05:99:24:e5:85:c9:87:8a:be:29:dd:79:a7:7a:15:22:44:26: 50:c1:fe:88:1a:d3:19:4d:45:8e:17:cd:ff:e2:9f:6e:fb:95: 53:b8:d5:93:da:e0:bc:4e:12:e7:9e:57:56:fc:29:7b:cd:56: 9a:16:6d:f2:b9:08:9a:fa:0d:a3:c1:a0:09:60:68:9c:65:f0: e0:17:5c:db:68:da:3d:cf:dd:d7:cb:6f:38:13:7d:ca:8e:60: c5:9c:d9:a8:5f:41:0f:87:98:33:51:21:e8:9b:27:06:e7:40: e0:61:b7:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVjK2P5MvOjIoU/A1U91jkhhNNqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBRDIzOUE2QzU4QkRDMzY1MERCMkJFODE3RjJFOUEz OUFCQ0I1NjAeFw0yNjA1MDMwMjIwMDdaFw0yNzA1MDIwMjI1MDdaMDMxMTAvBgNV BAMTKDMxN0VBQzEwQTQwOTc0MTU2MzE1QTk0QkIyQjIwREI3MUVBQUVGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDymmmMq6YLJczvSKbdArzV3XG1 GWzFu7VfKqvYI75EN8+T7kvfBDJ8divtT823nKkrwXVls8wap08Dznr+KE6MvN0m VZ7vS9r2zFzi3jx+o083zQaZCDX//6uavDSJGDsz/SDKKYhbN+8/UX5ZI+5paWgA PQf/d6j47DdkmQYDK32arh94SMSNIB45wFVStgcFGOKso4jiedtboW7vPj1hG/CA qUnVsbNvygcz90z1AEozhR32Sbc4hbcKCVlC4rlQL7HGsN3Lz45sgK+KrACopdDs wIOSxwgKJGy+1QwvAlW8zb9NkzwnqZyEJRA64S5+OcLSajQdvbylWrqw9vfVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMX6sEKQJdBVjFalLsrINtx6q76swHwYDVR0j BBgwFoAUma0jmmxYvcNlDbK+gX8umjmry1YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRlMmJmMDktNWY0Mi00YjY1LWE0MmQtNjNkMDc5NmQyMDZjLzAvOTlBRDIzOUE2 QzU4QkRDMzY1MERCMkJFODE3RjJFOUEzOUFCQ0I1Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OUFEMjM5QTZDNThCREMzNjUwREIyQkU4MTdGMkU5QTM5QUJD QjU2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/K0MA0GCSqG SIb3DQEBCwUAA4IBAQAvGWRc7eG+Wd63rU3W6SeRkAmew0A8J+kfW9zzBaE5yjRs SE8RIdX11VQDI7PFyM+2wv9MOoFMbSFI5NbtY4Dbbhg//GkDjen1ewkn1l63kFc8 vDDFqXW3RkkXPi3JUwHq6Gc2FtP9S1ydpW7ITEHR9zC6Kf0uMek+yjpmaTUx1bGy sUvz8VQNqVhMTL9ZyJkFmSTlhcmHir4p3XmnehUiRCZQwf6IGtMZTUWOF83/4p9u +5VTuNWT2uC8ThLnnldW/Cl7zVaaFm3yuQia+g2jwaAJYGicZfDgF1zbaNo9z93X y284E33KjmDFnNmoX0EPh5gzUSHomycG50DgYbdI -----END CERTIFICATE-----Generated at Wed May 13 02:15:54 2026 by rpki-client