$ rpki-client -vvf rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa File: 3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa (raw, json) Hash identifier: jtaA1SPrzDUYTBX5hLaOl8wHf9I6oDuHtGJ4XR8iaqY= Subject key identifier: AD:9C:44:E4:41:BD:94:78:28:33:F8:28:8C:65:EE:32:C8:F2:FB:37 Certificate issuer: /CN=1D8443F2B1B91BF6F0278C5B3C4BC524D8581508 Certificate serial: 726BE4090856EC1BC15C5650B506674F3C1D849F Authority key identifier: 1D:84:43:F2:B1:B9:1B:F6:F0:27:8C:5B:3C:4B:C5:24:D8:58:15:08 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa Signing time: Sun 03 May 2026 02:29:14 +0000 ROA not before: Sun 03 May 2026 02:24:14 +0000 ROA not after: Sun 02 May 2027 02:29:14 +0000 asID: 149315 IP address blocks: 103.186.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.crl rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:6b:e4:09:08:56:ec:1b:c1:5c:56:50:b5:06:67:4f:3c:1d:84:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8443F2B1B91BF6F0278C5B3C4BC524D8581508 Validity Not Before: May 3 02:24:14 2026 GMT Not After : May 2 02:29:14 2027 GMT Subject: CN=AD9C44E441BD94782833F8288C65EE32C8F2FB37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d2:40:34:6f:b1:11:a2:78:ef:62:7c:de:4a: d4:11:83:5a:b2:f1:e0:61:4b:d7:5f:ae:b6:60:8f: 21:d5:2d:9f:b6:80:1c:6c:00:a8:42:b4:2c:9e:9e: 84:b3:ee:4f:a3:a6:4d:e2:45:52:5f:d7:13:f6:e5: 1e:e8:96:06:cb:1b:a3:a5:c1:37:c7:a3:89:64:df: 0f:e6:ef:fe:53:0d:dd:59:df:4a:48:22:eb:70:46: 37:d6:65:5e:38:33:33:58:b2:cc:d3:a1:7e:f2:46: 65:e6:0c:78:08:b9:5a:5a:52:e7:86:5f:bc:0f:f5: 3d:7d:bf:c4:36:3b:70:d2:01:c0:ac:0a:70:84:bc: fe:a6:e5:1b:cf:c0:15:58:fd:24:af:e3:60:62:ad: c6:5a:d3:da:04:76:4d:d4:21:cc:d6:84:2f:82:28: f1:68:4c:b7:38:1e:12:11:a8:bf:d4:fa:1c:0f:94: 55:c9:55:c9:90:ae:00:40:04:46:b5:be:09:c2:b0: 07:81:4d:d4:17:3a:c5:5c:91:91:82:f7:fc:6f:b8: 44:b8:db:68:45:6b:fa:66:24:e4:ea:00:f3:fe:9a: 5d:5f:17:79:d3:ca:a6:24:e6:e7:9d:be:ff:dc:ec: 34:9a:10:c9:92:6c:82:5c:4c:35:af:1a:19:d4:a8: 1b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9C:44:E4:41:BD:94:78:28:33:F8:28:8C:65:EE:32:C8:F2:FB:37 X509v3 Authority Key Identifier: keyid:1D:84:43:F2:B1:B9:1B:F6:F0:27:8C:5B:3C:4B:C5:24:D8:58:15:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.168.0/23 Signature Algorithm: sha256WithRSAEncryption bf:00:ac:6e:35:1b:f6:e2:2b:12:61:dd:ee:65:72:dd:03:aa: 46:59:24:b2:50:5a:cb:18:ce:8c:29:7b:a5:2b:f6:49:c6:6f: 36:15:3b:cc:c4:15:01:4d:65:5b:d2:5b:67:bc:c2:0d:c3:27: ad:df:cc:ce:dd:af:7d:91:46:a4:9a:8b:00:b3:73:d3:5d:73: 06:3d:b2:50:fd:56:79:8b:94:3b:d5:44:1a:bc:6c:d4:05:5e: bf:0d:1f:d9:e5:e4:46:41:d2:7e:d4:a6:d7:c3:a3:3f:2f:e9: 4f:f7:0e:c9:93:1f:3e:83:d5:a6:fe:5c:a7:ea:c5:62:78:1c: 68:57:e1:04:c1:36:d5:7b:10:85:f0:09:b7:b6:fe:4a:27:d8: ee:5a:37:06:7c:11:20:84:57:cc:05:c9:32:cb:87:96:64:fd: d8:83:d7:32:50:2e:ac:41:f3:72:c5:db:70:9a:90:9d:ec:00: 01:78:f0:5c:e8:87:37:59:80:cc:dd:a8:aa:ea:e0:f4:12:f8: c0:7f:96:4f:8a:12:59:29:1e:4d:cb:11:00:49:9c:00:56:e0: 9f:f1:52:34:e7:70:c9:75:06:3b:20:c3:38:31:a5:43:af:f8: 5a:23:82:34:7f:e0:d5:b3:ac:cd:d9:80:87:24:98:d3:ec:0f: 00:63:be:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcmvkCQhW7BvBXFZQtQZnTzwdhJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4NDQzRjJCMUI5MUJGNkYwMjc4QzVCM0M0QkM1MjRE ODU4MTUwODAeFw0yNjA1MDMwMjI0MTRaFw0yNzA1MDIwMjI5MTRaMDMxMTAvBgNV BAMTKEFEOUM0NEU0NDFCRDk0NzgyODMzRjgyODhDNjVFRTMyQzhGMkZCMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS0kA0b7ERonjvYnzeStQRg1qy 8eBhS9dfrrZgjyHVLZ+2gBxsAKhCtCyenoSz7k+jpk3iRVJf1xP25R7olgbLG6Ol wTfHo4lk3w/m7/5TDd1Z30pIIutwRjfWZV44MzNYsszToX7yRmXmDHgIuVpaUueG X7wP9T19v8Q2O3DSAcCsCnCEvP6m5RvPwBVY/SSv42BircZa09oEdk3UIczWhC+C KPFoTLc4HhIRqL/U+hwPlFXJVcmQrgBABEa1vgnCsAeBTdQXOsVckZGC9/xvuES4 22hFa/pmJOTqAPP+ml1fF3nTyqYk5uedvv/c7DSaEMmSbIJcTDWvGhnUqBtZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrZxE5EG9lHgoM/gojGXuMsjy+zcwHwYDVR0j BBgwFoAUHYRD8rG5G/bwJ4xbPEvFJNhYFQgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDI3MTNhMzItZmFkYS00ODRlLWE2OGQtMGNhYzBmZmZhMzNjLzAvMUQ4NDQzRjJC MUI5MUJGNkYwMjc4QzVCM0M0QkM1MjREODU4MTUwOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDg0NDNGMkIxQjkxQkY2RjAyNzhDNUIzQzRCQzUyNEQ4NTgx NTA4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQyNzEzYTMyLWZhZGEtNDg0ZS1h NjhkLTBjYWMwZmZmYTMzYy8wLzMxMzAzMzJlMzEzODM2MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzMzMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnuqgwDQYJ KoZIhvcNAQELBQADggEBAL8ArG41G/biKxJh3e5lct0DqkZZJLJQWssYzowpe6Ur 9knGbzYVO8zEFQFNZVvSW2e8wg3DJ63fzM7dr32RRqSaiwCzc9NdcwY9slD9VnmL lDvVRBq8bNQFXr8NH9nl5EZB0n7UptfDoz8v6U/3DsmTHz6D1ab+XKfqxWJ4HGhX 4QTBNtV7EIXwCbe2/kon2O5aNwZ8ESCEV8wFyTLLh5Zk/diD1zJQLqxB83LF23Ca kJ3sAAF48FzohzdZgMzdqKrq4PQS+MB/lk+KElkpHk3LEQBJnABW4J/xUjTncMl1 BjsgwzgxpUOv+FojgjR/4NWzrM3ZgIckmNPsDwBjvqg= -----END CERTIFICATE-----Generated at Wed May 13 12:01:41 2026 by rpki-client