$ rpki-client -vvf rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136392e302f32342d3234203d3e20313439333135.roa File: 3130332e3138362e3136392e302f32342d3234203d3e20313439333135.roa (raw, json) Hash identifier: EMakdzLLxip5MgFZZxs3v2CftrvckpQUzvKJTpU8Ns0= Subject key identifier: CE:AC:D8:A9:12:71:0E:63:16:E4:4D:4B:EE:0F:D4:55:40:31:E5:A6 Certificate issuer: /CN=1D8443F2B1B91BF6F0278C5B3C4BC524D8581508 Certificate serial: 22795B2E214B17136B76B3F561B35E96BDD3F619 Authority key identifier: 1D:84:43:F2:B1:B9:1B:F6:F0:27:8C:5B:3C:4B:C5:24:D8:58:15:08 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136392e302f32342d3234203d3e20313439333135.roa Signing time: Sun 03 May 2026 02:29:15 +0000 ROA not before: Sun 03 May 2026 02:24:15 +0000 ROA not after: Sun 02 May 2027 02:29:15 +0000 asID: 149315 IP address blocks: 103.186.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.crl rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:79:5b:2e:21:4b:17:13:6b:76:b3:f5:61:b3:5e:96:bd:d3:f6:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8443F2B1B91BF6F0278C5B3C4BC524D8581508 Validity Not Before: May 3 02:24:15 2026 GMT Not After : May 2 02:29:15 2027 GMT Subject: CN=CEACD8A912710E6316E44D4BEE0FD4554031E5A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:17:07:eb:73:3a:09:e2:8a:3d:56:d4:7c:42: 69:6a:47:34:fa:2e:f9:d4:d0:10:ca:16:7e:50:c3: df:87:a0:13:97:38:13:c2:7e:ec:fa:04:7d:b9:97: 0d:cb:26:79:5d:88:9a:71:43:a3:8a:4d:a1:1a:e7: 4a:8d:ae:1f:fe:14:12:8d:13:4b:fc:5f:40:4d:12: e8:de:52:b0:db:f7:12:af:cf:85:c2:71:3c:0f:aa: 2e:98:eb:20:29:d6:3c:2a:8d:4f:3b:f7:50:bd:33: 33:0e:c6:75:ee:23:a0:82:cb:46:d8:18:f3:1e:8b: 36:de:28:9c:b4:52:96:cf:b4:10:c8:e8:c2:37:f7: 51:32:ed:aa:e0:fb:79:e3:2a:d5:83:1a:6b:20:e5: a3:f4:bc:a0:88:86:bc:64:a9:ee:2e:4d:ab:4f:c0: 9d:51:f3:23:59:ac:e4:7e:f5:69:23:5f:9b:19:30: 03:a2:b1:2a:4b:3c:0e:7b:42:08:26:e0:ca:9e:58: c7:b5:91:74:67:0c:cf:de:cb:33:96:a6:f8:fa:76: 3c:85:6c:e5:ff:23:1c:bd:b8:5f:8b:16:51:8a:99: 08:17:5c:4b:45:ae:9e:18:b7:19:ce:3e:8a:28:17: 42:b6:29:68:79:86:95:96:6a:13:d3:c9:05:b9:31: c7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:AC:D8:A9:12:71:0E:63:16:E4:4D:4B:EE:0F:D4:55:40:31:E5:A6 X509v3 Authority Key Identifier: keyid:1D:84:43:F2:B1:B9:1B:F6:F0:27:8C:5B:3C:4B:C5:24:D8:58:15:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D8443F2B1B91BF6F0278C5B3C4BC524D8581508.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136392e302f32342d3234203d3e20313439333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.169.0/24 Signature Algorithm: sha256WithRSAEncryption bd:ff:42:97:76:97:b6:b7:10:a2:08:da:6a:30:fc:1e:e9:29: 8e:e9:6c:8f:56:19:84:5e:b2:b4:a6:fa:e1:a4:fe:27:c1:d0: 99:40:9e:8c:4b:29:c5:0b:b3:96:af:42:15:7c:ae:6f:49:52: 11:ac:f6:df:9d:8f:e3:ee:ba:2e:03:18:3c:6c:af:3e:cf:70: 5e:a7:0b:8f:82:e9:ac:81:74:54:ba:50:89:40:7b:ca:b3:b8: 55:80:7f:96:f6:0f:ef:4a:18:c9:6a:c4:8c:ac:42:8b:39:b5: 8f:93:52:ff:df:c4:ba:e8:85:32:43:95:27:0c:4f:2a:48:06: 3c:2d:29:5d:aa:80:d4:51:e4:b1:a0:74:52:92:6e:ff:b6:28: a7:b5:65:46:99:ad:55:e9:52:dc:8b:f0:6b:a1:8d:76:e1:b5: f4:48:4d:15:37:0e:dd:48:4a:d2:90:01:41:7e:e2:84:04:08: 18:0c:57:21:1e:13:f1:1b:d2:75:2c:99:fd:8f:cf:c3:65:4a: 1c:85:1c:3a:6e:62:fc:30:82:b5:b0:17:1b:8e:46:91:d9:89: 98:50:df:3a:49:61:3b:d2:c9:01:97:23:9d:b8:67:8d:b3:e3: 98:43:dc:00:9e:ed:11:b7:5a:09:2a:41:68:41:68:ed:6f:b2: 43:af:6f:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUInlbLiFLFxNrdrP1YbNelr3T9hkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4NDQzRjJCMUI5MUJGNkYwMjc4QzVCM0M0QkM1MjRE ODU4MTUwODAeFw0yNjA1MDMwMjI0MTVaFw0yNzA1MDIwMjI5MTVaMDMxMTAvBgNV BAMTKENFQUNEOEE5MTI3MTBFNjMxNkU0NEQ0QkVFMEZENDU1NDAzMUU1QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOFwfrczoJ4oo9VtR8QmlqRzT6 LvnU0BDKFn5Qw9+HoBOXOBPCfuz6BH25lw3LJnldiJpxQ6OKTaEa50qNrh/+FBKN E0v8X0BNEujeUrDb9xKvz4XCcTwPqi6Y6yAp1jwqjU8791C9MzMOxnXuI6CCy0bY GPMeizbeKJy0UpbPtBDI6MI391Ey7arg+3njKtWDGmsg5aP0vKCIhrxkqe4uTatP wJ1R8yNZrOR+9WkjX5sZMAOisSpLPA57Qggm4MqeWMe1kXRnDM/eyzOWpvj6djyF bOX/Ixy9uF+LFlGKmQgXXEtFrp4YtxnOPoooF0K2KWh5hpWWahPTyQW5McelAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzqzYqRJxDmMW5E1L7g/UVUAx5aYwHwYDVR0j BBgwFoAUHYRD8rG5G/bwJ4xbPEvFJNhYFQgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDI3MTNhMzItZmFkYS00ODRlLWE2OGQtMGNhYzBmZmZhMzNjLzAvMUQ4NDQzRjJC MUI5MUJGNkYwMjc4QzVCM0M0QkM1MjREODU4MTUwOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDg0NDNGMkIxQjkxQkY2RjAyNzhDNUIzQzRCQzUyNEQ4NTgx NTA4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQyNzEzYTMyLWZhZGEtNDg0ZS1h NjhkLTBjYWMwZmZmYTMzYy8wLzMxMzAzMzJlMzEzODM2MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuqkwDQYJ KoZIhvcNAQELBQADggEBAL3/Qpd2l7a3EKII2mow/B7pKY7pbI9WGYResrSm+uGk /ifB0JlAnoxLKcULs5avQhV8rm9JUhGs9t+dj+Puui4DGDxsrz7PcF6nC4+C6ayB dFS6UIlAe8qzuFWAf5b2D+9KGMlqxIysQos5tY+TUv/fxLrohTJDlScMTypIBjwt KV2qgNRR5LGgdFKSbv+2KKe1ZUaZrVXpUtyL8GuhjXbhtfRITRU3Dt1IStKQAUF+ 4oQECBgMVyEeE/Eb0nUsmf2Pz8NlShyFHDpuYvwwgrWwFxuORpHZiZhQ3zpJYTvS yQGXI524Z42z45hD3ACe7RG3WgkqQWhBaO1vskOvb8M= -----END CERTIFICATE-----Generated at Wed May 13 13:57:37 2026 by rpki-client