$ rpki-client -vvf rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa File: 3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa (raw, json) Hash identifier: u3ZNobogmTT7oj8DktFleI1vr3pzVaKkxPNl1qOcKkg= Subject key identifier: 68:76:D3:29:7B:B9:02:56:8A:04:6F:8D:3B:85:16:31:C5:70:5E:64 Certificate issuer: /CN=BE674235014841C34B81D477A887E851CCB5DE20 Certificate serial: 798B8A508F03F6327577B74AC36081B36C01414A Authority key identifier: BE:67:42:35:01:48:41:C3:4B:81:D4:77:A8:87:E8:51:CC:B5:DE:20 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE674235014841C34B81D477A887E851CCB5DE20.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa Signing time: Sun 03 May 2026 02:34:22 +0000 ROA not before: Sun 03 May 2026 02:29:22 +0000 ROA not after: Sun 02 May 2027 02:34:22 +0000 asID: 142333 IP address blocks: 103.169.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/BE674235014841C34B81D477A887E851CCB5DE20.crl rsync://rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/BE674235014841C34B81D477A887E851CCB5DE20.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE674235014841C34B81D477A887E851CCB5DE20.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8b:8a:50:8f:03:f6:32:75:77:b7:4a:c3:60:81:b3:6c:01:41:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE674235014841C34B81D477A887E851CCB5DE20 Validity Not Before: May 3 02:29:22 2026 GMT Not After : May 2 02:34:22 2027 GMT Subject: CN=6876D3297BB902568A046F8D3B851631C5705E64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:61:02:d7:f3:a0:5e:1b:15:10:81:5c:1f:34: 60:50:e4:2c:14:2b:4f:39:03:eb:a0:f7:6e:8f:f7: 3d:0a:0f:9f:cd:01:f3:10:af:1b:98:83:de:3c:e8: a0:8f:6f:2b:6c:8b:b1:a2:c4:80:b6:88:4b:53:3c: da:f4:5c:59:d8:42:4f:34:bd:91:fd:c5:30:b4:34: 7b:73:7e:bd:69:9e:d5:b1:f7:f0:72:ca:e5:43:46: 82:02:3f:3b:88:38:12:eb:0a:46:be:b6:63:f9:e0: a3:40:96:5d:25:86:1e:05:29:91:cf:36:45:d3:0e: 5d:e3:47:a6:c2:ef:dd:82:6a:db:78:40:a7:6c:a2: f4:4e:6f:bd:49:c8:29:b6:f8:2b:1a:8f:23:68:1a: 4c:b7:30:56:be:ce:77:09:63:f6:c3:08:60:9e:14: 27:e1:b4:c7:50:b4:b4:6f:a7:8e:9c:cc:b4:db:71: ba:a8:66:37:1a:93:ba:41:97:06:d9:be:b4:16:b1: c9:38:b8:d4:7e:d4:69:ff:f2:3d:c3:51:f2:b3:8d: 45:11:03:61:d7:38:cd:31:45:cb:1f:b2:dc:01:5f: 54:4a:2d:46:5f:e3:cd:84:fd:5d:2b:38:27:5c:30: 8f:ce:6d:42:68:49:e4:2e:a4:e8:a8:b6:b1:83:f8: b3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:76:D3:29:7B:B9:02:56:8A:04:6F:8D:3B:85:16:31:C5:70:5E:64 X509v3 Authority Key Identifier: keyid:BE:67:42:35:01:48:41:C3:4B:81:D4:77:A8:87:E8:51:CC:B5:DE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/BE674235014841C34B81D477A887E851CCB5DE20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BE674235014841C34B81D477A887E851CCB5DE20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.32.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:36:cb:e3:ef:36:51:ea:66:60:13:df:f3:05:a7:2d:8f:27: ea:aa:21:40:ac:f9:72:b8:d3:04:3b:15:87:9b:7b:0a:a0:b7: 9d:8d:27:82:cb:b3:7c:a9:11:c8:e2:90:c9:88:9e:50:95:06: 30:6a:10:90:8a:c9:85:5e:ec:c9:d2:bc:d3:af:ea:f4:43:45: fb:40:78:07:60:62:35:0b:20:5b:e4:7c:71:66:51:8a:e8:c5: d7:a0:bd:df:c3:28:04:6d:b4:3d:ec:0a:14:06:bb:62:23:62: a8:5d:77:72:2e:c1:a1:40:b5:8d:4b:d9:0f:a9:93:00:37:89: 7a:27:f4:90:ee:72:98:3b:09:57:ee:f7:44:5c:0f:6e:78:00: 5e:aa:8c:43:f2:e8:41:47:6c:97:ed:31:5e:aa:04:49:8e:73: 05:92:e2:74:cd:77:95:f0:1f:4e:eb:ea:dc:e0:64:64:78:38: 42:4a:df:f9:4a:ec:64:b5:92:5a:07:71:56:2a:58:1a:90:51: 95:c9:a6:26:71:2c:3b:f4:72:7f:ed:73:c6:4d:48:9d:ab:22: b2:de:f6:58:3e:b3:61:f2:53:d9:7a:e8:54:48:6e:56:67:60: 90:bd:f9:fa:0e:3b:1d:c4:75:d1:6c:b4:41:84:f8:9c:73:2f: 5b:9c:f3:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeYuKUI8D9jJ1d7dKw2CBs2wBQUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU2NzQyMzUwMTQ4NDFDMzRCODFENDc3QTg4N0U4NTFD Q0I1REUyMDAeFw0yNjA1MDMwMjI5MjJaFw0yNzA1MDIwMjM0MjJaMDMxMTAvBgNV BAMTKDY4NzZEMzI5N0JCOTAyNTY4QTA0NkY4RDNCODUxNjMxQzU3MDVFNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzYQLX86BeGxUQgVwfNGBQ5CwU K085A+ug926P9z0KD5/NAfMQrxuYg9486KCPbytsi7GixIC2iEtTPNr0XFnYQk80 vZH9xTC0NHtzfr1pntWx9/ByyuVDRoICPzuIOBLrCka+tmP54KNAll0lhh4FKZHP NkXTDl3jR6bC792Catt4QKdsovROb71JyCm2+CsajyNoGky3MFa+zncJY/bDCGCe FCfhtMdQtLRvp46czLTbcbqoZjcak7pBlwbZvrQWsck4uNR+1Gn/8j3DUfKzjUUR A2HXOM0xRcsfstwBX1RKLUZf482E/V0rOCdcMI/ObUJoSeQupOiotrGD+LMZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaHbTKXu5AlaKBG+NO4UWMcVwXmQwHwYDVR0j BBgwFoAUvmdCNQFIQcNLgdR3qIfoUcy13iAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTcwYzFiYWItMTNmNC00Y2U2LTg1ZjctYzM4ODczN2Y2ZDE5LzAvQkU2NzQyMzUw MTQ4NDFDMzRCODFENDc3QTg4N0U4NTFDQ0I1REUyMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRTY3NDIzNTAxNDg0MUMzNEI4MUQ0NzdBODg3RTg1MUNDQjVE RTIwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3MGMxYmFiLTEzZjQtNGNlNi04 NWY3LWMzODg3MzdmNmQxOS8wLzMxMzAzMzJlMzEzNjM5MmUzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kgMA0GCSqG SIb3DQEBCwUAA4IBAQAsNsvj7zZR6mZgE9/zBactjyfqqiFArPlyuNMEOxWHm3sK oLedjSeCy7N8qRHI4pDJiJ5QlQYwahCQismFXuzJ0rzTr+r0Q0X7QHgHYGI1CyBb 5HxxZlGK6MXXoL3fwygEbbQ97AoUBrtiI2KoXXdyLsGhQLWNS9kPqZMAN4l6J/SQ 7nKYOwlX7vdEXA9ueABeqoxD8uhBR2yX7TFeqgRJjnMFkuJ0zXeV8B9O6+rc4GRk eDhCSt/5SuxktZJaB3FWKlgakFGVyaYmcSw79HJ/7XPGTUidqyKy3vZYPrNh8lPZ euhUSG5WZ2CQvfn6DjsdxHXRbLRBhPiccy9bnPOV -----END CERTIFICATE-----Generated at Wed May 13 11:25:28 2026 by rpki-client