$ rpki-client -vvf rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa File: 3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa (raw, json) Hash identifier: mPIkuQVE9R3LTUTej85wxcqgd13oKy/e6VbDwXPFIhY= Subject key identifier: 13:A1:F8:A4:55:A2:68:98:E1:3D:FF:F7:D9:AC:22:61:B7:29:FC:E5 Certificate issuer: /CN=B9D7A5A49B322ED987281832ABCFB5DC509AB889 Certificate serial: 016400306602A0E34428B9D968A09874BEEAFE85 Authority key identifier: B9:D7:A5:A4:9B:32:2E:D9:87:28:18:32:AB:CF:B5:DC:50:9A:B8:89 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9D7A5A49B322ED987281832ABCFB5DC509AB889.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa Signing time: Sun 03 May 2026 02:35:00 +0000 ROA not before: Sun 03 May 2026 02:30:00 +0000 ROA not after: Sun 02 May 2027 02:35:00 +0000 asID: 147130 IP address blocks: 103.176.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/B9D7A5A49B322ED987281832ABCFB5DC509AB889.crl rsync://rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/B9D7A5A49B322ED987281832ABCFB5DC509AB889.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9D7A5A49B322ED987281832ABCFB5DC509AB889.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:64:00:30:66:02:a0:e3:44:28:b9:d9:68:a0:98:74:be:ea:fe:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9D7A5A49B322ED987281832ABCFB5DC509AB889 Validity Not Before: May 3 02:30:00 2026 GMT Not After : May 2 02:35:00 2027 GMT Subject: CN=13A1F8A455A26898E13DFFF7D9AC2261B729FCE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:a3:30:70:99:35:77:9a:7a:96:21:1d:ff: d9:81:d1:64:5d:6c:20:5b:72:b1:c4:e8:ce:32:8b: 4f:0d:fc:b7:38:94:a4:f6:fd:3b:ea:f0:fa:2f:77: d8:9c:20:4a:0a:c1:c9:3e:7a:71:5e:8e:47:38:8d: ce:47:d7:c8:b3:d8:1b:c3:69:3a:01:c4:64:50:06: b8:29:3d:7a:59:75:67:ac:a8:90:c3:da:98:e7:ed: 98:63:6f:79:2b:cd:3c:1b:ec:8e:dc:fb:25:c3:d1: 10:0e:76:68:2e:dc:89:e1:5f:64:83:19:c2:15:ff: 1e:7d:3f:31:87:0c:42:8c:64:d8:a6:76:46:91:a4: 41:8d:6a:33:80:82:d9:66:59:d8:1a:9e:95:ff:e3: d8:90:1f:50:b2:12:9d:65:bb:22:12:e0:50:15:71: 6c:f0:a9:ae:2a:80:57:d3:7d:e1:48:46:dd:2f:0e: f6:81:a7:07:05:a8:68:0b:a5:2c:e9:46:2f:9d:b0: 05:78:e3:8b:69:17:fe:de:95:f8:2d:ae:67:35:c4: 6f:f2:fc:2f:9c:f6:57:6f:09:1f:d9:f3:03:46:a4: 61:2c:4e:da:36:b7:ab:8d:3c:a8:11:d1:49:ad:74: 17:e8:27:b9:44:ad:57:fc:01:8f:60:32:ce:68:bc: e4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A1:F8:A4:55:A2:68:98:E1:3D:FF:F7:D9:AC:22:61:B7:29:FC:E5 X509v3 Authority Key Identifier: keyid:B9:D7:A5:A4:9B:32:2E:D9:87:28:18:32:AB:CF:B5:DC:50:9A:B8:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/B9D7A5A49B322ED987281832ABCFB5DC509AB889.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9D7A5A49B322ED987281832ABCFB5DC509AB889.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.121.0/24 Signature Algorithm: sha256WithRSAEncryption 25:30:ba:21:53:b1:a5:2b:b3:35:9c:22:56:79:98:00:53:1c: b4:7a:d3:e9:36:da:1c:4f:cc:3a:b6:d3:8b:6b:0f:f3:61:90: 85:85:e2:7f:70:b0:80:7a:b0:95:fb:b1:cd:fa:5b:59:29:2d: 7e:3f:d7:72:4b:af:45:ba:54:2d:d0:99:17:f9:26:d8:bc:7e: 58:7e:7f:68:a6:0d:08:47:09:19:a6:a4:e2:2e:8c:12:50:eb: f8:1d:86:24:fb:b5:f6:64:2b:9f:b6:d0:8d:ad:b4:12:36:e1: 5d:d4:8d:e5:eb:d4:dd:5f:d5:ae:84:61:00:01:70:65:4d:6a: 50:ce:bc:68:ec:33:b8:e9:d3:a7:ea:4f:22:9c:e2:b2:6f:d4: d1:94:f1:fa:a9:9d:f3:02:dd:e0:23:0f:26:15:14:5c:df:1d: 58:b1:94:7f:71:f1:c0:1e:04:cf:d8:e8:85:1b:5f:74:a4:80: 1a:a5:ee:e8:4c:0c:17:00:bd:5c:5b:6b:2f:a5:8f:9d:46:d2: d4:5d:1d:bc:44:d3:83:e4:36:e2:21:89:e8:84:b9:de:58:56: df:87:9c:a6:13:0a:c2:85:8a:a9:1b:85:74:0f:d1:c4:f7:71: ec:6b:a4:f5:1d:45:53:66:68:44:15:81:bb:eb:51:0e:91:95: a1:86:40:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAWQAMGYCoONEKLnZaKCYdL7q/oUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlEN0E1QTQ5QjMyMkVEOTg3MjgxODMyQUJDRkI1REM1 MDlBQjg4OTAeFw0yNjA1MDMwMjMwMDBaFw0yNzA1MDIwMjM1MDBaMDMxMTAvBgNV BAMTKDEzQTFGOEE0NTVBMjY4OThFMTNERkZGN0Q5QUMyMjYxQjcyOUZDRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB96MwcJk1d5p6liEd/9mB0WRd bCBbcrHE6M4yi08N/Lc4lKT2/Tvq8Povd9icIEoKwck+enFejkc4jc5H18iz2BvD aToBxGRQBrgpPXpZdWesqJDD2pjn7Zhjb3krzTwb7I7c+yXD0RAOdmgu3InhX2SD GcIV/x59PzGHDEKMZNimdkaRpEGNajOAgtlmWdganpX/49iQH1CyEp1luyIS4FAV cWzwqa4qgFfTfeFIRt0vDvaBpwcFqGgLpSzpRi+dsAV444tpF/7elfgtrmc1xG/y /C+c9ldvCR/Z8wNGpGEsTto2t6uNPKgR0UmtdBfoJ7lErVf8AY9gMs5ovORrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUE6H4pFWiaJjhPf/32awiYbcp/OUwHwYDVR0j BBgwFoAUudelpJsyLtmHKBgyq8+13FCauIkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTk1MWRmZWUtYTc1Yi00NDIwLWE3NTUtMmM3MzU4YmFmN2QzLzAvQjlEN0E1QTQ5 QjMyMkVEOTg3MjgxODMyQUJDRkI1REM1MDlBQjg4OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COUQ3QTVBNDlCMzIyRUQ5ODcyODE4MzJBQkNGQjVEQzUwOUFC ODg5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5NTFkZmVlLWE3NWItNDQyMC1h NzU1LTJjNzM1OGJhZjdkMy8wLzMxMzAzMzJlMzEzNzM2MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsHkwDQYJ KoZIhvcNAQELBQADggEBACUwuiFTsaUrszWcIlZ5mABTHLR60+k22hxPzDq204tr D/NhkIWF4n9wsIB6sJX7sc36W1kpLX4/13JLr0W6VC3QmRf5Jti8flh+f2imDQhH CRmmpOIujBJQ6/gdhiT7tfZkK5+20I2ttBI24V3UjeXr1N1f1a6EYQABcGVNalDO vGjsM7jp06fqTyKc4rJv1NGU8fqpnfMC3eAjDyYVFFzfHVixlH9x8cAeBM/Y6IUb X3SkgBql7uhMDBcAvVxbay+lj51G0tRdHbxE04PkNuIhieiEud5YVt+HnKYTCsKF iqkbhXQP0cT3cexrpPUdRVNmaEQVgbvrUQ6RlaGGQL0= -----END CERTIFICATE-----Generated at Wed May 13 12:39:51 2026 by rpki-client