$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/3130332e3136392e3139392e302f32342d3234203d3e20313437313132.roa File: 3130332e3136392e3139392e302f32342d3234203d3e20313437313132.roa (raw, json) Hash identifier: l/X2cP22D0Wy7RA8I5HP0mcO1xVHiIblMcBaMiAvS8U= Subject key identifier: A5:D0:B8:F5:9D:42:68:6F:10:71:9C:9B:31:5C:3C:E1:A7:84:74:EA Certificate issuer: /CN=23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0 Certificate serial: 1F2640EC811C6579F6E042C389F88C8FA27E0CAC Authority key identifier: 23:A0:F6:8C:EA:18:94:A3:2A:4A:04:BD:7E:64:F0:CF:0F:3D:EA:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/3130332e3136392e3139392e302f32342d3234203d3e20313437313132.roa Signing time: Sun 03 May 2026 02:35:27 +0000 ROA not before: Sun 03 May 2026 02:30:27 +0000 ROA not after: Sun 02 May 2027 02:35:27 +0000 asID: 147112 IP address blocks: 103.169.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.crl rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:26:40:ec:81:1c:65:79:f6:e0:42:c3:89:f8:8c:8f:a2:7e:0c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0 Validity Not Before: May 3 02:30:27 2026 GMT Not After : May 2 02:35:27 2027 GMT Subject: CN=A5D0B8F59D42686F10719C9B315C3CE1A78474EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9a:e0:58:11:2f:78:7e:b3:4e:c2:09:e0:48: ec:44:df:c0:c0:3d:c8:b2:f8:2f:d6:51:e6:da:16: 7c:6a:58:95:cb:82:8f:f0:5b:30:c3:a9:8a:1e:0e: 06:1c:a2:1f:54:66:4e:36:60:75:41:05:17:fc:2a: 29:79:a2:f2:36:54:33:0c:e3:b5:4c:a0:9a:5a:52: 02:e4:07:31:d6:36:9b:01:0c:fc:36:d0:23:7d:03: 7d:9e:7c:1a:a4:e0:87:b0:1d:4e:56:11:63:c9:07: b2:04:53:11:fe:1b:fc:cf:53:f1:92:5d:ea:ce:63: a2:f9:65:94:fd:ba:33:7e:8e:02:5b:fd:bf:74:02: 18:55:ff:6e:b6:e0:2e:1e:fe:47:5d:10:10:cc:89: 51:99:d6:8d:99:82:6f:90:e0:9d:0d:3d:82:bf:1f: 90:49:a8:27:e4:8c:c2:c1:54:ce:e5:23:23:ba:fa: 02:2f:74:9d:44:7c:0f:f1:86:30:47:28:9d:6b:7b: ea:0f:d3:13:c0:92:2b:06:f4:cc:60:53:19:85:de: c0:8d:69:dc:6e:56:e1:51:95:52:1e:a4:7b:f0:da: f7:36:87:ee:15:07:79:01:82:dd:23:7e:87:38:01: 34:a7:76:ec:e0:57:5b:d5:60:44:e2:a8:d4:c3:78: 20:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D0:B8:F5:9D:42:68:6F:10:71:9C:9B:31:5C:3C:E1:A7:84:74:EA X509v3 Authority Key Identifier: keyid:23:A0:F6:8C:EA:18:94:A3:2A:4A:04:BD:7E:64:F0:CF:0F:3D:EA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/3130332e3136392e3139392e302f32342d3234203d3e20313437313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.199.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:88:f6:67:16:f0:f8:89:f6:d8:73:18:9b:a4:d1:4d:b3:79: 2f:2a:66:b8:46:fa:b1:9d:7f:80:c6:d1:5c:11:ff:86:d3:7b: 6b:2b:da:fb:12:70:a0:6e:29:a8:76:55:91:a0:c7:af:a9:92: 40:1b:c3:e2:87:fa:8d:2c:35:a9:4e:7b:1f:40:98:2d:97:03: ad:1a:c0:39:9b:a2:85:ac:e5:f2:b2:69:40:00:58:5b:d3:6b: e9:1f:d1:24:51:a5:c3:22:91:e0:c6:86:35:62:4a:c9:11:66: 30:e4:ee:44:cc:0f:03:c1:df:e2:31:dd:eb:65:7f:f9:46:04: 70:32:86:8f:2b:75:08:59:aa:c0:2e:3d:c1:f1:cf:0c:cb:cd: f8:05:9f:bc:6d:83:80:bf:15:e2:ca:da:a2:6f:ee:f6:c4:2e: df:47:02:d8:9d:80:cc:92:5d:29:71:ef:a5:5f:19:23:ba:31: c4:73:b1:83:6c:bd:67:4c:61:a4:93:ef:9d:59:d0:6f:24:84: d7:94:3c:fa:5b:b9:aa:70:d9:02:cf:f3:09:4e:8c:f5:73:3a: b2:ff:2d:5d:64:8b:fd:57:1c:b8:6d:5f:b4:46:a3:90:2f:fd: 31:bd:d6:36:c7:2e:00:f1:e9:31:d3:d4:d0:87:c2:ea:08:de: 9f:74:b8:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHyZA7IEcZXn24ELDifiMj6J+DKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNBMEY2OENFQTE4OTRBMzJBNEEwNEJEN0U2NEYwQ0Yw RjNERUFBMDAeFw0yNjA1MDMwMjMwMjdaFw0yNzA1MDIwMjM1MjdaMDMxMTAvBgNV BAMTKEE1RDBCOEY1OUQ0MjY4NkYxMDcxOUM5QjMxNUMzQ0UxQTc4NDc0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZmuBYES94frNOwgngSOxE38DA Pciy+C/WUebaFnxqWJXLgo/wWzDDqYoeDgYcoh9UZk42YHVBBRf8Kil5ovI2VDMM 47VMoJpaUgLkBzHWNpsBDPw20CN9A32efBqk4IewHU5WEWPJB7IEUxH+G/zPU/GS XerOY6L5ZZT9ujN+jgJb/b90AhhV/2624C4e/kddEBDMiVGZ1o2Zgm+Q4J0NPYK/ H5BJqCfkjMLBVM7lIyO6+gIvdJ1EfA/xhjBHKJ1re+oP0xPAkisG9MxgUxmF3sCN adxuVuFRlVIepHvw2vc2h+4VB3kBgt0jfoc4ATSnduzgV1vVYETiqNTDeCBDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpdC49Z1CaG8QcZybMVw84aeEdOowHwYDVR0j BBgwFoAUI6D2jOoYlKMqSgS9fmTwzw896qAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1NGE4Y2UtMThmNC00OTg4LWE5NTEtOTY2NGRkMTc2Y2Q5LzAvMjNBMEY2OENF QTE4OTRBMzJBNEEwNEJEN0U2NEYwQ0YwRjNERUFBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yM0EwRjY4Q0VBMTg5NEEzMkE0QTA0QkQ3RTY0RjBDRjBGM0RF QUEwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhNTRhOGNlLTE4ZjQtNDk4OC1h OTUxLTk2NjRkZDE3NmNkOS8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqccwDQYJ KoZIhvcNAQELBQADggEBACuI9mcW8PiJ9thzGJuk0U2zeS8qZrhG+rGdf4DG0VwR /4bTe2sr2vsScKBuKah2VZGgx6+pkkAbw+KH+o0sNalOex9AmC2XA60awDmbooWs 5fKyaUAAWFvTa+kf0SRRpcMikeDGhjViSskRZjDk7kTMDwPB3+Ix3etlf/lGBHAy ho8rdQhZqsAuPcHxzwzLzfgFn7xtg4C/FeLK2qJv7vbELt9HAtidgMySXSlx76Vf GSO6McRzsYNsvWdMYaST751Z0G8khNeUPPpbuapw2QLP8wlOjPVzOrL/LV1ki/1X HLhtX7RGo5Av/TG91jbHLgDx6THT1NCHwuoI3p90uKQ= -----END CERTIFICATE-----Generated at Wed May 13 14:47:25 2026 by rpki-client