$ rpki-client -vvf rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32332d3233203d3e20313339343234.roa File: 3130332e3134342e33382e302f32332d3233203d3e20313339343234.roa (raw, json) Hash identifier: F91ZeQFT+S+WNrAqYAYWz2zuD1F1VaaafmhJkwNLJp0= Subject key identifier: 9C:F6:BA:AF:13:33:90:E3:6E:F1:67:24:D8:61:7C:1C:99:A7:AC:F3 Certificate issuer: /CN=BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7 Certificate serial: 0E561484D75AA1658082482C25B43C6454A07404 Authority key identifier: BB:7A:58:4A:9F:BC:9B:64:2A:03:A4:8A:AA:46:45:EB:7F:B1:C2:C7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32332d3233203d3e20313339343234.roa Signing time: Sun 03 May 2026 02:35:34 +0000 ROA not before: Sun 03 May 2026 02:30:34 +0000 ROA not after: Sun 02 May 2027 02:35:34 +0000 asID: 139424 IP address blocks: 103.144.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.crl rsync://rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:56:14:84:d7:5a:a1:65:80:82:48:2c:25:b4:3c:64:54:a0:74:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7 Validity Not Before: May 3 02:30:34 2026 GMT Not After : May 2 02:35:34 2027 GMT Subject: CN=9CF6BAAF133390E36EF16724D8617C1C99A7ACF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bd:4b:b3:a8:b1:15:22:50:8c:8d:a7:09:ff: 61:1b:fe:4a:d7:7d:66:d0:81:de:25:59:9a:b9:5c: 78:58:15:74:97:e6:87:f3:b4:b1:9b:75:91:78:f2: 60:0c:c3:11:66:a8:75:12:85:c4:39:91:06:a0:98: fc:86:ec:b8:ce:43:65:af:4c:40:cb:6c:83:f3:1e: 04:d9:2b:46:db:13:5e:83:f4:13:9b:72:f1:69:14: 15:89:8e:fd:f4:66:70:e8:d2:65:3f:0f:72:c8:fd: bf:60:3c:e0:1a:6a:fc:1d:4a:f5:f2:a8:b1:b3:27: 4c:07:05:38:b8:6a:db:dd:f0:c5:ba:a7:66:98:06: 23:a8:bd:6e:5e:70:cb:90:83:f7:66:80:fd:9d:0a: 05:44:cb:08:2f:30:93:ab:c9:e0:67:b8:f1:6e:83: 9e:ae:ee:7b:90:b6:19:96:72:64:4f:bd:96:14:45: 4e:b9:33:ca:f3:8d:20:22:30:2b:f8:7d:8a:4d:46: 80:1d:78:c1:d4:5f:5b:01:ff:1b:a8:64:7f:6a:dc: a5:d6:73:c9:a8:b7:f2:73:e5:26:bb:ef:61:f6:3b: 05:c5:95:6f:d1:e5:98:e9:e7:4b:cd:57:37:93:95: d8:9b:9e:b6:0c:75:61:2e:e9:3d:be:48:5e:40:d1: a2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F6:BA:AF:13:33:90:E3:6E:F1:67:24:D8:61:7C:1C:99:A7:AC:F3 X509v3 Authority Key Identifier: keyid:BB:7A:58:4A:9F:BC:9B:64:2A:03:A4:8A:AA:46:45:EB:7F:B1:C2:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB7A584A9FBC9B642A03A48AAA4645EB7FB1C2C7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32332d3233203d3e20313339343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.38.0/23 Signature Algorithm: sha256WithRSAEncryption a1:87:2f:77:1e:d8:29:aa:db:82:5c:40:e3:d1:1e:8d:a3:fd: 1e:df:fc:ce:09:58:ff:91:0c:ec:68:32:25:11:f8:ba:d8:ba: 80:6a:56:c5:dd:b8:98:0d:e4:27:d3:b9:95:3c:61:d4:9e:ec: 7c:d4:7f:e3:8c:90:37:63:50:8c:25:87:14:7a:1d:5b:9c:0e: 31:7e:0b:e0:97:2f:8f:e8:ca:15:4c:6d:ca:68:44:0c:d7:cd: 11:df:15:de:57:c7:40:fa:69:27:69:33:ad:da:14:19:51:69: b8:15:dc:9e:61:19:24:74:6e:1a:45:db:c0:af:33:e1:c8:df: 56:63:6d:d1:d3:63:41:be:be:d6:5b:02:ba:62:a4:48:39:05: d5:5c:d2:25:bc:4f:21:a9:04:f2:1a:af:47:47:8f:42:e8:54: 1d:59:b7:ff:4e:09:45:2d:f6:21:b2:b8:29:22:19:62:1b:68: ac:62:2c:17:80:cd:ce:f8:52:6f:c5:b8:66:00:b1:5b:9f:2f: 28:36:f7:a1:fe:cd:3d:10:08:a5:25:84:26:96:3b:5c:dd:15: b5:91:fb:70:6f:de:e7:09:a2:56:a4:ad:0e:ee:78:2f:76:da: 94:62:05:d9:a0:9f:79:6f:b3:af:33:eb:4f:d6:78:22:dc:ca: 38:11:5a:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDlYUhNdaoWWAgkgsJbQ8ZFSgdAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI3QTU4NEE5RkJDOUI2NDJBMDNBNDhBQUE0NjQ1RUI3 RkIxQzJDNzAeFw0yNjA1MDMwMjMwMzRaFw0yNzA1MDIwMjM1MzRaMDMxMTAvBgNV BAMTKDlDRjZCQUFGMTMzMzkwRTM2RUYxNjcyNEQ4NjE3QzFDOTlBN0FDRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUvUuzqLEVIlCMjacJ/2Eb/krX fWbQgd4lWZq5XHhYFXSX5ofztLGbdZF48mAMwxFmqHUShcQ5kQagmPyG7LjOQ2Wv TEDLbIPzHgTZK0bbE16D9BObcvFpFBWJjv30ZnDo0mU/D3LI/b9gPOAaavwdSvXy qLGzJ0wHBTi4atvd8MW6p2aYBiOovW5ecMuQg/dmgP2dCgVEywgvMJOryeBnuPFu g56u7nuQthmWcmRPvZYURU65M8rzjSAiMCv4fYpNRoAdeMHUX1sB/xuoZH9q3KXW c8mot/Jz5Sa772H2OwXFlW/R5Zjp50vNVzeTldibnrYMdWEu6T2+SF5A0aJVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnPa6rxMzkONu8Wck2GF8HJmnrPMwHwYDVR0j BBgwFoAUu3pYSp+8m2QqA6SKqkZF63+xwscwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiMGE1OWEtNjFiYS00NjJlLWE4MmEtYTIwMmI3ZmI4MGYwLzAvQkI3QTU4NEE5 RkJDOUI2NDJBMDNBNDhBQUE0NjQ1RUI3RkIxQzJDNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjdBNTg0QTlGQkM5QjY0MkEwM0E0OEFBQTQ2NDVFQjdGQjFD MkM3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYjBhNTlhLTYxYmEtNDYyZS1h ODJhLWEyMDJiN2ZiODBmMC8wLzMxMzAzMzJlMzEzNDM0MmUzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5AmMA0GCSqG SIb3DQEBCwUAA4IBAQChhy93HtgpqtuCXEDj0R6No/0e3/zOCVj/kQzsaDIlEfi6 2LqAalbF3biYDeQn07mVPGHUnux81H/jjJA3Y1CMJYcUeh1bnA4xfgvgly+P6MoV TG3KaEQM180R3xXeV8dA+mknaTOt2hQZUWm4FdyeYRkkdG4aRdvArzPhyN9WY23R 02NBvr7WWwK6YqRIOQXVXNIlvE8hqQTyGq9HR49C6FQdWbf/TglFLfYhsrgpIhli G2isYiwXgM3O+FJvxbhmALFbny8oNveh/s09EAilJYQmljtc3RW1kftwb97nCaJW pK0O7ngvdtqUYgXZoJ95b7OvM+tP1ngi3Mo4EVrf -----END CERTIFICATE-----Generated at Tue May 12 23:45:52 2026 by rpki-client