$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: nVBnDB0/UQIhvlZknFXMulW4aEJQqLigk7J0WBCftGQ= Subject key identifier: BD:6D:B4:EE:32:64:E1:F2:44:4E:27:E1:9A:06:F2:94:83:EB:42:CF Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 55DA1EC2A4B058911E03D3330AB1FE8289522284 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:40 +0000 ROA not before: Sun 03 May 2026 02:30:40 +0000 ROA not after: Sun 02 May 2027 02:35:40 +0000 asID: 138089 IP address blocks: 103.124.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:da:1e:c2:a4:b0:58:91:1e:03:d3:33:0a:b1:fe:82:89:52:22:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:40 2026 GMT Not After : May 2 02:35:40 2027 GMT Subject: CN=BD6DB4EE3264E1F2444E27E19A06F29483EB42CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5f:b2:b2:f7:0c:9e:c0:d1:09:3a:b5:fb:28: a5:e9:c9:bd:fa:17:74:6e:87:7a:ad:d9:87:21:bd: 5e:d5:26:61:56:81:03:5f:58:85:ed:98:3b:22:7b: b6:c1:cc:e6:67:40:62:ce:8a:0c:d0:b0:7f:16:d4: 6d:82:4d:a2:2f:ec:4c:a1:7e:20:0d:a2:e1:98:e6: 43:8e:65:f7:92:cd:a1:12:e5:c9:ae:fd:61:c3:ca: 3c:48:4d:e1:52:26:14:cb:c4:fa:da:e8:4c:e0:df: 40:73:63:15:a2:91:00:50:29:03:ee:b5:b2:82:c5: 94:33:c9:2c:fe:11:c8:e6:27:a7:28:9a:ff:04:30: bd:85:65:64:04:d7:81:ab:f9:5d:b8:af:d2:86:61: 86:17:9c:04:42:55:3d:a7:29:33:17:67:fe:be:13: 86:8b:37:b7:aa:36:9b:af:9b:45:c3:57:67:b9:57: 8c:6c:e4:61:3b:56:6e:03:02:e6:72:8b:d7:0f:49: 6e:84:5b:86:d1:c0:64:86:99:b0:32:d2:26:14:d7: 67:b4:c3:62:71:32:6f:9d:1b:bb:5c:7d:b5:94:79: e9:8b:92:00:55:4e:cd:bf:16:93:43:00:d8:a8:ee: 8f:5b:8f:fa:6a:92:c6:25:ce:4b:2f:d6:33:12:88: 28:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6D:B4:EE:32:64:E1:F2:44:4E:27:E1:9A:06:F2:94:83:EB:42:CF X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/24 Signature Algorithm: sha256WithRSAEncryption d1:d1:20:a4:4d:50:1d:11:6e:11:8f:c5:8c:a1:22:16:30:85: 3f:0f:34:c8:27:42:72:79:e0:31:3d:22:8e:e1:18:3f:4f:bc: 1a:80:f1:12:66:37:33:5e:6d:65:2a:3d:3f:15:58:26:aa:88: 72:b8:a0:aa:a4:6b:cf:ee:ab:7b:08:64:b4:7d:1e:2d:9b:0f: 1b:43:8e:12:3d:da:0f:6e:4f:72:91:18:25:9b:d9:0a:1f:d0: 93:b1:d8:03:50:a3:ab:06:e0:68:89:7e:87:ef:f6:92:8d:41: 5e:6d:69:dd:51:f0:c2:fb:03:4e:5e:8c:c3:48:a7:84:44:9c: 4f:c4:58:2d:d1:d2:e4:59:9f:95:26:e7:5b:4b:ec:6c:b0:81: 7a:b9:95:42:b0:e3:9e:39:3e:70:2c:a3:54:f8:73:5a:37:de: c0:d8:b8:7d:1b:4d:30:f1:76:62:f2:2e:c6:0c:a7:fa:cd:d5: f4:eb:fc:ad:7e:89:a2:e4:8c:de:b9:16:a6:9f:de:3f:2d:c4: 7b:9b:94:ac:38:fc:86:9f:95:4a:10:9e:ce:a0:ec:29:b5:41: 72:cf:b0:03:fc:22:77:21:1c:34:72:02:7b:11:98:6a:30:e6: 4d:06:e2:96:54:8f:71:47:93:72:13:e8:94:13:a8:5e:f7:de: 2a:d5:10:16 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVdoewqSwWJEeA9MzCrH+golSIoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwNDBaFw0yNzA1MDIwMjM1NDBaMDMxMTAvBgNV BAMTKEJENkRCNEVFMzI2NEUxRjI0NDRFMjdFMTlBMDZGMjk0ODNFQjQyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYX7Ky9wyewNEJOrX7KKXpyb36 F3Ruh3qt2YchvV7VJmFWgQNfWIXtmDsie7bBzOZnQGLOigzQsH8W1G2CTaIv7Eyh fiANouGY5kOOZfeSzaES5cmu/WHDyjxITeFSJhTLxPra6Ezg30BzYxWikQBQKQPu tbKCxZQzySz+EcjmJ6comv8EML2FZWQE14Gr+V24r9KGYYYXnARCVT2nKTMXZ/6+ E4aLN7eqNpuvm0XDV2e5V4xs5GE7Vm4DAuZyi9cPSW6EW4bRwGSGmbAy0iYU12e0 w2JxMm+dG7tcfbWUeemLkgBVTs2/FpNDANio7o9bj/pqksYlzksv1jMSiCj/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvW207jJk4fJETifhmgbylIPrQs8wHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIgwDQYJ KoZIhvcNAQELBQADggEBANHRIKRNUB0RbhGPxYyhIhYwhT8PNMgnQnJ54DE9Io7h GD9PvBqA8RJmNzNebWUqPT8VWCaqiHK4oKqka8/uq3sIZLR9Hi2bDxtDjhI92g9u T3KRGCWb2Qof0JOx2ANQo6sG4GiJfofv9pKNQV5tad1R8ML7A05ejMNIp4REnE/E WC3R0uRZn5Um51tL7GywgXq5lUKw4545PnAso1T4c1o33sDYuH0bTTDxdmLyLsYM p/rN1fTr/K1+iaLkjN65Fqaf3j8txHublKw4/IaflUoQns6g7Cm1QXLPsAP8Inch HDRyAnsRmGow5k0G4pZUj3FHk3IT6JQTqF733irVEBY= -----END CERTIFICATE-----Generated at Wed May 13 00:21:43 2026 by rpki-client