$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: W57jnxb8I7PewGJC2zTEjUBxKopfhpmR1Iwvxvyuls4= Subject key identifier: ED:EF:73:E2:B2:E9:97:EE:67:04:DB:6A:FB:C7:FF:01:A9:15:7E:88 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 13129826B881A15A4C13D21D2B2831EE36DEA2B9 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:36 +0000 ROA not before: Sun 03 May 2026 02:30:36 +0000 ROA not after: Sun 02 May 2027 02:35:36 +0000 asID: 138089 IP address blocks: 103.124.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:12:98:26:b8:81:a1:5a:4c:13:d2:1d:2b:28:31:ee:36:de:a2:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:36 2026 GMT Not After : May 2 02:35:36 2027 GMT Subject: CN=EDEF73E2B2E997EE6704DB6AFBC7FF01A9157E88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5f:e7:7c:e7:7a:11:2f:a4:03:fd:65:19:99: 08:d2:85:62:8d:29:47:a9:01:f0:d4:5f:a8:d1:33: ff:fd:be:7a:80:5f:17:de:a4:57:f7:20:6e:10:0c: 8b:9d:50:8c:42:2a:fd:cc:aa:50:16:89:9c:5e:40: 7f:e2:a4:ac:89:af:f6:42:9f:3a:8a:b6:6c:0d:65: c8:41:81:50:29:54:b1:af:b5:c3:ce:db:0b:4c:9a: e8:e9:30:c8:c3:b3:a1:b2:49:57:60:29:25:35:a3: df:7e:82:de:03:a7:02:23:07:30:e2:04:d7:d4:67: 8c:67:2f:3e:c5:98:bc:a3:b5:48:28:3b:fb:de:fc: f9:1b:95:f7:1c:fa:94:a8:b9:77:3d:53:b6:0e:59: 71:92:7b:40:16:7c:64:5c:32:10:4a:fe:47:18:8a: cf:c8:d4:8c:13:78:99:c6:d5:51:ad:29:82:c9:ed: 70:a7:93:5c:cb:c3:c4:18:7f:b4:0c:b9:71:45:32: 00:5d:a9:d0:77:8b:a9:87:b6:9b:97:d2:fb:bb:dc: c1:3d:93:8d:e3:69:a2:50:da:3f:b5:d1:db:db:c4: 6d:e7:51:04:d7:44:f1:64:96:27:b6:61:09:be:da: db:47:f9:5a:0c:f7:1d:d0:99:a6:5d:da:78:a2:0b: 11:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:EF:73:E2:B2:E9:97:EE:67:04:DB:6A:FB:C7:FF:01:A9:15:7E:88 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.139.0/24 Signature Algorithm: sha256WithRSAEncryption d3:14:36:9a:d5:a6:3c:74:29:e8:ff:56:01:4f:86:f7:fc:a1: 0a:91:22:7e:51:83:43:c8:38:76:21:3d:9e:36:c6:c7:02:d0: 5f:1b:48:21:5f:04:de:94:e5:56:47:01:53:d4:fd:70:2a:a6: ee:f9:5c:06:b2:51:0b:9f:c4:75:ed:56:2d:ff:57:a9:b4:32: 09:08:28:87:6a:4e:73:17:5d:9b:a7:08:fe:73:93:15:a5:38: b4:c7:0e:40:17:cf:b0:b6:f9:2d:6b:36:71:af:ea:0d:84:03: 96:12:50:c4:0d:b9:7a:e9:9d:bd:cd:16:b4:3c:d5:9c:96:c6: 77:09:b3:c5:9d:a7:e2:7f:53:2b:f3:91:7c:3c:20:2e:bf:06: d3:b0:4c:ef:24:e3:42:51:97:c5:61:7a:ec:18:e7:3e:31:04: a9:5f:fd:a4:9b:d0:e3:36:fd:55:6b:b4:a3:df:50:79:ae:b5: fc:b8:b9:f0:f8:0f:3b:87:5d:cc:b9:4e:77:93:55:02:78:c1: 70:50:84:a5:0d:4c:4b:04:ed:9f:36:73:ff:b1:4d:de:34:ad: 62:f7:4a:e2:87:4e:da:09:67:72:4c:30:62:6e:7c:48:01:48: 35:8d:8e:3d:19:95:5b:0f:6e:07:8f:d4:a9:cd:34:27:07:a5: 42:7c:88:06 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUExKYJriBoVpME9IdKygx7jbeorkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzZaFw0yNzA1MDIwMjM1MzZaMDMxMTAvBgNV BAMTKEVERUY3M0UyQjJFOTk3RUU2NzA0REI2QUZCQzdGRjAxQTkxNTdFODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2X+d853oRL6QD/WUZmQjShWKN KUepAfDUX6jRM//9vnqAXxfepFf3IG4QDIudUIxCKv3MqlAWiZxeQH/ipKyJr/ZC nzqKtmwNZchBgVApVLGvtcPO2wtMmujpMMjDs6GySVdgKSU1o99+gt4DpwIjBzDi BNfUZ4xnLz7FmLyjtUgoO/ve/Pkblfcc+pSouXc9U7YOWXGSe0AWfGRcMhBK/kcY is/I1IwTeJnG1VGtKYLJ7XCnk1zLw8QYf7QMuXFFMgBdqdB3i6mHtpuX0vu73ME9 k43jaaJQ2j+10dvbxG3nUQTXRPFklie2YQm+2ttH+VoM9x3QmaZd2niiCxHpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7e9z4rLpl+5nBNtq+8f/AakVfogwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIswDQYJ KoZIhvcNAQELBQADggEBANMUNprVpjx0Kej/VgFPhvf8oQqRIn5Rg0PIOHYhPZ42 xscC0F8bSCFfBN6U5VZHAVPU/XAqpu75XAayUQufxHXtVi3/V6m0MgkIKIdqTnMX XZunCP5zkxWlOLTHDkAXz7C2+S1rNnGv6g2EA5YSUMQNuXrpnb3NFrQ81ZyWxncJ s8Wdp+J/UyvzkXw8IC6/BtOwTO8k40JRl8VheuwY5z4xBKlf/aSb0OM2/VVrtKPf UHmutfy4ufD4DzuHXcy5TneTVQJ4wXBQhKUNTEsE7Z82c/+xTd40rWL3SuKHTtoJ Z3JMMGJufEgBSDWNjj0ZlVsPbgeP1KnNNCcHpUJ8iAY= -----END CERTIFICATE-----Generated at Wed May 13 00:45:02 2026 by rpki-client