$ rpki-client -vvf rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa File: 3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa (raw, json) Hash identifier: 3IjI2krzhLJYlKJkWyMM6q/EfNey4aUG89WZvwYr9zI= Subject key identifier: EF:AC:3F:F0:F2:5E:98:EE:FA:6F:63:D8:70:C7:5C:A8:9F:17:01:3D Certificate issuer: /CN=8BBABE3D733222C2B6A217449635616F4F2C9625 Certificate serial: 050F1DDDB2AA7D73CA4187E5436E7ECA2142DC12 Authority key identifier: 8B:BA:BE:3D:73:32:22:C2:B6:A2:17:44:96:35:61:6F:4F:2C:96:25 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BBABE3D733222C2B6A217449635616F4F2C9625.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa Signing time: Sun 03 May 2026 02:49:28 +0000 ROA not before: Sun 03 May 2026 02:44:28 +0000 ROA not after: Sun 02 May 2027 02:49:28 +0000 asID: 142322 IP address blocks: 103.168.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/8BBABE3D733222C2B6A217449635616F4F2C9625.crl rsync://rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/8BBABE3D733222C2B6A217449635616F4F2C9625.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BBABE3D733222C2B6A217449635616F4F2C9625.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:0f:1d:dd:b2:aa:7d:73:ca:41:87:e5:43:6e:7e:ca:21:42:dc:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BBABE3D733222C2B6A217449635616F4F2C9625 Validity Not Before: May 3 02:44:28 2026 GMT Not After : May 2 02:49:28 2027 GMT Subject: CN=EFAC3FF0F25E98EEFA6F63D870C75CA89F17013D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fe:e3:35:e7:29:08:dd:e8:39:11:d4:5d:2f: 3f:4c:c2:8f:ed:f4:a0:3d:ae:20:a7:89:7a:5a:b6: 48:02:f1:3e:92:bc:aa:2e:df:c6:66:a7:01:5d:44: 1c:a3:d2:9b:91:cd:a0:03:63:2d:ad:db:62:7e:85: a3:f4:a5:63:64:32:2c:23:7a:b6:b0:bb:93:31:85: da:3b:27:0f:62:30:77:e6:0a:40:99:68:fe:a7:4c: 77:f0:80:b0:29:b4:a5:6e:c8:73:e6:65:33:7c:14: 78:8c:d2:8f:3b:b8:d8:eb:e3:44:39:57:02:b0:7f: c6:bb:d8:21:5d:7c:40:8e:62:d0:49:12:30:0f:ec: b4:0c:58:c2:ec:7e:0a:f6:57:d7:08:68:6c:8d:11: 6c:3b:40:77:43:9f:cc:14:99:e1:a2:9e:ce:2d:bf: c3:a4:f2:8d:22:d5:25:a0:4b:41:07:1d:6b:2f:39: af:3d:6d:29:40:a1:86:a8:08:b9:b0:b9:ae:0d:34: 1d:1d:df:d4:95:bd:8a:b4:84:54:db:2b:cd:fa:79: 4a:ac:a3:cd:87:df:be:c6:2f:17:12:2d:25:17:bc: eb:e3:cf:0b:bf:bf:67:b2:b0:f1:10:e3:87:52:b2: e7:ff:ca:7c:d9:4f:4b:59:43:5b:c4:28:25:b1:b1: 83:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AC:3F:F0:F2:5E:98:EE:FA:6F:63:D8:70:C7:5C:A8:9F:17:01:3D X509v3 Authority Key Identifier: keyid:8B:BA:BE:3D:73:32:22:C2:B6:A2:17:44:96:35:61:6F:4F:2C:96:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/8BBABE3D733222C2B6A217449635616F4F2C9625.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8BBABE3D733222C2B6A217449635616F4F2C9625.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.186.0/23 Signature Algorithm: sha256WithRSAEncryption 24:48:c7:32:9d:8f:5c:d3:15:78:13:a8:64:d9:8e:a3:5a:4d: 53:63:ab:20:8f:44:57:88:a7:6b:e9:86:d6:31:64:15:bb:7f: a0:6e:59:a3:3a:3e:0f:1b:38:9d:85:06:86:9c:4b:02:04:b8: 2d:b8:32:23:3c:7b:73:1a:6e:80:1a:09:15:b4:97:d2:d2:1c: d5:dc:ae:b6:69:fd:f4:2f:04:c2:e8:54:60:7d:dd:f8:65:39: 8a:35:13:33:cc:07:eb:43:34:64:62:4e:10:4a:2e:01:c5:6c: 6a:cb:f0:2a:ee:17:50:88:20:4f:d1:15:bc:a9:fc:ff:dd:82: 27:04:6c:bd:48:8f:f3:cb:27:f4:d7:f0:9c:e6:53:25:69:18: e9:06:02:0c:64:8b:f0:c0:5d:88:be:8a:c8:db:55:e9:0e:1b: 97:d8:b6:c8:81:f8:8b:73:a6:6f:6e:e5:67:c4:02:b2:72:e3: 59:4c:3f:8d:cc:f6:8d:3a:c5:32:28:48:e5:59:bf:6b:cd:7e: 1e:41:56:7c:d4:8b:11:43:7d:90:0b:d3:18:c0:30:12:f2:3f: c8:c3:cb:5f:57:60:22:65:83:e9:f8:7c:b6:c1:72:74:19:5c: 14:b9:a2:83:2b:5a:36:e9:86:99:f5:c8:aa:45:c7:f2:26:bd: 89:3f:3f:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBQ8d3bKqfXPKQYflQ25+yiFC3BIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJCQUJFM0Q3MzMyMjJDMkI2QTIxNzQ0OTYzNTYxNkY0 RjJDOTYyNTAeFw0yNjA1MDMwMjQ0MjhaFw0yNzA1MDIwMjQ5MjhaMDMxMTAvBgNV BAMTKEVGQUMzRkYwRjI1RTk4RUVGQTZGNjNEODcwQzc1Q0E4OUYxNzAxM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW/uM15ykI3eg5EdRdLz9Mwo/t 9KA9riCniXpatkgC8T6SvKou38ZmpwFdRByj0puRzaADYy2t22J+haP0pWNkMiwj erawu5Mxhdo7Jw9iMHfmCkCZaP6nTHfwgLAptKVuyHPmZTN8FHiM0o87uNjr40Q5 VwKwf8a72CFdfECOYtBJEjAP7LQMWMLsfgr2V9cIaGyNEWw7QHdDn8wUmeGins4t v8Ok8o0i1SWgS0EHHWsvOa89bSlAoYaoCLmwua4NNB0d39SVvYq0hFTbK836eUqs o82H377GLxcSLSUXvOvjzwu/v2eysPEQ44dSsuf/ynzZT0tZQ1vEKCWxsYNXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU76w/8PJemO76b2PYcMdcqJ8XAT0wHwYDVR0j BBgwFoAUi7q+PXMyIsK2ohdEljVhb08sliUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGFmMDAzMWUtMmE5ZS00N2NhLTkyODMtNDBlOTI3ZTM1OTkzLzAvOEJCQUJFM0Q3 MzMyMjJDMkI2QTIxNzQ0OTYzNTYxNkY0RjJDOTYyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QkJBQkUzRDczMzIyMkMyQjZBMjE3NDQ5NjM1NjE2RjRGMkM5 NjI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhhZjAwMzFlLTJhOWUtNDdjYS05 MjgzLTQwZTkyN2UzNTk5My8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqLowDQYJ KoZIhvcNAQELBQADggEBACRIxzKdj1zTFXgTqGTZjqNaTVNjqyCPRFeIp2vphtYx ZBW7f6BuWaM6Pg8bOJ2FBoacSwIEuC24MiM8e3MaboAaCRW0l9LSHNXcrrZp/fQv BMLoVGB93fhlOYo1EzPMB+tDNGRiThBKLgHFbGrL8CruF1CIIE/RFbyp/P/dgicE bL1Ij/PLJ/TX8JzmUyVpGOkGAgxki/DAXYi+isjbVekOG5fYtsiB+Itzpm9u5WfE ArJy41lMP43M9o06xTIoSOVZv2vNfh5BVnzUixFDfZAL0xjAMBLyP8jDy19XYCJl g+n4fLbBcnQZXBS5ooMrWjbphpn1yKpFx/ImvYk/P64= -----END CERTIFICATE-----Generated at Wed May 13 07:57:21 2026 by rpki-client