$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa File: 3130332e38352e31322e302f32322d3234203d3e20313336303736.roa (raw, json) Hash identifier: ictls1d8fDHoUd3C28juE/v5HQdxwfMf3GiA749+DqU= Subject key identifier: 08:11:4A:24:5D:80:A2:D8:64:B7:E2:62:A8:74:DF:9C:45:39:82:17 Certificate issuer: /CN=18C2007FE56CED83879B955CB8DA89E0922D6AB9 Certificate serial: 12C93CADAD667339563779681EAEC25E004F39E7 Authority key identifier: 18:C2:00:7F:E5:6C:ED:83:87:9B:95:5C:B8:DA:89:E0:92:2D:6A:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18C2007FE56CED83879B955CB8DA89E0922D6AB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa Signing time: Sun 03 May 2026 02:54:31 +0000 ROA not before: Sun 03 May 2026 02:49:31 +0000 ROA not after: Sun 02 May 2027 02:54:31 +0000 asID: 136076 IP address blocks: 103.85.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/18C2007FE56CED83879B955CB8DA89E0922D6AB9.crl rsync://rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/18C2007FE56CED83879B955CB8DA89E0922D6AB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18C2007FE56CED83879B955CB8DA89E0922D6AB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c9:3c:ad:ad:66:73:39:56:37:79:68:1e:ae:c2:5e:00:4f:39:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18C2007FE56CED83879B955CB8DA89E0922D6AB9 Validity Not Before: May 3 02:49:31 2026 GMT Not After : May 2 02:54:31 2027 GMT Subject: CN=08114A245D80A2D864B7E262A874DF9C45398217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3f:3a:41:e3:52:12:25:7b:5c:30:da:2d:d5: c6:57:cb:95:a0:8f:06:0b:77:f3:fd:23:d5:05:7a: 0f:5b:bb:2a:df:93:e9:31:94:0e:bb:7c:d2:57:c6: 58:f3:d6:af:f6:41:de:49:c0:bf:35:f8:49:68:ec: 35:be:fd:07:dd:e7:77:71:4a:7a:a8:06:78:07:e4: fa:75:58:4d:57:0b:ca:8c:8d:b7:c4:37:b4:6e:a8: 4b:52:85:ae:d4:02:12:69:c3:2c:9a:57:6f:c5:75: ca:75:46:5c:b1:31:27:92:73:2b:76:85:03:a8:4d: b5:9a:3e:99:d8:5b:91:aa:1a:d5:fe:cc:0e:e6:25: 8c:5c:3d:8f:36:28:e0:fe:2f:34:d0:4d:6d:6c:32: ee:a9:a6:10:e8:8a:c0:02:0f:1e:c8:9e:90:3c:85: e1:be:56:5d:05:df:72:ab:2f:f0:bf:45:9f:aa:61: bf:24:27:e1:54:5c:d6:84:a9:4a:f7:3f:78:7f:e4: 23:e2:f5:08:e5:2d:3b:85:a4:65:40:5c:a4:59:a1: 06:bf:55:fb:0f:4d:d4:e6:61:68:83:73:c4:3a:20: e7:17:d2:4b:dc:23:78:71:68:21:2c:02:27:e9:d1: 21:5b:a9:84:4e:5f:00:77:31:33:d8:5e:46:55:fd: 88:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:11:4A:24:5D:80:A2:D8:64:B7:E2:62:A8:74:DF:9C:45:39:82:17 X509v3 Authority Key Identifier: keyid:18:C2:00:7F:E5:6C:ED:83:87:9B:95:5C:B8:DA:89:E0:92:2D:6A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/18C2007FE56CED83879B955CB8DA89E0922D6AB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18C2007FE56CED83879B955CB8DA89E0922D6AB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c700350-6632-49e2-b7e3-5d573224c56c/0/3130332e38352e31322e302f32322d3234203d3e20313336303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.85.12.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:f0:94:45:91:a6:63:09:2e:21:c7:c4:d5:c8:ab:bf:da:a7: 4d:4a:13:3b:bd:60:0c:53:c0:3b:82:7d:41:1d:bd:c5:ea:59: 8a:be:f4:1c:06:bd:35:15:fb:0c:fa:d6:e5:3d:e3:3d:49:16: 12:38:58:5c:48:f5:a7:a0:9b:49:5a:65:33:be:d9:50:17:3c: 89:98:ef:49:6c:32:af:0d:5a:be:d9:4e:f0:b3:49:3c:49:0d: ba:70:7e:09:fb:58:4a:00:ff:49:72:36:93:f0:a6:8a:56:0c: ed:7f:9c:36:9d:3f:0e:92:f9:9b:08:cf:2a:31:02:4c:74:56: e7:25:1c:6a:a2:3d:46:a9:83:1d:6c:dd:1e:46:67:0a:28:e4: 8c:1a:ec:80:df:72:ef:4e:17:df:14:a4:ac:03:43:51:d5:89: 8d:62:b5:bb:de:d4:0c:ee:f4:43:98:96:bf:b8:83:a5:49:b2: 1d:d0:ae:97:64:e8:04:70:43:b5:a3:96:e2:3a:50:4b:5e:0f: ff:c2:5c:05:b5:ff:29:8a:8d:49:de:e5:9e:d5:bd:20:06:0b: 60:69:5d:16:7d:b5:8e:1c:e8:ac:f9:69:0e:12:1e:f7:62:f0: 0d:17:c5:48:ce:e5:c3:f3:35:2d:07:89:f8:04:ca:5f:78:5b: 25:93:82:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEsk8ra1mczlWN3loHq7CXgBPOecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThDMjAwN0ZFNTZDRUQ4Mzg3OUI5NTVDQjhEQTg5RTA5 MjJENkFCOTAeFw0yNjA1MDMwMjQ5MzFaFw0yNzA1MDIwMjU0MzFaMDMxMTAvBgNV BAMTKDA4MTE0QTI0NUQ4MEEyRDg2NEI3RTI2MkE4NzRERjlDNDUzOTgyMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMPzpB41ISJXtcMNot1cZXy5Wg jwYLd/P9I9UFeg9buyrfk+kxlA67fNJXxljz1q/2Qd5JwL81+Elo7DW+/Qfd53dx SnqoBngH5Pp1WE1XC8qMjbfEN7RuqEtSha7UAhJpwyyaV2/Fdcp1RlyxMSeScyt2 hQOoTbWaPpnYW5GqGtX+zA7mJYxcPY82KOD+LzTQTW1sMu6pphDoisACDx7InpA8 heG+Vl0F33KrL/C/RZ+qYb8kJ+FUXNaEqUr3P3h/5CPi9QjlLTuFpGVAXKRZoQa/ VfsPTdTmYWiDc8Q6IOcX0kvcI3hxaCEsAifp0SFbqYROXwB3MTPYXkZV/YjJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCBFKJF2Aothkt+JiqHTfnEU5ghcwHwYDVR0j BBgwFoAUGMIAf+Vs7YOHm5VcuNqJ4JItarkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM3MDAzNTAtNjYzMi00OWUyLWI3ZTMtNWQ1NzMyMjRjNTZjLzAvMThDMjAwN0ZF NTZDRUQ4Mzg3OUI5NTVDQjhEQTg5RTA5MjJENkFCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOEMyMDA3RkU1NkNFRDgzODc5Qjk1NUNCOERBODlFMDkyMkQ2 QUI5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljNzAwMzUwLTY2MzItNDllMi1i N2UzLTVkNTczMjI0YzU2Yy8wLzMxMzAzMzJlMzgzNTJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdVDDANBgkqhkiG 9w0BAQsFAAOCAQEAavCURZGmYwkuIcfE1cirv9qnTUoTO71gDFPAO4J9QR29xepZ ir70HAa9NRX7DPrW5T3jPUkWEjhYXEj1p6CbSVplM77ZUBc8iZjvSWwyrw1avtlO 8LNJPEkNunB+CftYSgD/SXI2k/CmilYM7X+cNp0/DpL5mwjPKjECTHRW5yUcaqI9 RqmDHWzdHkZnCijkjBrsgN9y704X3xSkrANDUdWJjWK1u97UDO70Q5iWv7iDpUmy HdCul2ToBHBDtaOW4jpQS14P/8JcBbX/KYqNSd7lntW9IAYLYGldFn21jhzorPlp DhIe92LwDRfFSM7lw/M1LQeJ+ATKX3hbJZOClw== -----END CERTIFICATE-----Generated at Wed May 13 12:39:20 2026 by rpki-client