$ rpki-client -vvf rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/3130332e3139372e3138382e302f32322d3234203d3e20313333383030.roa File: 3130332e3139372e3138382e302f32322d3234203d3e20313333383030.roa (raw, json) Hash identifier: ZTH11IqUBjUloy94Wjo3h3nzkEwNWGDprNQQAIlXj6U= Subject key identifier: 19:FA:FE:C7:4D:03:CF:2E:47:D5:01:82:3C:3E:25:51:C0:5B:1F:51 Certificate issuer: /CN=84D8D73F40AAC54FA5471C49D1B0B26082108594 Certificate serial: 0785F08D20808B3196A613D3194033A701A268C8 Authority key identifier: 84:D8:D7:3F:40:AA:C5:4F:A5:47:1C:49:D1:B0:B2:60:82:10:85:94 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/84D8D73F40AAC54FA5471C49D1B0B26082108594.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/3130332e3139372e3138382e302f32322d3234203d3e20313333383030.roa Signing time: Sun 03 May 2026 02:54:33 +0000 ROA not before: Sun 03 May 2026 02:49:33 +0000 ROA not after: Sun 02 May 2027 02:54:33 +0000 asID: 133800 IP address blocks: 103.197.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/84D8D73F40AAC54FA5471C49D1B0B26082108594.crl rsync://rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/84D8D73F40AAC54FA5471C49D1B0B26082108594.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/84D8D73F40AAC54FA5471C49D1B0B26082108594.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:85:f0:8d:20:80:8b:31:96:a6:13:d3:19:40:33:a7:01:a2:68:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84D8D73F40AAC54FA5471C49D1B0B26082108594 Validity Not Before: May 3 02:49:33 2026 GMT Not After : May 2 02:54:33 2027 GMT Subject: CN=19FAFEC74D03CF2E47D501823C3E2551C05B1F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:1c:33:7a:fe:ca:e6:37:1e:2b:dd:9f:b3: 48:41:d4:c0:02:8d:0c:e1:93:a3:30:ba:fa:9d:a9: 91:d7:7d:cc:81:fe:18:da:38:b2:a8:ec:15:93:c7: bb:65:ff:80:6e:b2:ee:a5:e3:4e:2c:b6:e2:89:80: 72:d1:4f:63:25:e4:09:af:88:38:29:c0:d7:31:6f: b7:d6:46:5a:d7:05:82:a4:14:cd:98:08:1d:eb:60: ac:5b:7a:18:d5:62:8c:02:fa:42:c7:6e:14:2f:3b: 8a:e4:7b:fb:37:66:9d:b7:96:fa:15:14:05:76:bc: d6:2f:cf:fe:91:12:4c:fa:35:94:94:13:c9:9f:19: 0c:39:df:74:d0:47:13:11:12:4a:8e:7d:12:f2:3b: f7:23:9e:81:d2:fe:b3:e2:2d:98:fa:20:ef:c5:56: 62:01:96:d5:5a:6f:e0:e4:21:b9:2c:9f:4a:3e:52: 94:85:30:c0:a3:6d:62:0c:51:5f:9b:77:39:cf:f9: ff:51:04:b1:5c:c5:59:26:89:af:eb:ca:d6:4f:35: b0:c4:a6:e7:c6:95:00:9b:14:f9:da:6e:b9:bb:fb: 4c:85:1d:51:4a:a2:33:a3:5f:57:c5:2d:10:bb:9e: 53:bd:22:67:6d:01:20:54:32:56:b4:c1:46:ad:e2: 66:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FA:FE:C7:4D:03:CF:2E:47:D5:01:82:3C:3E:25:51:C0:5B:1F:51 X509v3 Authority Key Identifier: keyid:84:D8:D7:3F:40:AA:C5:4F:A5:47:1C:49:D1:B0:B2:60:82:10:85:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/84D8D73F40AAC54FA5471C49D1B0B26082108594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/84D8D73F40AAC54FA5471C49D1B0B26082108594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9c80467c-aeb2-4095-8f54-85b9090d3908/0/3130332e3139372e3138382e302f32322d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.188.0/22 Signature Algorithm: sha256WithRSAEncryption 35:32:c5:dd:ed:54:6d:f0:fd:cf:6c:67:e6:c5:05:2f:a9:8a: 78:3d:e3:4a:85:f6:c4:60:d7:11:b7:c8:a1:74:e6:fe:44:97: d7:10:da:e3:ff:88:b9:43:17:73:96:bc:49:60:03:1a:93:a9: 80:b2:ca:a9:ad:e7:9c:04:0e:cb:cf:94:b2:48:e5:b0:85:e6: 2c:2f:0f:1a:08:eb:ff:73:00:b7:29:34:44:56:e9:f8:da:a3: 1b:bf:e5:fc:fd:89:b5:cd:12:31:ac:52:9f:a5:b4:2f:e6:68: 9d:02:d0:e8:a0:b8:3d:5f:9e:08:aa:60:b5:78:cc:ce:c6:6a: 13:42:71:dc:d3:e0:82:ee:d5:f1:51:2f:3c:e7:16:fb:c8:ba: 62:67:ce:13:94:4a:a3:98:29:13:8c:a1:e3:6d:de:aa:c6:bc: cb:e8:c2:09:ae:55:3c:44:db:23:60:5d:0b:17:69:08:4d:42: 2e:bc:df:f0:dd:e7:01:1e:90:09:e6:ea:88:b9:f0:2f:51:7d: bd:3a:56:2b:aa:4d:09:76:a8:77:60:1c:8a:58:ec:6f:72:c2: 1a:04:1a:96:40:19:4c:d9:ee:a9:ad:75:3e:0e:93:9d:f6:40: ca:ac:cf:c7:7f:a6:f0:70:6e:95:ea:7c:9d:e2:96:d5:33:da: f0:85:a5:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB4XwjSCAizGWphPTGUAzpwGiaMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODREOEQ3M0Y0MEFBQzU0RkE1NDcxQzQ5RDFCMEIyNjA4 MjEwODU5NDAeFw0yNjA1MDMwMjQ5MzNaFw0yNzA1MDIwMjU0MzNaMDMxMTAvBgNV BAMTKDE5RkFGRUM3NEQwM0NGMkU0N0Q1MDE4MjNDM0UyNTUxQzA1QjFGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Dxwzev7K5jceK92fs0hB1MAC jQzhk6MwuvqdqZHXfcyB/hjaOLKo7BWTx7tl/4Busu6l404stuKJgHLRT2Ml5Amv iDgpwNcxb7fWRlrXBYKkFM2YCB3rYKxbehjVYowC+kLHbhQvO4rke/s3Zp23lvoV FAV2vNYvz/6REkz6NZSUE8mfGQw533TQRxMREkqOfRLyO/cjnoHS/rPiLZj6IO/F VmIBltVab+DkIbksn0o+UpSFMMCjbWIMUV+bdznP+f9RBLFcxVkmia/rytZPNbDE pufGlQCbFPnabrm7+0yFHVFKojOjX1fFLRC7nlO9ImdtASBUMla0wUat4mbPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGfr+x00Dzy5H1QGCPD4lUcBbH1EwHwYDVR0j BBgwFoAUhNjXP0CqxU+lRxxJ0bCyYIIQhZQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWM4MDQ2N2MtYWViMi00MDk1LThmNTQtODViOTA5MGQzOTA4LzAvODREOEQ3M0Y0 MEFBQzU0RkE1NDcxQzQ5RDFCMEIyNjA4MjEwODU5NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NEQ4RDczRjQwQUFDNTRGQTU0NzFDNDlEMUIwQjI2MDgyMTA4 NTk0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzljODA0NjdjLWFlYjItNDA5NS04 ZjU0LTg1YjkwOTBkMzkwOC8wLzMxMzAzMzJlMzEzOTM3MmUzMTM4MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnxbwwDQYJ KoZIhvcNAQELBQADggEBADUyxd3tVG3w/c9sZ+bFBS+ping940qF9sRg1xG3yKF0 5v5El9cQ2uP/iLlDF3OWvElgAxqTqYCyyqmt55wEDsvPlLJI5bCF5iwvDxoI6/9z ALcpNERW6fjaoxu/5fz9ibXNEjGsUp+ltC/maJ0C0OiguD1fngiqYLV4zM7GahNC cdzT4ILu1fFRLzznFvvIumJnzhOUSqOYKROMoeNt3qrGvMvowgmuVTxE2yNgXQsX aQhNQi683/Dd5wEekAnm6oi58C9Rfb06ViuqTQl2qHdgHIpY7G9ywhoEGpZAGUzZ 7qmtdT4Ok532QMqsz8d/pvBwbpXqfJ3iltUz2vCFpQ0= -----END CERTIFICATE-----Generated at Wed May 13 12:36:06 2026 by rpki-client