$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32322d3234203d3e20313332363437.roa File: 3130332e31392e3137362e302f32322d3234203d3e20313332363437.roa (raw, json) Hash identifier: u6hQoPKoHiVtYDbwuT9Uz8f5A+6L4NtjJ2yTHSMpD0s= Subject key identifier: 22:43:2D:CC:62:4B:03:9C:48:57:32:82:8E:91:EF:26:9E:29:CD:DE Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 241C582F172DBD7982181AD7B9225285271CDC16 Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32322d3234203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:56:58 +0000 ROA not before: Sun 03 May 2026 02:51:58 +0000 ROA not after: Sun 02 May 2027 02:56:58 +0000 asID: 132647 IP address blocks: 103.19.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1c:58:2f:17:2d:bd:79:82:18:1a:d7:b9:22:52:85:27:1c:dc:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:51:58 2026 GMT Not After : May 2 02:56:58 2027 GMT Subject: CN=22432DCC624B039C485732828E91EF269E29CDDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:91:6f:d0:30:ef:6d:8c:49:d0:fb:aa:6e: f8:b1:4e:87:01:46:e1:7e:b4:af:ab:0e:e9:83:11: a8:25:c0:13:22:6d:5a:00:f1:1e:01:18:78:f9:80: c4:d3:8e:a0:80:fe:c3:08:af:c8:ea:e3:ec:ad:f1: 6e:5e:b6:a7:ce:6b:a0:8a:53:1e:1d:6c:90:f9:98: c5:e7:58:97:2b:dd:94:d1:4d:c4:b2:f0:af:d7:e8: f1:e7:e4:bb:14:70:be:37:b5:8b:cb:66:81:25:45: 23:e8:d1:d7:a2:5d:43:d9:3d:47:30:91:47:bf:52: 83:0e:97:1d:72:50:f0:1b:6f:40:ba:00:8b:bb:45: 5d:7b:7a:a6:18:49:90:84:24:5e:67:fe:23:a7:3c: 3c:7e:1a:40:9f:2e:03:27:d1:6c:0b:d5:42:b4:0e: 19:2d:95:62:4f:9f:2f:19:c2:85:07:f4:83:a8:40: c8:73:da:c6:eb:fc:bd:af:69:38:96:fe:38:6b:fc: 5d:33:4d:ae:ff:cd:e0:cc:2e:62:5c:fe:1a:db:25: 32:60:cc:27:a9:8a:6c:8e:41:25:c5:23:54:d5:73: 4a:16:ba:ab:79:a8:a3:80:68:fa:a6:b9:99:22:16: e4:9a:36:3e:e5:30:7f:37:9e:cd:67:8b:c1:10:ce: 09:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:43:2D:CC:62:4B:03:9C:48:57:32:82:8E:91:EF:26:9E:29:CD:DE X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32322d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.176.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:21:e0:0f:d7:70:3f:d7:9f:c2:0e:4d:59:24:50:dd:f2:d5: 24:d5:80:bd:76:78:75:7d:fb:56:fa:e8:d7:1d:ee:50:88:5b: b1:d6:9c:e3:d1:9e:cc:16:df:5c:fe:c6:b6:e2:53:61:62:3e: bd:4c:73:e7:b8:b2:38:15:a8:73:4a:d7:bb:53:df:b2:0f:ae: 7a:59:c9:95:e4:86:87:3b:8a:6f:62:1f:55:88:cf:7e:bc:47: ed:21:ea:1c:4f:bc:67:4b:6f:ca:33:0f:9b:88:fb:7f:9e:0c: af:6b:6a:22:a1:a0:28:e4:89:d9:ff:04:e0:05:af:6b:df:d0: ad:94:39:45:55:fe:ec:25:bd:d2:23:59:74:cf:7c:04:97:95: 73:6e:d4:78:22:ce:f4:1d:c4:30:b4:4b:d0:f2:5d:b2:5b:24: e5:01:c8:43:7b:33:84:ca:e4:44:e4:b6:33:56:6d:77:84:2b: 31:f3:6c:91:e2:ab:7f:33:85:12:2a:a8:a2:3e:76:56:0b:ef: 74:27:a9:53:df:a4:b3:74:4c:b7:5c:e7:fe:50:46:e7:99:04: 0e:c5:c4:17:5a:3e:b6:fe:2a:f0:a6:97:c3:f3:ec:4b:bc:3d: 66:d5:d1:58:a5:35:fe:32:f8:7a:23:78:4b:43:0d:74:77:0d: ca:0c:1c:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJBxYLxctvXmCGBrXuSJShScc3BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUxNThaFw0yNzA1MDIwMjU2NThaMDMxMTAvBgNV BAMTKDIyNDMyRENDNjI0QjAzOUM0ODU3MzI4MjhFOTFFRjI2OUUyOUNEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwZpFv0DDvbYxJ0PuqbvixTocB RuF+tK+rDumDEaglwBMibVoA8R4BGHj5gMTTjqCA/sMIr8jq4+yt8W5etqfOa6CK Ux4dbJD5mMXnWJcr3ZTRTcSy8K/X6PHn5LsUcL43tYvLZoElRSPo0deiXUPZPUcw kUe/UoMOlx1yUPAbb0C6AIu7RV17eqYYSZCEJF5n/iOnPDx+GkCfLgMn0WwL1UK0 DhktlWJPny8ZwoUH9IOoQMhz2sbr/L2vaTiW/jhr/F0zTa7/zeDMLmJc/hrbJTJg zCepimyOQSXFI1TVc0oWuqt5qKOAaPqmuZkiFuSaNj7lMH83ns1ni8EQzglLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIkMtzGJLA5xIVzKCjpHvJp4pzd4wHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMxMzAzMzJlMzEzOTJlMzEzNzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxOwMA0GCSqG SIb3DQEBCwUAA4IBAQAuIeAP13A/15/CDk1ZJFDd8tUk1YC9dnh1fftW+ujXHe5Q iFux1pzj0Z7MFt9c/sa24lNhYj69THPnuLI4FahzSte7U9+yD656WcmV5IaHO4pv Yh9ViM9+vEftIeocT7xnS2/KMw+biPt/ngyva2oioaAo5InZ/wTgBa9r39CtlDlF Vf7sJb3SI1l0z3wEl5VzbtR4Is70HcQwtEvQ8l2yWyTlAchDezOEyuRE5LYzVm13 hCsx82yR4qt/M4USKqiiPnZWC+90J6lT36SzdEy3XOf+UEbnmQQOxcQXWj62/irw ppfD8+xLvD1m1dFYpTX+Mvh6I3hLQw10dw3KDBxo -----END CERTIFICATE-----Generated at Wed May 13 04:26:42 2026 by rpki-client