$ rpki-client -vvf rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa File: 3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa (raw, json) Hash identifier: ilMWkREaaRUsVGA1yBY9I9uXOlfT5ODPbD+SLMsp1gg= Subject key identifier: DF:57:D2:A5:DE:53:53:E8:F2:DC:2B:0D:7F:F2:28:12:08:4A:A3:7A Certificate issuer: /CN=1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A Certificate serial: 0EFC346DFE37E97C72134635BB3316F95FAE2DEB Authority key identifier: 1E:03:01:E0:EA:0A:06:DC:84:35:E4:3B:CC:69:77:EF:3B:D4:AF:1A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa Signing time: Sun 03 May 2026 02:58:33 +0000 ROA not before: Sun 03 May 2026 02:53:33 +0000 ROA not after: Sun 02 May 2027 02:58:33 +0000 asID: 142311 IP address blocks: 103.168.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.crl rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fc:34:6d:fe:37:e9:7c:72:13:46:35:bb:33:16:f9:5f:ae:2d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A Validity Not Before: May 3 02:53:33 2026 GMT Not After : May 2 02:58:33 2027 GMT Subject: CN=DF57D2A5DE5353E8F2DC2B0D7FF22812084AA37A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:68:a9:f9:87:98:c8:45:15:97:d9:d7:12: 08:30:4d:ae:3a:c5:9c:d1:1b:b0:8f:2b:7f:0d:19: 2a:98:02:85:e7:ca:5c:48:8b:bb:71:0d:19:92:eb: 52:98:da:56:f0:98:0e:65:55:7d:81:55:5a:46:74: dd:df:e3:49:61:35:a7:f7:7c:43:65:bd:76:91:86: fd:d7:7d:c8:f9:a9:f6:76:c2:b9:bc:8c:eb:d6:48: 8e:48:b0:45:8a:c8:35:75:1b:89:40:d1:97:e2:66: 98:19:33:db:19:c5:dd:1d:10:9a:2b:1a:49:b9:b5: 29:2f:5a:c4:61:0a:1e:ab:bc:6e:7a:99:2b:32:19: 76:34:99:67:e8:4f:1f:25:98:4a:70:81:b6:7c:51: 9d:09:04:85:d2:ea:77:80:b8:97:2f:25:cc:dc:bc: d7:be:a2:bb:a9:af:08:02:73:71:b1:96:c6:4f:a2: 6f:fe:9a:30:33:5b:94:6c:24:24:53:4e:98:f8:95: 10:e7:f7:7e:51:6f:5f:c4:45:c4:a1:ae:f7:e0:92: 4e:cd:4a:64:8f:7a:b9:bb:c1:46:a1:3b:b9:7a:33: 4f:9f:9d:f7:04:14:c2:82:53:5d:66:dd:bb:b3:73: b4:de:78:ee:14:1d:8c:5d:10:37:94:e4:66:30:14: 70:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:57:D2:A5:DE:53:53:E8:F2:DC:2B:0D:7F:F2:28:12:08:4A:A3:7A X509v3 Authority Key Identifier: keyid:1E:03:01:E0:EA:0A:06:DC:84:35:E4:3B:CC:69:77:EF:3B:D4:AF:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.150.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:2a:19:f3:b4:f5:8d:47:a8:69:0a:2d:73:3a:7a:1f:06:ce: 92:ab:f5:8d:f1:27:ea:1e:9b:28:dd:34:89:31:df:1f:a7:da: a5:e9:fb:de:17:4c:a4:d0:ab:89:75:69:01:ee:d2:0b:03:91: c8:ad:53:b5:21:01:51:35:da:65:5a:78:d1:b6:f0:3d:08:6a: 25:87:f3:03:9b:6c:6b:3b:92:91:a7:9f:a2:c5:d6:c9:d9:4e: 92:82:6d:42:60:a6:5c:74:92:b2:d4:26:28:50:19:ef:5b:17: de:9e:7d:25:4b:d5:a9:3d:7e:46:ad:cc:a6:34:ff:90:cc:b1: 3e:16:5b:67:46:04:8e:c0:70:c6:4e:56:01:d6:bb:e7:ec:0f: 1d:4a:45:38:46:b2:59:35:80:2b:6b:f3:09:50:ac:de:ba:28: 4f:40:3e:11:3d:37:38:c8:a2:84:be:e4:52:b5:4e:b2:0c:52: 04:08:77:6f:e7:38:fa:47:76:b2:65:6c:58:d6:57:d6:fd:f6: e8:23:86:88:d7:05:77:5a:e5:b0:15:2f:b3:49:ce:aa:ed:75: 12:9c:31:dc:3c:24:d0:62:8f:b1:9e:e4:fe:a0:b7:ac:e4:5a: 60:78:aa:78:bb:1c:08:de:4a:f4:c6:fc:41:f2:f0:38:fb:72: d1:7e:1d:65 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDvw0bf436XxyE0Y1uzMW+V+uLeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUUwMzAxRTBFQTBBMDZEQzg0MzVFNDNCQ0M2OTc3RUYz QkQ0QUYxQTAeFw0yNjA1MDMwMjUzMzNaFw0yNzA1MDIwMjU4MzNaMDMxMTAvBgNV BAMTKERGNTdEMkE1REU1MzUzRThGMkRDMkIwRDdGRjIyODEyMDg0QUEzN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqpGip+YeYyEUVl9nXEggwTa46 xZzRG7CPK38NGSqYAoXnylxIi7txDRmS61KY2lbwmA5lVX2BVVpGdN3f40lhNaf3 fENlvXaRhv3Xfcj5qfZ2wrm8jOvWSI5IsEWKyDV1G4lA0ZfiZpgZM9sZxd0dEJor Gkm5tSkvWsRhCh6rvG56mSsyGXY0mWfoTx8lmEpwgbZ8UZ0JBIXS6neAuJcvJczc vNe+oruprwgCc3GxlsZPom/+mjAzW5RsJCRTTpj4lRDn935Rb1/ERcShrvfgkk7N SmSPerm7wUahO7l6M0+fnfcEFMKCU11m3buzc7TeeO4UHYxdEDeU5GYwFHDlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU31fSpd5TU+jy3CsNf/IoEghKo3owHwYDVR0j BBgwFoAUHgMB4OoKBtyENeQ7zGl37zvUrxowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWMzMmVlZTEtMTBmNy00NTdkLWE4YzUtNWY3Zjc0MWE2M2RhLzAvMUUwMzAxRTBF QTBBMDZEQzg0MzVFNDNCQ0M2OTc3RUYzQkQ0QUYxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRTAzMDFFMEVBMEEwNkRDODQzNUU0M0JDQzY5NzdFRjNCRDRB RjFBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjMzJlZWUxLTEwZjctNDU3ZC1h OGM1LTVmN2Y3NDFhNjNkYS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqJYwDQYJ KoZIhvcNAQELBQADggEBAFsqGfO09Y1HqGkKLXM6eh8GzpKr9Y3xJ+oemyjdNIkx 3x+n2qXp+94XTKTQq4l1aQHu0gsDkcitU7UhAVE12mVaeNG28D0IaiWH8wObbGs7 kpGnn6LF1snZTpKCbUJgplx0krLUJihQGe9bF96efSVL1ak9fkatzKY0/5DMsT4W W2dGBI7AcMZOVgHWu+fsDx1KRThGslk1gCtr8wlQrN66KE9APhE9NzjIooS+5FK1 TrIMUgQId2/nOPpHdrJlbFjWV9b99ugjhojXBXda5bAVL7NJzqrtdRKcMdw8JNBi j7Ge5P6gt6zkWmB4qni7HAjeSvTG/EHy8Dj7ctF+HWU= -----END CERTIFICATE-----Generated at Wed May 13 03:55:24 2026 by rpki-client