$ rpki-client -vvf rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32342d3234203d3e20313432333131.roa File: 3130332e3136382e3135302e302f32342d3234203d3e20313432333131.roa (raw, json) Hash identifier: +vANdbTWMrufItFa0nCpqJPgPphPTUGA/kS3/GJ4B1E= Subject key identifier: 28:E3:06:88:DC:82:01:27:7A:D6:55:EB:2F:16:B7:E3:30:9A:05:32 Certificate issuer: /CN=1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A Certificate serial: 112800AFEA4EDF9DB5AB991D9EDDEF2AD91ABA3C Authority key identifier: 1E:03:01:E0:EA:0A:06:DC:84:35:E4:3B:CC:69:77:EF:3B:D4:AF:1A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32342d3234203d3e20313432333131.roa Signing time: Sun 03 May 2026 02:58:34 +0000 ROA not before: Sun 03 May 2026 02:53:34 +0000 ROA not after: Sun 02 May 2027 02:58:34 +0000 asID: 142311 IP address blocks: 103.168.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.crl rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 11:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:28:00:af:ea:4e:df:9d:b5:ab:99:1d:9e:dd:ef:2a:d9:1a:ba:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A Validity Not Before: May 3 02:53:34 2026 GMT Not After : May 2 02:58:34 2027 GMT Subject: CN=28E30688DC8201277AD655EB2F16B7E3309A0532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:33:ee:6f:04:75:37:65:13:a9:fe:d7:3d: ea:e2:43:2b:e8:fc:22:a0:4b:56:e6:6c:82:39:03: df:5a:37:0b:38:37:e5:b6:af:19:da:22:50:66:cb: 37:b9:65:76:ea:1d:b3:9a:1c:78:0c:fe:7a:e5:ad: c7:91:b7:92:ef:d2:3b:81:8f:aa:d3:fe:ef:06:00: 36:0f:f9:be:8b:8f:c3:d9:44:bd:82:bc:a2:b9:44: ec:eb:73:9f:26:af:a9:a5:4a:90:95:64:c1:64:e6: d3:4c:0c:61:78:37:e5:ea:e7:80:56:f8:2a:fc:5c: d0:a7:99:75:c4:60:17:dd:36:66:90:54:4c:04:66: 54:08:12:7b:3f:21:97:e5:58:ba:a8:e6:a8:f6:4a: 8e:d2:2e:84:42:99:58:f1:33:64:2b:44:f1:ee:85: 23:dc:02:46:8c:66:bd:09:03:1f:a2:d4:fc:31:64: 7f:b0:a0:8a:ad:a6:cf:06:eb:99:92:64:97:8c:d6: 15:00:7a:47:67:bd:e5:5a:34:65:45:66:b2:fd:91: 4f:61:b6:d6:9a:c1:0f:8b:91:46:f1:93:75:99:63: 5c:30:1b:1b:d2:9e:67:47:ff:0b:5b:b5:5d:9a:d4: b1:72:a8:18:67:51:da:cb:00:0b:bc:38:4c:93:1a: 2e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E3:06:88:DC:82:01:27:7A:D6:55:EB:2F:16:B7:E3:30:9A:05:32 X509v3 Authority Key Identifier: keyid:1E:03:01:E0:EA:0A:06:DC:84:35:E4:3B:CC:69:77:EF:3B:D4:AF:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1E0301E0EA0A06DC8435E43BCC6977EF3BD4AF1A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32342d3234203d3e20313432333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.150.0/24 Signature Algorithm: sha256WithRSAEncryption 08:d0:90:81:3f:38:21:2e:29:18:76:48:c9:3c:7c:54:13:d5: 69:b1:f1:08:1c:ba:c1:fc:e3:ff:a8:44:fe:7b:a2:d5:94:a2: 85:8f:06:b7:20:f1:b1:c0:f4:7e:88:c1:1c:b1:90:06:9d:36: cf:f7:e1:4f:46:72:b7:19:bf:d5:1b:d9:f9:62:a9:79:8b:03: 5a:57:58:10:ae:cf:04:f5:5b:41:d9:84:78:91:37:c7:a5:7f: 87:6d:8d:76:e7:1a:7f:58:73:15:07:82:4f:2f:ae:47:45:c6: ed:94:58:dd:9d:bc:3c:77:1e:03:7c:fe:2b:75:67:27:f1:7c: 5b:13:b0:0c:ff:93:86:da:7f:15:b4:a1:50:3a:8c:aa:82:2f: ed:4e:8f:c4:ee:76:40:42:01:6e:2d:98:6f:76:46:31:30:bb: 6b:d5:63:92:e7:f1:b9:e8:7f:4e:c1:2b:d6:b1:ac:49:55:7c: 7a:30:09:f8:41:af:e1:a6:28:c3:cd:0f:e3:8f:be:1a:a1:81: 5c:ef:7d:c4:2d:33:78:80:c5:54:a6:07:56:91:7b:79:b2:4a: bc:fa:47:0e:96:71:f9:4f:03:3e:5d:db:e0:fa:e6:f4:03:b0: e3:0a:b4:be:25:01:be:e6:0f:28:cd:d8:fd:63:7b:13:f8:03: d4:1c:d4:7a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUESgAr+pO3521q5kdnt3vKtkaujwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUUwMzAxRTBFQTBBMDZEQzg0MzVFNDNCQ0M2OTc3RUYz QkQ0QUYxQTAeFw0yNjA1MDMwMjUzMzRaFw0yNzA1MDIwMjU4MzRaMDMxMTAvBgNV BAMTKDI4RTMwNjg4REM4MjAxMjc3QUQ2NTVFQjJGMTZCN0UzMzA5QTA1MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt3TPubwR1N2UTqf7XPeriQyvo /CKgS1bmbII5A99aNws4N+W2rxnaIlBmyze5ZXbqHbOaHHgM/nrlrceRt5Lv0juB j6rT/u8GADYP+b6Lj8PZRL2CvKK5ROzrc58mr6mlSpCVZMFk5tNMDGF4N+Xq54BW +Cr8XNCnmXXEYBfdNmaQVEwEZlQIEns/IZflWLqo5qj2So7SLoRCmVjxM2QrRPHu hSPcAkaMZr0JAx+i1PwxZH+woIqtps8G65mSZJeM1hUAekdnveVaNGVFZrL9kU9h ttaawQ+LkUbxk3WZY1wwGxvSnmdH/wtbtV2a1LFyqBhnUdrLAAu8OEyTGi5fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKOMGiNyCASd61lXrLxa34zCaBTIwHwYDVR0j BBgwFoAUHgMB4OoKBtyENeQ7zGl37zvUrxowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWMzMmVlZTEtMTBmNy00NTdkLWE4YzUtNWY3Zjc0MWE2M2RhLzAvMUUwMzAxRTBF QTBBMDZEQzg0MzVFNDNCQ0M2OTc3RUYzQkQ0QUYxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRTAzMDFFMEVBMEEwNkRDODQzNUU0M0JDQzY5NzdFRjNCRDRB RjFBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjMzJlZWUxLTEwZjctNDU3ZC1h OGM1LTVmN2Y3NDFhNjNkYS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJYwDQYJ KoZIhvcNAQELBQADggEBAAjQkIE/OCEuKRh2SMk8fFQT1Wmx8QgcusH84/+oRP57 otWUooWPBrcg8bHA9H6IwRyxkAadNs/34U9GcrcZv9Ub2fliqXmLA1pXWBCuzwT1 W0HZhHiRN8elf4dtjXbnGn9YcxUHgk8vrkdFxu2UWN2dvDx3HgN8/it1ZyfxfFsT sAz/k4bafxW0oVA6jKqCL+1Oj8TudkBCAW4tmG92RjEwu2vVY5Ln8bnof07BK9ax rElVfHowCfhBr+GmKMPND+OPvhqhgVzvfcQtM3iAxVSmB1aRe3mySrz6Rw6WcflP Az5d2+D65vQDsOMKtL4lAb7mDyjN2P1jexP4A9Qc1Ho= -----END CERTIFICATE-----Generated at Wed May 13 05:36:11 2026 by rpki-client