$ rpki-client -vvf rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32342d3234203d3e20313338383831.roa File: 3130332e3136392e3233382e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: Jx05B7mkwgYoEihHJr1Mblw6Kt55kFXhZ9MUCvCt+Go= Subject key identifier: E6:6C:70:F9:C1:38:E1:CD:62:1D:63:88:44:BE:83:0E:BB:5E:15:04 Certificate issuer: /CN=D8A963CE57E99B1ABE162A8452D9E4D368BB012A Certificate serial: 6614F39CFA922F150A68EEB3C1D61C23A4073CDC Authority key identifier: D8:A9:63:CE:57:E9:9B:1A:BE:16:2A:84:52:D9:E4:D3:68:BB:01:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32342d3234203d3e20313338383831.roa Signing time: Sun 03 May 2026 03:00:17 +0000 ROA not before: Sun 03 May 2026 02:55:17 +0000 ROA not after: Sun 02 May 2027 03:00:17 +0000 asID: 138881 IP address blocks: 103.169.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.crl rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:14:f3:9c:fa:92:2f:15:0a:68:ee:b3:c1:d6:1c:23:a4:07:3c:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8A963CE57E99B1ABE162A8452D9E4D368BB012A Validity Not Before: May 3 02:55:17 2026 GMT Not After : May 2 03:00:17 2027 GMT Subject: CN=E66C70F9C138E1CD621D638844BE830EBB5E1504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:47:40:71:f7:8e:b3:cb:3c:55:13:13:90:fa: bd:d9:e8:7e:f3:14:95:62:47:ea:0c:e4:eb:4f:ed: 89:4e:25:b4:e8:93:59:71:19:2f:f6:b0:24:e0:34: ba:93:eb:c1:30:d7:c2:08:b5:78:20:d2:c7:56:f2: 76:bc:13:7a:1e:c7:c8:31:09:fb:ce:8d:1e:27:3c: cc:a6:ff:78:b9:7c:80:b5:76:ae:a3:90:75:e4:49: 2e:75:ee:5f:88:1a:3f:08:0a:f8:df:33:09:c3:4f: 73:60:d2:7b:6e:7e:37:ef:49:a2:73:4c:15:d9:18: 8b:36:9e:4d:9b:3a:53:10:de:f2:86:00:93:c7:33: 09:ad:68:a3:99:9a:43:4c:9a:65:09:f8:60:19:9d: 33:2a:73:24:31:8a:7b:b3:16:6a:0a:9f:ed:14:f9: 5d:c2:43:83:e9:65:fc:0b:be:23:63:c8:63:c2:93: cc:49:ab:37:bb:3b:0f:dd:ff:13:0e:2b:80:9f:35: 61:cf:31:0a:5e:56:ed:d1:18:57:a1:d3:42:bb:d0: 80:6e:22:4a:f9:f9:23:07:9c:78:16:92:77:f4:2d: c8:86:ef:03:b1:01:5b:e5:74:67:9b:a9:32:4c:a1: cb:32:24:ae:ff:a7:37:f2:4f:64:6b:ad:2c:78:b2: 20:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6C:70:F9:C1:38:E1:CD:62:1D:63:88:44:BE:83:0E:BB:5E:15:04 X509v3 Authority Key Identifier: keyid:D8:A9:63:CE:57:E9:9B:1A:BE:16:2A:84:52:D9:E4:D3:68:BB:01:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.238.0/24 Signature Algorithm: sha256WithRSAEncryption 29:0b:b7:5a:2f:f0:71:db:1f:f5:52:af:27:82:fb:e3:24:47: 6c:f3:6c:5b:0b:31:e9:91:d1:25:64:6b:9e:fa:14:18:14:f9: 12:23:10:26:21:92:3f:67:a9:89:ba:c8:7c:85:c1:57:b0:75: a5:0d:eb:fa:98:aa:70:b3:69:01:1b:11:c3:9d:2c:f8:96:ca: 56:72:82:31:07:0b:37:43:58:d1:b1:4d:de:4f:93:54:74:bf: 84:bc:49:97:73:d4:7c:ef:bc:d4:e3:66:ab:5b:3f:fa:be:f5: 0e:94:0e:ca:24:e1:09:44:fe:14:80:62:8e:4a:a8:c9:5a:4c: 88:c2:b9:3b:6b:57:92:24:0d:1d:0d:a8:cc:ff:da:51:e4:1a: 00:28:cf:86:3a:06:09:f7:3d:00:09:88:9e:8a:e3:8d:9f:63: 6c:73:db:a6:25:0f:7b:57:4f:59:5e:68:ca:f2:40:84:2a:67: 9b:01:b4:30:8f:4e:4a:84:8a:84:d3:49:84:d4:64:5e:74:27: 6c:07:86:0e:04:aa:d9:9e:2a:97:56:b8:4f:c7:94:61:e1:d6: 3d:85:51:6a:0b:a5:15:5d:54:d9:b7:e2:1d:98:c2:64:8a:45: 97:16:2b:1a:10:6c:de:a6:4d:07:ba:66:87:09:fd:11:50:92: a2:28:04:a1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZhTznPqSLxUKaO6zwdYcI6QHPNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhBOTYzQ0U1N0U5OUIxQUJFMTYyQTg0NTJEOUU0RDM2 OEJCMDEyQTAeFw0yNjA1MDMwMjU1MTdaFw0yNzA1MDIwMzAwMTdaMDMxMTAvBgNV BAMTKEU2NkM3MEY5QzEzOEUxQ0Q2MjFENjM4ODQ0QkU4MzBFQkI1RTE1MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXR0Bx946zyzxVExOQ+r3Z6H7z FJViR+oM5OtP7YlOJbTok1lxGS/2sCTgNLqT68Ew18IItXgg0sdW8na8E3oex8gx CfvOjR4nPMym/3i5fIC1dq6jkHXkSS517l+IGj8ICvjfMwnDT3Ng0ntufjfvSaJz TBXZGIs2nk2bOlMQ3vKGAJPHMwmtaKOZmkNMmmUJ+GAZnTMqcyQxinuzFmoKn+0U +V3CQ4PpZfwLviNjyGPCk8xJqze7Ow/d/xMOK4CfNWHPMQpeVu3RGFeh00K70IBu Ikr5+SMHnHgWknf0LciG7wOxAVvldGebqTJMocsyJK7/pzfyT2RrrSx4siDVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5mxw+cE44c1iHWOIRL6DDrteFQQwHwYDVR0j BBgwFoAU2Kljzlfpmxq+FiqEUtnk02i7ASowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjExY2E2MjAtZGFjZS00YTlmLWI4ZTgtYTNhMmU1ODE1MDBlLzAvRDhBOTYzQ0U1 N0U5OUIxQUJFMTYyQTg0NTJEOUU0RDM2OEJCMDEyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOEE5NjNDRTU3RTk5QjFBQkUxNjJBODQ1MkQ5RTREMzY4QkIw MTJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxMWNhNjIwLWRhY2UtNGE5Zi1i OGU4LWEzYTJlNTgxNTAwZS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqe4wDQYJ KoZIhvcNAQELBQADggEBACkLt1ov8HHbH/VSryeC++MkR2zzbFsLMemR0SVka576 FBgU+RIjECYhkj9nqYm6yHyFwVewdaUN6/qYqnCzaQEbEcOdLPiWylZygjEHCzdD WNGxTd5Pk1R0v4S8SZdz1HzvvNTjZqtbP/q+9Q6UDsok4QlE/hSAYo5KqMlaTIjC uTtrV5IkDR0NqMz/2lHkGgAoz4Y6Bgn3PQAJiJ6K442fY2xz26YlD3tXT1leaMry QIQqZ5sBtDCPTkqEioTTSYTUZF50J2wHhg4EqtmeKpdWuE/HlGHh1j2FUWoLpRVd VNm34h2YwmSKRZcWKxoQbN6mTQe6ZocJ/RFQkqIoBKE= -----END CERTIFICATE-----Generated at Wed May 13 04:26:39 2026 by rpki-client