$ rpki-client -vvf rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233392e302f32342d3234203d3e20313338383831.roa File: 3130332e3136392e3233392e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: B7a7PzCNzeD/tq1cXAKoZlfFY/BQzoD5xWVoqKq0SF0= Subject key identifier: 06:34:0F:6D:31:48:35:63:97:9E:36:02:30:7A:D7:14:35:7A:81:0A Certificate issuer: /CN=D8A963CE57E99B1ABE162A8452D9E4D368BB012A Certificate serial: 427AB10E54DD112A051967CDA6905549B70754F1 Authority key identifier: D8:A9:63:CE:57:E9:9B:1A:BE:16:2A:84:52:D9:E4:D3:68:BB:01:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233392e302f32342d3234203d3e20313338383831.roa Signing time: Sun 03 May 2026 03:00:17 +0000 ROA not before: Sun 03 May 2026 02:55:17 +0000 ROA not after: Sun 02 May 2027 03:00:17 +0000 asID: 138881 IP address blocks: 103.169.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.crl rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7a:b1:0e:54:dd:11:2a:05:19:67:cd:a6:90:55:49:b7:07:54:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8A963CE57E99B1ABE162A8452D9E4D368BB012A Validity Not Before: May 3 02:55:17 2026 GMT Not After : May 2 03:00:17 2027 GMT Subject: CN=06340F6D31483563979E3602307AD714357A810A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a3:d4:f0:4b:95:a1:b1:58:02:db:54:2d:fb: d4:dd:5e:2a:81:d8:bc:b7:b7:85:c8:9f:11:e2:13: ce:be:a7:d9:ee:8f:fb:79:45:0f:3b:27:0a:1a:9b: 40:04:6a:e0:b7:aa:b8:ea:73:bd:61:c2:85:f7:76: 16:2e:3d:6f:e4:7b:79:61:ce:a0:9d:50:ff:95:30: 93:89:a3:dc:c3:9e:6b:46:e1:49:18:e2:16:f2:fd: af:56:eb:9c:18:ec:48:41:dd:87:4f:76:37:ec:d7: 0a:b9:90:52:82:10:79:d9:e1:b0:8d:78:38:d7:18: 4f:76:e7:19:a5:13:2a:ab:4f:ad:f1:58:35:40:17: 40:35:36:65:f1:3f:03:8e:ad:47:05:e0:f1:3c:c3: e5:78:be:a4:32:d1:f3:76:b0:72:15:9d:43:44:56: 89:d3:6f:06:e3:f8:35:60:e1:fe:6c:f1:54:73:22: 65:8e:23:26:06:cc:90:91:d9:02:64:a4:6a:04:b0: 4d:bb:8f:3e:14:d0:5e:ac:d8:ca:c9:e6:6f:4a:e3: 9c:f9:6f:b0:20:0e:a7:6b:31:da:46:32:06:0a:81: 7b:41:92:8d:de:92:75:f1:6b:ae:62:8b:b7:02:7e: 05:63:bc:0e:4a:78:78:46:48:86:b7:ff:1d:36:cc: 84:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:34:0F:6D:31:48:35:63:97:9E:36:02:30:7A:D7:14:35:7A:81:0A X509v3 Authority Key Identifier: keyid:D8:A9:63:CE:57:E9:9B:1A:BE:16:2A:84:52:D9:E4:D3:68:BB:01:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D8A963CE57E99B1ABE162A8452D9E4D368BB012A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233392e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.239.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:70:40:9b:94:16:c4:eb:e4:d3:a6:28:25:ae:5a:3a:e7:3c: f8:1c:14:3f:06:a5:0a:ca:64:dc:41:8a:f5:cc:f5:71:04:d3: 53:b3:54:e4:95:28:2a:56:56:90:fd:04:01:cd:69:bd:48:f8: ca:24:84:0b:1c:ab:ca:62:1d:fc:6a:df:e9:9f:8e:40:79:9b: fd:42:d0:a9:41:41:b1:1a:26:36:22:af:55:9a:30:81:cc:5a: 70:45:a4:08:2f:dd:c2:c8:89:a4:ed:a2:9c:e6:6b:3f:e5:69: f0:ea:28:ed:3b:e9:63:97:dd:78:cb:32:ce:f6:71:87:d9:22: 80:d5:af:91:fd:20:38:9c:16:dc:d0:f7:0f:3b:37:58:74:23: 43:37:7e:e9:31:47:0d:3d:38:bb:59:9d:d4:c1:47:79:e5:7c: c7:98:b4:3d:45:96:b3:34:fa:23:b5:45:1c:25:29:1f:b3:ec: 2e:f2:a3:31:d1:86:c6:b1:18:b5:14:fd:cd:d8:a0:8b:8e:46: 1b:b1:15:ff:12:3e:4d:f5:c6:71:b2:43:89:22:f4:84:91:1a: c2:0c:99:1a:38:ad:81:dd:6d:8a:d0:45:03:ad:f5:97:77:51: a9:5d:d4:88:82:44:44:20:7e:37:48:c0:0a:92:1d:81:fc:2f: 92:43:de:fd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQnqxDlTdESoFGWfNppBVSbcHVPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhBOTYzQ0U1N0U5OUIxQUJFMTYyQTg0NTJEOUU0RDM2 OEJCMDEyQTAeFw0yNjA1MDMwMjU1MTdaFw0yNzA1MDIwMzAwMTdaMDMxMTAvBgNV BAMTKDA2MzQwRjZEMzE0ODM1NjM5NzlFMzYwMjMwN0FENzE0MzU3QTgxMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDto9TwS5WhsVgC21Qt+9TdXiqB 2Ly3t4XInxHiE86+p9nuj/t5RQ87Jwoam0AEauC3qrjqc71hwoX3dhYuPW/ke3lh zqCdUP+VMJOJo9zDnmtG4UkY4hby/a9W65wY7EhB3YdPdjfs1wq5kFKCEHnZ4bCN eDjXGE925xmlEyqrT63xWDVAF0A1NmXxPwOOrUcF4PE8w+V4vqQy0fN2sHIVnUNE VonTbwbj+DVg4f5s8VRzImWOIyYGzJCR2QJkpGoEsE27jz4U0F6s2MrJ5m9K45z5 b7AgDqdrMdpGMgYKgXtBko3eknXxa65ii7cCfgVjvA5KeHhGSIa3/x02zISdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBjQPbTFINWOXnjYCMHrXFDV6gQowHwYDVR0j BBgwFoAU2Kljzlfpmxq+FiqEUtnk02i7ASowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjExY2E2MjAtZGFjZS00YTlmLWI4ZTgtYTNhMmU1ODE1MDBlLzAvRDhBOTYzQ0U1 N0U5OUIxQUJFMTYyQTg0NTJEOUU0RDM2OEJCMDEyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOEE5NjNDRTU3RTk5QjFBQkUxNjJBODQ1MkQ5RTREMzY4QkIw MTJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IxMWNhNjIwLWRhY2UtNGE5Zi1i OGU4LWEzYTJlNTgxNTAwZS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqe8wDQYJ KoZIhvcNAQELBQADggEBACxwQJuUFsTr5NOmKCWuWjrnPPgcFD8GpQrKZNxBivXM 9XEE01OzVOSVKCpWVpD9BAHNab1I+MokhAscq8piHfxq3+mfjkB5m/1C0KlBQbEa JjYir1WaMIHMWnBFpAgv3cLIiaTtopzmaz/lafDqKO076WOX3XjLMs72cYfZIoDV r5H9IDicFtzQ9w87N1h0I0M3fukxRw09OLtZndTBR3nlfMeYtD1FlrM0+iO1RRwl KR+z7C7yozHRhsaxGLUU/c3YoIuORhuxFf8SPk31xnGyQ4ki9ISRGsIMmRo4rYHd bYrQRQOt9Zd3Uald1IiCREQgfjdIwAqSHYH8L5JD3v0= -----END CERTIFICATE-----Generated at Wed May 13 04:09:26 2026 by rpki-client