$ rpki-client -vvf rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa File: 3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa (raw, json) Hash identifier: 7DAQ/qZeFo+VjQFhi1Qi3yS2FazYT4uy2MibUL7GHjo= Subject key identifier: 04:BF:3B:F3:EA:2C:B2:87:3F:34:89:BA:9A:14:ED:B8:FC:36:0E:44 Certificate issuer: /CN=17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27 Certificate serial: 397387AC1739235245C9E0D4657683C1E79368C3 Authority key identifier: 17:F1:2F:4C:F1:6D:C1:B1:8D:B7:69:4C:B3:44:1C:8B:80:E0:AC:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa Signing time: Sun 03 May 2026 03:00:40 +0000 ROA not before: Sun 03 May 2026 02:55:40 +0000 ROA not after: Sun 02 May 2027 03:00:40 +0000 asID: 140019 IP address blocks: 103.149.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.crl rsync://rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:73:87:ac:17:39:23:52:45:c9:e0:d4:65:76:83:c1:e7:93:68:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27 Validity Not Before: May 3 02:55:40 2026 GMT Not After : May 2 03:00:40 2027 GMT Subject: CN=04BF3BF3EA2CB2873F3489BA9A14EDB8FC360E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:35:e8:e0:c3:0a:f9:17:56:aa:18:87:20:bf: 83:10:e1:e8:c9:99:45:0f:91:da:2c:65:8c:65:9f: bc:6f:e3:01:73:a9:97:c9:5d:09:87:dc:d0:34:1a: 78:ca:0a:b1:ed:b1:5a:0f:ad:3e:27:cf:24:09:7f: e8:e1:ca:1b:f5:33:09:d9:ef:81:c6:85:ae:cc:08: 35:0a:91:3e:94:0b:04:be:75:1e:4f:92:b1:3a:3d: da:50:02:e2:a7:bc:7b:f7:52:a9:5e:f3:c8:5c:15: 97:f1:21:96:53:83:c4:8c:ee:2d:ab:ec:f1:57:f5: 5f:1d:94:6c:20:b8:66:e3:62:dd:d4:09:3f:73:d2: 6d:05:9c:c6:2f:cb:64:c1:58:d0:29:7d:f5:ca:69: 37:b4:3a:a4:15:0b:62:5b:6e:4b:31:16:54:c3:39: 77:40:7f:90:6d:10:03:bf:0d:82:d4:27:0a:e2:f6: d9:28:16:f1:fd:96:9f:7d:f4:05:4d:4a:30:0a:37: 85:dd:55:ae:68:a4:13:d2:ed:bc:ad:9b:4b:c6:4b: 13:b5:a8:d4:c7:59:9d:8d:01:8d:2e:7f:fb:a6:59: 14:bd:8b:f0:f0:58:e8:67:02:66:17:b9:86:8d:ec: 06:18:ee:4b:3c:96:ed:61:27:12:4d:fa:1f:7f:a8: c5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BF:3B:F3:EA:2C:B2:87:3F:34:89:BA:9A:14:ED:B8:FC:36:0E:44 X509v3 Authority Key Identifier: keyid:17:F1:2F:4C:F1:6D:C1:B1:8D:B7:69:4C:B3:44:1C:8B:80:E0:AC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/17F12F4CF16DC1B18DB7694CB3441C8B80E0AC27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.116.0/24 Signature Algorithm: sha256WithRSAEncryption 46:02:04:ca:4b:88:52:6f:62:5a:25:2f:18:2c:19:e7:58:46: cd:35:3c:6d:0b:c5:42:7f:f9:29:5e:1e:05:79:7d:59:cf:96: f3:70:95:f4:c0:e3:59:70:57:b2:eb:ef:ac:6a:1a:b5:0c:25: 2b:c3:77:07:30:17:58:d5:e2:e9:76:02:fa:37:d0:b1:89:83: 8c:f7:b5:b6:01:b5:7d:93:f1:ff:a6:7f:55:8d:50:db:73:61: 09:7b:94:ef:86:74:f8:4e:a2:a3:71:fc:fa:d1:cb:0c:26:55: a4:8d:62:d6:14:3f:af:a4:d6:18:0c:25:c6:fe:5e:57:3c:0c: d0:a1:9d:42:e3:11:f1:d6:cd:6f:68:cb:91:e4:ff:5f:3e:32: 1d:d4:a1:04:d5:f6:be:66:32:86:a4:b7:a3:cb:71:c3:10:e2: 85:c2:4a:09:87:92:70:66:82:a8:42:c4:1a:33:d6:f6:1a:73: d3:0a:fd:be:55:0d:59:3a:cf:de:c2:a7:8e:e3:02:7f:d1:4d: c6:90:b8:2d:94:c1:d5:f2:2b:ad:2a:21:51:a4:c7:da:85:c9: e2:d8:3e:4f:21:ec:7d:00:d0:d4:8e:06:3c:fa:71:0a:75:bc: 2c:48:6c:fb:2e:80:a9:3a:31:ab:47:b8:da:0d:85:4c:6d:32: 9f:a6:b3:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOXOHrBc5I1JFyeDUZXaDweeTaMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdGMTJGNENGMTZEQzFCMThEQjc2OTRDQjM0NDFDOEI4 MEUwQUMyNzAeFw0yNjA1MDMwMjU1NDBaFw0yNzA1MDIwMzAwNDBaMDMxMTAvBgNV BAMTKDA0QkYzQkYzRUEyQ0IyODczRjM0ODlCQTlBMTRFREI4RkMzNjBFNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClNejgwwr5F1aqGIcgv4MQ4ejJ mUUPkdosZYxln7xv4wFzqZfJXQmH3NA0GnjKCrHtsVoPrT4nzyQJf+jhyhv1MwnZ 74HGha7MCDUKkT6UCwS+dR5PkrE6PdpQAuKnvHv3Uqle88hcFZfxIZZTg8SM7i2r 7PFX9V8dlGwguGbjYt3UCT9z0m0FnMYvy2TBWNApffXKaTe0OqQVC2JbbksxFlTD OXdAf5BtEAO/DYLUJwri9tkoFvH9lp999AVNSjAKN4XdVa5opBPS7bytm0vGSxO1 qNTHWZ2NAY0uf/umWRS9i/DwWOhnAmYXuYaN7AYY7ks8lu1hJxJN+h9/qMWrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBL878+ossoc/NIm6mhTtuPw2DkQwHwYDVR0j BBgwFoAUF/EvTPFtwbGNt2lMs0Qci4DgrCcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjMyZDc2MjctNDdkNy00ZmQwLWFlMGYtNjNiODczZmUyYzg4LzAvMTdGMTJGNENG MTZEQzFCMThEQjc2OTRDQjM0NDFDOEI4MEUwQUMyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xN0YxMkY0Q0YxNkRDMUIxOERCNzY5NENCMzQ0MUM4QjgwRTBB QzI3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IzMmQ3NjI3LTQ3ZDctNGZkMC1h ZTBmLTYzYjg3M2ZlMmM4OC8wLzMxMzAzMzJlMzEzNDM5MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXQwDQYJ KoZIhvcNAQELBQADggEBAEYCBMpLiFJvYlolLxgsGedYRs01PG0LxUJ/+SleHgV5 fVnPlvNwlfTA41lwV7Lr76xqGrUMJSvDdwcwF1jV4ul2Avo30LGJg4z3tbYBtX2T 8f+mf1WNUNtzYQl7lO+GdPhOoqNx/PrRywwmVaSNYtYUP6+k1hgMJcb+Xlc8DNCh nULjEfHWzW9oy5Hk/18+Mh3UoQTV9r5mMoakt6PLccMQ4oXCSgmHknBmgqhCxBoz 1vYac9MK/b5VDVk6z97Cp47jAn/RTcaQuC2UwdXyK60qIVGkx9qFyeLYPk8h7H0A 0NSOBjz6cQp1vCxIbPsugKk6MatHuNoNhUxtMp+ms8k= -----END CERTIFICATE-----Generated at Wed May 13 10:16:35 2026 by rpki-client