$ rpki-client -vvf rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa File: 3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa (raw, json) Hash identifier: OEHIL+0AeLTQdTnJq21EamkWU5d8RiSPVYNXIxcSpyg= Subject key identifier: 1B:15:CC:B2:47:85:FE:1D:5C:32:2B:8C:4E:5D:B4:3C:D0:40:BE:32 Certificate issuer: /CN=1AF016E175A90D133C5B21DF91F60FA91FC1898F Certificate serial: 76202DD107969084AAD2B0F4943DF992B03BEC37 Authority key identifier: 1A:F0:16:E1:75:A9:0D:13:3C:5B:21:DF:91:F6:0F:A9:1F:C1:89:8F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1AF016E175A90D133C5B21DF91F60FA91FC1898F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa Signing time: Sun 03 May 2026 03:01:09 +0000 ROA not before: Sun 03 May 2026 02:56:09 +0000 ROA not after: Sun 02 May 2027 03:01:09 +0000 asID: 136854 IP address blocks: 103.102.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1AF016E175A90D133C5B21DF91F60FA91FC1898F.crl rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1AF016E175A90D133C5B21DF91F60FA91FC1898F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1AF016E175A90D133C5B21DF91F60FA91FC1898F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:20:2d:d1:07:96:90:84:aa:d2:b0:f4:94:3d:f9:92:b0:3b:ec:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AF016E175A90D133C5B21DF91F60FA91FC1898F Validity Not Before: May 3 02:56:09 2026 GMT Not After : May 2 03:01:09 2027 GMT Subject: CN=1B15CCB24785FE1D5C322B8C4E5DB43CD040BE32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:62:50:33:6a:43:59:2e:cc:e2:5f:5e:d5: 9b:d0:6b:25:0b:7a:b7:e1:28:42:6a:f1:b4:a3:bb: 7b:e1:96:7d:f2:67:74:bc:e9:8b:65:47:1a:f0:da: 1d:ea:f9:c2:72:3b:1e:2e:66:89:50:2e:32:5c:d6: ad:f1:68:67:17:5b:6b:9f:01:a1:c0:47:14:97:54: b4:69:37:7a:82:2b:00:70:3b:2b:eb:5c:af:22:60: 43:4b:80:95:fb:e9:d8:65:a7:16:c1:42:a7:04:70: 45:81:e6:99:5a:a2:6f:22:0f:3b:11:76:83:16:bc: 52:46:96:7f:bd:d2:16:5c:c9:aa:26:75:9b:b7:e7: aa:98:a0:a7:ba:2f:2f:ed:ac:a1:a7:16:6f:03:da: e3:36:7e:49:a9:27:d1:c6:f7:bd:9a:25:f4:d0:8c: 64:4a:0b:f0:c2:f8:23:e9:91:7e:a0:c3:e6:46:ec: 25:82:ce:27:15:a5:43:95:d3:9f:7b:db:a8:7d:2f: ca:a5:6b:31:56:01:7a:cc:d1:e3:ed:33:4c:26:ce: 71:ab:58:50:37:cc:3a:6e:8f:9c:e8:ab:d2:1b:e6: f8:23:26:c6:af:63:29:86:2f:bb:d7:9c:d6:66:0f: 62:f3:00:b6:88:82:a2:86:f1:72:14:ca:de:23:f0: 74:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:15:CC:B2:47:85:FE:1D:5C:32:2B:8C:4E:5D:B4:3C:D0:40:BE:32 X509v3 Authority Key Identifier: keyid:1A:F0:16:E1:75:A9:0D:13:3C:5B:21:DF:91:F6:0F:A9:1F:C1:89:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1AF016E175A90D133C5B21DF91F60FA91FC1898F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1AF016E175A90D133C5B21DF91F60FA91FC1898F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.143.0/24 Signature Algorithm: sha256WithRSAEncryption c5:db:35:05:78:5c:a7:db:29:d3:a2:53:13:7d:71:28:04:be: ea:d8:d5:8c:d3:51:75:4b:a3:8d:84:8b:e0:51:b2:bd:c9:90: 78:d7:ff:6f:cd:dc:1b:51:e6:64:e3:b9:9e:83:63:9b:f2:eb: da:6c:d3:7b:9d:46:95:86:08:72:cc:be:e9:3e:62:0d:a1:16: 2c:c8:52:eb:c8:99:ba:05:75:3e:a9:d3:34:0b:fd:22:46:f6: e5:b7:92:5b:3d:33:ee:70:49:e1:a8:16:f9:76:10:38:45:4c: b9:73:ac:1a:82:9a:15:7a:36:37:fd:4c:0f:bb:95:ed:dd:c2: 48:41:a6:59:a9:4c:67:ef:fd:30:42:f2:17:ee:c2:2b:b3:f9: 51:ee:0a:b1:a2:85:fc:38:7f:66:06:de:65:5c:ed:9b:6b:c6: 10:6d:e8:d3:df:9d:b3:20:d4:68:7e:11:36:29:45:62:2b:19: 6c:5e:db:86:2d:9d:6e:af:a5:bd:b6:4c:dd:b5:7d:4c:a5:6e: 8e:25:eb:99:3f:90:8d:9d:0b:59:cf:92:9f:33:79:94:49:a9: 8c:8b:ba:b3:cf:c7:8d:a9:26:bc:e0:9d:aa:c8:ef:42:98:85: 8e:61:b8:71:00:31:e1:8b:98:11:41:8b:05:20:72:69:6d:f9: 7b:4d:48:65 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdiAt0QeWkISq0rD0lD35krA77DcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFGMDE2RTE3NUE5MEQxMzNDNUIyMURGOTFGNjBGQTkx RkMxODk4RjAeFw0yNjA1MDMwMjU2MDlaFw0yNzA1MDIwMzAxMDlaMDMxMTAvBgNV BAMTKDFCMTVDQ0IyNDc4NUZFMUQ1QzMyMkI4QzRFNURCNDNDRDA0MEJFMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH6mJQM2pDWS7M4l9e1ZvQayUL erfhKEJq8bSju3vhln3yZ3S86YtlRxrw2h3q+cJyOx4uZolQLjJc1q3xaGcXW2uf AaHARxSXVLRpN3qCKwBwOyvrXK8iYENLgJX76dhlpxbBQqcEcEWB5plaom8iDzsR doMWvFJGln+90hZcyaomdZu356qYoKe6Ly/trKGnFm8D2uM2fkmpJ9HG972aJfTQ jGRKC/DC+CPpkX6gw+ZG7CWCzicVpUOV059726h9L8qlazFWAXrM0ePtM0wmznGr WFA3zDpuj5zoq9Ib5vgjJsavYymGL7vXnNZmD2LzALaIgqKG8XIUyt4j8HQjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGxXMskeF/h1cMiuMTl20PNBAvjIwHwYDVR0j BBgwFoAUGvAW4XWpDRM8WyHfkfYPqR/BiY8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjU2MzJkOTktMzJiMi00NjdiLWI3ZmUtMGQyNWY4NTNiZmE2LzAvMUFGMDE2RTE3 NUE5MEQxMzNDNUIyMURGOTFGNjBGQTkxRkMxODk4Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQUYwMTZFMTc1QTkwRDEzM0M1QjIxREY5MUY2MEZBOTFGQzE4 OThGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I1NjMyZDk5LTMyYjItNDY3Yi1i N2ZlLTBkMjVmODUzYmZhNi8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZo8wDQYJ KoZIhvcNAQELBQADggEBAMXbNQV4XKfbKdOiUxN9cSgEvurY1YzTUXVLo42Ei+BR sr3JkHjX/2/N3BtR5mTjuZ6DY5vy69ps03udRpWGCHLMvuk+Yg2hFizIUuvImboF dT6p0zQL/SJG9uW3kls9M+5wSeGoFvl2EDhFTLlzrBqCmhV6Njf9TA+7le3dwkhB plmpTGfv/TBC8hfuwiuz+VHuCrGihfw4f2YG3mVc7ZtrxhBt6NPfnbMg1Gh+ETYp RWIrGWxe24YtnW6vpb22TN21fUylbo4l65k/kI2dC1nPkp8zeZRJqYyLurPPx42p JrzgnarI70KYhY5huHEAMeGLmBFBiwUgcmlt+XtNSGU= -----END CERTIFICATE-----Generated at Wed May 13 06:25:58 2026 by rpki-client