$ rpki-client -vvf rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa File: 3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: vrdxMLho5nkxNsVzaZL33riDh9yKFKVbCWaknvqb6JM= Subject key identifier: 7C:4F:30:10:60:0B:95:00:1C:DB:A0:B7:7D:26:13:CF:94:C3:00:86 Certificate issuer: /CN=1890224BACCE8C551C127A7F4052ECE0A68BC6AC Certificate serial: 1D241C7CFB454CCBC699DE063FBDFF82E09D4DC7 Authority key identifier: 18:90:22:4B:AC:CE:8C:55:1C:12:7A:7F:40:52:EC:E0:A6:8B:C6:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa Signing time: Sun 03 May 2026 03:01:57 +0000 ROA not before: Sun 03 May 2026 02:56:57 +0000 ROA not after: Sun 02 May 2027 03:01:57 +0000 asID: 141645 IP address blocks: 103.162.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.crl rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:24:1c:7c:fb:45:4c:cb:c6:99:de:06:3f:bd:ff:82:e0:9d:4d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1890224BACCE8C551C127A7F4052ECE0A68BC6AC Validity Not Before: May 3 02:56:57 2026 GMT Not After : May 2 03:01:57 2027 GMT Subject: CN=7C4F3010600B95001CDBA0B77D2613CF94C30086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:8c:f6:9c:03:2b:fb:e2:a0:4e:df:8f:01:e1: 87:23:72:56:38:83:dd:0a:e5:2b:fa:0b:51:66:59: ba:3b:2c:73:11:09:72:2f:94:08:ea:14:2c:f9:f4: e0:83:7e:8b:d0:8e:72:48:73:51:dc:d6:fb:b6:d9: cf:c7:8d:14:3e:dc:be:3c:7e:90:1d:89:f8:60:bf: 34:03:6a:c1:ae:3c:4f:e0:d0:94:a4:ee:76:22:78: e6:78:09:cf:52:e3:15:3b:ac:9a:84:b1:e6:f2:5d: 0b:fd:53:a3:21:5f:69:71:b7:6d:6d:3b:10:37:2d: 45:df:93:d9:45:df:53:34:5e:98:71:a7:66:00:76: f8:31:c5:35:73:30:a4:fa:e5:e4:3f:50:df:e1:a5: b7:52:be:bf:1c:fa:cb:55:f7:3d:e3:a1:b2:58:c9: 8a:47:02:d2:5a:dd:73:a4:30:a4:0a:1d:aa:d6:be: fd:e2:00:c3:dd:c8:66:68:56:a7:a7:f3:87:bd:38: 9b:9a:82:9d:67:c3:bd:46:64:77:4c:7c:8c:bf:35: 86:f1:4c:86:9d:4d:fe:0b:a8:3e:69:58:ea:e4:75: f7:b6:0b:23:a1:f1:ad:d4:40:34:e7:f6:b5:23:da: c5:f3:18:4d:e7:9c:7d:17:41:c5:6e:66:0c:93:78: 5c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4F:30:10:60:0B:95:00:1C:DB:A0:B7:7D:26:13:CF:94:C3:00:86 X509v3 Authority Key Identifier: keyid:18:90:22:4B:AC:CE:8C:55:1C:12:7A:7F:40:52:EC:E0:A6:8B:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.54.0/24 Signature Algorithm: sha256WithRSAEncryption a2:54:c0:55:f6:38:2b:a5:08:33:1d:4f:3f:89:68:d5:97:bd: e8:e7:70:92:47:97:3a:b4:fc:ba:c4:fb:89:6f:a8:9f:90:b8: 4b:73:26:d4:14:44:5d:f0:a7:96:19:07:71:b9:75:c6:7a:83: 98:a9:45:41:b4:98:35:bd:db:f4:9e:50:24:24:55:ae:6d:d6: b6:64:5f:14:10:ca:34:bc:98:97:00:b9:38:31:40:f5:12:ab: a9:06:c8:b6:48:19:dc:85:bc:5f:af:04:fb:b4:95:fd:9c:68: 5d:5a:9f:b4:62:4f:b5:65:f8:5b:48:e6:49:0c:dc:da:b8:ff: 93:a9:37:c7:bc:fb:76:78:f2:35:8d:6b:24:77:92:9d:4e:e5: 30:40:1c:af:ae:0c:32:97:13:db:6a:14:a9:0f:80:7b:b8:4a: e7:0f:40:43:06:c6:ed:9e:26:f6:72:4e:7f:fd:7b:fc:4a:65: 83:9b:ab:e0:fa:6e:15:01:6c:c1:c3:1b:ff:82:1c:d7:ae:c3: f9:d5:d4:cc:40:f2:90:17:1d:1c:ad:7d:54:da:d1:81:51:db: 0c:90:30:2f:72:b3:ed:41:94:c5:3b:6e:78:09:59:9f:ec:13: 03:f7:cc:2f:9c:d0:42:85:91:84:a8:d5:28:f3:f5:21:cf:79: 89:b2:01:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHSQcfPtFTMvGmd4GP73/guCdTccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg5MDIyNEJBQ0NFOEM1NTFDMTI3QTdGNDA1MkVDRTBB NjhCQzZBQzAeFw0yNjA1MDMwMjU2NTdaFw0yNzA1MDIwMzAxNTdaMDMxMTAvBgNV BAMTKDdDNEYzMDEwNjAwQjk1MDAxQ0RCQTBCNzdEMjYxM0NGOTRDMzAwODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxjPacAyv74qBO348B4YcjclY4 g90K5Sv6C1FmWbo7LHMRCXIvlAjqFCz59OCDfovQjnJIc1Hc1vu22c/HjRQ+3L48 fpAdifhgvzQDasGuPE/g0JSk7nYieOZ4Cc9S4xU7rJqEsebyXQv9U6MhX2lxt21t OxA3LUXfk9lF31M0Xphxp2YAdvgxxTVzMKT65eQ/UN/hpbdSvr8c+stV9z3jobJY yYpHAtJa3XOkMKQKHarWvv3iAMPdyGZoVqen84e9OJuagp1nw71GZHdMfIy/NYbx TIadTf4LqD5pWOrkdfe2CyOh8a3UQDTn9rUj2sXzGE3nnH0XQcVuZgyTeFwNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfE8wEGALlQAc26C3fSYTz5TDAIYwHwYDVR0j BBgwFoAUGJAiS6zOjFUcEnp/QFLs4KaLxqwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yjg1M2FmZGQtMmUwOS00NzczLThiZTQtNmZkMGVlOTBiMDQwLzAvMTg5MDIyNEJB Q0NFOEM1NTFDMTI3QTdGNDA1MkVDRTBBNjhCQzZBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xODkwMjI0QkFDQ0U4QzU1MUMxMjdBN0Y0MDUyRUNFMEE2OEJD NkFDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I4NTNhZmRkLTJlMDktNDc3My04 YmU0LTZmZDBlZTkwYjA0MC8wLzMxMzAzMzJlMzEzNjMyMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6I2MA0GCSqG SIb3DQEBCwUAA4IBAQCiVMBV9jgrpQgzHU8/iWjVl73o53CSR5c6tPy6xPuJb6if kLhLcybUFERd8KeWGQdxuXXGeoOYqUVBtJg1vdv0nlAkJFWubda2ZF8UEMo0vJiX ALk4MUD1EqupBsi2SBnchbxfrwT7tJX9nGhdWp+0Yk+1ZfhbSOZJDNzauP+TqTfH vPt2ePI1jWskd5KdTuUwQByvrgwylxPbahSpD4B7uErnD0BDBsbtnib2ck5//Xv8 SmWDm6vg+m4VAWzBwxv/ghzXrsP51dTMQPKQFx0crX1U2tGBUdsMkDAvcrPtQZTF O254CVmf7BMD98wvnNBChZGEqNUo8/Uhz3mJsgEK -----END CERTIFICATE-----Generated at Wed May 13 04:17:01 2026 by rpki-client