$ rpki-client -vvf rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa File: 3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: XT0qu0X/ewJ1G8Ps14eM7XvkOXUBLJSpuICPqH+2rFs= Subject key identifier: 9E:10:6E:C5:4F:05:74:C5:D1:12:64:AE:23:D9:86:99:D6:5A:C6:83 Certificate issuer: /CN=1890224BACCE8C551C127A7F4052ECE0A68BC6AC Certificate serial: 21ECE3F9B0A2D509046036C03B947E965CB9B8E6 Authority key identifier: 18:90:22:4B:AC:CE:8C:55:1C:12:7A:7F:40:52:EC:E0:A6:8B:C6:AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa Signing time: Sun 03 May 2026 03:01:57 +0000 ROA not before: Sun 03 May 2026 02:56:57 +0000 ROA not after: Sun 02 May 2027 03:01:57 +0000 asID: 141645 IP address blocks: 103.179.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.crl rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ec:e3:f9:b0:a2:d5:09:04:60:36:c0:3b:94:7e:96:5c:b9:b8:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1890224BACCE8C551C127A7F4052ECE0A68BC6AC Validity Not Before: May 3 02:56:57 2026 GMT Not After : May 2 03:01:57 2027 GMT Subject: CN=9E106EC54F0574C5D11264AE23D98699D65AC683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:08:d7:68:83:be:81:7e:06:02:2c:46:22: 27:2b:cd:7b:f4:4b:e3:40:d3:c8:64:72:c1:f1:4c: d7:93:09:84:94:58:0e:45:8f:46:1c:61:1a:81:67: 1d:3c:1b:fb:30:a9:67:82:9a:ae:3e:ab:b8:63:32: d1:13:bb:79:37:b4:03:01:fa:5b:78:6d:26:5b:9b: 91:01:c8:af:81:9a:e2:83:94:9e:2a:6e:ff:e6:1b: 44:e6:e5:20:5e:cd:84:c3:d8:dd:fc:f1:f6:4d:f6: 8a:63:09:89:3e:f7:7a:de:7e:d3:61:a8:71:8a:4c: 8b:93:ab:9f:6d:e5:c1:a6:78:19:3e:c8:b2:4e:6c: 9b:45:24:0b:3a:5a:c5:e0:44:b7:ed:d6:82:05:96: 30:55:32:52:33:ce:55:22:f6:8a:18:6b:8a:27:1b: 5d:a2:b7:78:c5:2c:e8:1e:fd:35:50:02:4f:8a:c1: f1:e8:a1:f9:7e:3e:79:23:a8:a0:78:20:18:ac:3b: 5c:23:49:b3:32:b5:69:9e:70:7b:89:c7:b9:0a:66: 52:a1:be:b2:a1:ea:a3:89:cd:a9:79:d0:3a:bf:36: a1:7d:5b:42:6f:1d:b1:e1:66:d0:d8:ba:2e:27:9c: 40:3d:51:8d:89:6b:ac:72:1e:54:95:0a:c8:7c:aa: aa:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:10:6E:C5:4F:05:74:C5:D1:12:64:AE:23:D9:86:99:D6:5A:C6:83 X509v3 Authority Key Identifier: keyid:18:90:22:4B:AC:CE:8C:55:1C:12:7A:7F:40:52:EC:E0:A6:8B:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1890224BACCE8C551C127A7F4052ECE0A68BC6AC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.117.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d8:c5:99:d5:ac:ad:24:41:fe:e1:a4:87:5f:aa:c2:33:d0: 9a:0e:5b:41:d8:1e:a5:bd:34:2f:f4:0a:3d:bf:26:c6:b5:91: dc:49:dc:6e:e5:05:9f:42:8b:e7:56:cc:ef:03:f6:ca:a9:ba: 33:38:2a:71:3f:00:74:6a:f0:29:57:8e:03:fe:86:14:4b:5e: d4:0a:a8:1e:e4:64:0f:82:ce:41:af:ca:b4:33:a0:60:d1:00: ba:19:5e:9b:38:fa:44:ff:97:81:7c:24:43:3f:73:b5:bb:59: 2f:fd:00:3c:ac:c1:d3:16:31:30:22:61:64:f9:9a:d8:4d:f7: 40:a4:49:24:03:a9:53:83:02:fa:a6:9a:fc:b5:13:7b:a1:99: 15:77:0d:0c:6c:a1:f9:df:b0:04:11:01:cc:c2:63:be:79:c5: da:b8:47:a4:0d:fe:fe:07:b2:ec:6d:fd:d7:be:0e:de:ae:4e: 80:f4:7e:44:d9:07:5b:2b:fa:fd:1a:71:07:5b:ba:7b:9b:9a: b3:6d:bf:67:69:7f:72:8b:38:c4:33:c4:56:11:6a:e6:95:57: 79:34:db:71:4b:ae:5d:ac:9f:1e:46:d4:03:e4:16:3b:89:ef: a4:65:70:f5:98:d8:c8:cc:4d:fd:b4:98:0e:c2:88:5d:d5:d9: b9:db:fc:e4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIezj+bCi1QkEYDbAO5R+lly5uOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg5MDIyNEJBQ0NFOEM1NTFDMTI3QTdGNDA1MkVDRTBB NjhCQzZBQzAeFw0yNjA1MDMwMjU2NTdaFw0yNzA1MDIwMzAxNTdaMDMxMTAvBgNV BAMTKDlFMTA2RUM1NEYwNTc0QzVEMTEyNjRBRTIzRDk4Njk5RDY1QUM2ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/wwjXaIO+gX4GAixGIicrzXv0 S+NA08hkcsHxTNeTCYSUWA5Fj0YcYRqBZx08G/swqWeCmq4+q7hjMtETu3k3tAMB +lt4bSZbm5EByK+BmuKDlJ4qbv/mG0Tm5SBezYTD2N388fZN9opjCYk+93reftNh qHGKTIuTq59t5cGmeBk+yLJObJtFJAs6WsXgRLft1oIFljBVMlIzzlUi9ooYa4on G12it3jFLOge/TVQAk+KwfHoofl+PnkjqKB4IBisO1wjSbMytWmecHuJx7kKZlKh vrKh6qOJzal50Dq/NqF9W0JvHbHhZtDYui4nnEA9UY2Ja6xyHlSVCsh8qqpbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnhBuxU8FdMXREmSuI9mGmdZaxoMwHwYDVR0j BBgwFoAUGJAiS6zOjFUcEnp/QFLs4KaLxqwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yjg1M2FmZGQtMmUwOS00NzczLThiZTQtNmZkMGVlOTBiMDQwLzAvMTg5MDIyNEJB Q0NFOEM1NTFDMTI3QTdGNDA1MkVDRTBBNjhCQzZBQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xODkwMjI0QkFDQ0U4QzU1MUMxMjdBN0Y0MDUyRUNFMEE2OEJD NkFDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I4NTNhZmRkLTJlMDktNDc3My04 YmU0LTZmZDBlZTkwYjA0MC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABns3UwDQYJ KoZIhvcNAQELBQADggEBABDYxZnVrK0kQf7hpIdfqsIz0JoOW0HYHqW9NC/0Cj2/ Jsa1kdxJ3G7lBZ9Ci+dWzO8D9sqpujM4KnE/AHRq8ClXjgP+hhRLXtQKqB7kZA+C zkGvyrQzoGDRALoZXps4+kT/l4F8JEM/c7W7WS/9ADyswdMWMTAiYWT5mthN90Ck SSQDqVODAvqmmvy1E3uhmRV3DQxsofnfsAQRAczCY755xdq4R6QN/v4Hsuxt/de+ Dt6uToD0fkTZB1sr+v0acQdbunubmrNtv2dpf3KLOMQzxFYRauaVV3k023FLrl2s nx5G1APkFjuJ76RlcPWY2MjMTf20mA7CiF3V2bnb/OQ= -----END CERTIFICATE-----Generated at Wed May 13 09:12:02 2026 by rpki-client