$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31312e32312e302f32342d3234203d3e203538333936.roa File: 3130332e31312e32312e302f32342d3234203d3e203538333936.roa (raw, json) Hash identifier: rQv5s8+gPpGYB/vGkK0E1KzGoHeIzauVQLPwV+zcAQU= Subject key identifier: D8:CD:BC:CC:C1:61:E5:D7:33:A9:A3:8D:B6:3C:BC:B3:75:6D:43:80 Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 295E0D216182CF0890CBD87EF61AEA9C498B1805 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31312e32312e302f32342d3234203d3e203538333936.roa Signing time: Sun 03 May 2026 03:02:35 +0000 ROA not before: Sun 03 May 2026 02:57:35 +0000 ROA not after: Sun 02 May 2027 03:02:35 +0000 asID: 58396 IP address blocks: 103.11.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5e:0d:21:61:82:cf:08:90:cb:d8:7e:f6:1a:ea:9c:49:8b:18:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:35 2026 GMT Not After : May 2 03:02:35 2027 GMT Subject: CN=D8CDBCCCC161E5D733A9A38DB63CBCB3756D4380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:aa:52:56:13:82:71:1f:3f:4e:e9:5b:bf:38: 09:a0:28:0d:c3:4e:bd:cc:9b:6b:31:8c:39:39:f0: ca:28:75:94:e3:2a:77:e4:12:07:4e:49:59:9a:2c: 5a:27:2b:e5:13:61:7f:60:84:b2:80:86:e4:66:16: 1c:52:6b:9f:ea:e4:63:6d:50:a3:2e:87:cd:4b:38: ed:27:37:81:5a:37:e0:7e:ad:a5:da:d7:34:ef:89: 19:2f:e8:ab:1f:a0:51:87:67:57:af:af:ce:e6:bb: a7:4f:ac:02:9d:75:14:c8:cb:4e:d9:b8:7f:80:c5: 78:0e:36:c5:db:f1:ca:e5:ef:fb:ff:f5:db:14:ac: 3e:a3:29:d1:be:3a:7a:46:74:ea:4f:08:6e:0b:93: ee:dd:58:5e:85:a2:f5:61:b4:af:2a:89:0a:b0:a5: 43:20:09:1f:cd:a4:ca:63:fe:10:7b:d3:db:08:08: 97:72:ea:74:9c:dc:08:81:7c:8c:6c:e3:18:67:68: 6f:8c:9c:d5:cb:b3:03:b2:10:9b:59:ac:af:53:1b: 3a:ad:04:ec:a5:43:5d:1e:42:8d:9d:a9:a0:b2:3d: 73:76:3e:85:22:9b:01:10:15:82:6f:8a:c7:04:2f: 9e:8d:c4:cd:19:ea:b2:68:c2:51:59:11:6f:f5:2d: de:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CD:BC:CC:C1:61:E5:D7:33:A9:A3:8D:B6:3C:BC:B3:75:6D:43:80 X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31312e32312e302f32342d3234203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.21.0/24 Signature Algorithm: sha256WithRSAEncryption 22:ca:a2:d5:00:c9:8a:a9:eb:a7:9d:c0:9b:42:e3:07:92:8a: 4d:ce:73:08:b4:4f:55:67:5d:50:c7:0d:bd:d2:ef:4d:4e:71: 50:b8:7b:04:bb:89:1e:3f:fb:f7:ad:d5:17:8d:1c:ec:58:67: 3d:cb:74:5a:38:1e:73:65:5c:28:56:2b:2f:a5:4f:a4:73:ad: e5:19:f8:43:98:70:51:76:d7:95:45:04:dd:52:0b:4b:9c:f5: 4f:07:0b:36:bb:d6:84:04:5c:1b:23:0e:82:67:a8:e0:3c:7b: ce:22:76:d9:60:94:75:0d:0a:d4:33:68:a8:37:ca:81:70:7d: 61:55:5c:1a:6e:de:82:c6:15:15:c1:a4:f5:0a:a1:0c:d4:15: 2d:c8:5d:e2:28:92:3f:49:7c:c6:58:e6:95:72:b9:d3:2d:af: bc:ec:09:c2:9e:c9:79:c1:7a:f8:bb:df:e7:39:bb:10:90:f9: 6a:27:61:64:5b:7f:1e:ae:c4:95:1f:04:8d:f1:85:25:49:22: 21:c2:8b:bc:2f:07:ff:d4:6d:c7:85:00:b6:29:a3:31:c5:a6: e3:9e:5f:6f:1c:ba:00:d9:05:d8:16:2f:d9:8a:a1:a6:a3:31: 66:d9:eb:01:72:99:ce:18:48:89:2a:5b:07:73:6b:83:4f:5a: b4:3d:40:07 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKV4NIWGCzwiQy9h+9hrqnEmLGAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzVaFw0yNzA1MDIwMzAyMzVaMDMxMTAvBgNV BAMTKEQ4Q0RCQ0NDQzE2MUU1RDczM0E5QTM4REI2M0NCQ0IzNzU2RDQzODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWqlJWE4JxHz9O6Vu/OAmgKA3D Tr3Mm2sxjDk58MoodZTjKnfkEgdOSVmaLFonK+UTYX9ghLKAhuRmFhxSa5/q5GNt UKMuh81LOO0nN4FaN+B+raXa1zTviRkv6KsfoFGHZ1evr87mu6dPrAKddRTIy07Z uH+AxXgONsXb8crl7/v/9dsUrD6jKdG+OnpGdOpPCG4Lk+7dWF6FovVhtK8qiQqw pUMgCR/NpMpj/hB709sICJdy6nSc3AiBfIxs4xhnaG+MnNXLswOyEJtZrK9TGzqt BOylQ10eQo2dqaCyPXN2PoUimwEQFYJviscEL56NxM0Z6rJowlFZEW/1Ld5TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2M28zMFh5dczqaONtjy8s3VtQ4AwHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzEzMTJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnCxUwDQYJKoZIhvcN AQELBQADggEBACLKotUAyYqp66edwJtC4weSik3Ocwi0T1VnXVDHDb3S701OcVC4 ewS7iR4/+/et1ReNHOxYZz3LdFo4HnNlXChWKy+lT6RzreUZ+EOYcFF215VFBN1S C0uc9U8HCza71oQEXBsjDoJnqOA8e84idtlglHUNCtQzaKg3yoFwfWFVXBpu3oLG FRXBpPUKoQzUFS3IXeIokj9JfMZY5pVyudMtr7zsCcKeyXnBevi73+c5uxCQ+Won YWRbfx6uxJUfBI3xhSVJIiHCi7wvB//UbceFALYpozHFpuOeX28cugDZBdgWL9mK oaajMWbZ6wFymc4YSIkqWwdza4NPWrQ9QAc= -----END CERTIFICATE-----Generated at Wed May 13 05:58:23 2026 by rpki-client