$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133382e302f32342d3234203d3e20313338303737.roa File: 3130332e31362e3133382e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: xLR88IyMVCA8vdgyK8OQ+LkpI8JImP1CEA8k4aA9Syk= Subject key identifier: C7:F8:1E:57:99:AB:F2:B8:3D:37:92:3F:13:9F:FB:13:1D:EF:30:3F Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 097BDEDE0B0B25808D5CE31FE899E60FBDCFF759 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133382e302f32342d3234203d3e20313338303737.roa Signing time: Sun 03 May 2026 03:02:36 +0000 ROA not before: Sun 03 May 2026 02:57:36 +0000 ROA not after: Sun 02 May 2027 03:02:36 +0000 asID: 138077 IP address blocks: 103.16.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7b:de:de:0b:0b:25:80:8d:5c:e3:1f:e8:99:e6:0f:bd:cf:f7:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:36 2026 GMT Not After : May 2 03:02:36 2027 GMT Subject: CN=C7F81E5799ABF2B83D37923F139FFB131DEF303F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:d0:26:4b:ee:a9:78:86:05:7f:2c:4c:35: 67:b3:fd:01:1d:cf:27:e1:27:19:f0:0d:74:f7:1d: 81:68:54:b5:f6:7f:e0:32:57:b4:f0:a5:57:5c:3a: dd:dc:82:b3:59:a6:bf:70:f1:15:f3:f0:06:ff:1e: 10:ef:f8:06:36:3c:3c:28:50:a5:74:b7:fe:bf:94: 11:c4:f0:8c:84:fd:1c:b0:d8:17:ce:c1:3f:11:b1: 02:bc:3d:d3:e1:ac:c0:ed:d6:67:15:1c:2e:2e:ad: 88:18:d7:a2:55:4a:64:fb:0e:60:68:3f:29:ed:82: e0:39:c6:d5:1a:c5:71:a9:97:31:63:26:62:3e:3f: b4:3e:7e:46:63:71:5e:27:11:4f:3d:ae:cc:d6:20: cb:a5:11:0a:55:cb:38:10:e6:87:fc:af:fe:03:7d: 9c:84:26:fc:55:6c:14:ef:9a:b6:88:3f:8a:07:58: 39:8f:11:6a:b0:63:9d:df:a3:0e:f1:e8:60:da:35: f1:05:89:30:13:f1:f7:64:6d:08:fe:90:4d:58:6b: 0e:04:9b:a0:e2:52:86:c0:3c:89:13:ba:78:a4:4f: ac:c2:f5:c2:91:91:d0:44:80:0c:07:ab:7d:b2:78: 6d:41:04:8f:1b:ad:88:c4:fb:83:13:90:02:37:4d: e6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F8:1E:57:99:AB:F2:B8:3D:37:92:3F:13:9F:FB:13:1D:EF:30:3F X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133382e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.138.0/24 Signature Algorithm: sha256WithRSAEncryption 12:ec:5f:3f:f6:30:47:43:51:35:ee:c7:c5:2b:85:86:f0:1d: 39:9e:14:3c:d7:3b:10:2f:e2:1c:64:6a:04:ca:61:30:42:88: 82:ed:fc:dd:d7:b4:85:35:1a:ad:75:d2:1e:91:4a:c1:ae:fb: 5c:b0:dc:ab:50:51:8c:4e:45:5e:8e:e6:2d:3b:3b:9a:cc:34: 75:4c:4a:61:83:6a:d6:ba:1b:d8:89:2b:9e:1a:53:d9:bc:24: 05:30:b6:c0:2a:09:60:ad:40:06:4b:4f:ee:aa:2e:4d:25:32: 2c:c7:5c:f2:51:7b:84:e3:88:12:31:b4:ba:a5:c1:54:44:91: fc:aa:a2:c3:21:ff:e3:59:19:21:05:30:62:21:08:8e:d9:89: 7f:4e:80:d5:b1:36:65:1b:a9:09:73:3d:d7:22:ca:7e:4d:7c: fc:04:a6:87:e6:20:68:7f:78:eb:d7:fb:a1:bc:a2:af:9b:0a: ce:e6:1e:a7:8b:19:21:25:6a:52:b9:3b:c4:85:ab:76:9f:e1: cb:84:1d:a3:91:0b:d3:f7:42:5c:33:f8:b2:16:72:68:60:80: 4c:55:22:92:7d:70:d1:c8:3b:cd:9a:30:46:43:55:46:a5:d4: d8:e7:e9:7b:f1:3d:ed:28:ec:43:d1:41:6a:ca:f5:6c:62:66: 07:e0:12:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCXve3gsLJYCNXOMf6JnmD73P91kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzZaFw0yNzA1MDIwMzAyMzZaMDMxMTAvBgNV BAMTKEM3RjgxRTU3OTlBQkYyQjgzRDM3OTIzRjEzOUZGQjEzMURFRjMwM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoZdAmS+6peIYFfyxMNWez/QEd zyfhJxnwDXT3HYFoVLX2f+AyV7TwpVdcOt3cgrNZpr9w8RXz8Ab/HhDv+AY2PDwo UKV0t/6/lBHE8IyE/Ryw2BfOwT8RsQK8PdPhrMDt1mcVHC4urYgY16JVSmT7DmBo PyntguA5xtUaxXGplzFjJmI+P7Q+fkZjcV4nEU89rszWIMulEQpVyzgQ5of8r/4D fZyEJvxVbBTvmraIP4oHWDmPEWqwY53fow7x6GDaNfEFiTAT8fdkbQj+kE1Yaw4E m6DiUobAPIkTunikT6zC9cKRkdBEgAwHq32yeG1BBI8brYjE+4MTkAI3Teb1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx/geV5mr8rg9N5I/E5/7Ex3vMD8wHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzEzNjJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxCKMA0GCSqG SIb3DQEBCwUAA4IBAQAS7F8/9jBHQ1E17sfFK4WG8B05nhQ81zsQL+IcZGoEymEw QoiC7fzd17SFNRqtddIekUrBrvtcsNyrUFGMTkVejuYtOzuazDR1TEphg2rWuhvY iSueGlPZvCQFMLbAKglgrUAGS0/uqi5NJTIsx1zyUXuE44gSMbS6pcFURJH8qqLD If/jWRkhBTBiIQiO2Yl/ToDVsTZlG6kJcz3XIsp+TXz8BKaH5iBof3jr1/uhvKKv mwrO5h6nixkhJWpSuTvEhat2n+HLhB2jkQvT90JcM/iyFnJoYIBMVSKSfXDRyDvN mjBGQ1VGpdTY5+l78T3tKOxD0UFqyvVsYmYH4BKm -----END CERTIFICATE-----Generated at Wed May 13 12:24:27 2026 by rpki-client