$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa File: 3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: fb0u8nL2mSZSjhRNXrQKe5m4wVsqo96iE9FDTVCkkuc= Subject key identifier: B1:09:43:86:C7:AA:13:39:CD:FA:04:AF:F9:FB:21:C1:7D:71:56:C1 Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 08980E964DB0EA2C5763D11E1B906B68CD9D03A0 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa Signing time: Sun 03 May 2026 03:02:33 +0000 ROA not before: Sun 03 May 2026 02:57:33 +0000 ROA not after: Sun 02 May 2027 03:02:33 +0000 asID: 138077 IP address blocks: 103.16.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:98:0e:96:4d:b0:ea:2c:57:63:d1:1e:1b:90:6b:68:cd:9d:03:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:33 2026 GMT Not After : May 2 03:02:33 2027 GMT Subject: CN=B1094386C7AA1339CDFA04AFF9FB21C17D7156C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:15:c1:76:86:27:fd:5b:c5:07:d4:ef:43:ec: 7f:ce:fe:eb:b3:98:64:b9:e8:fd:77:4e:05:bc:37: a7:17:bb:f3:18:03:f9:9d:0b:63:02:17:e0:1a:b6: 18:d0:17:0c:9d:00:77:ac:ea:16:6b:76:a1:c6:24: 49:d6:c4:86:02:07:99:5e:83:0d:e6:b5:2a:03:5a: 23:a8:ce:50:f0:38:bc:6b:9e:5e:7e:55:99:df:03: 45:40:07:67:6a:d9:fa:c1:fa:d7:33:f2:c0:89:27: cc:e3:ff:71:a8:34:e2:e8:40:29:21:88:8d:85:09: c1:d8:ce:d4:a0:8f:75:b7:6f:a1:b3:b6:ce:dd:0d: 8f:3d:2b:0d:59:8d:05:d0:3b:29:a0:4e:fe:fc:ec: 6c:50:af:cb:16:cd:d8:91:40:66:58:23:83:d8:4d: d2:26:0f:60:15:1d:cd:5f:07:22:28:79:f8:88:d3: 38:47:bd:b3:d2:22:b4:a6:85:4e:50:73:61:8a:88: e5:db:d4:ce:03:c8:a1:25:23:dd:eb:b2:e1:e0:55: 69:24:b2:41:3b:bf:97:03:d9:de:6b:89:0e:0c:63: d4:af:23:a9:a4:c5:83:9e:b4:57:40:8d:83:62:21: cb:de:8b:f8:a3:bc:7c:ef:83:80:48:f2:c6:ab:96: bf:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:09:43:86:C7:AA:13:39:CD:FA:04:AF:F9:FB:21:C1:7D:71:56:C1 X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.139.0/24 Signature Algorithm: sha256WithRSAEncryption 19:fe:ed:06:bf:a2:8d:f9:ff:38:8e:e8:e7:62:38:ea:20:3c: ba:13:74:6e:59:53:e4:eb:8d:7b:a0:0a:6b:6c:db:dd:46:7c: 9a:86:d0:e6:18:91:dc:f2:f4:34:31:04:c8:b9:39:ac:c6:b8: d5:80:0a:40:2f:f0:b8:15:66:25:67:c5:bb:09:42:52:dd:d8: 19:fa:4f:ab:af:61:3e:cb:a2:4e:70:89:72:d8:85:cd:6d:f8: 4e:43:f5:ef:b7:8c:df:da:b5:de:6d:2c:b5:bc:57:b3:48:f5: 99:55:9e:a2:16:3e:b8:64:29:e1:cd:ab:a9:52:20:a3:05:5c: fe:6a:00:4f:26:1f:37:c7:77:74:a6:39:cd:97:1d:02:a5:de: 69:87:76:85:95:b8:d9:09:6c:c8:2c:89:6d:b2:67:68:6d:03: 33:1a:38:93:0c:20:5a:cb:f9:24:f5:b4:33:46:55:46:de:4a: 6f:ad:77:a4:6c:94:9b:04:96:0f:8f:c6:f8:ab:10:66:71:f5: 5f:39:43:d2:de:40:44:2b:42:95:fd:66:34:66:5c:14:74:a9: 29:12:f3:5c:b9:1c:d6:bb:b2:8d:ab:0a:45:46:dd:17:89:6e: 75:f3:20:46:aa:62:46:b8:42:c4:14:37:ce:66:9d:20:b2:c6: a5:9b:c5:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCJgOlk2w6ixXY9EeG5BraM2dA6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzNaFw0yNzA1MDIwMzAyMzNaMDMxMTAvBgNV BAMTKEIxMDk0Mzg2QzdBQTEzMzlDREZBMDRBRkY5RkIyMUMxN0Q3MTU2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyFcF2hif9W8UH1O9D7H/O/uuz mGS56P13TgW8N6cXu/MYA/mdC2MCF+AathjQFwydAHes6hZrdqHGJEnWxIYCB5le gw3mtSoDWiOozlDwOLxrnl5+VZnfA0VAB2dq2frB+tcz8sCJJ8zj/3GoNOLoQCkh iI2FCcHYztSgj3W3b6Gzts7dDY89Kw1ZjQXQOymgTv787GxQr8sWzdiRQGZYI4PY TdImD2AVHc1fByIoefiI0zhHvbPSIrSmhU5Qc2GKiOXb1M4DyKElI93rsuHgVWkk skE7v5cD2d5riQ4MY9SvI6mkxYOetFdAjYNiIcvei/ijvHzvg4BI8sarlr+FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsQlDhseqEznN+gSv+fshwX1xVsEwHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzEzNjJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxCLMA0GCSqG SIb3DQEBCwUAA4IBAQAZ/u0Gv6KN+f84jujnYjjqIDy6E3RuWVPk6417oAprbNvd RnyahtDmGJHc8vQ0MQTIuTmsxrjVgApAL/C4FWYlZ8W7CUJS3dgZ+k+rr2E+y6JO cIly2IXNbfhOQ/Xvt4zf2rXebSy1vFezSPWZVZ6iFj64ZCnhzaupUiCjBVz+agBP Jh83x3d0pjnNlx0Cpd5ph3aFlbjZCWzILIltsmdobQMzGjiTDCBay/kk9bQzRlVG 3kpvrXekbJSbBJYPj8b4qxBmcfVfOUPS3kBEK0KV/WY0ZlwUdKkpEvNcuRzWu7KN qwpFRt0XiW518yBGqmJGuELEFDfOZp0gssalm8WD -----END CERTIFICATE-----Generated at Wed May 13 11:21:40 2026 by rpki-client