$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137322e302f32332d3233203d3e20313333333339.roa File: 3130332e3232352e3137322e302f32332d3233203d3e20313333333339.roa (raw, json) Hash identifier: IexADjY/vH+ci1AK/jeAttZdrOIQ48kpykD2boWk1lE= Subject key identifier: CF:7C:2D:27:EF:56:C3:37:57:52:2E:53:C9:A3:2E:46:0F:0A:4C:5B Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 5D5E995CCB40275AB0CC9C5AD1922CC290970668 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137322e302f32332d3233203d3e20313333333339.roa Signing time: Sun 03 May 2026 03:02:35 +0000 ROA not before: Sun 03 May 2026 02:57:35 +0000 ROA not after: Sun 02 May 2027 03:02:35 +0000 asID: 133339 IP address blocks: 103.225.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:5e:99:5c:cb:40:27:5a:b0:cc:9c:5a:d1:92:2c:c2:90:97:06:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:35 2026 GMT Not After : May 2 03:02:35 2027 GMT Subject: CN=CF7C2D27EF56C33757522E53C9A32E460F0A4C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ed:99:41:07:a5:ef:e4:a1:6c:e6:c8:f3:4f: 3f:24:69:3b:fb:86:4c:cd:0f:4c:1a:91:3d:7d:7c: 89:db:5b:c0:b1:0c:1e:b7:a4:50:8d:fc:ab:af:ec: 8b:2a:f5:21:b4:6b:ba:98:ea:0d:92:c8:64:41:13: 6e:5c:21:00:36:c1:49:ce:3b:3d:ae:b4:26:53:3e: 84:c5:6f:81:bc:b4:33:f8:37:71:00:b8:f8:d2:77: 21:3b:8b:6e:1f:4d:13:a0:1b:d2:e4:69:b6:62:dc: be:cf:80:39:79:3c:61:0c:4f:9b:b8:95:ac:b9:3c: 85:e3:24:f5:61:a3:00:3f:d0:b8:d8:fd:ae:1a:31: 3d:ac:9c:ea:65:76:5c:94:c7:ab:69:00:c5:96:3a: 87:c3:56:13:0c:ae:85:ba:91:85:22:e5:5e:45:eb: 60:86:f8:28:fa:62:c6:df:82:e8:fc:ae:e2:cd:4f: 46:15:f9:df:13:7d:51:33:d0:fc:ee:58:90:7b:35: fd:26:ac:59:78:cd:14:8d:01:f3:b8:4a:3d:d9:cd: 18:06:e2:7f:f5:14:96:cb:69:41:0d:3a:19:2d:f0: 13:3d:4c:3d:38:18:b6:cd:60:e1:f3:db:92:cf:6c: 5b:c2:7e:f9:f5:99:f0:8c:9b:3d:72:fc:a8:00:9d: 4f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7C:2D:27:EF:56:C3:37:57:52:2E:53:C9:A3:2E:46:0F:0A:4C:5B X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137322e302f32332d3233203d3e20313333333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.172.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:d6:1b:12:24:5f:5e:2d:07:3d:f3:f8:3b:37:2a:4a:9d:e7: ab:2a:1e:82:12:81:66:21:2e:9a:b8:f8:2e:ce:00:0f:3d:32: d0:06:c9:d6:4f:31:4e:f8:4f:0d:96:08:76:3f:6f:a0:d4:03: 7d:80:c5:47:fe:71:aa:2f:06:b2:71:b9:8b:8e:b1:30:ff:81: 08:a7:53:f3:9c:b9:35:80:07:d2:ab:7f:ca:68:18:a8:4e:a9: 93:83:2a:13:70:af:16:ce:c4:be:9d:e3:49:a5:bd:ec:6e:71: 2f:07:a1:2a:28:d1:73:0b:3a:38:ae:bd:1b:93:08:59:0b:5c: 8a:eb:27:e1:3f:a5:15:ed:a5:a1:e2:cd:c4:08:bc:93:71:38: 1e:5b:74:e4:78:5f:d8:c2:37:35:28:2c:3a:7a:d3:34:0e:e4: f9:5b:69:cf:3d:05:fc:f6:7a:27:24:78:c6:09:1f:57:6f:17: c9:08:af:6e:3b:28:d6:66:37:83:61:77:3b:bd:d8:e0:4e:ec: c2:2c:d3:2a:38:de:d4:ad:13:46:4c:dd:fd:62:1e:7a:53:b9: c3:30:d2:bb:f7:58:07:9a:e3:f7:83:90:ca:8d:6a:a5:fb:9a: 12:f0:cd:72:50:e8:54:1b:8f:e1:7d:7d:e9:38:0d:89:4a:b1: 7e:13:45:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXV6ZXMtAJ1qwzJxa0ZIswpCXBmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzVaFw0yNzA1MDIwMzAyMzVaMDMxMTAvBgNV BAMTKENGN0MyRDI3RUY1NkMzMzc1NzUyMkU1M0M5QTMyRTQ2MEYwQTRDNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7ZlBB6Xv5KFs5sjzTz8kaTv7 hkzND0wakT19fInbW8CxDB63pFCN/Kuv7Isq9SG0a7qY6g2SyGRBE25cIQA2wUnO Oz2utCZTPoTFb4G8tDP4N3EAuPjSdyE7i24fTROgG9LkabZi3L7PgDl5PGEMT5u4 lay5PIXjJPVhowA/0LjY/a4aMT2snOpldlyUx6tpAMWWOofDVhMMroW6kYUi5V5F 62CG+Cj6Ysbfguj8ruLNT0YV+d8TfVEz0PzuWJB7Nf0mrFl4zRSNAfO4Sj3ZzRgG 4n/1FJbLaUENOhkt8BM9TD04GLbNYOHz25LPbFvCfvn1mfCMmz1y/KgAnU+HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUz3wtJ+9WwzdXUi5TyaMuRg8KTFswHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn4awwDQYJ KoZIhvcNAQELBQADggEBAEvWGxIkX14tBz3z+Ds3Kkqd56sqHoISgWYhLpq4+C7O AA89MtAGydZPMU74Tw2WCHY/b6DUA32AxUf+caovBrJxuYuOsTD/gQinU/OcuTWA B9Krf8poGKhOqZODKhNwrxbOxL6d40mlvexucS8HoSoo0XMLOjiuvRuTCFkLXIrr J+E/pRXtpaHizcQIvJNxOB5bdOR4X9jCNzUoLDp60zQO5Plbac89Bfz2eickeMYJ H1dvF8kIr247KNZmN4Nhdzu92OBO7MIs0yo43tStE0ZM3f1iHnpTucMw0rv3WAea 4/eDkMqNaqX7mhLwzXJQ6FQbj+F9fek4DYlKsX4TRW4= -----END CERTIFICATE-----Generated at Wed May 13 10:20:50 2026 by rpki-client