$ rpki-client -vvf rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa File: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (raw, json) Hash identifier: 6QK6aAC3OH45PZDy0os84YcWYINTJWbPpMpi72u5POI= Subject key identifier: 0D:64:FF:83:91:72:DF:31:D0:D4:F8:E7:6D:2B:1B:59:FE:B9:09:6E Certificate issuer: /CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Certificate serial: 640C9D7BB56ACFD88AE722F0CB52FEC4F7A7770A Authority key identifier: B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa Signing time: Sun 03 May 2026 03:03:07 +0000 ROA not before: Sun 03 May 2026 02:58:07 +0000 ROA not after: Sun 02 May 2027 03:03:07 +0000 asID: 149663 IP address blocks: 103.184.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 14:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0c:9d:7b:b5:6a:cf:d8:8a:e7:22:f0:cb:52:fe:c4:f7:a7:77:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Validity Not Before: May 3 02:58:07 2026 GMT Not After : May 2 03:03:07 2027 GMT Subject: CN=0D64FF839172DF31D0D4F8E76D2B1B59FEB9096E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:69:06:b8:09:ee:b1:11:21:eb:97:74:31:a6: 7f:31:37:75:44:37:5a:48:cf:d9:b7:b7:3b:b3:0d: 12:55:ca:5b:11:e3:61:ac:17:9e:f6:29:76:13:80: 7f:ac:bd:0c:d2:27:5f:4d:2b:8b:27:f7:b1:40:3f: 65:a6:c4:01:37:19:77:9c:68:6d:f8:8b:65:1c:35: bd:16:05:af:c4:0b:8a:31:c2:21:c8:c2:79:42:22: 18:48:de:99:a8:19:4f:27:f2:dd:70:fa:49:29:f6: f1:ab:8f:62:7a:1e:3b:3f:95:cb:37:08:6d:7a:dc: e7:62:5d:13:63:c0:db:d1:75:7c:04:0d:30:d5:29: 88:1e:01:c6:a8:90:42:03:eb:4a:46:9a:f0:ae:3c: a4:d4:e2:7f:66:19:4f:4d:61:7b:8d:12:9a:94:59: 65:c6:cc:d3:62:6f:df:ad:2a:68:05:ad:fe:57:67: 8c:99:6f:f6:dd:c0:8b:2b:ae:b7:30:4a:87:b4:0a: a4:20:5c:55:7c:0e:6e:5d:09:f1:1c:d7:f2:99:64: 55:04:cd:07:be:33:fb:65:91:bb:43:63:7c:fe:7d: bc:52:51:e9:3b:b4:8d:c4:79:89:fc:09:74:8b:b7: cd:da:c9:93:29:4e:6e:08:3a:86:e5:10:63:b1:43: b0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:64:FF:83:91:72:DF:31:D0:D4:F8:E7:6D:2B:1B:59:FE:B9:09:6E X509v3 Authority Key Identifier: keyid:B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/23 Signature Algorithm: sha256WithRSAEncryption 36:de:24:c6:3f:33:3c:58:50:d3:0c:18:5b:2b:a1:45:ad:f1: a6:7e:55:d7:64:b3:3b:46:76:ee:d3:46:13:9f:a8:89:7f:cd: 5e:b9:40:90:37:16:27:1b:c7:d4:9d:47:68:78:cf:35:75:dd: 76:8a:c6:5f:6f:40:b8:31:19:fa:f7:c2:38:77:4a:04:10:6d: b3:10:c3:57:e0:e6:96:f8:9f:3e:04:31:99:7b:77:a7:52:28: 31:f8:06:09:e3:07:5a:c2:99:27:f5:58:33:ee:27:f5:95:83: b1:6d:cc:9d:8b:c0:c7:66:62:fd:70:1d:1f:8f:7a:ba:0f:58: 55:9b:84:55:9d:03:44:0a:74:b8:c8:8b:ae:65:11:14:74:f2: 17:49:bb:50:be:07:6c:7e:7d:c0:86:d5:8e:26:60:ce:fa:a9: 08:92:bb:f3:6b:8d:c8:6d:89:7f:97:75:4e:c8:c3:7b:c3:f7: 3d:6e:45:0b:88:71:7a:7f:85:de:bc:26:b8:66:18:51:ca:b5: ba:7e:57:b0:3f:2b:09:f6:d2:15:17:9e:a2:f2:07:0b:58:fe: 77:d3:32:94:70:f9:b0:c6:f9:cd:a2:fe:b0:bb:83:e2:38:a7: 8d:1f:a5:a8:4a:70:fd:17:bb:1f:54:f4:cc:01:e8:35:12:fe: ff:12:82:66 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZAyde7Vqz9iK5yLwy1L+xPendwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBCOENEQ0VFNzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NC NTFEQTcxODAeFw0yNjA1MDMwMjU4MDdaFw0yNzA1MDIwMzAzMDdaMDMxMTAvBgNV BAMTKDBENjRGRjgzOTE3MkRGMzFEMEQ0RjhFNzZEMkIxQjU5RkVCOTA5NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCaQa4Ce6xESHrl3Qxpn8xN3VE N1pIz9m3tzuzDRJVylsR42GsF572KXYTgH+svQzSJ19NK4sn97FAP2WmxAE3GXec aG34i2UcNb0WBa/EC4oxwiHIwnlCIhhI3pmoGU8n8t1w+kkp9vGrj2J6Hjs/lcs3 CG163OdiXRNjwNvRdXwEDTDVKYgeAcaokEID60pGmvCuPKTU4n9mGU9NYXuNEpqU WWXGzNNib9+tKmgFrf5XZ4yZb/bdwIsrrrcwSoe0CqQgXFV8Dm5dCfEc1/KZZFUE zQe+M/tlkbtDY3z+fbxSUek7tI3EeYn8CXSLt83ayZMpTm4IOoblEGOxQ7C5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDWT/g5Fy3zHQ1PjnbSsbWf65CW4wHwYDVR0j BBgwFoAUsLjNzudCbQMQIL7B6tIzfLUdpxgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmZjMTdjYzItZjRhMi00MTVlLThlYTItZjljNDdmNzVjNGNhLzAvQjBCOENEQ0VF NzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NCNTFEQTcxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMEI4Q0RDRUU3NDI2RDAzMTAyMEJFQzFFQUQyMzM3Q0I1MURB NzE4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04 ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnuHgwDQYJ KoZIhvcNAQELBQADggEBADbeJMY/MzxYUNMMGFsroUWt8aZ+VddksztGdu7TRhOf qIl/zV65QJA3Ficbx9SdR2h4zzV13XaKxl9vQLgxGfr3wjh3SgQQbbMQw1fg5pb4 nz4EMZl7d6dSKDH4BgnjB1rCmSf1WDPuJ/WVg7FtzJ2LwMdmYv1wHR+PeroPWFWb hFWdA0QKdLjIi65lERR08hdJu1C+B2x+fcCG1Y4mYM76qQiSu/NrjchtiX+XdU7I w3vD9z1uRQuIcXp/hd68JrhmGFHKtbp+V7A/Kwn20hUXnqLyBwtY/nfTMpRw+bDG +c2i/rC7g+I4p40fpahKcP0Xux9U9MwB6DUS/v8SgmY= -----END CERTIFICATE-----Generated at Wed May 13 07:15:03 2026 by rpki-client