$ rpki-client -vvf rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa File: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (raw, json) Hash identifier: AMAK0g33Kv2aI5QR9+0p9uxKjyyXdje3jg9ykQZ5pUA= Subject key identifier: 43:97:87:FC:7C:0A:7C:47:E8:9F:2E:20:B7:5E:FB:0D:0B:28:EB:24 Certificate issuer: /CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Certificate serial: 21D147CFFDC8F30B6AB22C1F553CAF02D8E4193C Authority key identifier: B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa Signing time: Sun 03 May 2026 03:03:07 +0000 ROA not before: Sun 03 May 2026 02:58:07 +0000 ROA not after: Sun 02 May 2027 03:03:07 +0000 asID: 149663 IP address blocks: 103.184.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d1:47:cf:fd:c8:f3:0b:6a:b2:2c:1f:55:3c:af:02:d8:e4:19:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Validity Not Before: May 3 02:58:07 2026 GMT Not After : May 2 03:03:07 2027 GMT Subject: CN=439787FC7C0A7C47E89F2E20B75EFB0D0B28EB24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:63:92:8b:f1:f6:08:99:c2:a4:53:97:ba:60: b2:f7:19:58:8b:87:73:33:1a:43:ae:e6:6a:00:54: 3d:0b:c8:06:33:cd:98:7a:10:a1:19:ee:4d:9d:a3: 73:17:1d:b0:46:cc:d8:80:6e:93:81:7f:58:d3:f2: 50:78:df:1a:03:0d:28:ca:f3:15:b6:f9:8e:83:86: cb:4d:71:dc:57:a8:df:17:dd:d3:d9:3e:de:7b:e9: f0:f9:5d:62:f6:6f:a7:c0:7a:a1:08:ed:20:17:56: 39:e6:20:03:11:2f:ba:6e:0d:57:22:86:33:73:73: d6:7e:3f:f0:90:6b:8d:3a:1f:dd:60:fd:2e:64:5d: d5:2b:4f:6e:17:b3:ae:ab:6c:bb:9b:41:4f:7e:16: fd:54:7e:b1:e4:5a:c6:5f:5e:aa:45:e8:c3:1a:f1: 07:d5:0e:9b:ba:f8:0e:e6:3e:71:80:6c:2f:ae:69: 33:28:7b:e4:0b:f2:c2:aa:e5:b6:ef:23:68:10:db: a8:0f:2b:05:69:06:8c:12:cb:1f:a7:1f:79:29:c8: 59:a4:d2:a1:8e:43:b1:09:34:35:7e:ba:8c:91:1b: d3:2a:51:b9:f1:c6:ad:ed:2d:15:3d:ff:b9:c8:de: f0:2b:e1:3f:b4:1c:84:de:0f:cd:f2:43:09:e6:c8: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:97:87:FC:7C:0A:7C:47:E8:9F:2E:20:B7:5E:FB:0D:0B:28:EB:24 X509v3 Authority Key Identifier: keyid:B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:51:9d:66:79:e5:12:cb:2f:52:9f:b0:f7:47:15:7a:09:01: ba:de:89:9d:77:31:5b:2f:8b:3a:86:aa:c7:c5:2a:b3:c4:fa: 5d:3e:8c:b2:05:6f:21:7a:e6:77:7a:06:e6:a1:d6:e6:80:e7: 5c:ba:cd:85:de:69:2b:34:7e:12:46:b2:c4:57:2d:de:e3:00: 8d:ba:0c:4f:84:ca:7e:03:79:5e:0f:2c:35:77:99:d9:6f:02: b0:dc:cb:5c:e0:2f:0c:6a:74:ff:77:e2:35:01:89:11:44:a9: 26:73:4c:9d:e7:37:f2:4e:3b:98:10:da:64:86:07:cf:88:89: fd:83:01:13:1d:ea:7d:79:59:d0:e0:e6:13:f1:8a:55:ae:e1: c8:1d:25:55:f6:c3:5f:67:1f:49:d4:b1:1d:e5:22:7d:93:f3: e8:b1:24:c1:55:0a:91:5d:4b:a0:e2:7d:0f:1b:84:c7:86:ab: 00:23:75:dd:04:59:91:5e:b6:be:ab:0c:99:be:e9:52:2b:d9: 7a:42:58:c3:1e:60:7d:3f:91:b6:1a:96:fa:95:8a:50:69:c0: 31:03:b4:fd:44:9d:ec:1e:2f:9d:2f:b4:9e:b2:43:24:73:9a: ad:f2:d3:b0:1e:0f:42:a6:1b:64:aa:6a:10:40:4e:9e:4e:25: 28:9e:0b:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIdFHz/3I8wtqsiwfVTyvAtjkGTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBCOENEQ0VFNzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NC NTFEQTcxODAeFw0yNjA1MDMwMjU4MDdaFw0yNzA1MDIwMzAzMDdaMDMxMTAvBgNV BAMTKDQzOTc4N0ZDN0MwQTdDNDdFODlGMkUyMEI3NUVGQjBEMEIyOEVCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlY5KL8fYImcKkU5e6YLL3GViL h3MzGkOu5moAVD0LyAYzzZh6EKEZ7k2do3MXHbBGzNiAbpOBf1jT8lB43xoDDSjK 8xW2+Y6DhstNcdxXqN8X3dPZPt576fD5XWL2b6fAeqEI7SAXVjnmIAMRL7puDVci hjNzc9Z+P/CQa406H91g/S5kXdUrT24Xs66rbLubQU9+Fv1UfrHkWsZfXqpF6MMa 8QfVDpu6+A7mPnGAbC+uaTMoe+QL8sKq5bbvI2gQ26gPKwVpBowSyx+nH3kpyFmk 0qGOQ7EJNDV+uoyRG9MqUbnxxq3tLRU9/7nI3vAr4T+0HITeD83yQwnmyNapAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQ5eH/HwKfEfony4gt177DQso6yQwHwYDVR0j BBgwFoAUsLjNzudCbQMQIL7B6tIzfLUdpxgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmZjMTdjYzItZjRhMi00MTVlLThlYTItZjljNDdmNzVjNGNhLzAvQjBCOENEQ0VF NzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NCNTFEQTcxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMEI4Q0RDRUU3NDI2RDAzMTAyMEJFQzFFQUQyMzM3Q0I1MURB NzE4LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04 ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHgwDQYJ KoZIhvcNAQELBQADggEBACpRnWZ55RLLL1KfsPdHFXoJAbreiZ13MVsvizqGqsfF KrPE+l0+jLIFbyF65nd6Buah1uaA51y6zYXeaSs0fhJGssRXLd7jAI26DE+Eyn4D eV4PLDV3mdlvArDcy1zgLwxqdP934jUBiRFEqSZzTJ3nN/JOO5gQ2mSGB8+Iif2D ARMd6n15WdDg5hPxilWu4cgdJVX2w19nH0nUsR3lIn2T8+ixJMFVCpFdS6DifQ8b hMeGqwAjdd0EWZFetr6rDJm+6VIr2XpCWMMeYH0/kbYalvqVilBpwDEDtP1Enewe L50vtJ6yQyRzmq3y07AeD0KmG2SqahBATp5OJSieC84= -----END CERTIFICATE-----Generated at Wed May 13 10:16:42 2026 by rpki-client