$ rpki-client -vvf rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa File: 3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa (raw, json) Hash identifier: 6EwDqg7LpLZJUkIylUyUl3veH/xN6XvmcMqV9SdWGwQ= Subject key identifier: BF:53:AB:3A:BD:37:46:65:CD:52:4B:9D:F5:CE:F8:06:15:E5:E7:B0 Certificate issuer: /CN=1FF488AB707220858C10BA99E5944DE409195015 Certificate serial: 602107964FCD284DF1EBE905981D762F0925B589 Authority key identifier: 1F:F4:88:AB:70:72:20:85:8C:10:BA:99:E5:94:4D:E4:09:19:50:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FF488AB707220858C10BA99E5944DE409195015.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa Signing time: Sun 03 May 2026 03:04:38 +0000 ROA not before: Sun 03 May 2026 02:59:38 +0000 ROA not after: Sun 02 May 2027 03:04:38 +0000 asID: 149753 IP address blocks: 103.189.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/1FF488AB707220858C10BA99E5944DE409195015.crl rsync://rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/1FF488AB707220858C10BA99E5944DE409195015.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FF488AB707220858C10BA99E5944DE409195015.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:21:07:96:4f:cd:28:4d:f1:eb:e9:05:98:1d:76:2f:09:25:b5:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FF488AB707220858C10BA99E5944DE409195015 Validity Not Before: May 3 02:59:38 2026 GMT Not After : May 2 03:04:38 2027 GMT Subject: CN=BF53AB3ABD374665CD524B9DF5CEF80615E5E7B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:86:77:78:68:f4:4f:d1:91:a2:fa:31:3d:4d: a9:c0:dc:a1:96:6d:f5:98:9a:ab:51:cb:06:20:74: 0b:b5:8b:fc:31:30:f5:de:41:68:c4:d4:94:9b:f4: 0b:c1:d1:2d:30:74:25:5b:f3:88:be:bc:79:c7:c6: 1f:4e:64:02:c9:ed:a3:ff:20:fd:76:7e:6e:c6:57: 04:10:77:0a:e5:53:e4:76:a2:9f:05:fb:d7:79:32: d6:5f:80:cd:ae:67:5d:a8:15:26:a7:e7:69:c6:3f: df:54:12:7f:6b:6a:f1:f9:22:4e:fb:a9:80:60:f6: 46:e4:f6:19:16:72:81:e8:13:51:84:a0:14:db:3b: db:6e:1d:d7:4a:23:fb:6c:dc:d0:f0:9e:93:02:b4: af:fe:4c:8c:58:2c:67:dd:bd:22:a8:e1:36:28:40: 01:12:6f:73:bd:4b:18:db:6c:88:51:f5:e8:c5:e8: a8:89:cf:20:2b:a5:ee:59:25:f6:9e:bf:45:97:e4: 44:c1:b4:8a:4a:28:bf:ac:72:be:39:d3:17:f3:63: fd:98:7c:a1:00:3a:a8:f6:4f:3b:86:4f:ea:1c:13: 93:d4:0d:bb:e2:67:d2:3f:37:1f:06:91:1b:34:20: 31:e0:25:78:3d:98:d5:34:06:02:c7:a1:72:1e:b9: 84:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:53:AB:3A:BD:37:46:65:CD:52:4B:9D:F5:CE:F8:06:15:E5:E7:B0 X509v3 Authority Key Identifier: keyid:1F:F4:88:AB:70:72:20:85:8C:10:BA:99:E5:94:4D:E4:09:19:50:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/1FF488AB707220858C10BA99E5944DE409195015.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1FF488AB707220858C10BA99E5944DE409195015.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.114.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:3c:bf:a1:c7:07:2c:ba:f0:19:e3:3d:be:6d:0f:0d:a0:70: 77:82:c9:a7:e3:41:98:61:78:9d:76:39:b1:18:8e:e4:1e:f1: 1d:98:cf:d9:f6:4b:11:97:67:43:72:07:ba:52:9d:54:81:50: 01:6f:4e:c8:cf:ed:87:3a:06:da:22:ae:0b:df:e5:55:47:a7: f9:13:91:16:a0:99:b2:e6:07:ac:7d:71:79:67:dc:d2:b2:83: eb:89:0d:a5:f4:e0:cc:f0:ca:4a:08:06:03:bb:6d:6b:9f:9c: a9:34:10:7c:b8:0b:50:f2:0c:b0:c8:0f:5e:f9:d9:6f:d3:c1: be:7c:de:00:9d:24:49:2c:df:cb:44:02:49:ef:bc:df:77:79: fe:84:95:46:93:0e:17:15:45:11:80:fe:f5:c9:b7:35:bb:2f: 11:e7:90:74:cf:63:01:fb:2d:4f:d5:fc:8f:45:14:2b:0e:6b: 7b:52:31:80:df:73:6f:86:08:f6:7a:fd:28:95:25:c7:c6:9d: 84:36:8f:f8:2e:03:ff:8f:4c:f4:f0:d2:3d:94:58:71:85:5f: 08:91:1e:5b:ea:37:61:ca:60:03:1e:06:3d:bb:4f:68:98:d5: e1:46:ac:9e:a3:cc:f6:04:cb:b7:f0:72:3f:72:1f:dc:b9:83: 8b:be:4c:f1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYCEHlk/NKE3x6+kFmB12LwkltYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGNDg4QUI3MDcyMjA4NThDMTBCQTk5RTU5NDRERTQw OTE5NTAxNTAeFw0yNjA1MDMwMjU5MzhaFw0yNzA1MDIwMzA0MzhaMDMxMTAvBgNV BAMTKEJGNTNBQjNBQkQzNzQ2NjVDRDUyNEI5REY1Q0VGODA2MTVFNUU3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChhnd4aPRP0ZGi+jE9TanA3KGW bfWYmqtRywYgdAu1i/wxMPXeQWjE1JSb9AvB0S0wdCVb84i+vHnHxh9OZALJ7aP/ IP12fm7GVwQQdwrlU+R2op8F+9d5MtZfgM2uZ12oFSan52nGP99UEn9ravH5Ik77 qYBg9kbk9hkWcoHoE1GEoBTbO9tuHddKI/ts3NDwnpMCtK/+TIxYLGfdvSKo4TYo QAESb3O9SxjbbIhR9ejF6KiJzyArpe5ZJfaev0WX5ETBtIpKKL+scr450xfzY/2Y fKEAOqj2TzuGT+ocE5PUDbviZ9I/Nx8GkRs0IDHgJXg9mNU0BgLHoXIeuYTlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv1OrOr03RmXNUkud9c74BhXl57AwHwYDVR0j BBgwFoAUH/SIq3ByIIWMELqZ5ZRN5AkZUBUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzM1OWI2YTMtYjc0Yi00YmFhLTk5M2EtODE4ZmI3MjEwNzIyLzAvMUZGNDg4QUI3 MDcyMjA4NThDMTBCQTk5RTU5NDRERTQwOTE5NTAxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRkY0ODhBQjcwNzIyMDg1OEMxMEJBOTlFNTk0NERFNDA5MTk1 MDE1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzNTliNmEzLWI3NGItNGJhYS05 OTNhLTgxOGZiNzIxMDcyMi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXIwDQYJ KoZIhvcNAQELBQADggEBAGs8v6HHByy68BnjPb5tDw2gcHeCyafjQZhheJ12ObEY juQe8R2Yz9n2SxGXZ0NyB7pSnVSBUAFvTsjP7Yc6Btoirgvf5VVHp/kTkRagmbLm B6x9cXln3NKyg+uJDaX04MzwykoIBgO7bWufnKk0EHy4C1DyDLDID1752W/Twb58 3gCdJEks38tEAknvvN93ef6ElUaTDhcVRRGA/vXJtzW7LxHnkHTPYwH7LU/V/I9F FCsOa3tSMYDfc2+GCPZ6/SiVJcfGnYQ2j/guA/+PTPTw0j2UWHGFXwiRHlvqN2HK YAMeBj27T2iY1eFGrJ6jzPYEy7fwcj9yH9y5g4u+TPE= -----END CERTIFICATE-----Generated at Wed May 13 09:15:07 2026 by rpki-client