$ rpki-client -vvf rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa File: 3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa (raw, json) Hash identifier: ioAK8PuVzBK8o1vLJamanAVbMzvKPhJnFFlStnHERk0= Subject key identifier: 84:3B:9E:4A:67:3D:60:82:08:E5:FB:0C:AB:95:EE:DC:C5:BB:C0:FC Certificate issuer: /CN=0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9 Certificate serial: 3EC6A7B7D52C8ECACD23E88F93FAF5373B135D8A Authority key identifier: 0B:BA:1F:CB:8D:97:6D:A2:F1:C2:93:57:FE:77:DE:1F:08:E6:7B:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa Signing time: Sun 03 May 2026 03:04:40 +0000 ROA not before: Sun 03 May 2026 02:59:40 +0000 ROA not after: Sun 02 May 2027 03:04:40 +0000 asID: 142394 IP address blocks: 103.172.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.crl rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c6:a7:b7:d5:2c:8e:ca:cd:23:e8:8f:93:fa:f5:37:3b:13:5d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9 Validity Not Before: May 3 02:59:40 2026 GMT Not After : May 2 03:04:40 2027 GMT Subject: CN=843B9E4A673D608208E5FB0CAB95EEDCC5BBC0FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bf:3b:58:20:f8:d1:a3:e0:34:cb:32:b4:8d: c8:9e:1a:ba:4d:89:dd:46:df:5d:c0:46:9b:82:f8: 11:ef:5f:65:4d:63:1e:b4:a8:34:8e:22:14:d2:75: f6:b5:05:d2:8a:12:d8:b6:89:52:3e:c9:c6:fd:3f: c1:ed:ea:99:db:8b:dc:32:da:8d:e8:d6:08:52:00: bc:03:6b:21:88:12:f2:d4:7c:98:61:5c:63:a4:b1: ff:3a:c2:35:ce:a8:6d:fe:de:1b:e6:40:2f:cc:6a: 7a:7e:d5:3d:46:af:2f:cd:ac:af:aa:06:bb:88:7f: 5a:0f:1c:6f:b0:54:35:0b:ce:78:07:03:99:c7:39: 86:43:5a:2c:70:e6:8e:68:8e:95:b2:a5:4e:84:8c: ed:c1:d1:7b:89:58:21:c8:7a:8a:42:e3:db:b3:2a: 44:a1:55:67:bd:20:37:f7:c5:84:62:cb:8e:d6:71: 75:5a:a1:4e:df:a3:5f:ca:37:1f:38:e8:cc:2b:fd: 2f:b0:fd:d0:47:c9:23:12:37:29:c8:91:8a:47:af: 1f:29:08:3e:34:cb:eb:e2:0a:52:6a:f1:bc:c8:f4: 93:e1:a4:a1:5b:0b:de:10:49:26:c9:8b:47:32:e3: 2b:7d:06:33:61:be:5b:95:2f:99:eb:07:a2:23:80: ed:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3B:9E:4A:67:3D:60:82:08:E5:FB:0C:AB:95:EE:DC:C5:BB:C0:FC X509v3 Authority Key Identifier: keyid:0B:BA:1F:CB:8D:97:6D:A2:F1:C2:93:57:FE:77:DE:1F:08:E6:7B:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.196.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:a2:92:ae:f8:49:63:6f:9c:c0:0b:a5:a1:39:3a:25:63:1a: 92:f3:0f:fa:fc:46:59:80:7d:09:6d:6c:2c:c5:45:ae:71:c7: bf:1d:99:be:cc:e0:d5:9e:a5:04:f7:b1:c7:2b:8b:6c:81:74: 85:c1:65:13:fe:1f:e4:6a:bb:10:42:56:53:c8:41:eb:5e:c6: ac:fa:a4:85:06:a4:27:d8:11:3d:6e:a6:da:25:89:b7:2b:bc: 4f:52:4e:8b:9a:94:c3:56:5e:7a:98:d0:04:ef:a6:a2:de:c6: be:42:57:f5:0a:db:b0:85:fb:58:39:d6:c8:22:b6:55:af:d6: b7:e2:24:bd:84:88:87:7a:64:b5:d6:71:f8:2c:09:d4:51:b6: 98:7a:55:86:5f:40:79:3f:8c:0f:6d:78:2a:26:cd:be:ef:3e: 98:b2:56:d4:54:d6:cb:1a:a7:b3:9d:e5:27:98:5d:85:4f:f8: 84:1d:cd:eb:2b:54:22:04:18:c8:c7:fa:2b:2c:8e:a4:ed:36: 3b:2b:83:69:1c:bd:89:eb:30:cc:53:88:04:8b:d0:44:2f:47: 85:e0:fa:cf:a0:83:df:16:8c:96:50:f0:74:dd:43:97:a6:4c: 09:9c:e8:a4:8c:1a:6a:1b:94:40:e4:79:38:f1:67:8a:0d:e4: 54:22:c4:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPsant9UsjsrNI+iPk/r1NzsTXYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCQTFGQ0I4RDk3NkRBMkYxQzI5MzU3RkU3N0RFMUYw OEU2N0JCOTAeFw0yNjA1MDMwMjU5NDBaFw0yNzA1MDIwMzA0NDBaMDMxMTAvBgNV BAMTKDg0M0I5RTRBNjczRDYwODIwOEU1RkIwQ0FCOTVFRURDQzVCQkMwRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdvztYIPjRo+A0yzK0jcieGrpN id1G313ARpuC+BHvX2VNYx60qDSOIhTSdfa1BdKKEti2iVI+ycb9P8Ht6pnbi9wy 2o3o1ghSALwDayGIEvLUfJhhXGOksf86wjXOqG3+3hvmQC/Manp+1T1Gry/NrK+q BruIf1oPHG+wVDULzngHA5nHOYZDWixw5o5ojpWypU6EjO3B0XuJWCHIeopC49uz KkShVWe9IDf3xYRiy47WcXVaoU7fo1/KNx846Mwr/S+w/dBHySMSNynIkYpHrx8p CD40y+viClJq8bzI9JPhpKFbC94QSSbJi0cy4yt9BjNhvluVL5nrB6IjgO3VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhDueSmc9YIII5fsMq5Xu3MW7wPwwHwYDVR0j BBgwFoAUC7ofy42XbaLxwpNX/nfeHwjme7kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzM5N2NmYzUtZTBiMC00ODIwLWI4NTktNzk2MjUyMDFlY2FmLzAvMEJCQTFGQ0I4 RDk3NkRBMkYxQzI5MzU3RkU3N0RFMUYwOEU2N0JCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQkJBMUZDQjhEOTc2REEyRjFDMjkzNTdGRTc3REUxRjA4RTY3 QkI5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzOTdjZmM1LWUwYjAtNDgyMC1i ODU5LTc5NjI1MjAxZWNhZi8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMQwDQYJ KoZIhvcNAQELBQADggEBAI6ikq74SWNvnMALpaE5OiVjGpLzD/r8RlmAfQltbCzF Ra5xx78dmb7M4NWepQT3sccri2yBdIXBZRP+H+RquxBCVlPIQetexqz6pIUGpCfY ET1uptolibcrvE9SToualMNWXnqY0ATvpqLexr5CV/UK27CF+1g51sgitlWv1rfi JL2EiId6ZLXWcfgsCdRRtph6VYZfQHk/jA9teComzb7vPpiyVtRU1ssap7Od5SeY XYVP+IQdzesrVCIEGMjH+issjqTtNjsrg2kcvYnrMMxTiASL0EQvR4Xg+s+gg98W jJZQ8HTdQ5emTAmc6KSMGmoblEDkeTjxZ4oN5FQixME= -----END CERTIFICATE-----Generated at Wed May 13 06:37:18 2026 by rpki-client