$ rpki-client -vvf rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa File: 3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa (raw, json) Hash identifier: mPG/zuyU/XUm9QM+7MhLY4PXMJXJc11dpd+ekiFfezo= Subject key identifier: 57:12:A0:BD:6B:FF:DD:CA:3E:93:1E:A0:DE:2A:CE:09:A0:5E:D3:48 Certificate issuer: /CN=A0255156E104D661F25134DFEF8EF05BD73E8C04 Certificate serial: 0C08BE4DE6EB6EE0D1DDD0BB16F146EF4F950187 Authority key identifier: A0:25:51:56:E1:04:D6:61:F2:51:34:DF:EF:8E:F0:5B:D7:3E:8C:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A0255156E104D661F25134DFEF8EF05BD73E8C04.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa Signing time: Sun 03 May 2026 03:07:21 +0000 ROA not before: Sun 03 May 2026 03:02:21 +0000 ROA not after: Sun 02 May 2027 03:07:21 +0000 asID: 141622 IP address blocks: 103.161.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/A0255156E104D661F25134DFEF8EF05BD73E8C04.crl rsync://rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/A0255156E104D661F25134DFEF8EF05BD73E8C04.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A0255156E104D661F25134DFEF8EF05BD73E8C04.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:08:be:4d:e6:eb:6e:e0:d1:dd:d0:bb:16:f1:46:ef:4f:95:01:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0255156E104D661F25134DFEF8EF05BD73E8C04 Validity Not Before: May 3 03:02:21 2026 GMT Not After : May 2 03:07:21 2027 GMT Subject: CN=5712A0BD6BFFDDCA3E931EA0DE2ACE09A05ED348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:16:c8:29:cd:19:5c:e5:bb:00:72:f7:9f:fd: 40:09:63:ca:8c:86:61:60:57:11:03:e1:6c:76:3f: 16:db:14:df:f9:d1:29:25:9c:d0:3c:a0:f7:82:36: 76:42:06:4f:e4:c1:ed:40:d1:d8:9e:3c:a5:e2:5c: 0c:0d:fb:2d:f9:0a:c6:7b:94:6c:0f:e3:0f:63:b5: 64:0d:ca:f6:95:5c:5b:5d:bd:f5:09:95:37:f6:01: e6:a3:ac:b7:04:9e:cf:14:e7:f7:b6:4f:b1:69:cb: 6b:14:1d:c5:6a:fb:eb:11:51:d7:96:b6:e8:fb:64: a6:68:35:1a:d9:46:0c:3b:68:f9:5f:10:9c:3c:34: d7:f6:9a:2b:18:82:1d:09:cd:f4:ff:5b:b1:33:10: 6d:a1:94:2e:89:a9:e1:70:ec:c9:20:42:9f:5a:e0: 03:d8:13:06:47:35:34:86:8e:01:b5:9f:f9:fb:66: 66:f3:bf:cd:9b:73:16:45:86:70:b0:71:19:5d:ff: 2e:19:8f:25:13:d8:13:2b:94:b2:c4:da:64:84:5a: 51:c7:f8:f9:6d:9b:c4:61:da:a0:33:ce:50:8f:6d: f8:36:6e:ff:2c:59:fd:bc:21:8f:a2:83:ef:a1:12: 78:4f:95:32:53:7d:3b:45:9c:b6:e7:29:06:68:38: 20:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:12:A0:BD:6B:FF:DD:CA:3E:93:1E:A0:DE:2A:CE:09:A0:5E:D3:48 X509v3 Authority Key Identifier: keyid:A0:25:51:56:E1:04:D6:61:F2:51:34:DF:EF:8E:F0:5B:D7:3E:8C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/A0255156E104D661F25134DFEF8EF05BD73E8C04.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A0255156E104D661F25134DFEF8EF05BD73E8C04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.194.0/23 Signature Algorithm: sha256WithRSAEncryption 32:91:32:c4:aa:a7:6c:35:74:70:d1:af:8e:27:f7:56:eb:b6: 17:4b:1c:d0:5c:90:08:1c:8e:78:bd:17:f2:66:03:30:8a:05: 13:80:b8:85:f3:50:ba:ce:7c:61:16:86:6c:e7:5c:f1:13:2a: 9e:c1:fe:8d:e9:2f:58:e0:b7:29:fb:46:06:21:10:40:8c:8b: 01:1f:04:04:02:97:be:31:31:04:3f:bd:06:20:7a:dc:22:3f: 9f:cb:a4:5b:a8:9d:05:8b:02:67:fa:26:f0:3b:bc:e9:55:12: a0:a2:5a:34:33:0b:e0:f4:5d:5d:53:92:11:11:2a:9b:3a:23: 3c:8e:3f:15:d8:0d:df:0c:78:35:48:b5:72:4d:a0:08:59:10: 97:5e:c2:b5:21:b0:64:90:ab:c6:d7:fe:93:90:f3:15:46:e5: 58:b2:84:cb:35:a3:4a:a8:2a:ae:5f:83:3b:cf:f3:d2:d0:cf: 50:2b:7f:49:00:38:6d:67:17:4d:0b:ab:ae:1d:e8:75:93:49: d4:78:93:d1:11:53:fb:c7:3d:ad:af:d6:fd:7f:35:5f:ee:f0: 5f:42:c4:8e:ef:3c:ef:e6:16:33:fb:9b:35:c1:78:9e:e7:0a: ff:e3:43:6d:80:93:bf:6a:bb:5b:51:57:56:18:95:96:c7:a3: 4e:6f:9c:ac -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDAi+TebrbuDR3dC7FvFG70+VAYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAyNTUxNTZFMTA0RDY2MUYyNTEzNERGRUY4RUYwNUJE NzNFOEMwNDAeFw0yNjA1MDMwMzAyMjFaFw0yNzA1MDIwMzA3MjFaMDMxMTAvBgNV BAMTKDU3MTJBMEJENkJGRkREQ0EzRTkzMUVBMERFMkFDRTA5QTA1RUQzNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzFsgpzRlc5bsAcvef/UAJY8qM hmFgVxED4Wx2PxbbFN/50SklnNA8oPeCNnZCBk/kwe1A0diePKXiXAwN+y35CsZ7 lGwP4w9jtWQNyvaVXFtdvfUJlTf2AeajrLcEns8U5/e2T7Fpy2sUHcVq++sRUdeW tuj7ZKZoNRrZRgw7aPlfEJw8NNf2misYgh0JzfT/W7EzEG2hlC6JqeFw7MkgQp9a 4APYEwZHNTSGjgG1n/n7Zmbzv82bcxZFhnCwcRld/y4ZjyUT2BMrlLLE2mSEWlHH +Pltm8Rh2qAzzlCPbfg2bv8sWf28IY+ig++hEnhPlTJTfTtFnLbnKQZoOCA1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVxKgvWv/3co+kx6g3irOCaBe00gwHwYDVR0j BBgwFoAUoCVRVuEE1mHyUTTf747wW9c+jAQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2NiZmIyMjgtZmQwNS00YWZkLTg3YmQtZWQ1ODBiNTUwMzZmLzAvQTAyNTUxNTZF MTA0RDY2MUYyNTEzNERGRUY4RUYwNUJENzNFOEMwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDI1NTE1NkUxMDRENjYxRjI1MTM0REZFRjhFRjA1QkQ3M0U4 QzA0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NjYmZiMjI4LWZkMDUtNGFmZC04 N2JkLWVkNTgwYjU1MDM2Zi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnocIwDQYJ KoZIhvcNAQELBQADggEBADKRMsSqp2w1dHDRr44n91brthdLHNBckAgcjni9F/Jm AzCKBROAuIXzULrOfGEWhmznXPETKp7B/o3pL1jgtyn7RgYhEECMiwEfBAQCl74x MQQ/vQYgetwiP5/LpFuonQWLAmf6JvA7vOlVEqCiWjQzC+D0XV1TkhERKps6IzyO PxXYDd8MeDVItXJNoAhZEJdewrUhsGSQq8bX/pOQ8xVG5ViyhMs1o0qoKq5fgzvP 89LQz1Arf0kAOG1nF00Lq64d6HWTSdR4k9ERU/vHPa2v1v1/NV/u8F9CxI7vPO/m FjP7mzXBeJ7nCv/jQ22Ak79qu1tRV1YYlZbHo05vnKw= -----END CERTIFICATE-----Generated at Wed May 13 03:58:44 2026 by rpki-client