$ rpki-client -vvf rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa File: 3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa (raw, json) Hash identifier: naWUC2Rkww5G3UJh4eCfssT9Zr/V8p7wGu4ngZht9HU= Subject key identifier: 19:C1:27:55:B0:A3:D0:91:78:01:79:F0:9F:53:09:60:C1:44:81:F5 Certificate issuer: /CN=9E9F5935C65B93B070730D31DC3B0B94A4C3EF00 Certificate serial: 6343F82117BACA1B45C1FC7408ADF5487FDFAB17 Authority key identifier: 9E:9F:59:35:C6:5B:93:B0:70:73:0D:31:DC:3B:0B:94:A4:C3:EF:00 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa Signing time: Sun 03 May 2026 03:07:30 +0000 ROA not before: Sun 03 May 2026 03:02:30 +0000 ROA not after: Sun 02 May 2027 03:07:30 +0000 asID: 141134 IP address blocks: 103.158.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.crl rsync://rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:f8:21:17:ba:ca:1b:45:c1:fc:74:08:ad:f5:48:7f:df:ab:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E9F5935C65B93B070730D31DC3B0B94A4C3EF00 Validity Not Before: May 3 03:02:30 2026 GMT Not After : May 2 03:07:30 2027 GMT Subject: CN=19C12755B0A3D091780179F09F530960C14481F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:76:d7:e7:45:6c:71:1b:b5:ef:bc:f9:a2:70: 69:ee:b7:bc:fb:e9:c8:70:a4:46:6c:31:4e:b1:31: 40:57:3e:2d:53:0f:3f:0a:e7:4c:66:d6:bd:67:33: 64:c5:4a:33:9c:d6:39:93:9c:e2:c7:1e:7a:1e:69: 7e:16:40:20:d0:fd:67:45:bb:33:19:04:9b:b6:df: c5:c0:55:f9:07:54:5f:73:dd:98:38:f0:ea:1d:ed: 6c:6d:8e:a8:99:23:c2:c1:30:8e:c8:6c:2a:78:48: 6d:5d:9a:87:57:42:9b:f7:7c:b1:86:9e:0f:cb:06: 18:c7:b6:29:3f:30:10:5b:28:9d:2e:f8:fa:bf:d0: 46:4d:1e:4d:0b:6a:46:98:46:14:af:08:8c:08:c3: 42:a4:dc:98:4d:15:31:05:50:b9:8d:9f:dd:1c:3c: e6:bf:c0:76:b5:89:0a:9a:2d:06:f4:d4:2d:9d:ec: c3:f9:bf:e9:9f:7e:84:2b:d5:0c:9a:0e:e8:20:48: 63:14:60:53:55:5e:76:9b:3c:77:3c:cd:c2:98:d5: 9a:9b:dd:00:ed:cf:c7:93:f1:0e:fb:64:41:39:19: c1:db:01:b8:8d:46:da:54:e9:a4:16:a0:11:3f:26: 28:da:cb:ab:0f:c4:61:42:fc:39:4b:10:e2:6d:0b: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C1:27:55:B0:A3:D0:91:78:01:79:F0:9F:53:09:60:C1:44:81:F5 X509v3 Authority Key Identifier: keyid:9E:9F:59:35:C6:5B:93:B0:70:73:0D:31:DC:3B:0B:94:A4:C3:EF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9E9F5935C65B93B070730D31DC3B0B94A4C3EF00.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.250.0/23 Signature Algorithm: sha256WithRSAEncryption 74:0a:55:79:5b:17:77:dd:5e:e5:82:66:d4:c2:b0:5b:ab:01: da:e1:eb:e8:2a:58:68:2c:3c:78:44:f6:f1:29:77:23:26:ae: 87:39:c5:66:91:c4:f3:d1:6b:52:f4:70:55:5a:2a:49:69:f7: 5f:6e:94:86:1a:11:35:aa:cc:2b:f9:1c:e5:26:22:de:cd:a2: 0d:27:e9:68:7d:ca:36:76:ec:a1:82:65:e7:8f:0b:cd:bf:1d: fd:5c:ec:46:67:88:83:1d:40:14:53:d4:88:96:de:bc:ee:68: 04:2a:0f:37:21:df:ad:9e:59:90:df:27:f7:e8:13:6a:b2:d1: b4:62:1c:b9:23:fc:80:e5:a7:1e:30:19:a3:15:db:28:d2:37: d0:b0:f7:56:f6:68:09:33:35:6a:20:db:68:9b:05:1b:b9:52: a0:68:09:b6:e7:dc:9e:ec:95:32:58:4a:05:04:7c:d2:ec:70: 5c:c5:77:d5:82:ee:25:93:16:b6:d5:8d:cf:ad:7f:ec:8c:86: e0:00:87:32:8d:98:a2:36:1c:47:ac:f1:5f:3e:20:76:de:f4: f1:66:e6:c7:87:5e:c0:ac:3d:a8:73:e6:f9:46:78:b0:93:f5: b5:6e:b4:dc:65:1d:e3:fd:88:8c:54:1d:25:2f:37:c6:38:96: ef:44:29:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY0P4IRe6yhtFwfx0CK31SH/fqxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU5RjU5MzVDNjVCOTNCMDcwNzMwRDMxREMzQjBCOTRB NEMzRUYwMDAeFw0yNjA1MDMwMzAyMzBaFw0yNzA1MDIwMzA3MzBaMDMxMTAvBgNV BAMTKDE5QzEyNzU1QjBBM0QwOTE3ODAxNzlGMDlGNTMwOTYwQzE0NDgxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdtfnRWxxG7XvvPmicGnut7z7 6chwpEZsMU6xMUBXPi1TDz8K50xm1r1nM2TFSjOc1jmTnOLHHnoeaX4WQCDQ/WdF uzMZBJu238XAVfkHVF9z3Zg48Ood7WxtjqiZI8LBMI7IbCp4SG1dmodXQpv3fLGG ng/LBhjHtik/MBBbKJ0u+Pq/0EZNHk0LakaYRhSvCIwIw0Kk3JhNFTEFULmNn90c POa/wHa1iQqaLQb01C2d7MP5v+mffoQr1QyaDuggSGMUYFNVXnabPHc8zcKY1Zqb 3QDtz8eT8Q77ZEE5GcHbAbiNRtpU6aQWoBE/Jijay6sPxGFC/DlLEOJtC8cNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGcEnVbCj0JF4AXnwn1MJYMFEgfUwHwYDVR0j BBgwFoAUnp9ZNcZbk7Bwcw0x3DsLlKTD7wAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2Q3YzdhYzItNWE5Yi00OTJhLWE0YzUtMWYxMzU5MGRhZTA2LzAvOUU5RjU5MzVD NjVCOTNCMDcwNzMwRDMxREMzQjBCOTRBNEMzRUYwMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RTlGNTkzNUM2NUI5M0IwNzA3MzBEMzFEQzNCMEI5NEE0QzNF RjAwLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NkN2M3YWMyLTVhOWItNDkyYS1h NGM1LTFmMTM1OTBkYWUwNi8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnvowDQYJ KoZIhvcNAQELBQADggEBAHQKVXlbF3fdXuWCZtTCsFurAdrh6+gqWGgsPHhE9vEp dyMmroc5xWaRxPPRa1L0cFVaKklp919ulIYaETWqzCv5HOUmIt7Nog0n6Wh9yjZ2 7KGCZeePC82/Hf1c7EZniIMdQBRT1IiW3rzuaAQqDzch362eWZDfJ/foE2qy0bRi HLkj/IDlpx4wGaMV2yjSN9Cw91b2aAkzNWog22ibBRu5UqBoCbbn3J7slTJYSgUE fNLscFzFd9WC7iWTFrbVjc+tf+yMhuAAhzKNmKI2HEes8V8+IHbe9PFm5seHXsCs Pahz5vlGeLCT9bVutNxlHeP9iIxUHSUvN8Y4lu9EKe8= -----END CERTIFICATE-----Generated at Wed May 13 10:43:34 2026 by rpki-client