$ rpki-client -vvf rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa File: 3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa (raw, json) Hash identifier: xLoeT+ko7MUw5aLnf4wj8gyqTKfil2TZ1gKntVO+LKI= Subject key identifier: A0:EE:68:EF:62:14:A3:F2:80:E0:98:91:C0:59:C1:95:46:E9:68:E3 Certificate issuer: /CN=20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7 Certificate serial: 1A5EB7DDE5B81FC98363545EDA0EC59B1F7E833F Authority key identifier: 20:B4:FB:5E:02:47:6A:FF:A1:00:3C:5C:90:D3:8F:F4:EC:10:14:B7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa Signing time: Sun 03 May 2026 03:07:53 +0000 ROA not before: Sun 03 May 2026 03:02:53 +0000 ROA not after: Sun 02 May 2027 03:07:53 +0000 asID: 147087 IP address blocks: 103.173.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.crl rsync://rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5e:b7:dd:e5:b8:1f:c9:83:63:54:5e:da:0e:c5:9b:1f:7e:83:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7 Validity Not Before: May 3 03:02:53 2026 GMT Not After : May 2 03:07:53 2027 GMT Subject: CN=A0EE68EF6214A3F280E09891C059C19546E968E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:44:a2:6c:81:31:77:60:96:af:a5:b3:98:ea: 12:96:75:7f:9e:49:40:9f:6e:67:bb:3f:dc:7b:c5: 4b:28:9c:c5:9f:26:02:a9:e5:ae:9b:a1:b1:fb:0e: 0f:52:03:f4:81:14:60:09:dd:55:b9:a0:38:a5:30: 4f:0d:45:25:80:16:5f:45:33:f2:01:9e:c1:aa:9f: d1:c8:f4:3b:9c:0d:32:a1:bd:89:5e:dd:af:ef:37: be:8b:35:f6:c1:3c:47:f1:9f:40:4f:ff:f7:64:4d: b3:69:cc:be:ac:e5:88:65:eb:a3:57:2e:72:ea:bb: f7:22:54:01:66:92:a6:aa:85:50:4f:5d:8b:ce:a8: d1:aa:9e:ec:88:d3:d8:e9:fd:58:cc:b8:40:da:ed: 8f:6c:50:f2:ed:4c:14:38:a7:d6:c2:45:4a:bb:be: 60:7a:b9:dd:ff:7c:3e:38:17:ef:69:b1:34:84:52: a4:93:c4:d2:cc:c5:82:a8:86:a5:b2:1e:4e:1f:62: 26:66:7b:f9:5b:ae:88:7d:31:f7:be:87:1a:31:ff: 6a:51:4c:ec:d0:56:22:cb:e7:a8:4b:2e:ca:34:32: c0:e8:09:49:36:7d:2f:41:9b:cb:83:3e:4b:d0:78: f7:66:08:d7:2a:ec:b6:9a:91:4c:15:4c:df:7a:4f: 93:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EE:68:EF:62:14:A3:F2:80:E0:98:91:C0:59:C1:95:46:E9:68:E3 X509v3 Authority Key Identifier: keyid:20:B4:FB:5E:02:47:6A:FF:A1:00:3C:5C:90:D3:8F:F4:EC:10:14:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20B4FB5E02476AFFA1003C5C90D38FF4EC1014B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.230.0/24 Signature Algorithm: sha256WithRSAEncryption 50:41:d6:f1:ac:18:b5:f6:6c:15:95:4f:72:88:2d:0a:c8:17: 73:a2:43:79:9c:70:2b:f0:d7:37:3f:10:40:d5:d7:ca:be:40: bc:2c:04:cb:62:0d:10:2b:5b:c7:eb:75:ea:f2:f7:f2:cc:e3: c2:7a:ef:94:8f:80:3d:ee:60:19:8e:09:09:4b:9b:0b:5c:b7: a8:8b:0a:ae:59:b1:04:03:0f:5e:8a:9a:53:af:da:66:36:76: 87:44:b1:e2:04:3e:8c:7e:52:59:d2:d9:61:1c:66:a3:e8:f0: 9b:ec:7e:6b:45:ee:d6:61:d8:4a:a7:2f:19:d0:b0:55:14:c8: 31:be:30:12:f4:d9:7f:12:0b:70:3a:6b:0d:9a:cb:6e:ff:80: 19:4a:8f:e3:48:e0:3c:d5:c7:51:8c:d4:34:16:bc:78:f4:c3: ee:63:18:3a:bc:fc:1d:66:59:79:25:98:f6:33:e9:40:2b:bf: 64:22:ab:0d:85:37:2f:e0:29:92:0c:a2:e0:85:8a:9c:73:29: 9e:e7:87:89:83:18:bd:1f:e0:81:38:01:7a:84:65:13:2d:c0: d9:98:0d:f5:60:f1:25:8e:c5:80:e6:a6:d2:c5:f2:49:0b:73: eb:11:13:62:ad:1e:e9:05:0f:dd:b2:d3:a0:5e:3f:31:e6:3b: 76:dd:e6:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGl633eW4H8mDY1Re2g7Fmx9+gz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCNEZCNUUwMjQ3NkFGRkExMDAzQzVDOTBEMzhGRjRF QzEwMTRCNzAeFw0yNjA1MDMwMzAyNTNaFw0yNzA1MDIwMzA3NTNaMDMxMTAvBgNV BAMTKEEwRUU2OEVGNjIxNEEzRjI4MEUwOTg5MUMwNTlDMTk1NDZFOTY4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRKJsgTF3YJavpbOY6hKWdX+e SUCfbme7P9x7xUsonMWfJgKp5a6bobH7Dg9SA/SBFGAJ3VW5oDilME8NRSWAFl9F M/IBnsGqn9HI9DucDTKhvYle3a/vN76LNfbBPEfxn0BP//dkTbNpzL6s5Yhl66NX LnLqu/ciVAFmkqaqhVBPXYvOqNGqnuyI09jp/VjMuEDa7Y9sUPLtTBQ4p9bCRUq7 vmB6ud3/fD44F+9psTSEUqSTxNLMxYKohqWyHk4fYiZme/lbroh9Mfe+hxox/2pR TOzQViLL56hLLso0MsDoCUk2fS9Bm8uDPkvQePdmCNcq7LaakUwVTN96T5ObAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoO5o72IUo/KA4JiRwFnBlUbpaOMwHwYDVR0j BBgwFoAUILT7XgJHav+hADxckNOP9OwQFLcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDAwZjljYzctNGE2OS00YzllLWJiYTYtNGQ5YWJiNTZlZmY2LzAvMjBCNEZCNUUw MjQ3NkFGRkExMDAzQzVDOTBEMzhGRjRFQzEwMTRCNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMEI0RkI1RTAyNDc2QUZGQTEwMDNDNUM5MEQzOEZGNEVDMTAx NEI3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwMGY5Y2M3LTRhNjktNGM5ZS1i YmE2LTRkOWFiYjU2ZWZmNi8wLzMxMzAzMzJlMzEzNzMzMmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnreYwDQYJ KoZIhvcNAQELBQADggEBAFBB1vGsGLX2bBWVT3KILQrIF3OiQ3mccCvw1zc/EEDV 18q+QLwsBMtiDRArW8frdery9/LM48J675SPgD3uYBmOCQlLmwtct6iLCq5ZsQQD D16KmlOv2mY2dodEseIEPox+UlnS2WEcZqPo8JvsfmtF7tZh2EqnLxnQsFUUyDG+ MBL02X8SC3A6aw2ay27/gBlKj+NI4DzVx1GM1DQWvHj0w+5jGDq8/B1mWXklmPYz 6UArv2Qiqw2FNy/gKZIMouCFipxzKZ7nh4mDGL0f4IE4AXqEZRMtwNmYDfVg8SWO xYDmptLF8kkLc+sRE2KtHukFD92y06BePzHmO3bd5p4= -----END CERTIFICATE-----Generated at Wed May 13 06:55:58 2026 by rpki-client