$ rpki-client -vvf rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231382e302f32342d3234203d3e203633343838.roa File: 3130332e3133312e3231382e302f32342d3234203d3e203633343838.roa (raw, json) Hash identifier: uikJ4h+kBmTlo/wV286gj8QmBKk/antrFLp6NHaL3Jo= Subject key identifier: 60:C0:D7:DB:27:8D:85:F6:E5:51:81:72:31:29:B3:54:A1:0B:2F:54 Certificate issuer: /CN=91196A98FE2E2236BB65CE28DCB5923E551C9CA5 Certificate serial: 70D68C262CB74D215A34D9CA91B9EF895A5EE30F Authority key identifier: 91:19:6A:98:FE:2E:22:36:BB:65:CE:28:DC:B5:92:3E:55:1C:9C:A5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231382e302f32342d3234203d3e203633343838.roa Signing time: Sun 03 May 2026 03:09:46 +0000 ROA not before: Sun 03 May 2026 03:04:46 +0000 ROA not after: Sun 02 May 2027 03:09:46 +0000 asID: 63488 IP address blocks: 103.131.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.crl rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d6:8c:26:2c:b7:4d:21:5a:34:d9:ca:91:b9:ef:89:5a:5e:e3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91196A98FE2E2236BB65CE28DCB5923E551C9CA5 Validity Not Before: May 3 03:04:46 2026 GMT Not After : May 2 03:09:46 2027 GMT Subject: CN=60C0D7DB278D85F6E55181723129B354A10B2F54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e0:18:0c:82:4b:b9:9a:ba:4d:79:0a:26:ac: 1a:5e:98:7c:1f:83:9b:94:21:91:0c:4d:6e:45:2a: 88:2d:56:77:b2:8d:df:11:80:6f:3f:f2:8e:17:b4: 8c:f0:43:7e:fc:53:ee:1a:12:ab:ec:bf:8f:e9:b3: 4e:13:11:a6:61:44:a7:14:32:bb:8f:df:b5:18:20: 93:c5:7c:58:c2:4b:d6:60:56:4e:20:82:2d:6f:2a: 40:b0:4b:46:00:d7:0a:d1:50:90:88:87:7c:33:52: a5:0a:1d:2f:a7:ee:cd:ce:76:5b:fa:45:11:2a:e6: d0:7e:56:d0:e9:57:b5:d9:12:7a:af:3e:8b:58:60: f8:a2:72:9f:a3:eb:36:a6:52:cc:18:8f:a5:e0:1d: d4:24:8b:74:78:e6:82:69:60:de:2f:70:53:71:40: 71:eb:db:3a:86:5e:48:3d:71:ca:7a:26:48:d8:bc: d5:50:ba:ea:02:a4:b9:54:58:c2:b8:4b:54:21:61: 14:92:e8:57:97:8d:ce:63:61:38:2c:79:29:62:fe: d0:c1:99:f4:a1:4e:c5:db:be:1d:5d:09:f5:b1:c1: 64:54:26:65:02:09:53:58:6a:c7:15:c3:8f:2a:9f: 28:55:2b:77:4d:8e:6a:bb:83:d9:16:bd:72:b4:64: 24:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C0:D7:DB:27:8D:85:F6:E5:51:81:72:31:29:B3:54:A1:0B:2F:54 X509v3 Authority Key Identifier: keyid:91:19:6A:98:FE:2E:22:36:BB:65:CE:28:DC:B5:92:3E:55:1C:9C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91196A98FE2E2236BB65CE28DCB5923E551C9CA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231382e302f32342d3234203d3e203633343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.218.0/24 Signature Algorithm: sha256WithRSAEncryption 09:3e:8c:b7:af:f1:df:38:4c:5b:ff:85:79:1d:56:7c:ff:f3: d9:ca:e8:06:58:da:a6:f4:85:1a:df:58:64:5b:cb:27:46:0e: 71:92:3b:bc:e3:2e:dc:9d:cb:41:c4:04:56:ed:07:ce:ae:d6: 1f:71:49:b3:83:0d:31:cd:fa:6c:83:18:1c:de:b4:27:e9:79: 26:b9:97:bb:b6:fa:27:16:8f:66:b8:fd:c4:31:c9:b1:e1:c6: 5f:df:4a:b3:db:80:c8:42:dc:7c:96:5d:03:d9:2b:6a:f7:ed: dd:bd:ec:c2:a7:90:8e:6a:4b:a2:16:49:71:d6:fe:13:36:6d: 4a:09:3c:98:b9:ab:d0:d1:ef:53:16:f4:a4:4d:05:02:22:b1: f8:5d:b3:60:78:5a:e8:47:e1:9a:ff:57:9c:6b:07:6b:80:40: c0:a8:23:b2:bc:87:2b:a4:fa:97:e2:7e:8f:22:ca:a7:7f:ae: 83:00:86:09:17:3d:b1:cb:5f:7e:f0:d9:c3:36:5f:f5:7b:ec: 7f:4f:d0:39:79:71:94:fc:7d:52:c4:ab:6b:88:d9:40:a0:f9: d5:d4:b5:e7:53:23:e4:f6:6c:77:64:8c:f8:0e:43:45:29:8c: 60:39:6e:d2:a8:3e:6d:03:10:03:28:31:4d:ec:fd:8d:c3:a6: e5:85:9f:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcNaMJiy3TSFaNNnKkbnviVpe4w8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTExOTZBOThGRTJFMjIzNkJCNjVDRTI4RENCNTkyM0U1 NTFDOUNBNTAeFw0yNjA1MDMwMzA0NDZaFw0yNzA1MDIwMzA5NDZaMDMxMTAvBgNV BAMTKDYwQzBEN0RCMjc4RDg1RjZFNTUxODE3MjMxMjlCMzU0QTEwQjJGNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ4BgMgku5mrpNeQomrBpemHwf g5uUIZEMTW5FKogtVneyjd8RgG8/8o4XtIzwQ378U+4aEqvsv4/ps04TEaZhRKcU MruP37UYIJPFfFjCS9ZgVk4ggi1vKkCwS0YA1wrRUJCIh3wzUqUKHS+n7s3Odlv6 RREq5tB+VtDpV7XZEnqvPotYYPiicp+j6zamUswYj6XgHdQki3R45oJpYN4vcFNx QHHr2zqGXkg9ccp6JkjYvNVQuuoCpLlUWMK4S1QhYRSS6FeXjc5jYTgseSli/tDB mfShTsXbvh1dCfWxwWRUJmUCCVNYascVw48qnyhVK3dNjmq7g9kWvXK0ZCTTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYMDX2yeNhfblUYFyMSmzVKELL1QwHwYDVR0j BBgwFoAUkRlqmP4uIja7Zc4o3LWSPlUcnKUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDU1M2VkYWItNGEzZC00NGU0LThkOTYtNjI1YTFjMjAzNzhkLzAvOTExOTZBOThG RTJFMjIzNkJCNjVDRTI4RENCNTkyM0U1NTFDOUNBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MTE5NkE5OEZFMkUyMjM2QkI2NUNFMjhEQ0I1OTIzRTU1MUM5 Q0E1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PaMA0GCSqG SIb3DQEBCwUAA4IBAQAJPoy3r/HfOExb/4V5HVZ8//PZyugGWNqm9IUa31hkW8sn Rg5xkju84y7cnctBxARW7QfOrtYfcUmzgw0xzfpsgxgc3rQn6XkmuZe7tvonFo9m uP3EMcmx4cZf30qz24DIQtx8ll0D2Stq9+3dvezCp5COakuiFklx1v4TNm1KCTyY uavQ0e9TFvSkTQUCIrH4XbNgeFroR+Ga/1ecawdrgEDAqCOyvIcrpPqX4n6PIsqn f66DAIYJFz2xy19+8NnDNl/1e+x/T9A5eXGU/H1SxKtriNlAoPnV1LXnUyPk9mx3 ZIz4DkNFKYxgOW7SqD5tAxADKDFN7P2Nw6blhZ9I -----END CERTIFICATE-----Generated at Wed May 13 05:55:03 2026 by rpki-client