$ rpki-client -vvf rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139342e302f32342d3234203d3e20313338383636.roa File: 3130332e3134322e3139342e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: //ahjg9/ssGLXo+2TqwZ1+agr2xeTR0MMenHDqtdpYM= Subject key identifier: 5A:27:E7:AC:2B:AD:B6:91:1D:C9:7E:78:3F:23:AD:B2:07:50:28:71 Certificate issuer: /CN=BD6AA16169DB4B937F06A838BBBAA3775CADA41D Certificate serial: 53D47C37200C18A46C1E093F21FB500B5CF28355 Authority key identifier: BD:6A:A1:61:69:DB:4B:93:7F:06:A8:38:BB:BA:A3:77:5C:AD:A4:1D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139342e302f32342d3234203d3e20313338383636.roa Signing time: Sun 03 May 2026 03:16:54 +0000 ROA not before: Sun 03 May 2026 03:11:54 +0000 ROA not after: Sun 02 May 2027 03:16:54 +0000 asID: 138866 IP address blocks: 103.142.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.crl rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d4:7c:37:20:0c:18:a4:6c:1e:09:3f:21:fb:50:0b:5c:f2:83:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6AA16169DB4B937F06A838BBBAA3775CADA41D Validity Not Before: May 3 03:11:54 2026 GMT Not After : May 2 03:16:54 2027 GMT Subject: CN=5A27E7AC2BADB6911DC97E783F23ADB207502871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:65:1e:60:e7:ce:7c:1a:cc:69:db:aa:01:2e: d0:1e:26:cf:06:ae:0f:b0:84:62:d9:c9:cf:de:9a: cc:9d:67:db:41:14:a3:54:d5:85:ba:58:b2:85:0a: d3:c3:0d:c0:b2:62:16:a2:2b:78:96:91:a0:1c:ba: 3f:8d:28:16:0f:59:98:1e:cc:dd:5b:e1:6f:74:3e: 3f:d5:50:47:7b:97:4f:e0:26:c3:81:6a:41:b4:0e: df:f0:64:c0:89:71:8c:dc:37:79:a6:b2:7e:ac:aa: c1:3c:49:1e:77:5c:f1:a2:67:23:bf:25:64:33:70: 23:33:60:64:4d:aa:35:b1:17:13:63:91:f9:11:13: 51:0f:66:ec:af:da:82:db:7d:7b:30:d8:38:fc:d9: c8:29:30:0a:b2:82:2d:99:68:e3:62:c2:9b:a2:7e: 6d:b1:02:d7:16:b2:96:ca:50:86:13:0e:80:24:d0: dd:a8:00:30:53:d9:c0:93:01:d9:6e:57:eb:f2:1c: 0f:f5:bd:8c:ae:31:8f:43:a4:a1:90:33:4f:a7:2e: 69:9b:5c:78:68:3b:12:4e:17:1a:ab:1d:da:8c:33: 0d:4d:e5:30:c9:d6:b1:e7:ab:05:9a:5c:e0:62:ad: ed:9f:27:5b:a9:51:53:da:b8:ca:cd:c1:b3:3e:22: b6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:27:E7:AC:2B:AD:B6:91:1D:C9:7E:78:3F:23:AD:B2:07:50:28:71 X509v3 Authority Key Identifier: keyid:BD:6A:A1:61:69:DB:4B:93:7F:06:A8:38:BB:BA:A3:77:5C:AD:A4:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139342e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.194.0/24 Signature Algorithm: sha256WithRSAEncryption 29:5b:c2:f7:01:66:49:e9:65:a4:61:fa:f9:f1:be:19:64:66: a8:8d:db:0b:4f:e2:29:3a:e9:8b:6b:79:f0:a1:26:ca:da:07: f9:30:65:45:20:d1:b5:d2:a3:be:29:18:dc:ab:35:eb:41:bc: af:8a:ae:00:4f:04:10:9e:b1:f8:72:a5:a2:59:8d:cc:fd:04: bd:37:d4:7e:c1:fb:10:a0:e0:bd:9d:fa:01:2a:cb:f3:44:2c: 4e:b9:c7:1b:3e:f2:d9:67:d3:b5:92:a1:3a:41:48:01:ff:df: d1:98:13:e1:44:c8:2d:ba:98:0c:a8:cd:d6:02:a4:15:9d:66: 83:2f:43:26:9c:d9:7b:12:43:5e:c0:3e:33:c6:d2:ef:65:ef: 93:db:84:92:eb:42:5e:c9:55:eb:45:ef:ee:dc:46:98:cd:4e: a3:c6:0b:ca:5b:f4:33:07:11:50:e2:8a:05:cd:66:8c:a5:d0: f3:8b:00:98:6f:2d:da:c9:49:c3:b3:4c:ff:98:20:de:38:c1: 5f:58:d2:98:5b:6a:84:df:0d:cf:ef:27:48:7a:f5:77:30:a2: c2:cb:a5:77:dc:70:3a:a4:0b:b4:f2:bd:17:46:16:8f:43:46: c4:04:ba:f4:9f:16:a9:89:ae:10:13:a2:3a:b0:6e:9d:c9:cf: 63:2e:e8:0e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU9R8NyAMGKRsHgk/IftQC1zyg1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2QUExNjE2OURCNEI5MzdGMDZBODM4QkJCQUEzNzc1 Q0FEQTQxRDAeFw0yNjA1MDMwMzExNTRaFw0yNzA1MDIwMzE2NTRaMDMxMTAvBgNV BAMTKDVBMjdFN0FDMkJBREI2OTExREM5N0U3ODNGMjNBREIyMDc1MDI4NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdZR5g5858Gsxp26oBLtAeJs8G rg+whGLZyc/emsydZ9tBFKNU1YW6WLKFCtPDDcCyYhaiK3iWkaAcuj+NKBYPWZge zN1b4W90Pj/VUEd7l0/gJsOBakG0Dt/wZMCJcYzcN3mmsn6sqsE8SR53XPGiZyO/ JWQzcCMzYGRNqjWxFxNjkfkRE1EPZuyv2oLbfXsw2Dj82cgpMAqygi2ZaONiwpui fm2xAtcWspbKUIYTDoAk0N2oADBT2cCTAdluV+vyHA/1vYyuMY9DpKGQM0+nLmmb XHhoOxJOFxqrHdqMMw1N5TDJ1rHnqwWaXOBire2fJ1upUVPauMrNwbM+Irb/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWifnrCuttpEdyX54PyOtsgdQKHEwHwYDVR0j BBgwFoAUvWqhYWnbS5N/Bqg4u7qjd1ytpB0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjJhYTJkMTAtM2ZhYS00MjcyLWJlMWYtODEwMjk1N2I2NWU2LzAvQkQ2QUExNjE2 OURCNEI5MzdGMDZBODM4QkJCQUEzNzc1Q0FEQTQxRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRDZBQTE2MTY5REI0QjkzN0YwNkE4MzhCQkJBQTM3NzVDQURB NDFELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMxMzAzMzJlMzEzNDMyMmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjsIwDQYJ KoZIhvcNAQELBQADggEBAClbwvcBZknpZaRh+vnxvhlkZqiN2wtP4ik66YtrefCh JsraB/kwZUUg0bXSo74pGNyrNetBvK+KrgBPBBCesfhypaJZjcz9BL031H7B+xCg 4L2d+gEqy/NELE65xxs+8tln07WSoTpBSAH/39GYE+FEyC26mAyozdYCpBWdZoMv Qyac2XsSQ17APjPG0u9l75PbhJLrQl7JVetF7+7cRpjNTqPGC8pb9DMHEVDiigXN Zoyl0POLAJhvLdrJScOzTP+YIN44wV9Y0phbaoTfDc/vJ0h69XcwosLLpXfccDqk C7TyvRdGFo9DRsQEuvSfFqmJrhATojqwbp3Jz2Mu6A4= -----END CERTIFICATE-----Generated at Wed May 13 04:26:13 2026 by rpki-client