$ rpki-client -vvf rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa File: 3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa (raw, json) Hash identifier: Jz250gHnK9wmceEyoEa7ZzH19MTY0j2TTvLScjld8Z4= Subject key identifier: 3C:CC:D6:09:89:2D:BF:C8:73:B4:6F:F8:A3:AB:FD:2E:2A:EB:91:37 Certificate issuer: /CN=AD83230DE9E9D50A9CDF6A332E03DC58874E90E1 Certificate serial: 690F22FAD860916BD1BC1C1DCF2817A75B37A73F Authority key identifier: AD:83:23:0D:E9:E9:D5:0A:9C:DF:6A:33:2E:03:DC:58:87:4E:90:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa Signing time: Sun 03 May 2026 03:18:32 +0000 ROA not before: Sun 03 May 2026 03:13:32 +0000 ROA not after: Sun 02 May 2027 03:18:32 +0000 asID: 142338 IP address blocks: 103.169.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.crl rsync://rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0f:22:fa:d8:60:91:6b:d1:bc:1c:1d:cf:28:17:a7:5b:37:a7:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD83230DE9E9D50A9CDF6A332E03DC58874E90E1 Validity Not Before: May 3 03:13:32 2026 GMT Not After : May 2 03:18:32 2027 GMT Subject: CN=3CCCD609892DBFC873B46FF8A3ABFD2E2AEB9137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:38:9d:64:06:b3:29:59:29:39:65:8e:df:7d: 8e:c2:ca:cf:5b:32:79:32:a3:fe:79:a0:41:0c:84: a4:0c:a0:e1:55:d1:34:6d:f0:b6:d0:e6:b5:56:92: 96:c7:41:e0:70:76:09:9d:95:b8:85:5b:97:5b:6a: 15:6e:6a:b5:82:80:c4:2e:f5:f6:30:44:1a:8b:75: 4f:6c:39:11:00:89:db:d2:00:e6:64:55:39:02:71: f9:a3:a2:6a:69:fc:74:c3:13:fd:0c:90:b0:22:79: bf:f9:1e:fc:4c:69:23:79:76:bd:00:bb:f3:78:06: 41:69:a1:f7:69:35:31:cc:4c:da:30:e6:48:22:3b: 69:af:76:1a:99:77:1c:e0:e7:5a:8a:58:0e:d8:7d: 3a:b8:1c:8e:df:d1:84:2b:4e:02:44:50:b9:a8:6a: 01:00:1e:2e:58:34:7c:6e:48:58:e4:39:73:e5:c1: 1c:40:fb:94:20:e5:cc:30:c7:4c:46:a6:63:ef:74: 5b:57:cc:f1:19:4a:b9:48:b2:3b:e9:62:81:fb:a9: 5f:50:25:be:cc:db:ca:8b:f6:54:d7:e3:16:99:97: d0:30:c2:84:ec:57:69:65:46:b4:f2:f9:63:db:ab: d1:af:b2:55:76:cb:a0:9c:f1:2e:6d:82:eb:27:e0: bd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:D6:09:89:2D:BF:C8:73:B4:6F:F8:A3:AB:FD:2E:2A:EB:91:37 X509v3 Authority Key Identifier: keyid:AD:83:23:0D:E9:E9:D5:0A:9C:DF:6A:33:2E:03:DC:58:87:4E:90:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD83230DE9E9D50A9CDF6A332E03DC58874E90E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133352e302f32342d3234203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.135.0/24 Signature Algorithm: sha256WithRSAEncryption 24:f8:f3:4c:64:20:ea:a7:00:93:7b:48:39:89:43:c3:b3:f4: 08:29:25:21:e2:0d:82:3e:a5:c2:5f:86:a8:51:c4:9b:ac:30: a7:3b:c4:07:09:0f:f3:98:f2:90:14:5d:84:d0:bc:30:b0:51: d7:a9:6f:9c:04:8c:34:77:ba:6a:69:36:07:cf:ee:57:4e:e6: c1:69:d2:c8:38:36:6f:cb:a1:8c:47:b9:61:c1:93:5c:92:dd: 6c:6a:9f:55:1c:3d:90:a2:b1:7c:8b:46:03:c8:78:bf:3e:f6: 02:17:58:e0:b2:2f:df:95:96:de:74:37:5e:25:c3:e2:cb:f6: 96:d6:60:b0:44:b9:59:00:7d:2c:14:a4:38:e9:1d:65:05:35: 4e:e6:f6:4b:99:42:ac:4f:12:52:8e:aa:08:40:cb:fb:70:dc: d4:61:80:6a:93:76:b1:52:f9:32:4a:2e:68:08:9b:65:12:2a: b7:38:bc:b8:0d:5a:84:dc:ef:bc:2d:75:a4:4d:7f:4d:20:0b: e0:25:a4:a9:4d:ee:35:52:d2:33:f1:ea:96:d4:9a:76:cf:d3: 6b:d1:a7:84:cb:4e:43:a6:aa:b7:19:fa:cd:ea:bb:a8:09:e2: 19:4e:0b:a2:da:88:cc:b9:24:70:82:a7:a1:6b:39:f8:2a:04: d1:4c:06:41 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaQ8i+thgkWvRvBwdzygXp1s3pz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ4MzIzMERFOUU5RDUwQTlDREY2QTMzMkUwM0RDNTg4 NzRFOTBFMTAeFw0yNjA1MDMwMzEzMzJaFw0yNzA1MDIwMzE4MzJaMDMxMTAvBgNV BAMTKDNDQ0NENjA5ODkyREJGQzg3M0I0NkZGOEEzQUJGRDJFMkFFQjkxMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIOJ1kBrMpWSk5ZY7ffY7Cys9b Mnkyo/55oEEMhKQMoOFV0TRt8LbQ5rVWkpbHQeBwdgmdlbiFW5dbahVuarWCgMQu 9fYwRBqLdU9sOREAidvSAOZkVTkCcfmjompp/HTDE/0MkLAieb/5HvxMaSN5dr0A u/N4BkFpofdpNTHMTNow5kgiO2mvdhqZdxzg51qKWA7YfTq4HI7f0YQrTgJEULmo agEAHi5YNHxuSFjkOXPlwRxA+5Qg5cwwx0xGpmPvdFtXzPEZSrlIsjvpYoH7qV9Q Jb7M28qL9lTX4xaZl9AwwoTsV2llRrTy+WPbq9GvslV2y6Cc8S5tgusn4L3hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPMzWCYktv8hztG/4o6v9LirrkTcwHwYDVR0j BBgwFoAUrYMjDenp1Qqc32ozLgPcWIdOkOEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjkwMDNkNmMtOTVmMS00N2E0LTlkNWQtZjdiNDhjYWFhN2Y0LzAvQUQ4MzIzMERF OUU5RDUwQTlDREY2QTMzMkUwM0RDNTg4NzRFOTBFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRDgzMjMwREU5RTlENTBBOUNERjZBMzMyRTAzREM1ODg3NEU5 MEUxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYcwDQYJ KoZIhvcNAQELBQADggEBACT480xkIOqnAJN7SDmJQ8Oz9AgpJSHiDYI+pcJfhqhR xJusMKc7xAcJD/OY8pAUXYTQvDCwUdepb5wEjDR3umppNgfP7ldO5sFp0sg4Nm/L oYxHuWHBk1yS3Wxqn1UcPZCisXyLRgPIeL8+9gIXWOCyL9+Vlt50N14lw+LL9pbW YLBEuVkAfSwUpDjpHWUFNU7m9kuZQqxPElKOqghAy/tw3NRhgGqTdrFS+TJKLmgI m2USKrc4vLgNWoTc77wtdaRNf00gC+AlpKlN7jVS0jPx6pbUmnbP02vRp4TLTkOm qrcZ+s3qu6gJ4hlOC6LaiMy5JHCCp6FrOfgqBNFMBkE= -----END CERTIFICATE-----Generated at Wed May 13 11:56:16 2026 by rpki-client