$ rpki-client -vvf rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: pkw1Y7i4f2xvVEY0Gh9GjhFjARpvJWCNngf9O/42y0o= Subject key identifier: B3:3C:1E:03:1E:51:FB:23:E8:D3:B5:4D:8F:CC:43:4A:15:E4:03:C3 Certificate issuer: /CN=18FC32F1670351EC283C40262E5055C462E12229 Certificate serial: 503CB2786025DA8702D586F29A7730B53917AC70 Authority key identifier: 18:FC:32:F1:67:03:51:EC:28:3C:40:26:2E:50:55:C4:62:E1:22:29 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18FC32F1670351EC283C40262E5055C462E12229.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa Signing time: Sun 03 May 2026 02:10:41 +0000 ROA not before: Sun 03 May 2026 02:05:41 +0000 ROA not after: Sun 02 May 2027 02:10:41 +0000 asID: 17995 IP address blocks: 103.169.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/18FC32F1670351EC283C40262E5055C462E12229.crl rsync://rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/18FC32F1670351EC283C40262E5055C462E12229.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18FC32F1670351EC283C40262E5055C462E12229.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 17:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3c:b2:78:60:25:da:87:02:d5:86:f2:9a:77:30:b5:39:17:ac:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18FC32F1670351EC283C40262E5055C462E12229 Validity Not Before: May 3 02:05:41 2026 GMT Not After : May 2 02:10:41 2027 GMT Subject: CN=B33C1E031E51FB23E8D3B54D8FCC434A15E403C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e1:0e:11:b2:b8:91:c0:ad:df:77:4b:42:b6: b4:11:c9:ad:8a:32:06:3b:34:95:29:2f:d7:63:98: f6:fe:17:f0:fc:6a:8c:77:03:68:06:d4:9c:1e:fa: 3d:15:69:79:1d:69:89:6b:b5:59:32:53:28:d7:62: bd:3b:fc:86:0a:16:b6:07:a4:80:57:3b:87:18:3e: 13:a9:6b:87:b6:7f:bb:b2:27:3b:76:18:71:7f:1a: 2d:a2:21:85:3a:d7:49:48:2d:27:06:ac:9a:50:ee: e9:98:93:cb:92:c2:23:95:fe:b5:de:c4:1b:1f:cc: 7d:4f:3b:55:66:97:13:b8:d3:40:c2:02:32:e9:aa: f3:29:f0:a7:62:69:55:a1:56:6d:22:9b:8c:0c:44: 92:d1:95:ae:7f:de:bc:61:31:74:bb:54:43:54:a7: 60:24:70:bb:98:65:40:09:05:77:2f:a5:2a:0b:ef: 8d:b2:a4:03:a2:9b:da:9b:3b:a9:55:2d:4f:d6:47: 74:91:0a:2c:39:7a:0e:0c:d4:33:86:64:55:cc:a8: cb:07:3d:f2:6e:1f:df:3d:6b:21:25:6c:1c:71:46: dc:57:26:4a:b2:31:2b:e3:e7:34:f4:bd:e0:69:42: eb:b7:64:af:f9:57:36:21:94:ae:04:b6:28:8c:0d: f2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3C:1E:03:1E:51:FB:23:E8:D3:B5:4D:8F:CC:43:4A:15:E4:03:C3 X509v3 Authority Key Identifier: keyid:18:FC:32:F1:67:03:51:EC:28:3C:40:26:2E:50:55:C4:62:E1:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/18FC32F1670351EC283C40262E5055C462E12229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/18FC32F1670351EC283C40262E5055C462E12229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.4.0/23 Signature Algorithm: sha256WithRSAEncryption ca:9b:ae:89:53:3a:86:6e:d4:50:06:ce:34:c9:e9:a6:55:98: 2b:88:7f:42:e7:79:01:d2:62:da:ad:25:51:47:34:ee:d5:75: 77:83:5e:95:43:68:a0:53:fa:2c:70:58:1d:0a:45:f0:1e:4e: 20:a9:a7:58:24:95:3c:09:10:53:2d:33:ed:9f:2b:47:ef:a1: 84:9b:7f:c0:15:96:32:cd:80:47:f6:91:9a:6d:37:f1:fc:7a: 87:40:a0:62:46:5d:fe:86:52:a5:41:61:61:14:e2:f8:0b:b6: 7b:33:cc:6a:92:65:2c:b5:88:5c:a5:93:d3:2c:7a:75:98:20: fd:89:6b:5d:b6:31:3d:e6:80:23:1b:c0:9c:e6:8d:a5:92:70: 74:3f:db:1b:d3:6d:8c:4d:d3:7f:8f:73:60:b4:ad:00:a0:1d: 4c:5e:c5:a5:f7:99:b8:11:ae:ff:ed:c1:de:01:c5:2d:ee:85: 66:3e:8a:82:84:e4:df:dd:58:49:23:69:64:62:63:17:26:c3: 1c:e3:f5:bd:aa:b9:e7:24:e2:43:fb:2c:a9:f2:87:d0:38:0c: 0d:59:25:bf:4d:6f:19:04:cf:f6:70:89:2e:48:2e:7a:86:f7: a5:2e:8b:2d:0a:e1:4f:bd:cf:30:33:f1:c3:22:df:82:69:a9: 7e:7b:ea:5e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUDyyeGAl2ocC1YbymncwtTkXrHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThGQzMyRjE2NzAzNTFFQzI4M0M0MDI2MkU1MDU1QzQ2 MkUxMjIyOTAeFw0yNjA1MDMwMjA1NDFaFw0yNzA1MDIwMjEwNDFaMDMxMTAvBgNV BAMTKEIzM0MxRTAzMUU1MUZCMjNFOEQzQjU0RDhGQ0M0MzRBMTVFNDAzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa4Q4RsriRwK3fd0tCtrQRya2K MgY7NJUpL9djmPb+F/D8aox3A2gG1Jwe+j0VaXkdaYlrtVkyUyjXYr07/IYKFrYH pIBXO4cYPhOpa4e2f7uyJzt2GHF/Gi2iIYU610lILScGrJpQ7umYk8uSwiOV/rXe xBsfzH1PO1VmlxO400DCAjLpqvMp8KdiaVWhVm0im4wMRJLRla5/3rxhMXS7VENU p2AkcLuYZUAJBXcvpSoL742ypAOim9qbO6lVLU/WR3SRCiw5eg4M1DOGZFXMqMsH PfJuH989ayElbBxxRtxXJkqyMSvj5zT0veBpQuu3ZK/5VzYhlK4EtiiMDfIBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUszweAx5R+yPo07VNj8xDShXkA8MwHwYDVR0j BBgwFoAUGPwy8WcDUewoPEAmLlBVxGLhIikwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQxZTRhYzktYzA2Yi00MzQzLTg1MjYtM2ExZjFiMWI1ZDgyLzAvMThGQzMyRjE2 NzAzNTFFQzI4M0M0MDI2MkU1MDU1QzQ2MkUxMjIyOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOEZDMzJGMTY3MDM1MUVDMjgzQzQwMjYyRTUwNTVDNDYyRTEy MjI5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0MWU0YWM5LWMwNmItNDM0My04 NTI2LTNhMWYxYjFiNWQ4Mi8wLzMxMzAzMzJlMzEzNjM5MmUzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqQQwDQYJKoZIhvcN AQELBQADggEBAMqbrolTOoZu1FAGzjTJ6aZVmCuIf0LneQHSYtqtJVFHNO7VdXeD XpVDaKBT+ixwWB0KRfAeTiCpp1gklTwJEFMtM+2fK0fvoYSbf8AVljLNgEf2kZpt N/H8eodAoGJGXf6GUqVBYWEU4vgLtnszzGqSZSy1iFylk9MsenWYIP2Ja122MT3m gCMbwJzmjaWScHQ/2xvTbYxN03+Pc2C0rQCgHUxexaX3mbgRrv/twd4BxS3uhWY+ ioKE5N/dWEkjaWRiYxcmwxzj9b2queck4kP7LKnyh9A4DA1ZJb9NbxkEz/ZwiS5I LnqG96Uuiy0K4U+9zzAz8cMi34JpqX576l4= -----END CERTIFICATE-----Generated at Fri May 8 06:35:15 2026 by rpki-client