$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa File: 3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: oNZaAMEInGsgTF0OEiDuGQ+uARtTEDPUL/BCGaVeVCI= Subject key identifier: 75:B0:FA:70:D0:FA:6E:24:12:42:E9:C2:3A:CB:3D:90:F2:D0:38:D3 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 432A148F4E6478DA70FF80C4CFB168DD099462D5 Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa Signing time: Thu 23 Apr 2026 05:34:48 +0000 ROA not before: Thu 23 Apr 2026 05:29:48 +0000 ROA not after: Thu 22 Apr 2027 05:34:48 +0000 asID: 138077 IP address blocks: 103.16.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Apr 2026 12:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2a:14:8f:4e:64:78:da:70:ff:80:c4:cf:b1:68:dd:09:94:62:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Apr 23 05:29:48 2026 GMT Not After : Apr 22 05:34:48 2027 GMT Subject: CN=75B0FA70D0FA6E241242E9C23ACB3D90F2D038D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c1:57:81:0a:8d:e6:db:66:30:59:49:0a:87: 5d:eb:f8:fb:54:3c:b2:2c:53:d9:89:f4:bf:37:db: 7b:47:bd:8b:e5:27:64:fc:e4:71:c8:08:57:07:92: 4d:01:c8:14:ff:19:7b:61:dd:b2:34:9d:be:a7:95: e5:1f:86:b4:de:81:18:42:3f:50:9b:62:e8:7c:b1: 37:3c:d0:05:07:f0:d6:de:fa:c7:90:b4:7f:a5:b6: cb:3e:99:b6:a7:ef:41:e5:7b:bf:2c:84:26:8e:8b: 5d:45:d0:ab:ea:63:f4:a4:74:e0:04:47:2c:ac:86: e9:d9:e0:1c:be:c1:d5:96:b7:53:6d:4a:4d:e3:c6: 1a:31:c1:df:47:54:b1:69:f4:d4:db:9c:e5:df:13: 12:85:28:14:77:da:a5:e7:30:01:54:23:50:99:27: 9a:5f:3f:d8:4c:60:d4:dd:a6:7b:60:15:c9:81:dc: 46:7c:90:ac:bb:73:09:42:5e:68:5d:ef:58:35:b3: 4f:04:63:b9:51:f8:d8:a0:28:a5:e6:67:b7:a4:d1: 33:94:ce:54:0a:5d:b6:82:ec:f6:84:f3:e1:73:fc: 8a:fc:99:32:d1:45:c2:2b:a4:6d:4b:17:6c:98:bc: ab:e1:e3:65:0a:0a:d5:94:46:64:da:44:6d:ec:37: 34:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B0:FA:70:D0:FA:6E:24:12:42:E9:C2:3A:CB:3D:90:F2:D0:38:D3 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e31362e3133392e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.139.0/24 Signature Algorithm: sha256WithRSAEncryption 97:dd:6d:6b:51:08:2b:19:1a:f0:cd:1b:8d:c3:e6:8d:69:c4: d2:cf:19:37:48:7e:76:96:5a:a6:02:ab:30:1f:96:02:40:a4: c6:93:2b:8e:9f:db:18:d5:9d:43:d4:ea:14:f1:c7:28:0a:35: 77:37:24:c8:9f:b3:20:0d:3b:49:7f:fc:1e:9c:f1:c7:c5:87: cc:b1:cc:81:cb:1f:21:73:a2:da:f8:30:8a:da:cd:6a:90:3b: 6f:a8:a1:d4:9c:8f:a5:df:44:57:a4:61:75:91:cf:3c:93:ea: 5e:2e:8f:ed:83:66:35:27:4f:06:79:8a:64:9c:c7:87:d1:c1: 4b:76:a6:1f:ff:7f:69:e7:c4:fc:52:c5:7e:5b:30:8a:66:77: 02:84:c7:c7:59:d0:e9:0b:c0:4d:b8:29:28:3d:87:5a:ee:e0: d5:dc:a1:28:b6:5e:99:4d:f8:97:89:6b:5a:14:3d:1e:c7:0b: ae:5a:5b:96:c9:ae:5f:f3:2d:8c:ca:40:1d:cb:d8:93:09:a8: ab:69:b3:cf:28:7e:8c:6c:6b:47:de:c9:b4:3a:91:98:51:3a: 4c:c2:96:c7:fe:32:b7:97:a4:23:bc:3d:4b:94:1b:52:8f:58: d3:c9:61:39:ca:e4:fc:ea:23:26:ba:3a:c3:48:c7:b1:2c:97: 2f:88:0e:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQyoUj05keNpw/4DEz7Fo3QmUYtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNjA0MjMwNTI5NDhaFw0yNzA0MjIwNTM0NDhaMDMxMTAvBgNV BAMTKDc1QjBGQTcwRDBGQTZFMjQxMjQyRTlDMjNBQ0IzRDkwRjJEMDM4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2wVeBCo3m22YwWUkKh13r+PtU PLIsU9mJ9L8323tHvYvlJ2T85HHICFcHkk0ByBT/GXth3bI0nb6nleUfhrTegRhC P1CbYuh8sTc80AUH8Nbe+seQtH+ltss+mban70Hle78shCaOi11F0KvqY/SkdOAE RyyshunZ4By+wdWWt1NtSk3jxhoxwd9HVLFp9NTbnOXfExKFKBR32qXnMAFUI1CZ J5pfP9hMYNTdpntgFcmB3EZ8kKy7cwlCXmhd71g1s08EY7lR+NigKKXmZ7ek0TOU zlQKXbaC7PaE8+Fz/Ir8mTLRRcIrpG1LF2yYvKvh42UKCtWURmTaRG3sNzThAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdbD6cND6biQSQunCOss9kPLQONMwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzEzNjJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxCLMA0GCSqG SIb3DQEBCwUAA4IBAQCX3W1rUQgrGRrwzRuNw+aNacTSzxk3SH52llqmAqswH5YC QKTGkyuOn9sY1Z1D1OoU8ccoCjV3NyTIn7MgDTtJf/wenPHHxYfMscyByx8hc6La +DCK2s1qkDtvqKHUnI+l30RXpGF1kc88k+peLo/tg2Y1J08GeYpknMeH0cFLdqYf /39p58T8UsV+WzCKZncChMfHWdDpC8BNuCkoPYda7uDV3KEotl6ZTfiXiWtaFD0e xwuuWluWya5f8y2MykAdy9iTCairabPPKH6MbGtH3sm0OpGYUTpMwpbH/jK3l6Qj vD1LlBtSj1jTyWE5yuT86iMmujrDSMexLJcviA7Z -----END CERTIFICATE-----Generated at Mon Apr 27 19:44:12 2026 by rpki-client