$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/3130332e3138322e312e302f32342d3234203d3e2039333431.roa File: 3130332e3138322e312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 7DRv9+zjmRuZ1Cj6e3MgFUBLnLf0dtLBblIHUDPlQ+w= Subject key identifier: CC:B9:D2:31:C0:98:B8:B0:CD:AD:5D:EF:F1:01:6E:A2:DD:2A:9B:E3 Certificate issuer: /CN=587FA9FD682D37BC3028319A65BCAECCE276314F Certificate serial: 6610429E0EC534016A824A21F41C7F64F6051132 Authority key identifier: 58:7F:A9:FD:68:2D:37:BC:30:28:31:9A:65:BC:AE:CC:E2:76:31:4F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/587FA9FD682D37BC3028319A65BCAECCE276314F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/3130332e3138322e312e302f32342d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:18:38 +0000 ROA not before: Sun 03 May 2026 02:13:38 +0000 ROA not after: Sun 02 May 2027 02:18:38 +0000 asID: 9341 IP address blocks: 103.182.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/587FA9FD682D37BC3028319A65BCAECCE276314F.crl rsync://rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/587FA9FD682D37BC3028319A65BCAECCE276314F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/587FA9FD682D37BC3028319A65BCAECCE276314F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:10:42:9e:0e:c5:34:01:6a:82:4a:21:f4:1c:7f:64:f6:05:11:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=587FA9FD682D37BC3028319A65BCAECCE276314F Validity Not Before: May 3 02:13:38 2026 GMT Not After : May 2 02:18:38 2027 GMT Subject: CN=CCB9D231C098B8B0CDAD5DEFF1016EA2DD2A9BE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b5:56:e9:1f:88:cf:1f:3e:16:be:f9:1f:4d: ba:90:a0:bb:88:a9:94:50:68:40:82:49:49:cd:84: 85:6a:09:6b:37:3a:25:52:ac:f7:c9:01:fb:ba:c0: e8:f1:55:48:63:0b:ca:6d:40:59:bd:ec:2e:57:e2: ad:20:48:82:8a:aa:83:31:e0:1a:f4:d4:12:13:f7: 06:d9:70:5b:e0:ee:22:ce:b7:65:1c:05:54:7a:cc: 44:58:fe:71:f4:98:13:99:f1:fb:49:4f:03:30:ee: 95:5b:7a:56:b8:5f:a0:ca:f1:14:b0:21:75:0e:75: 9e:6e:2f:f5:52:41:38:5a:2f:46:fc:cc:aa:c6:17: be:55:74:7d:9a:3a:1f:8c:83:99:e3:d6:ef:9e:43: 09:cf:34:38:f4:32:bc:c6:8f:5b:07:b8:c2:74:6c: 79:e6:5e:48:a8:ed:71:f7:7a:43:0c:1d:ab:70:d8: 80:9e:a2:44:c8:1b:c8:db:b8:06:f0:8f:ba:db:44: aa:e2:88:c5:09:c2:ed:fe:b7:2f:43:5e:10:46:7f: 81:54:5e:21:c3:84:20:29:ff:9a:c0:f6:65:56:bc: 58:1e:f7:e9:1b:9d:6a:70:65:ff:fa:1b:6d:98:d8: 6d:3d:2d:47:f0:d0:93:7a:d4:48:16:43:57:4f:e8: d6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B9:D2:31:C0:98:B8:B0:CD:AD:5D:EF:F1:01:6E:A2:DD:2A:9B:E3 X509v3 Authority Key Identifier: keyid:58:7F:A9:FD:68:2D:37:BC:30:28:31:9A:65:BC:AE:CC:E2:76:31:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/587FA9FD682D37BC3028319A65BCAECCE276314F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/587FA9FD682D37BC3028319A65BCAECCE276314F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ffa3b64-3c61-48d5-ab0c-d63b4824d00e/0/3130332e3138322e312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.1.0/24 Signature Algorithm: sha256WithRSAEncryption 01:89:fa:d3:12:8d:d3:1b:3a:84:9d:21:b1:ff:cc:a8:e3:c0: fb:c2:9d:2d:32:c2:9f:6e:84:37:eb:3c:37:4d:50:dc:de:2c: d3:7f:42:f5:78:fb:c9:61:b1:36:fe:86:6c:44:ab:c8:80:0d: e5:60:00:3b:a2:89:27:15:7c:5f:24:14:54:c8:98:b7:f8:e2: 77:da:11:96:54:ce:01:6a:b3:8a:d9:f6:a6:81:22:4c:c9:28: 13:24:37:cd:0a:ae:d5:a1:f1:51:f2:0b:a3:3d:0e:59:c6:11: c0:86:bc:f3:1f:69:c9:03:5b:a9:7c:03:92:d1:ab:e2:c9:0d: d0:47:27:bb:3c:22:cb:88:07:30:28:95:be:7c:57:6a:59:cf: c4:15:f9:3d:d5:55:11:76:d3:c0:7f:83:46:a2:14:64:f5:b2: 34:36:08:79:3a:b9:7f:8d:a3:54:99:c7:64:86:f9:2f:d0:6c: 00:48:2e:24:bc:28:38:cd:13:fd:8f:2d:74:82:a2:47:69:5a: 55:d9:2a:e8:23:e7:7a:85:25:c2:65:58:7b:7a:3d:99:f4:0e: b8:5b:af:8e:0d:cf:64:86:2b:1a:79:23:ea:6d:20:a0:db:74: f1:52:ff:c5:a6:90:c2:6a:8b:60:0c:68:2c:65:85:b3:22:2b: 86:4d:80:80 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZhBCng7FNAFqgkoh9Bx/ZPYFETIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg3RkE5RkQ2ODJEMzdCQzMwMjgzMTlBNjVCQ0FFQ0NF Mjc2MzE0RjAeFw0yNjA1MDMwMjEzMzhaFw0yNzA1MDIwMjE4MzhaMDMxMTAvBgNV BAMTKENDQjlEMjMxQzA5OEI4QjBDREFENURFRkYxMDE2RUEyREQyQTlCRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6tVbpH4jPHz4WvvkfTbqQoLuI qZRQaECCSUnNhIVqCWs3OiVSrPfJAfu6wOjxVUhjC8ptQFm97C5X4q0gSIKKqoMx 4Br01BIT9wbZcFvg7iLOt2UcBVR6zERY/nH0mBOZ8ftJTwMw7pVbela4X6DK8RSw IXUOdZ5uL/VSQThaL0b8zKrGF75VdH2aOh+Mg5nj1u+eQwnPNDj0MrzGj1sHuMJ0 bHnmXkio7XH3ekMMHatw2ICeokTIG8jbuAbwj7rbRKriiMUJwu3+ty9DXhBGf4FU XiHDhCAp/5rA9mVWvFge9+kbnWpwZf/6G22Y2G09LUfw0JN61EgWQ1dP6NazAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUzLnSMcCYuLDNrV3v8QFuot0qm+MwHwYDVR0j BBgwFoAUWH+p/WgtN7wwKDGaZbyuzOJ2MU8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWZmYTNiNjQtM2M2MS00OGQ1LWFiMGMtZDYzYjQ4MjRkMDBlLzAvNTg3RkE5RkQ2 ODJEMzdCQzMwMjgzMTlBNjVCQ0FFQ0NFMjc2MzE0Ri5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODdGQTlGRDY4MkQzN0JDMzAyODMxOUE2NUJDQUVDQ0UyNzYz MTRGLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMWZmYTNiNjQtM2M2MS00OGQ1LWFi MGMtZDYzYjQ4MjRkMDBlLzAvMzEzMDMzMmUzMTM4MzIyZTMxMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABntgEwDQYJKoZIhvcNAQEL BQADggEBAAGJ+tMSjdMbOoSdIbH/zKjjwPvCnS0ywp9uhDfrPDdNUNzeLNN/QvV4 +8lhsTb+hmxEq8iADeVgADuiiScVfF8kFFTImLf44nfaEZZUzgFqs4rZ9qaBIkzJ KBMkN80KrtWh8VHyC6M9DlnGEcCGvPMfackDW6l8A5LRq+LJDdBHJ7s8IsuIBzAo lb58V2pZz8QV+T3VVRF208B/g0aiFGT1sjQ2CHk6uX+No1SZx2SG+S/QbABILiS8 KDjNE/2PLXSCokdpWlXZKugj53qFJcJlWHt6PZn0Drhbr44Nz2SGKxp5I+ptIKDb dPFS/8WmkMJqi2AMaCxlhbMiK4ZNgIA= -----END CERTIFICATE-----Generated at Tue May 5 13:27:25 2026 by rpki-client