$ rpki-client -vvf rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa File: 3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa (raw, json) Hash identifier: GMFkIV2sJittLK9WJRbpUUZTvqKbZ67tY6581Ugt0f0= Subject key identifier: 10:04:2F:6F:59:04:A3:FC:F8:42:54:C6:56:23:DD:0B:DB:16:90:AA Certificate issuer: /CN=B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E Certificate serial: 03B7D3C16DE75325AC055D656A27DED218368D20 Authority key identifier: B1:68:CF:A3:79:F4:EA:CD:15:DB:0E:F7:6C:EB:C5:80:AC:1F:BF:6E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa Signing time: Sun 03 May 2026 02:33:02 +0000 ROA not before: Sun 03 May 2026 02:28:02 +0000 ROA not after: Sun 02 May 2027 02:33:02 +0000 asID: 136121 IP address blocks: 103.154.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.crl rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 07:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b7:d3:c1:6d:e7:53:25:ac:05:5d:65:6a:27:de:d2:18:36:8d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E Validity Not Before: May 3 02:28:02 2026 GMT Not After : May 2 02:33:02 2027 GMT Subject: CN=10042F6F5904A3FCF84254C65623DD0BDB1690AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d9:23:6c:24:4d:9f:94:00:a8:40:ef:66:bf: 4d:b6:b3:13:de:87:9e:95:f8:b8:ec:ca:8c:73:0c: 75:49:d9:0e:94:2f:06:43:a6:0f:34:5e:3c:1a:69: c3:c9:ac:ef:59:9f:df:b4:61:b4:cf:22:9e:3c:e9: 0d:c2:9b:62:92:d3:94:a3:a3:e4:cd:3f:30:df:03: 4d:db:cb:0c:85:96:8a:86:58:f7:3e:cc:a2:0b:44: c6:f0:6a:29:85:75:a9:4c:3b:13:39:ac:73:6f:7d: 1f:ba:c3:a2:c2:25:16:b6:df:15:c4:db:ed:4d:b8: b4:2e:e6:88:99:36:a7:29:92:0d:58:32:c6:46:81: d0:8c:b1:d4:ab:2b:1e:9b:c9:4b:b8:8a:03:19:59: 58:68:a9:0c:c8:85:1a:8f:1a:03:34:35:e0:25:4c: ea:c7:6f:c6:74:59:d5:1d:85:8e:95:d1:42:7d:3e: 13:8c:7c:de:7a:d4:17:8a:e2:6e:07:bd:21:de:f6: 56:75:53:4a:fc:0b:cc:95:08:06:62:fc:0b:e2:2e: 94:6f:09:83:1f:67:20:75:d3:e3:76:45:dc:1f:6d: a6:cc:77:67:d7:73:c9:c7:ff:91:a2:9d:d1:9e:0e: f4:75:bc:15:36:ea:5f:be:0f:0d:67:f7:d1:76:3c: 44:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:04:2F:6F:59:04:A3:FC:F8:42:54:C6:56:23:DD:0B:DB:16:90:AA X509v3 Authority Key Identifier: keyid:B1:68:CF:A3:79:F4:EA:CD:15:DB:0E:F7:6C:EB:C5:80:AC:1F:BF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.231.0/24 Signature Algorithm: sha256WithRSAEncryption 17:e4:59:9f:25:0e:5d:0d:78:95:86:ed:32:39:54:6c:33:62: f7:76:76:1b:4b:c4:09:75:bf:bf:b0:de:92:56:5d:42:ab:3b: 9b:70:c3:7b:bf:8b:e7:00:b2:22:32:22:ba:f5:73:ff:6f:5d: a4:91:12:7d:8c:d6:4a:83:a0:90:7d:c2:52:94:9f:ef:7b:88: e2:2a:ec:18:f9:98:ed:a0:93:4e:99:bc:9f:09:6d:e2:6b:58: ba:89:5e:20:22:e4:ea:d3:92:e8:94:6b:88:8c:d1:6c:bf:1a: f3:7f:8b:c2:9d:cf:f4:2e:9b:13:50:c2:8f:50:91:15:c0:15: c6:e8:0f:06:8c:4f:0b:bc:27:a0:61:c5:4f:29:03:c8:4e:07: 60:4e:02:92:52:26:a7:fe:37:bf:cb:b2:1b:68:3d:01:4f:86: 18:2b:88:07:c0:08:55:ea:3e:cd:a4:8f:5a:ba:1b:ca:70:1a: 48:b9:b7:56:72:15:4f:7c:7b:28:87:db:24:56:e7:1e:2d:90: 9f:a1:ae:0a:f0:f8:fa:47:35:31:9f:28:3a:52:99:e6:1d:b5: d5:3f:c4:5e:71:10:9b:00:82:c0:f1:5d:ff:78:8e:de:4a:4b: eb:af:8d:55:19:a4:bc:61:72:41:c2:e3:c1:bb:32:67:6a:6c: 27:e2:55:df -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA7fTwW3nUyWsBV1laife0hg2jSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE2OENGQTM3OUY0RUFDRDE1REIwRUY3NkNFQkM1ODBB QzFGQkY2RTAeFw0yNjA1MDMwMjI4MDJaFw0yNzA1MDIwMjMzMDJaMDMxMTAvBgNV BAMTKDEwMDQyRjZGNTkwNEEzRkNGODQyNTRDNjU2MjNERDBCREIxNjkwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs2SNsJE2flACoQO9mv022sxPe h56V+LjsyoxzDHVJ2Q6ULwZDpg80XjwaacPJrO9Zn9+0YbTPIp486Q3Cm2KS05Sj o+TNPzDfA03bywyFloqGWPc+zKILRMbwaimFdalMOxM5rHNvfR+6w6LCJRa23xXE 2+1NuLQu5oiZNqcpkg1YMsZGgdCMsdSrKx6byUu4igMZWVhoqQzIhRqPGgM0NeAl TOrHb8Z0WdUdhY6V0UJ9PhOMfN561BeK4m4HvSHe9lZ1U0r8C8yVCAZi/AviLpRv CYMfZyB10+N2RdwfbabMd2fXc8nH/5GindGeDvR1vBU26l++Dw1n99F2PETvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEAQvb1kEo/z4QlTGViPdC9sWkKowHwYDVR0j BBgwFoAUsWjPo3n06s0V2w73bOvFgKwfv24wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTIxMjdmZWItOTYxNS00YzU4LWEzYmItZWVmN2I3YTY1NDdlLzAvQjE2OENGQTM3 OUY0RUFDRDE1REIwRUY3NkNFQkM1ODBBQzFGQkY2RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTY4Q0ZBMzc5RjRFQUNEMTVEQjBFRjc2Q0VCQzU4MEFDMUZC RjZFLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyMTI3ZmViLTk2MTUtNGM1OC1h M2JiLWVlZjdiN2E2NTQ3ZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmucwDQYJ KoZIhvcNAQELBQADggEBABfkWZ8lDl0NeJWG7TI5VGwzYvd2dhtLxAl1v7+w3pJW XUKrO5tww3u/i+cAsiIyIrr1c/9vXaSREn2M1kqDoJB9wlKUn+97iOIq7Bj5mO2g k06ZvJ8JbeJrWLqJXiAi5OrTkuiUa4iM0Wy/GvN/i8Kdz/QumxNQwo9QkRXAFcbo DwaMTwu8J6BhxU8pA8hOB2BOApJSJqf+N7/LshtoPQFPhhgriAfACFXqPs2kj1q6 G8pwGki5t1ZyFU98eyiH2yRW5x4tkJ+hrgrw+PpHNTGfKDpSmeYdtdU/xF5xEJsA gsDxXf94jt5KS+uvjVUZpLxhckHC48G7MmdqbCfiVd8= -----END CERTIFICATE-----Generated at Tue May 5 16:54:20 2026 by rpki-client