$ rpki-client -vvf rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa File: 3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa (raw, json) Hash identifier: FAM0vFS+CEP/k4I2FWb6JASyBXq3gfqT8CiCE9WHTo0= Subject key identifier: 3D:C1:70:A3:31:BF:87:1A:1F:51:4C:48:05:43:63:48:49:DD:72:F3 Certificate issuer: /CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Certificate serial: 06E60703CCC2B529957393670DBE2692BB8B85CE Authority key identifier: 8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa Signing time: Sun 03 May 2026 02:33:10 +0000 ROA not before: Sun 03 May 2026 02:28:10 +0000 ROA not after: Sun 02 May 2027 02:33:10 +0000 asID: 149712 IP address blocks: 103.186.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e6:07:03:cc:c2:b5:29:95:73:93:67:0d:be:26:92:bb:8b:85:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Validity Not Before: May 3 02:28:10 2026 GMT Not After : May 2 02:33:10 2027 GMT Subject: CN=3DC170A331BF871A1F514C480543634849DD72F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ab:1f:41:c2:cc:be:1f:97:fd:28:21:da:35: 04:47:d9:39:a8:01:ec:5d:eb:9f:68:d9:ed:ce:b3: c9:65:0c:62:7a:8a:48:d7:7f:6d:cc:a3:a9:09:26: 97:14:3d:26:ea:b2:52:f3:a0:bf:de:ac:92:5a:35: 4d:9e:14:da:45:7d:52:f6:81:b3:b2:7a:94:06:e0: 89:c1:b1:45:2f:87:04:bf:93:15:59:7d:9a:ea:2c: 31:65:40:61:57:7d:36:30:aa:c5:92:b5:1a:8e:7b: 35:c3:ed:41:bb:83:26:5e:0c:e7:2c:01:bf:1f:25: d7:c0:cd:6d:b2:bb:e9:25:46:e9:cb:60:d6:3f:78: 85:74:2e:fe:c2:c9:a4:5d:65:df:70:98:bc:84:9d: 9c:f7:b0:50:83:f8:8e:90:a9:49:b4:f5:d6:c5:b5: 4a:eb:00:09:2f:f9:e6:8d:54:ac:c6:e6:52:f0:e9: 21:24:6e:f0:75:2f:21:31:7a:13:3b:bf:20:be:31: e5:ff:dc:de:5e:8b:5e:52:8d:1e:1b:8c:55:d0:d0: f1:81:14:01:84:78:59:19:78:ef:1c:77:8b:99:df: f2:f9:9e:e9:4a:e1:80:19:74:39:4a:16:f6:06:e3: 8c:ec:c4:4e:33:6c:00:b9:65:ec:f8:4e:aa:46:74: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C1:70:A3:31:BF:87:1A:1F:51:4C:48:05:43:63:48:49:DD:72:F3 X509v3 Authority Key Identifier: keyid:8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/24 Signature Algorithm: sha256WithRSAEncryption 58:c2:32:f0:79:27:3c:69:36:27:c6:09:9c:b7:1e:e3:3b:82: f9:24:29:a3:76:71:62:9b:de:85:b9:f9:6f:d5:33:c8:d5:7b: 31:54:28:31:fe:f7:e7:86:1d:2c:16:36:0f:20:e0:55:e1:45: c2:83:cb:ae:f0:23:23:f7:11:00:53:f9:36:db:95:6b:52:c9: 4d:31:2f:9a:53:28:8e:9d:a3:8c:f5:53:8e:02:c8:3b:ac:02: fb:2b:4d:d2:57:5d:f9:ff:f4:5f:68:40:a1:d7:38:7c:8b:b9: 83:19:2f:fe:0f:7a:06:bc:ec:51:cd:5a:c6:46:3f:5b:bb:f0: 31:8f:93:81:c7:f1:94:93:c5:fc:bb:69:1a:b7:37:ae:a7:c4: 5f:71:8f:fd:95:0e:61:76:17:5b:f9:20:e4:0d:23:f7:ed:b1: 55:eb:78:30:67:18:b0:ef:52:b4:a2:6b:91:73:aa:a8:df:b1: 19:a3:5c:0b:d5:dd:26:37:de:fb:60:a2:76:9f:b0:8c:c0:b3: 8a:fd:6c:6c:67:e6:26:e1:2e:e7:3e:8a:1f:b6:6d:0a:dd:92: 2e:2c:60:f4:69:8e:fd:37:3e:40:66:32:49:d0:93:f5:08:11: 78:77:30:5f:fa:2c:30:d4:73:47:01:e3:13:ba:23:e9:fc:74: 5c:d3:be:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBuYHA8zCtSmVc5NnDb4mkruLhc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTczMTYy QTQzMTZFOTAeFw0yNjA1MDMwMjI4MTBaFw0yNzA1MDIwMjMzMTBaMDMxMTAvBgNV BAMTKDNEQzE3MEEzMzFCRjg3MUExRjUxNEM0ODA1NDM2MzQ4NDlERDcyRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSqx9Bwsy+H5f9KCHaNQRH2Tmo Aexd659o2e3Os8llDGJ6ikjXf23Mo6kJJpcUPSbqslLzoL/erJJaNU2eFNpFfVL2 gbOyepQG4InBsUUvhwS/kxVZfZrqLDFlQGFXfTYwqsWStRqOezXD7UG7gyZeDOcs Ab8fJdfAzW2yu+klRunLYNY/eIV0Lv7CyaRdZd9wmLyEnZz3sFCD+I6QqUm09dbF tUrrAAkv+eaNVKzG5lLw6SEkbvB1LyExehM7vyC+MeX/3N5ei15SjR4bjFXQ0PGB FAGEeFkZeO8cd4uZ3/L5nulK4YAZdDlKFvYG44zsxE4zbAC5Zez4TqpGdClvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPcFwozG/hxofUUxIBUNjSEndcvMwHwYDVR0j BBgwFoAUjn0puLLm8vCbUH/DazFzFipDFukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI1MmVhZDMtZGM4Zi00ZDg2LWFmY2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhC MkU2RjJGMDlCNTA3RkMzNkIzMTczMTYyQTQzMTZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RTdEMjlCOEIyRTZGMkYwOUI1MDdGQzM2QjMxNzMxNjJBNDMx NkU5LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnusIwDQYJ KoZIhvcNAQELBQADggEBAFjCMvB5JzxpNifGCZy3HuM7gvkkKaN2cWKb3oW5+W/V M8jVezFUKDH+9+eGHSwWNg8g4FXhRcKDy67wIyP3EQBT+TbblWtSyU0xL5pTKI6d o4z1U44CyDusAvsrTdJXXfn/9F9oQKHXOHyLuYMZL/4Pega87FHNWsZGP1u78DGP k4HH8ZSTxfy7aRq3N66nxF9xj/2VDmF2F1v5IOQNI/ftsVXreDBnGLDvUrSia5Fz qqjfsRmjXAvV3SY33vtgonafsIzAs4r9bGxn5ibhLuc+ih+2bQrdki4sYPRpjv03 PkBmMknQk/UIEXh3MF/6LDDUc0cB4xO6I+n8dFzTvik= -----END CERTIFICATE-----Generated at Tue May 5 19:10:57 2026 by rpki-client