$ rpki-client -vvf rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa File: 3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa (raw, json) Hash identifier: L38/YdqvarzKfk9ZAVR4ViiHPDNisQEln+Vb1lB1n1A= Subject key identifier: 67:1C:A1:DB:CF:75:26:FD:44:93:E6:28:68:7F:FC:A1:8F:65:24:EB Certificate issuer: /CN=19B95601293E4FA827B74012327843B2622893C0 Certificate serial: 0FD6B41A828D5DE0F023613028A2986B3BF604 Authority key identifier: 19:B9:56:01:29:3E:4F:A8:27:B7:40:12:32:78:43:B2:62:28:93:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa Signing time: Sun 03 May 2026 02:44:21 +0000 ROA not before: Sun 03 May 2026 02:39:21 +0000 ROA not after: Sun 02 May 2027 02:44:21 +0000 asID: 142321 IP address blocks: 103.168.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.crl rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d6:b4:1a:82:8d:5d:e0:f0:23:61:30:28:a2:98:6b:3b:f6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19B95601293E4FA827B74012327843B2622893C0 Validity Not Before: May 3 02:39:21 2026 GMT Not After : May 2 02:44:21 2027 GMT Subject: CN=671CA1DBCF7526FD4493E628687FFCA18F6524EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a3:7d:12:91:62:bf:e9:2d:e0:ab:81:99:59: 75:95:a9:98:ec:d4:f1:2c:b3:4e:96:60:0a:fa:61: 43:ae:34:b5:03:7e:15:41:dd:37:7e:ad:e1:50:3d: cc:73:c9:13:a7:55:03:64:77:bf:a2:e0:73:00:74: df:32:c6:61:92:90:9a:1e:83:f1:06:d2:10:bd:9c: 45:18:f2:a8:81:fa:20:87:ec:b2:42:25:4a:1a:78: e7:60:4c:f6:eb:ce:60:ec:45:f9:2f:52:43:9c:cd: 87:14:06:f1:2a:f2:2b:16:22:63:56:5f:dc:f8:87: 8f:ca:f7:12:4c:41:11:23:9f:d9:b5:fa:1c:86:fe: c0:8f:ee:13:3b:b2:98:57:52:56:0b:11:63:88:02: 4c:6b:ba:6b:bc:a3:8b:d2:85:16:2c:6b:5f:f3:0a: 52:ab:b6:09:fd:ae:8d:69:73:af:d1:d2:6a:3c:d2: 89:9a:34:f0:38:f3:4c:0d:6e:08:01:05:f9:a0:cc: 4b:fb:87:27:91:78:9e:6e:55:42:6c:0b:52:10:5a: 04:dc:ad:a6:07:5e:ee:ab:77:db:dd:01:a2:a1:7b: 7b:4b:f3:82:c3:ba:73:4d:e0:fd:fe:b0:39:6f:c2: df:89:bc:d4:4e:e0:a0:00:22:5e:99:0e:35:11:fb: b9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1C:A1:DB:CF:75:26:FD:44:93:E6:28:68:7F:FC:A1:8F:65:24:EB X509v3 Authority Key Identifier: keyid:19:B9:56:01:29:3E:4F:A8:27:B7:40:12:32:78:43:B2:62:28:93:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/19B95601293E4FA827B74012327843B2622893C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19B95601293E4FA827B74012327843B2622893C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.185.0/24 Signature Algorithm: sha256WithRSAEncryption b9:38:50:7a:76:76:40:2f:6f:1e:58:93:db:2a:ba:f7:2d:55: d7:49:4e:69:e7:c9:a7:13:63:82:c3:28:3a:72:eb:a7:06:08: 24:8c:11:76:38:1e:17:f3:5d:e2:dc:17:af:5f:63:3d:ca:53: a8:10:5d:00:68:36:ee:ef:94:bf:30:58:f1:95:a2:c5:e5:24: da:50:35:b7:64:23:81:e5:ef:78:25:00:e0:08:42:ca:79:89: f5:57:ef:74:52:26:fb:48:64:41:b2:8a:f9:ea:ab:50:14:56: 63:06:8a:4a:9e:2e:17:53:82:dd:14:cb:3c:fb:b2:f2:02:0b: 0e:ae:c7:6b:8a:d6:9f:15:06:0c:38:88:50:c7:ad:6c:61:4c: 04:3f:d3:fd:66:dc:2f:6f:76:df:5f:7b:78:31:6f:75:ab:93: c8:62:33:d5:eb:a4:f1:de:4b:76:a1:e6:05:a4:2d:b2:3d:33: c8:cd:6d:36:e9:f8:41:12:59:e2:e2:b8:d0:78:dc:1c:91:d7: ec:b7:af:f9:3f:52:5b:74:31:da:ed:d3:30:ee:13:b7:3b:9d: 6f:c7:8a:a2:7e:d0:4e:ec:64:ac:95:2f:af:bf:33:e4:f0:23: 73:7f:e3:dd:26:d3:35:54:0e:cd:38:0f:50:6e:7c:44:d5:cf: 2c:be:97:fc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITD9a0GoKNXeDwI2EwKKKYazv2BDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygxOUI5NTYwMTI5M0U0RkE4MjdCNzQwMTIzMjc4NDNCMjYy Mjg5M0MwMB4XDTI2MDUwMzAyMzkyMVoXDTI3MDUwMjAyNDQyMVowMzExMC8GA1UE AxMoNjcxQ0ExREJDRjc1MjZGRDQ0OTNFNjI4Njg3RkZDQTE4RjY1MjRFQjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOyjfRKRYr/pLeCrgZlZdZWpmOzU 8SyzTpZgCvphQ640tQN+FUHdN36t4VA9zHPJE6dVA2R3v6LgcwB03zLGYZKQmh6D 8QbSEL2cRRjyqIH6IIfsskIlShp452BM9uvOYOxF+S9SQ5zNhxQG8SryKxYiY1Zf 3PiHj8r3EkxBESOf2bX6HIb+wI/uEzuymFdSVgsRY4gCTGu6a7yji9KFFixrX/MK Uqu2Cf2ujWlzr9HSajzSiZo08DjzTA1uCAEF+aDMS/uHJ5F4nm5VQmwLUhBaBNyt pgde7qt3290BoqF7e0vzgsO6c03g/f6wOW/C34m81E7goAAiXpkONRH7uX0CAwEA AaOCAjYwggIyMB0GA1UdDgQWBBRnHKHbz3Um/UST5ihof/yhj2Uk6zAfBgNVHSME GDAWgBQZuVYBKT5PqCe3QBIyeEOyYiiTwDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC8xOUI5NTYwMTI5 M0U0RkE4MjdCNzQwMTIzMjc4NDNCMjYyMjg5M0MwLmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xLzE5Qjk1NjAxMjkzRTRGQTgyN0I3NDAxMjMyNzg0M0IyNjIyODkz QzAuY2VyMIGnBggrBgEFBQcBCwSBmjCBlzCBlAYIKwYBBQUHMAuGgYdyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzhlNzhlZTAtMDAwMi00YTY3LWE3 MzktMzAzM2Q1YjViYTYxLzAvMzEzMDMzMmUzMTM2MzgyZTMxMzgzNTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeouTANBgkq hkiG9w0BAQsFAAOCAQEAuThQenZ2QC9vHliT2yq69y1V10lOaefJpxNjgsMoOnLr pwYIJIwRdjgeF/Nd4twXr19jPcpTqBBdAGg27u+UvzBY8ZWixeUk2lA1t2QjgeXv eCUA4AhCynmJ9VfvdFIm+0hkQbKK+eqrUBRWYwaKSp4uF1OC3RTLPPuy8gILDq7H a4rWnxUGDDiIUMetbGFMBD/T/WbcL2923197eDFvdauTyGIz1euk8d5LdqHmBaQt sj0zyM1tNun4QRJZ4uK40HjcHJHX7Lev+T9SW3Qx2u3TMO4Ttzudb8eKon7QTuxk rJUvr78z5PAjc3/j3SbTNVQOzTgPUG58RNXPLL6X/A== -----END CERTIFICATE-----Generated at Tue May 5 19:03:20 2026 by rpki-client