$ rpki-client -vvf rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa File: 3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: u4jXy9cpz2cC9GANx8Rxrfc5xCnDEExSaiICGpHSMzY= Subject key identifier: 67:AD:3C:B5:CA:B0:72:FC:E7:4F:AF:8B:26:B5:DC:AA:11:F0:FC:0A Certificate issuer: /CN=0A323FDFE5D2807EC2A8D77A7858F4989729B242 Certificate serial: 6C55B8E6128191C2AC384FEC04524B8946281341 Authority key identifier: 0A:32:3F:DF:E5:D2:80:7E:C2:A8:D7:7A:78:58:F4:98:97:29:B2:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A323FDFE5D2807EC2A8D77A7858F4989729B242.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa Signing time: Sun 03 May 2026 02:48:29 +0000 ROA not before: Sun 03 May 2026 02:43:29 +0000 ROA not after: Sun 02 May 2027 02:48:29 +0000 asID: 9341 IP address blocks: 103.181.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/0A323FDFE5D2807EC2A8D77A7858F4989729B242.crl rsync://rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/0A323FDFE5D2807EC2A8D77A7858F4989729B242.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A323FDFE5D2807EC2A8D77A7858F4989729B242.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:55:b8:e6:12:81:91:c2:ac:38:4f:ec:04:52:4b:89:46:28:13:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A323FDFE5D2807EC2A8D77A7858F4989729B242 Validity Not Before: May 3 02:43:29 2026 GMT Not After : May 2 02:48:29 2027 GMT Subject: CN=67AD3CB5CAB072FCE74FAF8B26B5DCAA11F0FC0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:12:08:72:3b:fe:64:30:a6:1e:07:2e:6b:12: 3d:bc:e1:68:c3:1c:f3:2d:9b:c3:af:9f:80:8f:7e: 9c:37:49:c2:18:0f:58:e9:d1:d1:7b:17:37:65:29: 26:01:53:7c:f5:22:0c:4c:4c:b2:96:2e:ce:dd:21: 43:b2:b4:74:4c:47:f5:b9:c9:46:c9:13:d5:10:b4: b2:05:39:10:13:f8:93:a4:e7:4e:c7:8a:33:ae:2a: d1:4b:83:9c:85:dc:ff:76:4a:52:c7:12:fe:42:c0: a0:f3:47:c6:e8:2a:77:ed:b7:dd:8c:c9:dd:a7:66: 25:b8:e3:61:fb:db:ff:dc:53:e4:02:26:43:9e:04: 9d:43:30:f9:c8:e7:62:62:10:5b:dd:aa:c5:0e:94: 05:07:2a:13:a0:88:49:f5:bc:4c:c0:37:7e:7a:60: c5:31:ed:0a:37:90:52:37:2f:70:65:a4:4e:36:9c: 06:0b:21:1b:5f:53:7c:fc:58:21:2f:b5:6b:32:19: bd:14:82:86:45:0c:ac:41:94:a6:af:f0:b5:d3:db: 55:2f:98:a9:d0:7c:1c:04:08:0a:77:74:82:b9:9e: 8d:20:d3:af:c5:e1:24:f7:17:f5:8e:50:38:58:2a: d3:42:cb:a4:3c:4a:4e:d0:d4:ee:0a:9b:1c:46:29: 68:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AD:3C:B5:CA:B0:72:FC:E7:4F:AF:8B:26:B5:DC:AA:11:F0:FC:0A X509v3 Authority Key Identifier: keyid:0A:32:3F:DF:E5:D2:80:7E:C2:A8:D7:7A:78:58:F4:98:97:29:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/0A323FDFE5D2807EC2A8D77A7858F4989729B242.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0A323FDFE5D2807EC2A8D77A7858F4989729B242.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.136.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:8b:34:07:10:9d:dc:1a:7e:50:8f:5d:15:fd:1f:d6:da:4e: 32:1e:80:1d:d9:33:7e:78:c8:aa:dd:c1:34:2f:5d:a5:00:5f: a0:f8:7f:b0:40:46:2f:f8:e4:a9:6a:5f:7a:35:46:20:b9:eb: dc:ae:a2:b0:cf:5f:b4:35:ad:17:2a:a6:cf:3b:0a:b9:e4:7b: c8:2c:81:bd:ec:b7:87:41:96:28:7c:47:50:45:7d:ab:15:1d: 03:3b:70:bb:86:78:a0:c7:cc:33:f3:6f:bb:9d:a2:c0:c9:58: a7:45:14:fa:94:79:95:93:42:9e:0d:71:b8:5c:b1:22:95:bb: b2:f9:b6:f0:11:b6:b0:4d:b1:1c:b8:e2:39:47:f4:55:ad:fe: d5:fa:6e:ae:0d:dd:53:08:92:44:84:aa:98:b3:fa:b1:fa:19: 32:02:46:53:fa:7f:6d:6d:1b:eb:3d:33:4d:29:da:32:a4:a7: 11:80:e9:1c:ab:5c:52:40:fb:b3:e9:09:06:f0:b8:64:4f:c2: 93:7a:8f:37:0e:02:61:4a:f3:c7:20:de:9a:16:98:b8:a2:ff: ed:9d:c3:51:7d:b9:56:fc:3f:06:c6:96:29:16:1f:9c:70:63: 87:96:56:6f:90:14:c3:89:c1:eb:2b:12:43:ce:5c:6d:e8:5a: 8e:1b:7b:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbFW45hKBkcKsOE/sBFJLiUYoE0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEzMjNGREZFNUQyODA3RUMyQThENzdBNzg1OEY0OTg5 NzI5QjI0MjAeFw0yNjA1MDMwMjQzMjlaFw0yNzA1MDIwMjQ4MjlaMDMxMTAvBgNV BAMTKDY3QUQzQ0I1Q0FCMDcyRkNFNzRGQUY4QjI2QjVEQ0FBMTFGMEZDMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLEghyO/5kMKYeBy5rEj284WjD HPMtm8Ovn4CPfpw3ScIYD1jp0dF7FzdlKSYBU3z1IgxMTLKWLs7dIUOytHRMR/W5 yUbJE9UQtLIFORAT+JOk507HijOuKtFLg5yF3P92SlLHEv5CwKDzR8boKnftt92M yd2nZiW442H72//cU+QCJkOeBJ1DMPnI52JiEFvdqsUOlAUHKhOgiEn1vEzAN356 YMUx7Qo3kFI3L3BlpE42nAYLIRtfU3z8WCEvtWsyGb0UgoZFDKxBlKav8LXT21Uv mKnQfBwECAp3dIK5no0g06/F4ST3F/WOUDhYKtNCy6Q8Sk7Q1O4KmxxGKWhpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ608tcqwcvznT6+LJrXcqhHw/AowHwYDVR0j BBgwFoAUCjI/3+XSgH7CqNd6eFj0mJcpskIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODc2ZmRjNjAtODAyMy00MGNkLWFhYTQtY2Q2ZWQyMmM0ZDQ1LzAvMEEzMjNGREZF NUQyODA3RUMyQThENzdBNzg1OEY0OTg5NzI5QjI0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wQTMyM0ZERkU1RDI4MDdFQzJBOEQ3N0E3ODU4RjQ5ODk3MjlC MjQyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg3NmZkYzYwLTgwMjMtNDBjZC1h YWE0LWNkNmVkMjJjNGQ0NS8wLzMxMzAzMzJlMzEzODMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe1iDANBgkqhkiG 9w0BAQsFAAOCAQEAe4s0BxCd3Bp+UI9dFf0f1tpOMh6AHdkzfnjIqt3BNC9dpQBf oPh/sEBGL/jkqWpfejVGILnr3K6isM9ftDWtFyqmzzsKueR7yCyBvey3h0GWKHxH UEV9qxUdAztwu4Z4oMfMM/Nvu52iwMlYp0UU+pR5lZNCng1xuFyxIpW7svm28BG2 sE2xHLjiOUf0Va3+1fpurg3dUwiSRISqmLP6sfoZMgJGU/p/bW0b6z0zTSnaMqSn EYDpHKtcUkD7s+kJBvC4ZE/Ck3qPNw4CYUrzxyDemhaYuKL/7Z3DUX25Vvw/BsaW KRYfnHBjh5ZWb5AUw4nB6ysSQ85cbehajht76g== -----END CERTIFICATE-----Generated at Tue May 5 13:26:43 2026 by rpki-client