$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa File: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (raw, json) Hash identifier: IKu3DMB2Lrk9WDHkDL4CNW43tnQhk2oAbk+rhH/oyA8= Subject key identifier: 60:25:F8:4C:02:1D:D6:BC:78:19:A9:8C:47:DD:FF:57:3A:8A:88:FA Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 1D16CCAF2F8C4AAF0C8EEA54DDFF4F1021F0AC41 Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa Signing time: Sun 03 May 2026 03:00:15 +0000 ROA not before: Sun 03 May 2026 02:55:15 +0000 ROA not after: Sun 02 May 2027 03:00:15 +0000 asID: 149675 IP address blocks: 103.184.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:16:cc:af:2f:8c:4a:af:0c:8e:ea:54:dd:ff:4f:10:21:f0:ac:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: May 3 02:55:15 2026 GMT Not After : May 2 03:00:15 2027 GMT Subject: CN=6025F84C021DD6BC7819A98C47DDFF573A8A88FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:b7:e3:08:ee:6b:63:8e:82:81:8b:51:68: 6d:25:da:7a:54:1b:2a:9e:0e:5c:76:2e:0c:da:e5: ac:cb:f1:38:53:b2:5a:53:84:d6:2a:2b:99:61:5a: 6f:3a:51:34:b1:81:c6:fe:eb:8a:c7:01:09:67:89: 89:4d:0e:7c:e9:b7:f4:32:64:94:68:cb:15:81:f2: 89:31:65:68:3b:b1:6f:d8:c2:28:a9:b0:06:ea:98: d8:7f:d8:a9:5f:b6:9c:8a:24:9a:1c:14:54:82:6c: dd:a4:64:a4:9c:f7:d3:9c:2d:ea:4e:1e:e5:82:6f: b7:b1:7b:a7:c4:56:52:46:cd:4d:97:a9:89:71:d2: f9:d2:87:f3:66:0d:31:c4:cf:29:fc:b8:4d:b6:45: a2:28:4c:2f:c3:6c:9e:36:92:f4:25:a6:85:f9:e9: 71:b8:e1:0c:c2:b4:a6:e8:27:3e:42:71:f9:c9:95: b3:0c:de:c5:97:b3:a9:c7:c0:6a:16:e5:01:57:ed: 22:4b:f1:e4:ad:5f:4a:57:9a:ce:65:94:1d:2b:1e: 78:5a:61:0e:ef:76:57:81:ad:88:f0:fb:75:b9:80: 08:40:c7:69:cf:ac:f9:92:65:c8:39:ca:2b:4b:02: 9c:6e:99:77:2e:41:2f:33:90:f5:dd:8c:0e:36:05: 41:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:25:F8:4C:02:1D:D6:BC:78:19:A9:8C:47:DD:FF:57:3A:8A:88:FA X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.18.0/23 Signature Algorithm: sha256WithRSAEncryption 40:04:dc:74:54:71:30:ea:15:5c:e6:1d:fe:77:95:39:ad:2e: e9:8c:15:8a:bd:85:e7:cc:cb:15:8c:85:da:ee:f5:21:14:73: 29:95:e0:01:0a:72:c7:12:d9:2a:c1:b1:e6:86:ca:00:2d:72: 67:a1:fa:7f:ed:b6:7b:c3:0f:56:ff:53:55:d7:6a:eb:e2:6d: 72:e9:02:78:eb:95:a8:95:73:b3:03:63:26:d0:fe:3c:77:a6: 6d:52:24:d7:2b:cc:09:21:99:95:3f:44:71:d6:8b:b1:74:73: 5c:eb:7e:11:eb:0d:37:0f:fb:6f:2e:66:de:e4:d2:25:67:41: 0c:4e:78:ba:33:61:33:19:c2:71:59:a1:14:12:f1:db:36:cc: 48:1e:20:42:53:9e:f6:13:74:60:b5:d1:72:c3:e0:9c:94:e6: c1:42:ec:71:01:e3:21:84:03:d6:19:09:71:65:66:df:a2:6b: 8d:5d:b7:22:67:4f:12:73:81:0a:80:a2:89:c9:ed:7c:39:52: f3:24:e5:6d:03:57:1e:a9:e9:44:8d:e2:e9:f9:04:dd:06:14: fb:d1:5c:05:3c:98:65:8f:c8:e0:4c:21:f9:a2:90:bd:04:bf: 0e:49:3c:62:ae:92:5b:7b:fe:6a:4c:d6:01:dd:e4:4d:b3:43: d2:f8:f6:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHRbMry+MSq8MjupU3f9PECHwrEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA1MDMwMjU1MTVaFw0yNzA1MDIwMzAwMTVaMDMxMTAvBgNV BAMTKDYwMjVGODRDMDIxREQ2QkM3ODE5QTk4QzQ3RERGRjU3M0E4QTg4RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRH7fjCO5rY46CgYtRaG0l2npU GyqeDlx2Lgza5azL8ThTslpThNYqK5lhWm86UTSxgcb+64rHAQlniYlNDnzpt/Qy ZJRoyxWB8okxZWg7sW/YwiipsAbqmNh/2KlftpyKJJocFFSCbN2kZKSc99OcLepO HuWCb7exe6fEVlJGzU2XqYlx0vnSh/NmDTHEzyn8uE22RaIoTC/DbJ42kvQlpoX5 6XG44QzCtKboJz5CcfnJlbMM3sWXs6nHwGoW5QFX7SJL8eStX0pXms5llB0rHnha YQ7vdleBrYjw+3W5gAhAx2nPrPmSZcg5yitLApxumXcuQS8zkPXdjA42BUHpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYCX4TAId1rx4GamMR93/VzqKiPowHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwZDkxNGVmLTBiMWYtNDkwYi04 MDhkLWEyN2I4M2ZmOWEzZS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gSMA0GCSqG SIb3DQEBCwUAA4IBAQBABNx0VHEw6hVc5h3+d5U5rS7pjBWKvYXnzMsVjIXa7vUh FHMpleABCnLHEtkqwbHmhsoALXJnofp/7bZ7ww9W/1NV12rr4m1y6QJ465WolXOz A2Mm0P48d6ZtUiTXK8wJIZmVP0Rx1ouxdHNc634R6w03D/tvLmbe5NIlZ0EMTni6 M2EzGcJxWaEUEvHbNsxIHiBCU572E3RgtdFyw+CclObBQuxxAeMhhAPWGQlxZWbf omuNXbciZ08Sc4EKgKKJye18OVLzJOVtA1ceqelEjeLp+QTdBhT70VwFPJhlj8jg TCH5opC9BL8OSTxirpJbe/5qTNYB3eRNs0PS+PYh -----END CERTIFICATE-----Generated at Tue May 5 18:56:34 2026 by rpki-client