$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa File: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (raw, json) Hash identifier: etrhCGlRM8YYOHb6oshuOaV8mvXHwHvEf9qlp95P9kg= Subject key identifier: F1:EA:9F:94:DD:A9:BF:43:9D:BB:09:31:99:6F:3D:7A:73:4D:CF:9A Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 5FE59FDF28DAFBB0E0E0E9B0FC87D08AB8E27B4F Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa Signing time: Sun 03 May 2026 03:00:14 +0000 ROA not before: Sun 03 May 2026 02:55:14 +0000 ROA not after: Sun 02 May 2027 03:00:14 +0000 asID: 149675 IP address blocks: 103.184.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e5:9f:df:28:da:fb:b0:e0:e0:e9:b0:fc:87:d0:8a:b8:e2:7b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: May 3 02:55:14 2026 GMT Not After : May 2 03:00:14 2027 GMT Subject: CN=F1EA9F94DDA9BF439DBB0931996F3D7A734DCF9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:70:42:37:e9:7e:22:31:09:cd:b6:d8:6f: 9b:ce:c2:21:20:5f:11:0d:b4:0c:f2:db:05:9d:b8: 35:0f:9c:f1:cb:15:3d:a1:c5:49:90:74:b1:7a:31: 42:5b:60:5e:b7:f9:7a:b9:ca:70:6e:34:45:5a:e4: c2:cf:23:00:dd:44:15:1f:0b:bb:3f:2b:17:82:54: 82:e7:ba:f3:0c:aa:fc:7c:2c:6a:bf:78:da:97:e4: db:27:7f:c8:67:81:8d:e0:c6:9e:5a:bd:f6:8c:18: bf:e4:b5:62:ee:83:b0:d4:66:0c:ed:11:c1:e0:a1: 5f:69:fa:70:6c:99:7e:ef:34:df:20:15:bb:59:20: 6a:d4:10:bf:a7:bc:d1:98:b7:7c:3e:9a:c0:e2:4f: 51:cd:38:11:ea:73:05:a6:52:23:88:34:1c:1f:7f: c0:df:2f:70:35:81:f4:8f:1a:77:d4:2b:70:6d:96: 78:b3:d4:cf:d6:80:c1:96:5b:0d:92:ba:79:59:35: 7d:94:3d:90:f7:cd:b0:80:73:a1:9b:fd:b3:f2:e0: 2c:58:e0:38:f2:36:db:46:4c:a1:69:6f:7b:b8:2c: aa:65:70:54:2e:38:3d:09:00:77:2f:f1:5c:de:2f: 59:51:9e:dd:68:25:a0:cc:ab:07:ba:46:74:0e:25: 9b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EA:9F:94:DD:A9:BF:43:9D:BB:09:31:99:6F:3D:7A:73:4D:CF:9A X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.18.0/24 Signature Algorithm: sha256WithRSAEncryption 94:c2:db:81:36:08:46:a6:45:a8:3f:c8:8c:82:6f:25:63:6b: 15:cf:3e:e7:28:09:ed:4f:df:05:b2:f6:33:96:3a:ce:55:f6: 46:e6:0e:be:82:1a:81:61:ac:bc:b1:65:bf:22:2b:cf:b5:48: a7:7b:56:66:fb:55:8c:c1:99:46:ba:28:94:78:ad:b3:ec:e2: 73:f3:9d:2b:ae:0a:45:cf:73:29:0a:65:89:3c:1d:7b:2a:2a: 82:eb:7b:99:e7:56:47:39:04:02:cf:5b:13:ea:9d:19:53:91: 7d:10:54:5a:ab:61:7f:5e:ef:1d:51:ce:80:42:e3:17:88:88: 52:34:5e:76:9a:e5:2c:9b:a1:dd:1b:a6:a3:43:46:be:dc:28: 25:a3:2b:f0:a7:b2:9c:8f:06:cf:43:89:5c:63:80:22:53:cd: 07:d9:c0:50:03:78:a6:53:ad:48:05:4c:44:42:45:e4:9d:54: 60:da:6f:bd:9d:96:c4:02:33:6d:89:d8:26:c2:df:55:eb:3b: 72:df:0b:10:54:ef:ca:d4:c2:ac:c9:66:1a:21:78:f1:d4:90: 9e:42:40:4a:d6:5e:0b:10:49:0c:f1:70:8b:08:99:0b:23:72: b1:66:bc:22:91:55:d7:aa:11:0d:a4:62:c3:a1:8d:e6:47:f5: 0e:19:e0:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX+Wf3yja+7Dg4Omw/IfQirjie08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA1MDMwMjU1MTRaFw0yNzA1MDIwMzAwMTRaMDMxMTAvBgNV BAMTKEYxRUE5Rjk0RERBOUJGNDM5REJCMDkzMTk5NkYzRDdBNzM0RENGOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClnXBCN+l+IjEJzbbYb5vOwiEg XxENtAzy2wWduDUPnPHLFT2hxUmQdLF6MUJbYF63+Xq5ynBuNEVa5MLPIwDdRBUf C7s/KxeCVILnuvMMqvx8LGq/eNqX5Nsnf8hngY3gxp5avfaMGL/ktWLug7DUZgzt EcHgoV9p+nBsmX7vNN8gFbtZIGrUEL+nvNGYt3w+msDiT1HNOBHqcwWmUiOINBwf f8DfL3A1gfSPGnfUK3Btlniz1M/WgMGWWw2SunlZNX2UPZD3zbCAc6Gb/bPy4CxY 4DjyNttGTKFpb3u4LKplcFQuOD0JAHcv8VzeL1lRnt1oJaDMqwe6RnQOJZulAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8eqflN2pv0OduwkxmW89enNNz5owHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwZDkxNGVmLTBiMWYtNDkwYi04 MDhkLWEyN2I4M2ZmOWEzZS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gSMA0GCSqG SIb3DQEBCwUAA4IBAQCUwtuBNghGpkWoP8iMgm8lY2sVzz7nKAntT98FsvYzljrO VfZG5g6+ghqBYay8sWW/IivPtUine1Zm+1WMwZlGuiiUeK2z7OJz850rrgpFz3Mp CmWJPB17KiqC63uZ51ZHOQQCz1sT6p0ZU5F9EFRaq2F/Xu8dUc6AQuMXiIhSNF52 muUsm6HdG6ajQ0a+3Cgloyvwp7KcjwbPQ4lcY4AiU80H2cBQA3imU61IBUxEQkXk nVRg2m+9nZbEAjNtidgmwt9V6zty3wsQVO/K1MKsyWYaIXjx1JCeQkBK1l4LEEkM 8XCLCJkLI3KxZrwikVXXqhENpGLDoY3mR/UOGeDV -----END CERTIFICATE-----Generated at Tue May 5 18:57:14 2026 by rpki-client