$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa File: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (raw, json) Hash identifier: tpylCt5CgrBx6WkyqQ/Q0MxG2lKbEyC1EbhCs0e+Yuo= Subject key identifier: 1B:C6:72:CE:87:07:74:B6:56:6B:6A:4E:24:6D:B5:C7:51:01:43:79 Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 0B7008F0BC585DE0CFC80264121639BA2901877C Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa Signing time: Sun 03 May 2026 03:00:14 +0000 ROA not before: Sun 03 May 2026 02:55:14 +0000 ROA not after: Sun 02 May 2027 03:00:14 +0000 asID: 149675 IP address blocks: 103.184.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:70:08:f0:bc:58:5d:e0:cf:c8:02:64:12:16:39:ba:29:01:87:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: May 3 02:55:14 2026 GMT Not After : May 2 03:00:14 2027 GMT Subject: CN=1BC672CE870774B6566B6A4E246DB5C751014379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3d:ee:7b:fd:76:da:8c:64:12:e0:9b:78:6b: 2b:bb:85:f5:d1:69:06:56:a4:62:8f:aa:49:bd:e4: 83:31:33:de:11:72:4c:cb:1e:55:7e:15:81:7f:f5: 0e:05:88:f3:88:29:d0:45:4d:58:f7:bf:40:e4:5f: 34:78:c4:d2:ae:ca:37:3a:c7:1e:7a:dc:92:b3:77: a2:a9:e7:9d:09:15:f8:f6:92:de:c1:33:17:40:ca: 7b:b0:56:12:03:53:69:a3:0c:b0:63:8f:0b:0f:c8: 95:0a:14:2d:1a:cb:9d:93:f1:0f:8a:86:f6:99:05: 5f:09:8a:c9:cd:21:5a:93:14:51:3f:df:cd:fa:9c: a4:77:e9:07:7b:da:b8:b5:00:1f:b7:41:19:c9:8a: 63:02:62:87:f7:fc:bb:6c:14:be:f1:f4:53:2e:f3: 6a:8d:4c:e8:b4:a0:72:33:38:a5:c8:4b:8f:68:2c: 79:39:7a:75:2c:27:8e:a4:7d:47:fc:6a:f4:f0:aa: 29:c5:4d:b4:2d:58:32:97:cf:d5:e8:3b:35:de:a0: b7:08:8d:b9:a0:7a:2e:1e:83:7b:7c:01:9e:e3:11: 74:89:df:9b:fe:e2:71:44:70:3f:bb:de:f9:13:8c: 66:c6:5a:a1:eb:89:4a:f9:f2:dc:99:84:40:51:3d: eb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C6:72:CE:87:07:74:B6:56:6B:6A:4E:24:6D:B5:C7:51:01:43:79 X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.19.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:6c:d0:d8:26:6b:61:a3:3c:1e:57:e7:e6:ed:f3:70:59:d0: 06:e8:02:db:d1:17:6f:b8:c6:66:01:f5:5b:da:64:ba:d2:fc: 94:3a:59:35:9f:ab:1d:88:f2:d8:75:41:14:d6:82:90:cd:e6: 59:a6:4b:ea:0c:2d:3d:4f:a1:c4:39:45:ad:a7:85:81:90:d0: 87:15:f0:52:90:c8:b0:05:29:59:55:8d:c1:18:f2:13:a8:f1: 1a:5e:a7:c1:62:b0:1e:a9:8e:d1:ce:96:85:15:70:6d:43:39: 0c:43:3a:75:9a:e7:51:2c:b1:14:90:78:76:ad:e7:c2:e2:fe: 55:f7:cd:79:d6:cb:62:f6:97:f2:98:b2:3f:24:19:cc:82:34: 76:33:5b:8a:a1:cc:c9:e8:4e:7a:75:13:8b:9a:4c:ef:f8:2b: 22:a8:81:da:65:6a:ae:09:c6:ab:f9:fd:c5:90:0b:22:28:d0: 18:ea:f0:1b:d8:25:cb:12:31:52:a4:59:02:06:9d:74:1a:bc: 25:99:f3:e7:c1:be:10:19:09:b7:3a:10:65:45:18:b2:6b:4a: 52:4a:c0:65:53:d6:07:c6:05:e0:4b:39:d8:96:dc:6f:b4:71: c7:63:50:16:36:34:49:f0:ac:98:61:d7:2b:a8:d3:9f:ff:0a: d1:81:bd:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC3AI8LxYXeDPyAJkEhY5uikBh3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA1MDMwMjU1MTRaFw0yNzA1MDIwMzAwMTRaMDMxMTAvBgNV BAMTKDFCQzY3MkNFODcwNzc0QjY1NjZCNkE0RTI0NkRCNUM3NTEwMTQzNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Pe57/XbajGQS4Jt4ayu7hfXR aQZWpGKPqkm95IMxM94RckzLHlV+FYF/9Q4FiPOIKdBFTVj3v0DkXzR4xNKuyjc6 xx563JKzd6Kp550JFfj2kt7BMxdAynuwVhIDU2mjDLBjjwsPyJUKFC0ay52T8Q+K hvaZBV8JisnNIVqTFFE/3836nKR36Qd72ri1AB+3QRnJimMCYof3/LtsFL7x9FMu 82qNTOi0oHIzOKXIS49oLHk5enUsJ46kfUf8avTwqinFTbQtWDKXz9XoOzXeoLcI jbmgei4eg3t8AZ7jEXSJ35v+4nFEcD+73vkTjGbGWqHriUr58tyZhEBRPeu9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG8ZyzocHdLZWa2pOJG21x1EBQ3kwHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwZDkxNGVmLTBiMWYtNDkwYi04 MDhkLWEyN2I4M2ZmOWEzZS8wLzMxMzAzMzJlMzEzODM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gTMA0GCSqG SIb3DQEBCwUAA4IBAQCfbNDYJmthozweV+fm7fNwWdAG6ALb0RdvuMZmAfVb2mS6 0vyUOlk1n6sdiPLYdUEU1oKQzeZZpkvqDC09T6HEOUWtp4WBkNCHFfBSkMiwBSlZ VY3BGPITqPEaXqfBYrAeqY7RzpaFFXBtQzkMQzp1mudRLLEUkHh2refC4v5V9815 1sti9pfymLI/JBnMgjR2M1uKoczJ6E56dROLmkzv+CsiqIHaZWquCcar+f3FkAsi KNAY6vAb2CXLEjFSpFkCBp10GrwlmfPnwb4QGQm3OhBlRRiya0pSSsBlU9YHxgXg SznYltxvtHHHY1AWNjRJ8KyYYdcrqNOf/wrRgb11 -----END CERTIFICATE-----Generated at Tue May 5 18:56:44 2026 by rpki-client