$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e203438343635.roa File: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: jT66ugDcwrPPZn+FW9LcATaa7pa94IbpNMskVZmpYyA= Subject key identifier: 2C:0F:50:82:89:B8:74:E3:35:3B:DB:A6:FE:DF:9B:E6:5E:51:5A:0D Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 2ED3E8A5BC5A6C9069220ABC264C872CF90B2699 Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e203438343635.roa Signing time: Sun 03 May 2026 03:00:15 +0000 ROA not before: Sun 03 May 2026 02:55:15 +0000 ROA not after: Sun 02 May 2027 03:00:15 +0000 asID: 48465 IP address blocks: 103.184.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d3:e8:a5:bc:5a:6c:90:69:22:0a:bc:26:4c:87:2c:f9:0b:26:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: May 3 02:55:15 2026 GMT Not After : May 2 03:00:15 2027 GMT Subject: CN=2C0F508289B874E3353BDBA6FEDF9BE65E515A0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:79:cd:01:b4:16:fb:17:69:30:9f:ac:d5:b3: 1e:df:4a:9b:03:ff:46:32:73:bb:d9:70:e1:2a:9e: 28:66:c2:9a:c7:e8:08:39:8a:c8:42:3c:53:00:01: 2b:56:ec:5e:ee:dc:72:32:33:58:98:70:49:43:69: a4:91:e3:02:27:d3:01:ba:5c:a2:d0:d8:1f:48:45: 6a:9c:18:64:49:39:32:20:11:6a:5b:9f:5e:15:b1: b7:38:21:f4:b4:19:d2:54:29:f9:f5:6a:b2:56:a8: 16:49:8e:84:ce:f1:59:8d:4b:ff:0d:75:fd:8f:5b: 50:5b:cd:e2:42:da:01:40:40:bb:16:c5:2f:27:5c: 64:41:65:5e:52:ed:67:bc:6c:8a:75:19:d9:e7:cb: 6b:e9:31:9c:89:89:55:76:ef:d2:c2:53:be:39:6b: 74:8c:39:ed:de:01:f4:22:27:d0:91:31:b1:db:72: a3:8e:98:7e:59:74:21:a7:2f:57:98:3f:cd:13:e3: 50:85:49:ad:b5:26:f1:52:92:ce:83:44:52:21:28: c5:fd:4c:60:55:09:61:41:fd:54:31:b9:d3:02:9a: 8d:25:ce:7f:53:0d:f5:fd:24:69:67:4e:c0:21:b9: 10:01:e5:e3:ed:72:3a:fa:d5:9a:dd:e2:67:5f:90: 37:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0F:50:82:89:B8:74:E3:35:3B:DB:A6:FE:DF:9B:E6:5E:51:5A:0D X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31392e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.19.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c9:2f:96:6e:a1:b7:4f:c9:63:41:54:08:c7:67:f2:30:c9: 61:79:74:ac:17:1a:0b:41:4b:da:87:e6:35:91:61:d2:1f:7f: 1b:a2:25:a2:53:81:71:41:58:31:2d:14:38:4b:05:00:b5:68: d6:37:a5:0c:0e:95:bf:8c:ae:49:f3:db:0b:c3:bc:5c:1e:97: 7b:3f:63:64:c8:c0:af:95:24:6d:17:3c:cd:c8:bb:97:f6:64: 39:81:26:d2:27:4f:4e:0d:e4:f1:4e:e6:6a:5a:14:b8:ee:17: 0d:6b:db:7b:f4:e1:d9:cd:18:62:98:64:d7:d1:5f:18:6e:60: b1:c2:9c:9b:f2:cf:9d:ef:34:1a:0e:10:0d:b9:0c:f9:08:1f: 70:da:cb:7d:59:99:90:37:ee:e8:21:d2:40:44:00:2b:aa:52: 8a:64:c7:dc:19:62:9e:ae:de:83:a2:3a:b9:c2:62:09:fd:13: c9:bb:64:5e:3e:63:50:6e:1b:4b:40:0c:ba:6a:39:3f:3c:d2: 49:91:f3:2a:c0:30:b2:08:53:51:96:9b:21:72:36:3c:b8:fe: fb:1a:18:dd:ec:bd:e8:86:df:a5:82:48:d0:82:4e:97:53:fe: 5d:c9:ec:42:b6:44:b6:91:37:ee:2f:65:61:d0:20:da:ff:3e: d0:90:e7:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULtPopbxabJBpIgq8JkyHLPkLJpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA1MDMwMjU1MTVaFw0yNzA1MDIwMzAwMTVaMDMxMTAvBgNV BAMTKDJDMEY1MDgyODlCODc0RTMzNTNCREJBNkZFREY5QkU2NUU1MTVBMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ec0BtBb7F2kwn6zVsx7fSpsD /0Yyc7vZcOEqnihmwprH6Ag5ishCPFMAAStW7F7u3HIyM1iYcElDaaSR4wIn0wG6 XKLQ2B9IRWqcGGRJOTIgEWpbn14Vsbc4IfS0GdJUKfn1arJWqBZJjoTO8VmNS/8N df2PW1BbzeJC2gFAQLsWxS8nXGRBZV5S7We8bIp1Gdnny2vpMZyJiVV279LCU745 a3SMOe3eAfQiJ9CRMbHbcqOOmH5ZdCGnL1eYP80T41CFSa21JvFSks6DRFIhKMX9 TGBVCWFB/VQxudMCmo0lzn9TDfX9JGlnTsAhuRAB5ePtcjr61Zrd4mdfkDdvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULA9Qgom4dOM1O9um/t+b5l5RWg0wHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwZDkxNGVmLTBiMWYtNDkwYi04 MDhkLWEyN2I4M2ZmOWEzZS8wLzMxMzAzMzJlMzEzODM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe4EzANBgkqhkiG 9w0BAQsFAAOCAQEAS8kvlm6ht0/JY0FUCMdn8jDJYXl0rBcaC0FL2ofmNZFh0h9/ G6IlolOBcUFYMS0UOEsFALVo1jelDA6Vv4yuSfPbC8O8XB6Xez9jZMjAr5UkbRc8 zci7l/ZkOYEm0idPTg3k8U7maloUuO4XDWvbe/Th2c0YYphk19FfGG5gscKcm/LP ne80Gg4QDbkM+QgfcNrLfVmZkDfu6CHSQEQAK6pSimTH3Blinq7eg6I6ucJiCf0T ybtkXj5jUG4bS0AMumo5PzzSSZHzKsAwsghTUZabIXI2PLj++xoY3ey96IbfpYJI 0IJOl1P+XcnsQrZEtpE37i9lYdAg2v8+0JDn1A== -----END CERTIFICATE-----Generated at Tue May 5 16:55:39 2026 by rpki-client